$ rpki-client -vvf rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa File: 2789A9EEE38B11EBB246E13FC4F9AE02.roa (raw, json) Hash identifier: bvI+3O/21LbUUnC/n4lGe7S/cmDY+HdMZcKJadF3/rU= Subject key identifier: 87:D4:80:23:2E:2E:4C:2C:72:0E:AE:31:12:19:AA:64:C4:47:02:4A Certificate issuer: /CN=A91A92FE/serialNumber=3D43EDFE64F614E11306A87F1EF24F282E7E3714 Certificate serial: 13FF Authority key identifier: 3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa Signing time: Tue 28 Apr 2026 17:22:52 +0000 ROA not before: Tue 28 Apr 2026 17:22:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58868 IP address blocks: 103.17.250.0/23 maxlen: 24 103.17.252.0/23 maxlen: 24 202.155.180.0/22 maxlen: 24 203.27.248.0/24 maxlen: 24 2406:6700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.crl rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5119 (0x13ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A92FE, serialNumber=3D43EDFE64F614E11306A87F1EF24F282E7E3714 Validity Not Before: Apr 28 17:22:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f0ecec-feea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:eb:a7:30:21:98:06:e7:84:54:0e:d3:74:62: fa:09:29:dd:36:9e:26:a9:ab:05:a5:a2:5b:bc:5b: 6c:2b:c6:02:c3:50:81:a3:c3:30:b8:3f:82:a9:48: 9b:30:39:92:5e:50:63:0a:eb:e0:91:b9:87:29:8d: 58:0b:91:83:71:27:71:7a:7b:51:84:c2:a4:92:bc: 50:bc:0a:62:b0:4c:5e:40:76:6d:19:63:c6:2d:9a: 17:df:07:20:83:02:93:1c:c4:04:ee:6b:a3:3d:26: 7d:f2:c1:dc:46:f7:eb:b6:22:f5:b2:cf:40:2f:18: 4a:de:43:a7:e2:6e:e0:cb:dd:d1:04:b4:f7:9f:3e: 0f:ef:43:fc:22:01:3c:c1:22:4f:bc:11:72:d2:0e: 4c:e5:3e:b6:1b:1c:af:7a:26:8b:f7:40:65:94:9c: 95:69:f4:7d:a6:58:d1:aa:cf:a2:1b:71:09:51:0e: d1:49:b4:e6:96:fc:80:d6:8b:aa:cd:25:69:15:50: 14:a1:13:c7:fb:75:24:3e:db:26:a3:35:32:81:42: a8:20:74:f9:1a:87:9c:18:41:50:cd:06:ab:ca:80: f5:db:6a:da:dc:68:10:c8:03:6f:83:49:8a:ce:40: 35:8a:0c:6f:15:55:6e:78:4f:f7:0e:6a:e6:1e:d8: 1b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D4:80:23:2E:2E:4C:2C:72:0E:AE:31:12:19:AA:64:C4:47:02:4A X509v3 Authority Key Identifier: keyid:3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.250.0-103.17.253.255 202.155.180.0/22 203.27.248.0/24 IPv6: 2406:6700::/32 Signature Algorithm: sha256WithRSAEncryption 22:a8:ee:09:3c:83:08:38:77:84:ee:ea:2a:a1:08:64:1f:0e: 88:3a:a7:74:69:14:1c:29:46:82:02:d7:2c:de:f1:6e:bf:0d: 94:f4:bf:4a:56:7e:e3:ed:85:19:23:92:6b:05:73:04:f8:8c: d5:5a:ce:42:db:db:ed:d4:37:9d:82:2f:f6:84:4e:2c:1a:1f: e2:15:56:e0:a7:c0:1a:17:2c:b0:a2:d8:58:a7:f4:aa:d3:b1: c9:f1:f6:59:84:bc:f5:19:4f:e6:b1:06:c9:c0:61:e7:37:5e: a5:06:39:9f:54:8d:7c:86:b0:f9:cd:7b:a8:41:bd:7b:3f:7d: 77:24:31:a3:6b:2d:59:36:8b:f2:07:94:b3:13:1c:c8:fe:0a: 15:14:7f:23:64:14:de:31:55:2c:bc:0e:81:5d:63:65:ee:e9: a1:bb:d9:8a:14:05:87:5d:5c:e3:53:9c:4c:76:8b:67:54:f7: 43:ad:f3:70:7a:12:33:8f:e6:bc:ba:89:11:23:7f:28:0b:94: df:b4:5c:4d:04:78:df:1e:10:31:29:44:3d:b9:28:a4:56:11: bc:c0:38:df:16:53:31:cf:68:f4:4c:53:b7:ea:a4:8b:d0:2b: c8:2c:b3:6f:3c:f8:74:8d:3e:13:a8:f5:d9:46:ba:b1:c2:99: 75:b2:80:4a -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICE/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkyRkUxMTAvBgNVBAUTKDNENDNFREZFNjRGNjE0RTExMzA2QTg3RjFFRjI0RjI4 MkU3RTM3MTQwHhcNMjYwNDI4MTcyMjUyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYwZWNlYy1mZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+unMCGYBueEVA7TdGL6CSndNp4mqasFpaJbvFtsK8YCw1CBo8MwuD+CqUib MDmSXlBjCuvgkbmHKY1YC5GDcSdxentRhMKkkrxQvApisExeQHZtGWPGLZoX3wcg gwKTHMQE7mujPSZ98sHcRvfrtiL1ss9ALxhK3kOn4m7gy93RBLT3nz4P70P8IgE8 wSJPvBFy0g5M5T62GxyveiaL90BllJyVafR9pljRqs+iG3EJUQ7RSbTmlvyA1ouq zSVpFVAUoRPH+3UkPtsmozUygUKoIHT5GoecGEFQzQaryoD122ra3GgQyANvg0mK zkA1igxvFVVueE/3DmrmHtgbXQIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFIfUgCMu Lkwscg6uMRIZqmTERwJKMB8GA1UdIwQYMBaAFD1D7f5k9hThEwaofx7yTygufjcU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTJGRS83MTgxN0Y2Q0E1 QkUxMUU4QTQwQzZGMUVDNEY5QUUwMi9QVVB0X21UMkZPRVRCcWhfSHZKUEtDNS1O eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVUHRfbVQyRk9FVEJxaF9IdkpQS0M1LU54US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkyRkUvNzE4MTdGNkNBNUJFMTFFOEE0MEM2RjFFQzRGOUFFMDIvMjc4OUE5RUVF MzhCMTFFQkIyNDZFMTNGQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAg BAIAATAaMAwDBAFnEfoDBAFnEfwDBALKm7QDBADLG/gwDQQCAAIwBwMFACQGZwAw DQYJKoZIhvcNAQELBQADggEBACKo7gk8gwg4d4Tu6iqhCGQfDog6p3RpFBwpRoIC 1yze8W6/DZT0v0pWfuPthRkjkmsFcwT4jNVazkLb2+3UN52CL/aETiwaH+IVVuCn wBoXLLCi2Fin9KrTscnx9lmEvPUZT+axBsnAYec3XqUGOZ9UjXyGsPnNe6hBvXs/ fXckMaNrLVk2i/IHlLMTHMj+ChUUfyNkFN4xVSy8DoFdY2Xu6aG72YoUBYddXONT nEx2i2dU90Ot83B6EjOP5ry6iREjfygLlN+0XE0EeN8eEDEpRD25KKRWEbzAON8W UzHPaPRMU7fqpIvQK8gss288+HSNPhOo9dlGurHCmXWygEo= -----END CERTIFICATE-----Generated at Wed May 13 07:29:37 2026 by rpki-client