$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/97FA1AA841F811F1B8AFB543A8EE528E.roa File: 97FA1AA841F811F1B8AFB543A8EE528E.roa (raw, json) Hash identifier: c8vnrUnAU28XMTNHVv3+lvOZFEuSl74tN6k11xfDYvc= Subject key identifier: D8:B7:71:4B:48:DB:17:5C:0E:A7:89:79:81:CE:6B:9F:F0:28:12:D3 Certificate issuer: /CN=A91D4413/serialNumber=32FB20BE5E28485BBFA833E8024B86E9982DDF6E Certificate serial: 02 Authority key identifier: 32:FB:20:BE:5E:28:48:5B:BF:A8:33:E8:02:4B:86:E9:98:2D:DF:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mvsgvl4oSFu_qDPoAkuG6Zgt324.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/97FA1AA841F811F1B8AFB543A8EE528E.roa Signing time: Mon 27 Apr 2026 05:18:58 +0000 ROA not before: Mon 27 Apr 2026 05:18:58 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134983 IP address blocks: 103.204.200.0/22 maxlen: 24 202.181.12.0/22 maxlen: 24 2404:c280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/Mvsgvl4oSFu_qDPoAkuG6Zgt324.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/Mvsgvl4oSFu_qDPoAkuG6Zgt324.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mvsgvl4oSFu_qDPoAkuG6Zgt324.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 15:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=32FB20BE5E28485BBFA833E8024B86E9982DDF6E Validity Not Before: Apr 27 05:18:58 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69eef1c2-f88f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:80:86:91:35:2f:d4:16:c8:75:d4:a4:6c:d2: 09:20:b2:32:99:d2:f3:6d:6c:80:2a:ad:96:c0:2f: bf:60:f1:44:3a:96:a9:d8:7b:28:e9:81:60:7f:52: e9:77:44:92:1b:57:c9:11:dd:5b:7f:23:39:f9:cf: 2a:4b:48:bf:aa:77:52:01:7f:f4:71:9b:6f:53:38: ac:3f:c9:dd:3d:aa:84:5e:b1:84:b4:75:c4:89:db: 79:86:27:d7:09:dd:fb:68:f9:ee:0c:82:5d:be:08: 4c:7e:c9:58:8d:66:df:69:48:44:bd:5e:85:12:a8: 97:ec:e4:b5:48:86:22:d5:bf:9b:11:ea:b4:8c:7f: 5c:a8:0c:ac:54:73:6b:2b:ac:27:17:f6:df:1c:9a: ed:62:77:a9:47:78:4b:d9:d3:0c:86:4e:32:46:85: d5:c0:e8:f5:1f:8b:56:28:69:83:59:ed:ab:c6:b4: dc:c1:2c:6f:99:d9:5b:c3:68:e4:d5:fd:3f:90:a9: 2b:8a:30:f8:5f:60:25:89:1e:58:74:fc:97:61:e9: 99:de:15:65:8c:3b:e3:6f:ed:de:dc:c6:dd:20:56: e2:4e:ce:55:ad:50:f1:a5:ad:fd:ef:c7:29:2c:62: 56:8c:1e:b6:e5:99:ed:23:3e:86:2f:eb:c4:96:07: d1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B7:71:4B:48:DB:17:5C:0E:A7:89:79:81:CE:6B:9F:F0:28:12:D3 X509v3 Authority Key Identifier: keyid:32:FB:20:BE:5E:28:48:5B:BF:A8:33:E8:02:4B:86:E9:98:2D:DF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/Mvsgvl4oSFu_qDPoAkuG6Zgt324.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mvsgvl4oSFu_qDPoAkuG6Zgt324.