$ rpki-client -vvf rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/D016C916EF5A11EDA6863E67C4F9AE02.roa File: D016C916EF5A11EDA6863E67C4F9AE02.roa (raw, json) Hash identifier: 22rajykWohnsHcBReR8x/STsw649pWSuB1iNCKHSXJI= Subject key identifier: E7:58:DC:06:0F:88:D2:78:27:0D:96:93:28:3F:33:E3:ED:FE:BF:A8 Certificate issuer: /CN=A919C0F6/serialNumber=AD4667CEE8E3F9EDFF92E7FBBB37FFC66C0073A2 Certificate serial: 023C Authority key identifier: AD:46:67:CE:E8:E3:F9:ED:FF:92:E7:FB:BB:37:FF:C6:6C:00:73:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUZnzujj-e3_kuf7uzf_xmwAc6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/D016C916EF5A11EDA6863E67C4F9AE02.roa Signing time: Sat 09 May 2026 02:34:02 +0000 ROA not before: Sat 09 May 2026 02:34:02 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 58594 IP address blocks: 43.250.120.0/22 maxlen: 22 43.250.120.0/24 maxlen: 24 43.250.121.0/24 maxlen: 24 43.250.122.0/24 maxlen: 24 43.250.123.0/24 maxlen: 24 103.9.12.0/22 maxlen: 22 103.9.12.0/24 maxlen: 24 103.9.13.0/24 maxlen: 24 103.9.14.0/24 maxlen: 24 103.9.15.0/24 maxlen: 24 2401:27c0::/32 maxlen: 32 2401:27c0::/36 maxlen: 36 2401:27c0:1000::/36 maxlen: 36 2401:27c0:2000::/36 maxlen: 36 2401:27c0:3000::/36 maxlen: 36 2401:27c0:4000::/36 maxlen: 36 2401:27c0:5000::/36 maxlen: 36 2401:27c0:6000::/36 maxlen: 36 2401:27c0:7000::/36 maxlen: 36 2401:27c0:8000::/36 maxlen: 36 2401:27c0:9000::/36 maxlen: 36 2401:27c0:a000::/36 maxlen: 36 2401:27c0:b000::/36 maxlen: 36 2401:27c0:c000::/36 maxlen: 36 2401:27c0:d000::/36 maxlen: 36 2401:27c0:e000::/36 maxlen: 36 2401:27c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/rUZnzujj-e3_kuf7uzf_xmwAc6I.crl rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/rUZnzujj-e3_kuf7uzf_xmwAc6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUZnzujj-e3_kuf7uzf_xmwAc6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C0F6, serialNumber=AD4667CEE8E3F9EDFF92E7FBBB37FFC66C0073A2 Validity Not Before: May 9 02:34:02 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69fe9d1a-d2ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e3:cd:a6:71:38:5b:03:71:7e:da:7f:66:7d: 65:19:0f:9b:bc:7c:57:8c:83:0f:0c:74:db:ed:28: 2e:7e:44:0d:e5:8d:85:f0:83:55:ff:e4:8d:01:69: 59:e1:8e:1c:b1:63:cc:3f:a5:c6:7f:bc:e3:77:2f: 85:db:75:42:7a:c2:a6:44:2f:b7:8e:63:c9:dc:96: 98:d9:8e:b9:56:8a:34:d5:84:70:a7:5f:9a:bd:50: ff:6a:9d:21:3b:30:62:46:96:0c:d3:f6:66:e2:7d: ee:c2:7b:3b:a8:6b:65:4e:9e:bc:58:9e:00:d9:63: 54:ad:7c:97:9f:c1:4b:13:54:97:61:54:41:d3:a2: 9d:c0:f7:38:de:12:cc:94:db:4b:83:9e:6a:02:79: 7a:3c:ca:9d:ff:cb:62:93:bd:45:d1:e9:71:e0:7a: 9c:e7:2b:1a:cc:9f:2b:d5:c7:6c:4c:c1:76:39:f7: 04:5b:41:ed:8e:60:a5:14:0d:7e:61:a6:c5:c0:ee: 02:7f:f5:1c:1f:e9:e6:fa:39:2f:2f:fe:e9:aa:08: cb:cb:fd:1a:c9:4b:06:ca:41:ec:a4:8d:21:dc:05: 7c:3e:27:2a:4b:be:cf:40:76:a5:85:1d:12:70:6f: c6:59:67:64:46:19:fb:ba:a5:29:80:4f:5c:f6:f9: ee:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:58:DC:06:0F:88:D2:78:27:0D:96:93:28:3F:33:E3:ED:FE:BF:A8 