$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/23F9CE72A41911ECBDBED829C4F9AE02.roa File: 23F9CE72A41911ECBDBED829C4F9AE02.roa (raw, json) Hash identifier: mNylGvkvHK0PFFdEi5swk1LjlZSlTZkOi0ISkB3icIU= Subject key identifier: 33:54:B8:B1:C0:D9:9D:AB:37:8F:5A:DE:2C:F3:F3:F1:32:FF:04:68 Certificate issuer: /CN=A913AE91/serialNumber=DCCBCC9893809099ED02B7178184365416B31E1C Certificate serial: 0440 Authority key identifier: DC:CB:CC:98:93:80:90:99:ED:02:B7:17:81:84:36:54:16:B3:1E:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MvMmJOAkJntArcXgYQ2VBazHhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/23F9CE72A41911ECBDBED829C4F9AE02.roa Signing time: Mon 11 May 2026 00:30:36 +0000 ROA not before: Mon 11 May 2026 00:30:36 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 136523 IP address blocks: 103.91.188.0/22 maxlen: 22 103.91.188.0/24 maxlen: 24 103.91.189.0/24 maxlen: 24 103.91.190.0/24 maxlen: 24 103.91.191.0/24 maxlen: 24 123.253.60.0/22 maxlen: 22 123.253.60.0/24 maxlen: 24 123.253.61.0/24 maxlen: 24 123.253.62.0/24 maxlen: 24 123.253.63.0/24 maxlen: 24 2401:fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/3MvMmJOAkJntArcXgYQ2VBazHhw.crl rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/3MvMmJOAkJntArcXgYQ2VBazHhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MvMmJOAkJntArcXgYQ2VBazHhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE91, serialNumber=DCCBCC9893809099ED02B7178184365416B31E1C Validity Not Before: May 11 00:30:36 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a01232b-a566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e4:48:17:be:01:2c:47:cf:ea:9f:bf:f4:62: 3d:9f:90:78:5c:b9:3b:63:a6:01:57:00:d1:6f:10: dd:d1:3d:19:35:8b:10:69:c5:8d:ac:26:61:67:94: 1d:35:a9:47:31:5d:ed:fd:e1:b4:cc:ce:92:72:2a: 77:cd:aa:85:15:20:22:99:bb:15:0d:ae:b6:27:c1: 32:15:05:54:d9:b2:6e:bb:f8:18:3a:0e:74:09:eb: 51:e8:27:06:c9:f3:4b:89:a1:be:76:e9:81:29:70: 8b:cb:99:87:2e:60:2c:89:c0:72:4c:8b:b7:c8:e4: a5:dc:06:bb:5b:54:74:91:54:6a:29:9d:f0:6f:ef: 26:5a:03:d1:28:31:59:60:74:77:f4:ec:4f:bc:bc: eb:d1:d6:a6:ff:3b:bd:3f:bf:bd:6a:bd:f0:5d:a8: 78:dc:23:17:d9:0d:ec:34:f6:e3:94:98:7a:31:2c: dd:07:25:91:f8:0e:3f:7a:27:94:67:1a:2a:db:7f: 43:47:ed:e5:5f:f4:bc:8d:33:6b:be:21:6f:ec:f7: 63:ca:ec:10:af:7d:7a:48:39:41:42:33:f9:ea:b7: 22:37:1f:ea:ce:11:17:6a:3f:08:74:ea:2f:5e:b3: a2:3e:74:0d:83:12:ff:26:e7:41:13:47:8d:2c:84: 57:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:54:B8:B1:C0:D9:9D:AB:37:8F:5A:DE:2C:F3:F3:F1:32:FF:04:68 X509v3 Authority Key Identifier: keyid:DC:CB:CC:98:93:80:90:99:ED:02:B7:17:81:84:36:54:16:B3:1E:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/3MvMmJOAkJntArcXgYQ2VBazHhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MvMmJOAkJntArcXgYQ2VBazHhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/23F9CE72A41911ECBDBED829C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.188.0/22 123.253.60.0/22 IPv6: 2401:fc0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:dc:2f:d3:86:40:8d:27:13:f0:7a:14:8e:c3:9b:07:4d:f9: ee:79:62:0b:a2:24:85:47:73:42:c2:29:16:d0:18:3e:05:4b: 7c:ce:2f:24:e8:7d:36:42:82:1a:39:22:76:22:57:57:2b:ba: 61:10:0c:ba:ee:08:0d:80:9a:41:ca:c0:0b:a8:7d:29:e4:b0: 6c:e8:e2:58:cb:24:c8:3b:95:9e:ab:e3:63:4a:39:bc:68:32: e1:65:71:c1:ef:0a:66:10:b3:5b:b0:d0:03:81:02:a3:c4:06: 99:bb:51:4f:82:c2:69:38:1a:b3:a0:cb:8b:ce:d1:67:cc:f4: 14:c3:3a:07:fd:50:55:32:63:67:b6:a9:e6:77:3f:18:e0:5d: 78:10:b0:05:e4:dc:0a:27:1b:c6:d2:ee:3e:f8:5a:1e:25:bb: eb:c1:e9:f3:8d:c3:25:d8:33:22:a7:be:ff:3e:ed:c8:49:b6: f5:68:7d:dc:41:00:b3:af:ad:4c:38:b7:ac:7f:56:50:3b:f8: cd:e2:3c:68:db:c8:f5:b4:ef:57:c7:84:0b:cd:5d:6a:4f:6f: 6c:ba:c7:3e:62:1b:6b:93:60:44:d3:3b:d1:e6:52:f8:c2:d0: 9a:6f:27:af:17:2b:30:ea:da:78:33:3e:ff:23:c2:f9:79:a0: 9d:34:a8:f0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFOTExMTAvBgNVBAUTKERDQ0JDQzk4OTM4MDkwOTlFRDAyQjcxNzgxODQzNjU0 MTZCMzFFMUMwHhcNMjYwNTExMDAzMDM2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAxMjMyYi1hNTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eRIF74BLEfP6p+/9GI9n5B4XLk7Y6YBVwDRbxDd0T0ZNYsQacWNrCZhZ5Qd NalHMV3t/eG0zM6Scip3zaqFFSAimbsVDa62J8EyFQVU2bJuu/gYOg50CetR6CcG yfNLiaG+dumBKXCLy5mHLmAsicByTIu3yOSl3Aa7W1R0kVRqKZ3wb+8mWgPRKDFZ YHR39OxPvLzr0dam/zu9P7+9ar3wXah43CMX2Q3sNPbjlJh6MSzdByWR+A4/eieU Zxoq239DR+3lX/S8jTNrviFv7PdjyuwQr316SDlBQjP56rciNx/qzhEXaj8IdOov XrOiPnQNgxL/JudBE0eNLIRX1wIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFDNUuLHA 2Z2rN49a3izz8/Ey/wRoMB8GA1UdIwQYMBaAFNzLzJiTgJCZ7QK3F4GENlQWsx4c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU5MS8yRTkyMTYzNkE0 MTUxMUVDQkU5MDBBN0JDNEY5QUUwMi8zTXZNbUpPQWtKbnRBcmNYZ1lRMlZCYXpI aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNdk1tSk9Ba0pudEFyY1hnWVEyVkJhekhody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FFOTEvMkU5MjE2MzZBNDE1MTFFQ0JFOTAwQTdCQzRGOUFFMDIvMjNGOUNFNzJB NDE5MTFFQ0JEQkVEODI5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1u8AwQCe/08MA0EAgACMAcDBQAkAQ/AMA0GCSqGSIb3DQEBCwUA A4IBAQA/3C/ThkCNJxPwehSOw5sHTfnueWILoiSFR3NCwikW0Bg+BUt8zi8k6H02 QoIaOSJ2IldXK7phEAy67ggNgJpBysALqH0p5LBs6OJYyyTIO5Weq+NjSjm8aDLh ZXHB7wpmELNbsNADgQKjxAaZu1FPgsJpOBqzoMuLztFnzPQUwzoH/VBVMmNntqnm dz8Y4F14ELAF5NwKJxvG0u4++FoeJbvrwenzjcMl2DMip77/Pu3ISbb1aH3cQQCz r61MOLesf1ZQO/jN4jxo28j1tO9Xx4QLzV1qT29susc+Yhtrk2BE0zvR5lL4wtCa byevFysw6tp4Mz7/I8L5eaCdNKjw -----END CERTIFICATE-----Generated at Wed May 13 05:13:33 2026 by rpki-client