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/97FA1AA841F811F1B8AFB543A8EE528E.roa sbgp-ipAddrBlock: critical IPv4: 103.204.200.0/22 202.181.12.0/22 IPv6: 2404:c280::/32 Signature Algorithm: sha256WithRSAEncryption 46:89:23:4c:12:c1:1f:1b:f6:24:d4:3b:b3:ac:e4:bd:4b:86: 27:19:81:52:2b:8f:e8:78:a7:0d:ff:8e:56:4c:38:3d:d7:0e: 79:ea:98:0e:9c:d0:bd:0f:bb:84:04:d6:21:f3:8a:bf:c8:ff: 33:7c:d3:d1:49:07:a9:06:23:c1:7e:5a:11:c5:3f:36:87:b6: d2:39:90:39:4e:22:9e:95:6a:50:af:9b:a7:d4:fb:3a:85:8f: 00:2c:ba:a3:9c:29:ba:57:ad:71:6a:24:21:6c:87:43:62:eb: ae:04:39:ae:be:3a:6e:e1:41:a9:83:09:1c:a6:b2:ce:e6:49: bf:23:35:5d:fe:f4:2f:db:e7:ea:59:6b:5d:e8:f6:aa:51:d6: e1:0a:10:93:44:07:0c:0d:78:75:d9:5a:1c:74:75:88:23:f4: 0e:48:cf:43:72:24:2c:49:ca:70:4f:a0:99:a7:d6:85:33:65: fc:fe:f8:6c:0e:b4:99:4c:cd:be:37:70:1a:e5:6f:3e:42:36: 20:27:d7:ce:66:0e:e5:b1:ee:eb:19:c8:28:42:c4:7c:7a:e3: 42:ed:0e:13:a1:e7:8a:f5:0c:99:67:6a:7c:a6:73:f0:02:06: 4c:1d:ba:0c:12:e3:e8:91:ee:a8:1e:e4:dd:70:b6:5a:b2:79: 41:3e:8c:af -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDQxMzExMC8GA1UEBRMoMzJGQjIwQkU1RTI4NDg1QkJGQTgzM0U4MDI0Qjg2RTk5 ODJEREY2RTAeFw0yNjA0MjcwNTE4NThaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZWVmMWMyLWY4OGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3gIaRNS/UFsh11KRs0gkgsjKZ0vNtbIAqrZbAL79g8UQ6lqnYeyjpgWB/Uul3 RJIbV8kR3Vt/Izn5zypLSL+qd1IBf/Rxm29TOKw/yd09qoResYS0dcSJ23mGJ9cJ 3fto+e4Mgl2+CEx+yViNZt9pSES9XoUSqJfs5LVIhiLVv5sR6rSMf1yoDKxUc2sr rCcX9t8cmu1id6lHeEvZ0wyGTjJGhdXA6PUfi1YoaYNZ7avGtNzBLG+Z2VvDaOTV /T+QqSuKMPhfYCWJHlh0/Jdh6ZneFWWMO+Nv7d7cxt0gVuJOzlWtUPGlrf3vxyks YlaMHrblme0jPoYv68SWB9FfAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQU2LdxS0jb F1wOp4l5gc5rn/AoEtMwHwYDVR0jBBgwFoAUMvsgvl4oSFu/qDPoAkuG6Zgt324w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NDEzLzA4MTZFNzU0RkZC NDExRTU5NDQzMTAyQ0M0RjlBRTAyL012c2d2bDRvU0Z1X3FEUG9Ba3VHNlpndDMy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTXZzZ3ZsNG9TRnVfcURQb0FrdUc2Wmd0MzI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi85N0ZBMUFBODQx RjgxMUYxQjhBRkI1NDNBOEVFNTI4RS5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAJnzMgDBALKtQwwDQQCAAIwBwMFACQEwoAwDQYJKoZIhvcNAQELBQAD ggEBAEaJI0wSwR8b9iTUO7Os5L1LhicZgVIrj+h4pw3/jlZMOD3XDnnqmA6c0L0P u4QE1iHzir/I/zN809FJB6kGI8F+WhHFPzaHttI5kDlOIp6ValCvm6fU+zqFjwAs uqOcKbpXrXFqJCFsh0Ni664EOa6+Om7hQamDCRymss7mSb8jNV3+9C/b5+pZa13o 9qpR1uEKEJNEBwwNeHXZWhx0dYgj9A5Iz0NyJCxJynBPoJmn1oUzZfz++GwOtJlM zb43cBrlbz5CNiAn185mDuWx7usZyChCxHx640LtDhOh54r1DJlnanymc/ACBkwd ugwS4+iR7qge5N1wtlqyeUE+jK8= -----END CERTIFICATE-----Generated at Wed Jun 24 12:15:32 2026 by rpki-client