$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/4DD0C31C0E2011F0A0825648C4F9AE02.roa File: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (raw, json) Hash identifier: meOmGfY3r0GblklalG+4OMMAMZcdYPQdKS2Ett97RO8= Subject key identifier: 1A:CE:DE:47:98:BB:F9:39:69:62:24:B0:12:5F:BF:75:B7:7E:16:70 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0E13 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/4DD0C31C0E2011F0A0825648C4F9AE02.roa Signing time: Thu 30 Apr 2026 18:22:54 +0000 ROA not before: Thu 30 Apr 2026 18:22:54 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58682 IP address blocks: 103.204.208.0/22 maxlen: 22 103.204.208.0/24 maxlen: 24 103.204.209.0/24 maxlen: 24 103.204.210.0/24 maxlen: 24 103.204.211.0/24 maxlen: 24 202.181.16.0/24 maxlen: 24 202.181.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3603 (0xe13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Apr 30 18:22:54 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69f39dfe-7f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6a:d2:f0:9f:3b:cf:a9:85:da:61:d8:e1:43: 96:63:56:12:aa:17:ad:fc:93:a3:6f:7a:8a:42:1c: 67:27:81:b3:41:f3:86:a2:21:24:a4:8c:e2:d2:76: 0f:12:1c:27:df:79:ce:21:3a:e6:33:8d:b8:c3:88: 61:f7:5f:54:e2:34:7a:70:73:07:76:b5:ee:aa:90: a8:1f:8d:44:03:df:9d:16:96:78:be:9b:76:d3:1e: f1:bb:80:a0:ee:91:eb:61:ba:1c:fc:8a:78:1a:e4: 6c:50:26:53:62:32:08:80:a4:05:75:9c:9f:f5:8b: 48:b9:5e:5b:8e:b5:64:89:ba:98:ee:8d:be:2b:ad: a3:74:cc:a4:b6:ff:a5:0a:4d:7b:e9:fa:5f:54:74: 35:06:f4:15:29:3f:a2:d5:e9:4b:38:a5:a4:fa:b1: e3:24:e6:c9:a3:4e:5b:57:6e:35:c7:fb:b6:38:71: 27:eb:aa:aa:6d:b2:2c:6f:36:a4:3e:d3:19:3b:84: 4d:b3:73:96:92:d7:88:4f:80:68:be:be:ac:0f:8a: 57:52:3e:71:08:41:bb:06:e8:58:f2:75:85:0d:70: 87:a4:d6:16:92:4a:3e:50:6b:e2:b4:c5:e0:40:6c: 73:6c:d0:bf:59:6b:ad:18:5c:99:e0:40:5f:f7:b5: 76:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CE:DE:47:98:BB:F9:39:69:62:24:B0:12:5F:BF:75:B7:7E:16:70 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/4DD0C31C0E2011F0A0825648C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.208.0/22 202.181.16.0/23 Signature Algorithm: sha256WithRSAEncryption 84:1c:67:d6:b2:e3:f3:15:53:6f:ce:6f:d7:3a:31:3b:ec:32: 6c:89:3d:89:8d:4d:08:c4:0e:ca:5e:3a:76:4c:5f:94:e3:1d: b9:cd:a9:8c:05:4a:a6:29:7b:7e:db:07:13:64:30:eb:54:70: ea:4e:c8:9c:14:69:14:1b:4e:a8:ac:aa:e1:79:ed:01:d0:d0: a2:e9:56:15:7c:78:86:d7:d7:fd:92:ea:b8:1e:0d:f9:af:a0: a0:26:5c:97:48:49:58:f1:f7:d1:f2:3e:01:8c:c3:b2:a5:f3: 0f:a5:85:12:cd:c6:69:d7:7e:c4:20:21:7e:e7:b3:27:4d:70: 81:ca:d5:71:05:02:45:14:d2:26:82:d7:2f:ce:05:c4:73:96: eb:d1:66:c2:17:df:dd:56:f2:82:69:5b:d0:3e:24:d0:25:e0: 61:bc:a3:93:9b:62:43:93:7c:50:c5:f4:e6:10:e3:50:dd:9f: 73:b9:3a:b3:15:13:b6:cb:cd:27:03:5c:69:fe:91:6b:df:0f: 1d:62:2f:88:12:1c:a3:cb:25:55:b3:ea:3a:5f:60:d9:fa:33: 6a:d4:09:c7:9c:0e:de:d1:96:03:25:42:78:46:fd:49:2c:20: 13:26:e4:c6:fd:55:b3:11:af:0a:ae:0e:8f:89:77:0d:4a:28: df:02:51:3f -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwNDMwMTgyMjU0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzOWRmZS03ZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WrS8J87z6mF2mHY4UOWY1YSqhet/JOjb3qKQhxnJ4GzQfOGoiEkpIzi0nYP Ehwn33nOITrmM424w4hh919U4jR6cHMHdrXuqpCoH41EA9+dFpZ4vpt20x7xu4Cg 7pHrYboc/Ip4GuRsUCZTYjIIgKQFdZyf9YtIuV5bjrVkibqY7o2+K62jdMyktv+l Ck176fpfVHQ1BvQVKT+i1elLOKWk+rHjJObJo05bV241x/u2OHEn66qqbbIsbzak PtMZO4RNs3OWkteIT4Bovr6sD4pXUj5xCEG7BuhY8nWFDXCHpNYWkko+UGvitMXg QGxzbNC/WWutGFyZ4EBf97V2YQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBrO3keY u/k5aWIksBJfv3W3fhZwMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUEyOEIvMUUwMjY0QUFEQkM4MTFFOUJFQTkxMDUxQzRGOUFFMDIvNEREMEMzMUMw RTIwMTFGMEEwODI1NjQ4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ8zQAwQByrUQMA0GCSqGSIb3DQEBCwUAA4IBAQCEHGfWsuPzFVNv zm/XOjE77DJsiT2JjU0IxA7KXjp2TF+U4x25zamMBUqmKXt+2wcTZDDrVHDqTsic FGkUG06orKrhee0B0NCi6VYVfHiG19f9kuq4Hg35r6CgJlyXSElY8ffR8j4BjMOy pfMPpYUSzcZp137EICF+57MnTXCBytVxBQJFFNImgtcvzgXEc5br0WbCF9/dVvKC aVvQPiTQJeBhvKOTm2JDk3xQxfTmEONQ3Z9zuTqzFRO2y80nA1xp/pFr3w8dYi+I EhyjyyVVs+o6X2DZ+jNq1AnHnA7e0ZYDJUJ4Rv1JLCATJuTG/VWzEa8Krg6PiXcN SijfAlE/ -----END CERTIFICATE-----Generated at Wed May 13 09:02:45 2026 by rpki-client