X509v3 Authority Key Identifier: keyid:AD:46:67:CE:E8:E3:F9:ED:FF:92:E7:FB:BB:37:FF:C6:6C:00:73:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/rUZnzujj-e3_kuf7uzf_xmwAc6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUZnzujj-e3_kuf7uzf_xmwAc6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/D016C916EF5A11EDA6863E67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.120.0/22 103.9.12.0/22 IPv6: 2401:27c0::/32 Signature Algorithm: sha256WithRSAEncryption 89:e5:36:6e:22:e1:81:4d:1a:ca:0e:b1:2d:e4:66:d1:95:a9: 76:52:8f:4e:be:a6:3a:c7:5d:36:40:24:3a:e5:47:c3:e4:c2: d4:c9:47:96:43:bf:90:b1:bd:cb:12:d2:26:8f:09:5d:70:5f: 60:0f:6d:78:78:c6:37:5f:ba:25:fd:47:79:a7:7b:3f:13:81: f2:65:de:a3:d9:af:ad:97:45:03:1d:c8:05:ff:aa:86:09:03: 41:ee:02:21:50:6b:c3:1a:b7:9b:22:1d:f5:19:18:b2:f1:5a: 55:c1:8a:c0:c7:c3:b1:f2:4c:d8:eb:db:90:ca:23:48:9c:32: 26:78:0b:e4:a6:77:1f:a9:25:30:cf:2f:82:99:2f:3e:fe:af: 0d:5a:32:89:5c:97:26:b8:b7:2f:d5:12:f1:93:29:32:b7:67: 7d:16:63:eb:27:53:da:17:22:6d:39:87:5e:75:3d:bf:93:ec: 48:34:1f:6b:01:58:7b:24:72:65:79:61:dd:63:9b:48:b3:ec: 2a:b5:65:f6:d2:96:1f:91:6c:49:9d:d4:ca:d2:dc:9a:1b:3c: 85:23:42:8c:19:d9:5d:3c:7a:44:23:ba:5e:8c:91:9e:12:82: 95:13:e9:4e:49:7a:55:5c:91:e1:a5:f3:ec:60:a7:08:d7:70: 1b:e3:8f:9f -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMwRjYxMTAvBgNVBAUTKEFENDY2N0NFRThFM0Y5RURGRjkyRTdGQkJCMzdGRkM2 NkMwMDczQTIwHhcNMjYwNTA5MDIzNDAyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZlOWQxYS1kMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuPNpnE4WwNxftp/Zn1lGQ+bvHxXjIMPDHTb7SgufkQN5Y2F8INV/+SNAWlZ 4Y4csWPMP6XGf7zjdy+F23VCesKmRC+3jmPJ3JaY2Y65Voo01YRwp1+avVD/ap0h OzBiRpYM0/Zm4n3uwns7qGtlTp68WJ4A2WNUrXyXn8FLE1SXYVRB06KdwPc43hLM lNtLg55qAnl6PMqd/8tik71F0elx4Hqc5ysazJ8r1cdsTMF2OfcEW0HtjmClFA1+ YabFwO4Cf/UcH+nm+jkvL/7pqgjLy/0ayUsGykHspI0h3AV8PicqS77PQHalhR0S cG/GWWdkRhn7uqUpgE9c9vnuYQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFOdY3AYP iNJ4Jw2Wkyg/M+Pt/r+oMB8GA1UdIwQYMBaAFK1GZ87o4/nt/5Ln+7s3/8ZsAHOi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzBGNi9EMkJCNzU1QUVG NEYxMUVEQjVENzFGNDZDNEY5QUUwMi9yVVpuenVqai1lM19rdWY3dXpmX3htd0Fj NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVWm56dWpqLWUzX2t1Zjd1emZfeG13QWM2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMwRjYvRDJCQjc1NUFFRjRGMTFFREI1RDcxRjQ2QzRGOUFFMDIvRDAxNkM5MTZF RjVBMTFFREE2ODYzRTY3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK/p4AwQCZwkMMA0EAgACMAcDBQAkASfAMA0GCSqGSIb3DQEBCwUA A4IBAQCJ5TZuIuGBTRrKDrEt5GbRlal2Uo9OvqY6x102QCQ65UfD5MLUyUeWQ7+Q sb3LEtImjwldcF9gD214eMY3X7ol/Ud5p3s/E4HyZd6j2a+tl0UDHcgF/6qGCQNB 7gIhUGvDGrebIh31GRiy8VpVwYrAx8Ox8kzY69uQyiNInDImeAvkpncfqSUwzy+C mS8+/q8NWjKJXJcmuLcv1RLxkykyt2d9FmPrJ1PaFyJtOYdedT2/k+xINB9rAVh7 JHJleWHdY5tIs+wqtWX20pYfkWxJndTK0tyaGzyFI0KMGdldPHpEI7pejJGeEoKV E+lOSXpVXJHhpfPsYKcI13Ab44+f -----END CERTIFICATE-----Generated at Wed May 13 05:30:22 2026 by rpki-client