$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa File: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (raw, json) Hash identifier: 6RXCUtuNRAX3VWDYFd4VJq3F82wcddefS/3XHjReS6U= Subject key identifier: A2:A9:00:A0:4D:5A:7E:AC:B7:54:16:45:92:73:84:CF:2C:61:C6:86 Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0D0F Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa Signing time: Tue 12 May 2026 18:22:33 +0000 ROA not before: Tue 12 May 2026 18:22:33 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 59362 IP address blocks: 103.231.160.0/22 maxlen: 24 110.76.128.0/22 maxlen: 24 2407:5d80::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3343 (0xd0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7, serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: May 12 18:22:33 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a036fe9-d3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e3:60:bd:4b:2f:a2:7e:21:d6:a7:fc:56:db: 89:23:39:20:2e:4d:78:e3:f5:eb:16:aa:71:58:d6: 6f:23:25:a1:e8:8b:8a:ce:f8:21:1d:b3:ea:50:df: 1a:a4:24:99:3f:c0:d2:93:d8:fa:1d:c7:45:76:21: ed:31:f5:de:31:65:1f:01:fa:e1:d6:76:0c:9c:bb: cc:b3:2f:b5:5a:de:3a:57:2a:9e:a5:5a:49:6e:42: 26:04:e9:ea:ee:83:89:d5:9e:d2:c5:e9:93:d9:75: 59:cf:09:94:f0:0a:2d:b9:77:eb:bd:01:7f:0d:55: 2e:f0:fd:4f:02:c4:8a:f8:31:98:12:17:20:c4:e2: b0:cc:7a:ae:5d:47:61:71:d5:40:67:68:46:5d:bd: c5:47:7c:e1:25:ea:b0:03:e1:1e:ff:54:09:2b:76: 72:02:63:bb:90:08:fb:16:56:4c:17:2d:32:a4:2f: a5:9c:9c:64:d3:a3:80:9c:67:fb:e0:66:79:0d:c1: 18:8d:0b:0f:0c:13:76:55:ef:c6:ea:6d:c8:34:c4: 36:ac:ee:cd:bd:29:9a:7b:80:4f:9f:0e:3a:c9:94: 36:40:14:a4:80:98:48:7e:b9:44:99:6a:b5:05:df: aa:8b:0a:cb:36:cf:29:59:f0:72:4f:b5:dc:22:05: a0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:A9:00:A0:4D:5A:7E:AC:B7:54:16:45:92:73:84:CF:2C:61:C6:86 X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.160.0/22 110.76.128.0/22 IPv6: 2407:5d80::/32 Signature Algorithm: sha256WithRSAEncryption a7:b5:bc:f3:40:e6:b9:47:ca:5f:6e:dc:a5:34:f9:45:2d:17: 22:f0:13:e2:7a:87:17:86:b6:6b:c6:13:f0:10:df:9c:33:bd: 9c:2f:35:a9:ce:e1:f9:94:76:ad:aa:6d:e9:7d:f1:ce:c0:6d: b4:ce:b0:fb:1d:fa:ed:01:92:23:4e:98:6a:e8:fd:97:c4:94: 25:f9:a1:34:e8:f6:4b:57:c6:32:6b:59:b7:89:cc:24:9f:cc: 58:02:e4:04:9f:53:76:12:9a:e4:a9:70:26:b8:16:83:49:cc: 52:67:88:b1:f1:25:9a:73:5c:5e:0c:2e:78:81:45:5c:9d:d3: d9:ef:0f:31:df:05:76:91:7d:da:53:a5:4a:98:aa:38:65:fa: 62:05:36:73:3a:08:69:98:8e:cc:c2:dc:ea:d6:0b:c0:db:bf: 17:cf:95:0c:02:96:2c:97:43:12:61:b2:04:df:05:91:d7:24: 17:4f:98:96:d5:41:cf:0a:3c:3d:bb:1b:6c:03:84:0c:8a:9e: 51:48:8a:34:73:63:8a:26:d5:5c:d5:aa:64:71:f6:8a:bd:2f: f0:9b:74:5d:25:af:44:b2:d6:e6:89:47:11:af:3b:4a:cb:45: 01:d8:b6:7f:38:62:7b:3b:52:66:b2:8d:4e:28:9b:fd:75:0d: 70:8a:7c:d4 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjYwNTEyMTgyMjMzWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzNmZlOS1kM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquNgvUsvon4h1qf8VtuJIzkgLk144/XrFqpxWNZvIyWh6IuKzvghHbPqUN8a pCSZP8DSk9j6HcdFdiHtMfXeMWUfAfrh1nYMnLvMsy+1Wt46VyqepVpJbkImBOnq 7oOJ1Z7SxemT2XVZzwmU8AotuXfrvQF/DVUu8P1PAsSK+DGYEhcgxOKwzHquXUdh cdVAZ2hGXb3FR3zhJeqwA+Ee/1QJK3ZyAmO7kAj7FlZMFy0ypC+lnJxk06OAnGf7 4GZ5DcEYjQsPDBN2Ve/G6m3INMQ2rO7NvSmae4BPnw46yZQ2QBSkgJhIfrlEmWq1 Bd+qiwrLNs8pWfByT7XcIgWgmwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKKpAKBN Wn6st1QWRZJzhM8sYcaGMB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNBQzcvQzEzOURBQkEwMjJDMTFFQUJFMUYwQzQ4QzRGOUFFMDIvOUU1Qjc1QzAw MjJEMTFFQUFEODBEQTQ4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ+egAwQCbkyAMA0EAgACMAcDBQAkB12AMA0GCSqGSIb3DQEBCwUA A4IBAQCntbzzQOa5R8pfbtylNPlFLRci8BPieocXhrZrxhPwEN+cM72cLzWpzuH5 lHatqm3pffHOwG20zrD7HfrtAZIjTphq6P2XxJQl+aE06PZLV8Yya1m3icwkn8xY AuQEn1N2EprkqXAmuBaDScxSZ4ix8SWac1xeDC54gUVcndPZ7w8x3wV2kX3aU6VK mKo4ZfpiBTZzOghpmI7Mwtzq1gvA278Xz5UMApYsl0MSYbIE3wWR1yQXT5iW1UHP Cjw9uxtsA4QMip5RSIo0c2OKJtVc1apkcfaKvS/wm3RdJa9EstbmiUcRrztKy0UB 2LZ/OGJ7O1Jmso1OKJv9dQ1winzU -----END CERTIFICATE-----Generated at Wed May 13 06:33:27 2026 by rpki-client