$ rpki-client -vvf rpki.apnic.net/member_repository/A91725C6/18179D3E3E2811F1ADB49AA5B5833773/428700243E2C11F19BA0533EB7833773.roa File: 428700243E2C11F19BA0533EB7833773.roa (raw, json) Hash identifier: peDY8F0WHq4mxcVTJNp8uV75KSLhKdxZSY/nBtZGs+0= Subject key identifier: AB:F1:AF:72:25:D3:5E:F7:32:F9:DC:7E:72:79:6F:43:88:AF:C3:19 Certificate issuer: /CN=A91725C6/serialNumber=2E839EEE719BD4687A09A727BE7F9BF05B77D309 Certificate serial: 02 Authority key identifier: 2E:83:9E:EE:71:9B:D4:68:7A:09:A7:27:BE:7F:9B:F0:5B:77:D3:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoOe7nGb1Gh6Cacnvn-b8Ft30wk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91725C6/18179D3E3E2811F1ADB49AA5B5833773/428700243E2C11F19BA0533EB7833773.roa Signing time: Wed 22 Apr 2026 09:18:44 +0000 ROA not before: Wed 22 Apr 2026 09:18:44 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 63888 IP address blocks: 103.205.20.0/22 maxlen: 22 103.205.20.0/24 maxlen: 24 103.205.21.0/24 maxlen: 24 103.205.22.0/24 maxlen: 24 103.205.23.0/24 maxlen: 24 203.95.192.0/22 maxlen: 22 203.95.192.0/24 maxlen: 24 203.95.193.0/24 maxlen: 24 203.95.194.0/24 maxlen: 24 203.95.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91725C6/18179D3E3E2811F1ADB49AA5B5833773/LoOe7nGb1Gh6Cacnvn-b8Ft30wk.crl rsync://rpki.apnic.net/member_repository/A91725C6/18179D3E3E2811F1ADB49AA5B5833773/LoOe7nGb1Gh6Cacnvn-b8Ft30wk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoOe7nGb1Gh6Cacnvn-b8Ft30wk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 09:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91725C6, serialNumber=2E839EEE719BD4687A09A727BE7F9BF05B77D309 Validity Not Before: Apr 22 09:18:44 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69e89274-8e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5e:26:0c:0f:75:bf:fc:01:af:f1:06:16:cc: e3:d1:da:5b:8a:b9:16:a3:e8:a1:c6:9c:e3:b6:2e: 18:a8:29:a9:99:9a:83:b2:d3:27:b7:a6:d4:20:8c: 12:a7:3e:7b:5b:c8:f8:10:4e:05:72:f0:ee:3a:7a: 61:35:f3:28:e6:10:4a:84:15:55:75:04:bd:a7:ec: 7e:be:20:40:0a:95:e5:4e:d8:ea:d0:73:8f:ff:cd: a1:c1:9c:9c:3d:35:6e:2a:8d:98:2e:e6:f0:b4:0e: d3:55:f1:e2:bc:95:a0:67:61:62:b9:56:1f:a2:04: 27:7b:9b:d2:c0:38:35:2d:b7:f5:d8:1e:d4:25:6c: 1c:1a:51:4a:ed:41:fc:ea:5b:e4:7a:c1:be:74:a3: fe:20:dc:e4:bb:97:5b:8c:56:ff:9f:d3:18:b1:9b: 57:95:b3:55:7c:7e:91:a9:56:70:ee:22:d5:aa:35: 0e:51:0e:ac:33:95:5b:ef:d4:38:ef:dc:e9:ed:ec: 8f:3d:60:06:4d:0e:06:11:31:75:f1:31:1c:39:4f: 53:00:3d:f5:bf:80:13:c7:c8:a4:ea:d2:58:d4:11: 9e:a2:92:c0:e3:80:7a:e1:01:5d:c6:23:81:7c:a2: f1:20:09:58:1a:de:68:8d:c4:21:ae:d2:0d:62:64: 98:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F1:AF:72:25:D3:5E:F7:32:F9:DC:7E:72:79:6F:43:88:AF:C3:19 X509v3 Authority Key Identifier: keyid:2E:83:9E:EE:71:9B:D4:68:7A:09:A7:27:BE:7F:9B:F0:5B:77:D3:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91725C6/18179D3E3E2811F1ADB49AA5B5833773/LoOe7nGb1Gh6Cacnvn-b8Ft30wk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoOe7nGb1Gh6Cacnvn-b8Ft30wk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91725C6/18179D3E3E2811F1ADB49AA5B5833773/428700243E2C11F19BA0533EB7833773.roa sbgp-ipAddrBlock: critical IPv4: 103.205.20.0/22 203.95.192.