$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1C69D67C1AEC11F1BECB19E5043D8C67.roa File: 1C69D67C1AEC11F1BECB19E5043D8C67.roa (raw, json) Hash identifier: D4VLFLoLda9iVGzy5j4mVaxWgRrpARPiO4/t3mX7N14= Subject key identifier: 7E:67:31:81:BA:A3:F0:62:80:A4:16:25:5A:70:15:EF:57:70:47:93 Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0C04 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1C69D67C1AEC11F1BECB19E5043D8C67.roa Signing time: Tue 02 Jun 2026 19:22:45 +0000 ROA not before: Tue 02 Jun 2026 19:22:45 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 197537 IP address blocks: 103.231.38.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Jun 2026 18:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3076 (0xc04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Jun 2 19:22:45 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a1f2d85-54df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d9:db:ec:50:08:63:a7:b5:b7:5a:f4:27:cc: 53:15:6e:79:d6:89:3c:65:03:e9:9d:4b:dc:64:ed: 12:49:83:67:ba:ad:a5:8b:95:83:51:1a:c0:c8:0d: db:99:70:47:e1:67:62:ee:c0:58:73:60:1a:49:34: c4:85:b1:2a:a3:13:ad:bd:e7:90:a3:e5:d7:f2:bb: 85:86:94:7b:a6:94:b4:ef:f7:4f:69:e6:70:8b:02: c7:20:ea:89:66:54:f3:9d:6d:28:fb:95:51:45:6d: 62:56:84:ae:ad:97:98:66:c5:64:21:87:2f:32:bc: 3f:13:51:5a:dc:93:0e:22:dd:ea:cf:ce:5c:75:23: d2:0d:f5:cf:29:c8:0b:02:af:15:70:5a:b5:eb:02: a0:66:10:c3:5c:f3:50:b5:87:79:5e:1c:45:4d:ce: 24:b7:aa:7a:72:0b:0f:fc:e8:a5:18:20:fc:d5:fe: c2:c4:ad:c0:d3:85:3a:a3:4f:72:8b:8b:41:6f:9d: ea:2a:e7:3b:70:35:a7:59:73:31:7b:07:8b:83:be: 37:14:ca:53:7c:14:d7:4c:9f:89:1c:8b:8e:10:4b: 06:59:8e:bc:0f:e8:17:d1:61:3f:07:7c:78:e0:3c: 59:aa:21:b3:f7:53:64:ee:63:22:fb:8e:33:e1:06: bb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:67:31:81:BA:A3:F0:62:80:A4:16:25:5A:70:15:EF:57:70:47:93 X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1C69D67C1AEC11F1BECB19E5043D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.231.38.0/23 Signature Algorithm: sha256WithRSAEncryption c0:2f:80:c5:23:f3:72:e6:8a:a1:3f:79:0f:43:29:9f:15:f6: eb:fc:00:57:77:86:25:ee:bd:76:4e:a9:96:c2:1f:62:3c:d0: e6:77:e7:86:d3:85:a9:25:7b:da:bd:10:50:1c:6a:e9:ea:48: b4:0b:7f:44:f4:04:94:73:ca:1d:a9:0e:63:13:6d:4c:70:e5: 60:3a:47:0d:49:1d:bc:5f:92:fe:f8:68:e8:21:03:af:ac:f2: b2:4c:0a:20:b1:a1:3c:22:22:91:0f:d8:b8:a8:07:a7:cd:6e: d6:0c:05:2b:7b:ba:4f:d8:3b:2b:8c:b8:00:1b:52:95:d2:2a: e8:0e:fe:d6:74:f5:f8:52:d4:91:14:de:54:a6:35:4f:6f:a0: 74:59:21:7c:02:37:a6:d3:9d:ca:37:b6:f5:9e:10:d8:5d:81: 59:94:44:4e:f1:99:19:c0:ec:83:fa:8c:04:5c:80:cf:50:1b: 27:73:da:6f:26:b0:e5:ae:ad:7f:de:52:68:95:27:e9:b4:ee: 51:53:b4:99:ac:b8:ba:0c:b9:11:36:2a:74:c6:7f:40:d6:37: ae:37:89:ed:d2:d4:31:75:c8:b3:d4:8f:0f:31:a8:18:e0:4c: 11:9c:59:29:a9:02:ce:3d:3b:dc:3f:ea:1d:95:99:30:5c:b2: 90:78:30:ab -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjYwNjAyMTkyMjQ1WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFmMmQ4NS01NGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztnb7FAIY6e1t1r0J8xTFW551ok8ZQPpnUvcZO0SSYNnuq2li5WDURrAyA3b mXBH4Wdi7sBYc2AaSTTEhbEqoxOtveeQo+XX8ruFhpR7ppS07/dPaeZwiwLHIOqJ ZlTznW0o+5VRRW1iVoSurZeYZsVkIYcvMrw/E1Fa3JMOIt3qz85cdSPSDfXPKcgL Aq8VcFq16wKgZhDDXPNQtYd5XhxFTc4kt6p6cgsP/OilGCD81f7CxK3A04U6o09y i4tBb53qKuc7cDWnWXMxeweLg743FMpTfBTXTJ+JHIuOEEsGWY68D+gX0WE/B3x4 4DxZqiGz91Nk7mMi+44z4Qa7rQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH5nMYG6 o/BigKQWJVpwFe9XcEeTMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvMUM2OUQ2N0Mx QUVDMTFGMUJFQ0IxOUU1MDQzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ+cmMA0GCSqGSIb3DQEBCwUAA4IBAQDAL4DFI/Ny5oqhP3kPQymf Ffbr/ABXd4Yl7r12TqmWwh9iPNDmd+eG04WpJXvavRBQHGrp6ki0C39E9ASUc8od qQ5jE21McOVgOkcNSR28X5L++GjoIQOvrPKyTAogsaE8IiKRD9i4qAenzW7WDAUr e7pP2DsrjLgAG1KV0iroDv7WdPX4UtSRFN5UpjVPb6B0WSF8Ajem053KN7b1nhDY XYFZlERO8ZkZwOyD+owEXIDPUBsnc9pvJrDlrq1/3lJolSfptO5RU7SZrLi6DLkR Nip0xn9A1jeuN4nt0tQxdciz1I8PMagY4EwRnFkpqQLOPTvcP+odlZkwXLKQeDCr -----END CERTIFICATE-----Generated at Tue Jun 9 10:45:23 2026 by rpki-client