$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa File: A48D6CEEED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: V+41ntKJN5cZcf4m2jV7VDL18RNscYpp6FiRJv/RGZo= Subject key identifier: 4C:CA:55:0F:29:B0:77:17:2B:2F:8C:6B:B6:0B:03:62:3B:B2:56:3A Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 0426 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa Signing time: Thu 11 Jun 2026 03:31:11 +0000 ROA not before: Thu 11 Jun 2026 03:31:11 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 140224 IP address blocks: 103.189.255.0/24 maxlen: 24 2407:2440:1a::/48 maxlen: 48 2407:2440:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 11 03:31:11 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a2a2bff-160c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:39:a1:59:fe:85:b0:26:7b:d5:4d:8b:74:32: fd:fe:90:ac:c3:79:dc:8f:c0:62:ca:0b:ff:e4:1c: b2:55:2f:cb:e2:eb:be:45:37:be:d0:16:f2:fe:cf: 32:0e:26:c9:8f:87:eb:95:08:16:43:65:86:83:49: 76:9e:35:38:35:ba:25:3e:0a:91:ed:92:42:fe:12: 0c:1a:4a:b8:96:2d:06:c8:e1:64:59:ed:17:2d:ef: dd:96:26:9e:49:4c:d8:1e:5b:e9:7b:11:02:69:14: 4e:a4:c0:0e:f8:53:f7:41:ab:b3:58:98:64:9e:13: d6:d4:ec:51:3f:e3:ab:9f:73:6a:d7:e2:d1:a2:e7: f7:23:7d:a0:4f:10:53:f6:32:cd:d3:21:50:f8:44: 79:9b:81:47:1c:7f:0f:bc:da:f6:e7:78:be:6e:e6: f6:9b:0c:88:2a:fc:11:93:d3:3a:49:2d:19:39:e4: 90:19:3a:c5:b4:93:7e:df:ea:8e:a4:d0:83:de:ef: 7d:e3:1f:55:50:cc:0a:d7:fc:49:39:64:cc:bf:19: 65:4c:c6:64:23:09:41:9b:95:b1:44:f3:4d:45:49: 69:39:0c:e3:05:e9:ad:69:24:07:78:40:1e:68:38: 95:b0:27:96:92:83:7f:78:b1:aa:4e:1a:dd:23:38: 0e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CA:55:0F:29:B0:77:17:2B:2F:8C:6B:B6:0B:03:62:3B:B2:56:3A X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.255.0/24 IPv6: 2407:2440:1a::/48 2407:2440:29::/48 Signature Algorithm: sha256WithRSAEncryption a2:c3:d2:70:b4:82:72:5e:53:4c:bc:86:6a:e5:74:37:12:f9: fe:04:91:1d:c1:f7:db:49:d1:85:db:cb:41:64:8d:6e:f9:c8: ae:9a:e1:be:4d:fe:7c:88:7f:ef:c2:02:3d:cb:b0:ff:30:3e: 80:28:c6:1c:cb:5b:aa:1e:10:0f:ce:da:5d:71:84:d2:13:27: 70:a6:21:0a:f0:8e:ff:9d:f3:52:4a:f3:16:48:81:db:4d:46: a5:21:44:05:d5:85:0d:a6:4f:e3:59:3b:f1:4e:bf:94:dd:4a: 8f:1b:8a:38:84:42:4f:72:d0:ff:d3:42:ba:0f:5a:87:1a:50: 6c:ce:53:c7:0b:64:b8:89:fd:51:7c:b7:5f:9d:0c:34:71:39: d2:a5:37:51:5c:1f:06:72:fd:d6:09:e8:c9:c3:14:1b:d3:2e: ac:2e:4d:37:75:8e:88:2f:93:6f:b7:3a:c1:5d:9f:47:03:3d: b7:42:c2:fb:48:1e:fe:a5:4e:19:fb:14:2b:de:9d:62:fb:67: 7b:f7:85:ec:fc:e1:05:79:6e:08:e8:b7:5e:ff:eb:4a:dd:0c: 59:d2:63:c9:31:a4:f2:23:48:08:33:80:c1:4a:eb:18:21:48: c3:92:e5:c8:44:b3:6e:d8:8d:06:e2:5a:4e:73:b5:ed:e1:b9: 86:ab:c9:e4 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjYwNjExMDMzMTExWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJhMmJmZi0xNjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszmhWf6FsCZ71U2LdDL9/pCsw3ncj8Biygv/5ByyVS/L4uu+RTe+0Bby/s8y DibJj4frlQgWQ2WGg0l2njU4NbolPgqR7ZJC/hIMGkq4li0GyOFkWe0XLe/dliae SUzYHlvpexECaRROpMAO+FP3QauzWJhknhPW1OxRP+Orn3Nq1+LRouf3I32gTxBT 9jLN0yFQ+ER5m4FHHH8PvNr253i+bub2mwyIKvwRk9M6SS0ZOeSQGTrFtJN+3+qO pNCD3u994x9VUMwK1/xJOWTMvxllTMZkIwlBm5WxRPNNRUlpOQzjBemtaSQHeEAe aDiVsCeWkoN/eLGqThrdIzgOCwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFEzKVQ8p sHcXKy+Ma7YLA2I7slY6MB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTQ4RDZDRUVF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQAZ73/MBgEAgACMBIDBwAkByRAABoDBwAkByRAACkwDQYJKoZIhvcN AQELBQADggEBAKLD0nC0gnJeU0y8hmrldDcS+f4EkR3B99tJ0YXby0FkjW75yK6a 4b5N/nyIf+/CAj3LsP8wPoAoxhzLW6oeEA/O2l1xhNITJ3CmIQrwjv+d81JK8xZI gdtNRqUhRAXVhQ2mT+NZO/FOv5TdSo8bijiEQk9y0P/TQroPWocaUGzOU8cLZLiJ /VF8t1+dDDRxOdKlN1FcHwZy/dYJ6MnDFBvTLqwuTTd1jogvk2+3OsFdn0cDPbdC wvtIHv6lThn7FCvenWL7Z3v3hez84QV5bgjot17/60rdDFnSY8kxpPIjSAgzgMFK 6xghSMOS5chEs27YjQbiWk5zte3huYaryeQ= -----END CERTIFICATE-----Generated at Fri Jun 12 15:03:45 2026 by rpki-client