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:e9:e7:2c:e5:c9:2d:27:22:36:c2:2f:7c:91:5f:75:bf:25: 11:18:b7:23:9c:61:67:3f:36:32:24:7f:ef:bd:dd:b5:44:b5: e9:7b:3e:12:df:5b:ab:16:8f:c6:e9:ad:de:75:ce:49:c7:ae: 37:6f:3f:67:d9:bf:81:66:19:1e:18:ee:7e:ec:e3:f3:75:0d: 89:6d:32:97:d4:a7:0b:6e:d2:4c:0f:ee:d0:15:64:81:73:3b: bd:fc:f2:80:f3:ee:8c:61:fc:ae:05:d5:3e:c4:5f:b7:3b:f4: a6:66:27:31:cb:1c:70:cf:bc:b9:25:bd:a4:90:b0:7c:76:94: 90:2a:4a:f3:47:d3:d8:bd:5f:9b:47:1b:93:3d:42:bb:ae:fe: 5b:a3:d9:8b:bd:18:6d:e0:dd:42:5c:8a:16:99:5f:99:ef:6a: 55:81:81:d8:2a:c9:ff:64:5b:b4:2e:ab:36:79:41:87:b3:ea: 71:08:33:8c:68:3e:22:e7:31:2c:1c:e7:2a:9c:ac:86:75:65: 4c:33:6d:c0:59:f4:8e:1b:63:2c:90:aa:37:2a:a4:50:80:3b: 20:83:2e:6b:72:f2:a8:f1:60:b6:1d:1f:fa:bf:99:52:59:b7: 5f:27:63:0f:10:e8:ec:ae:ac:f4:4f:59:38:89:90:48:8c:22: 94:6d:33:8b -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MjVDNjExMC8GA1UEBRMoMkU4MzlFRUU3MTlCRDQ2ODdBMDlBNzI3QkU3RjlCRjA1 Qjc3RDMwOTAeFw0yNjA0MjIwOTE4NDRaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTg5Mjc0LThlN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzXiYMD3W//AGv8QYWzOPR2luKuRaj6KHGnOO2LhioKamZmoOy0ye3ptQgjBKn PntbyPgQTgVy8O46emE18yjmEEqEFVV1BL2n7H6+IEAKleVO2OrQc4//zaHBnJw9 NW4qjZgu5vC0DtNV8eK8laBnYWK5Vh+iBCd7m9LAODUtt/XYHtQlbBwaUUrtQfzq W+R6wb50o/4g3OS7l1uMVv+f0xixm1eVs1V8fpGpVnDuItWqNQ5RDqwzlVvv1Djv 3Ont7I89YAZNDgYRMXXxMRw5T1MAPfW/gBPHyKTq0ljUEZ6iksDjgHrhAV3GI4F8 ovEgCVga3miNxCGu0g1iZJhDAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUq/GvciXT Xvcy+dx+cnlvQ4ivwxkwHwYDVR0jBBgwFoAULoOe7nGb1Gh6Cacnvn+b8Ft30wkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyNUM2LzE4MTc5RDNFM0Uy ODExRjFBREI0OUFBNUI1ODMzNzczL0xvT2U3bkdiMUdoNkNhY252bi1iOEZ0MzB3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTG9PZTduR2IxR2g2Q2FjbnZuLWI4RnQzMHdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjVDNi8xODE3OUQzRTNFMjgxMUYxQURCNDlBQTVCNTgzMzc3My80Mjg3MDAyNDNF MkMxMUYxOUJBMDUzM0VCNzgzMzc3My5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAJnzRQDBALLX8AwDQYJKoZIhvcNAQELBQADggEBAJvp5yzlyS0nIjbC L3yRX3W/JREYtyOcYWc/NjIkf++93bVEtel7PhLfW6sWj8bprd51zknHrjdvP2fZ v4FmGR4Y7n7s4/N1DYltMpfUpwtu0kwP7tAVZIFzO7388oDz7oxh/K4F1T7EX7c7 9KZmJzHLHHDPvLklvaSQsHx2lJAqSvNH09i9X5tHG5M9Qruu/luj2Yu9GG3g3UJc ihaZX5nvalWBgdgqyf9kW7QuqzZ5QYez6nEIM4xoPiLnMSwc5yqcrIZ1ZUwzbcBZ 9I4bYyyQqjcqpFCAOyCDLmty8qjxYLYdH/q/mVJZt18nYw8Q6OyurPRPWTiJkEiM IpRtM4s= -----END CERTIFICATE-----Generated at Wed May 13 06:19:41 2026 by rpki-client