$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/96AE931812F511F1BA310F6D113D8C67.roa File: 96AE931812F511F1BA310F6D113D8C67.roa (raw, json) Hash identifier: cXOeiMyk2P1h/V1+QkWeGss+P0oU/Wj1wZhDnilOemo= Subject key identifier: 62:E8:2E:39:88:8B:88:23:B2:35:72:BC:10:64:FC:A3:F8:A0:28:BA Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0D11 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/96AE931812F511F1BA310F6D113D8C67.roa Signing time: Sun 10 May 2026 18:22:42 +0000 ROA not before: Sun 10 May 2026 18:22:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138692 IP address blocks: 103.136.200.0/24 maxlen: 24 103.136.201.0/24 maxlen: 24 103.136.202.0/24 maxlen: 24 2404:9b40:100::/48 maxlen: 48 2404:9b40:101::/48 maxlen: 48 2404:9b40:102::/48 maxlen: 48 2404:9b40:103::/48 maxlen: 48 2404:9b40:104::/48 maxlen: 48 2404:9b40:105::/48 maxlen: 48 2404:9b40:106::/48 maxlen: 48 2404:9b40:107::/48 maxlen: 48 2404:9b40:108::/48 maxlen: 48 2404:9b40:109::/48 maxlen: 48 2404:9b40:10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3345 (0xd11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: May 10 18:22:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a00ccf2-f7d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:95:78:f2:dd:4d:d1:88:35:c6:f5:01:de: 8a:e1:a9:11:8d:66:de:30:3c:56:fe:af:f3:8f:24: f5:e5:d3:38:d4:f9:8d:94:25:39:76:31:67:ea:03: 99:10:65:fa:61:21:4f:ec:27:cb:dc:dc:04:4b:51: 2f:ba:52:ff:d2:50:b4:8c:a3:b5:f4:1f:56:52:5a: a9:e3:a9:a1:76:18:d4:24:71:7d:bd:da:08:3d:11: 9f:86:8d:0d:70:83:17:44:a9:91:c6:7a:aa:40:af: 84:f8:57:32:f7:b7:2b:7d:41:78:5b:71:8e:3a:37: d8:f2:f4:69:53:26:25:96:16:9f:bc:dc:41:20:66: 17:aa:a1:4b:c3:5a:0c:f9:ce:a1:ed:0b:a0:41:81: 8a:7d:61:a4:d0:0d:84:5d:1c:78:a0:14:42:9d:4d: 0f:73:07:2c:15:41:f7:a3:0b:35:13:9b:0e:8d:9b: 25:6b:5f:e3:1c:1c:5f:0e:61:2b:bb:5d:bc:e6:78: 7a:fd:8a:9c:bd:38:a3:09:a4:d7:99:83:ac:80:e2: eb:db:aa:aa:1f:e0:b0:bf:3e:50:4b:e7:30:7e:c3: 55:8e:56:57:44:24:ac:29:2e:1e:d6:1a:b5:43:22: 13:04:c4:08:75:dc:0f:a0:0e:59:61:15:a3:b0:a9: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E8:2E:39:88:8B:88:23:B2:35:72:BC:10:64:FC:A3:F8:A0:28:BA X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/96AE931812F511F1BA310F6D113D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.136.200.0-103.136.202.255 IPv6: 2404:9b40:100::-2404:9b40:10a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 96:4a:b1:af:36:01:f3:4f:09:a4:e1:68:7c:14:3d:98:97:bd: 9d:dc:2c:04:77:06:84:5d:81:2d:56:44:7a:24:08:7b:3d:da: 1d:08:a5:ef:7b:96:20:bd:de:dc:d4:d8:a0:23:40:1c:b8:2f: f4:ac:3b:1f:a3:3e:b3:13:b9:79:79:ab:a7:bb:9d:f0:17:a9: 94:8a:7d:8d:2b:05:01:11:ff:34:e0:e9:1a:73:55:f2:9f:5f: c0:52:d4:57:d1:2c:ed:20:38:2b:b7:b4:d2:f5:46:00:3d:86: c4:6d:76:d9:cf:01:87:ac:74:2b:a6:7f:bd:11:3e:ef:64:6d: 44:b6:9f:74:56:e3:34:d8:6f:ee:a8:0d:3b:ff:94:8f:5b:2b: ff:54:98:25:78:bf:5b:b6:e0:33:e6:3c:fd:9b:d0:a7:aa:a2: 78:3e:8d:1e:cf:d3:bf:34:c1:f0:fc:48:11:38:76:ea:2e:e2: 02:b7:6b:df:99:15:83:54:50:06:60:7b:15:4e:2a:8b:c1:74: 1f:96:d7:24:d9:04:bc:9b:85:97:13:3a:11:fb:c2:fc:f7:00: 6c:a0:ba:49:0f:00:2d:b3:60:ba:69:bc:6c:ef:57:3f:c3:aa: 26:26:22:52:59:5e:bc:2d:b4:8b:16:75:95:a9:34:9d:59:8b: a2:f2:3c:04 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICDREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjYwNTEwMTgyMjQyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAwY2NmMi1mN2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqaVePLdTdGINcb1Ad6K4akRjWbeMDxW/q/zjyT15dM41PmNlCU5djFn6gOZ EGX6YSFP7CfL3NwES1EvulL/0lC0jKO19B9WUlqp46mhdhjUJHF9vdoIPRGfho0N cIMXRKmRxnqqQK+E+Fcy97crfUF4W3GOOjfY8vRpUyYllhafvNxBIGYXqqFLw1oM +c6h7QugQYGKfWGk0A2EXRx4oBRCnU0PcwcsFUH3ows1E5sOjZsla1/jHBxfDmEr u1285nh6/YqcvTijCaTXmYOsgOLr26qqH+Cwvz5QS+cwfsNVjlZXRCSsKS4e1hq1 QyITBMQIddwPoA5ZYRWjsKn20wIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFGLoLjmI i4gjsjVyvBBk/KP4oCi6MB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ExN0IvODUzOTVENkUwNkQzMTFFQUJBNUQ1QTQ5QzRGOUFFMDIvOTZBRTkzMTgx MkY1MTFGMUJBMzEwRjZEMTEzRDhDNjcucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAU BAIAATAOMAwDBANniMgDBABniMowGQQCAAIwEzARAwYAJASbQAEDBwAkBJtAAQow DQYJKoZIhvcNAQELBQADggEBAJZKsa82AfNPCaThaHwUPZiXvZ3cLAR3BoRdgS1W RHokCHs92h0Ipe97liC93tzU2KAjQBy4L/SsOx+jPrMTuXl5q6e7nfAXqZSKfY0r BQER/zTg6RpzVfKfX8BS1FfRLO0gOCu3tNL1RgA9hsRtdtnPAYesdCumf70RPu9k bUS2n3RW4zTYb+6oDTv/lI9bK/9UmCV4v1u24DPmPP2b0Keqong+jR7P0780wfD8 SBE4duou4gK3a9+ZFYNUUAZgexVOKovBdB+W1yTZBLybhZcTOhH7wvz3AGygukkP AC2zYLppvGzvVz/DqiYmIlJZXrwttIsWdZWpNJ1Zi6LyPAQ= -----END CERTIFICATE-----Generated at Wed May 13 15:11:45 2026 by rpki-client