$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/C2DFDA20DE0611EF9DC6A135C4F9AE02.roa File: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (raw, json) Hash identifier: vKe+s1AjVTC2tWxyer0iCi6sE34mb63o5/xf7YiZBp8= Subject key identifier: B2:15:0E:E8:72:24:F7:70:E5:62:BB:AC:95:03:8E:28:39:A0:69:61 Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 35DC Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/C2DFDA20DE0611EF9DC6A135C4F9AE02.roa Signing time: Thu 30 Apr 2026 15:13:08 +0000 ROA not before: Thu 30 Apr 2026 15:13:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38461 IP address blocks: 123.242.240.0/22 maxlen: 24 123.242.248.0/22 maxlen: 24 202.61.8.0/23 maxlen: 24 203.189.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13788 (0x35dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Apr 30 15:13:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f37184-dd7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:42:7a:d1:40:80:c0:f2:ac:b6:21:9a:34:f1: 0d:0c:33:84:99:7c:94:57:d0:09:ae:0d:1f:02:8f: b3:6c:02:2a:31:c1:df:b1:d8:8e:87:47:64:4c:9a: d2:58:69:4a:69:f3:d1:18:c9:2b:e2:81:6a:8d:3b: 67:4a:d3:a1:c7:cc:99:5c:01:5a:87:a3:31:1b:01: 48:ee:e8:52:ab:24:2a:e6:dd:f3:42:d5:95:88:3a: 6a:ce:1d:d5:eb:d0:f5:c7:e3:2b:2a:ac:e7:63:d6: 99:b9:3b:e6:a0:67:45:28:ac:e1:91:7c:bc:a1:64: 18:2e:4c:12:65:d5:5d:fc:90:a7:6a:e0:af:a5:a9: 2d:c0:cf:f2:b4:26:c9:7e:ea:ec:c7:44:97:38:8d: ff:90:c9:43:ca:a2:10:6f:ea:51:c4:1b:06:80:1f: 2c:c0:59:51:c9:fb:41:ed:19:a5:6c:ea:23:0b:27: 4f:33:ce:e0:41:58:e2:4b:01:24:b9:13:34:c9:fb: 50:dc:78:c6:ab:47:f2:40:3e:f5:7b:56:58:b4:97: fa:ef:46:ef:c2:30:ff:10:b1:f5:6b:a5:2e:37:35: 18:1b:21:e4:a8:88:af:0c:9b:c5:b4:f4:db:0e:a5: 0a:f6:70:fb:cf:70:e7:ac:93:f8:3e:0e:2d:1d:92: 74:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:15:0E:E8:72:24:F7:70:E5:62:BB:AC:95:03:8E:28:39:A0:69:61 X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/C2DFDA20DE0611EF9DC6A135C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.242.240.0/22 123.242.248.0/22 202.61.8.0/23 203.189.176.0/22 Signature Algorithm: sha256WithRSAEncryption 13:fa:dd:31:a8:ac:66:eb:83:57:84:8c:35:11:93:92:ac:48: 09:c9:36:e4:83:53:af:fa:ed:56:d8:4a:77:c3:a5:ee:90:95: c5:f4:c2:c4:8d:47:ab:1d:4e:1a:af:c6:a6:41:36:f6:4e:5f: 2a:87:ec:3e:2f:8d:f6:7a:3e:54:11:9c:6f:86:a7:0e:ab:cb: bf:79:c4:7a:c4:4b:99:46:10:8c:65:c9:56:ff:87:85:76:d4: be:2f:91:6b:8e:ef:12:82:8d:31:53:5b:d6:b2:72:b1:e0:c9: b0:36:1f:e1:6c:97:07:d1:30:a3:16:e7:c8:8a:57:d0:ba:cd: 12:f5:cc:bf:78:9e:87:ec:7f:f6:74:7e:48:31:b3:f1:aa:6c: 75:9f:ca:c3:8c:41:e2:55:02:b8:e6:e5:88:f8:dc:76:65:aa: d2:24:bd:8f:05:4f:c8:79:56:31:74:0d:e2:ca:9f:06:46:81: 82:45:e9:fb:0f:86:48:0d:1c:9d:00:5f:61:b1:38:70:e7:ad: 29:48:2a:83:20:dc:ea:f3:46:d8:b6:b5:f6:4f:77:9f:df:46: b9:da:d9:ec:48:f2:4d:28:69:e5:13:60:a0:51:21:c3:ca:39: fa:6f:4b:f9:67:df:ca:2c:47:09:eb:2e:54:e1:c1:7c:9a:26: 41:c7:3b:61 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICNdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjYwNDMwMTUxMzA4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzNzE4NC1kZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUJ60UCAwPKstiGaNPENDDOEmXyUV9AJrg0fAo+zbAIqMcHfsdiOh0dkTJrS WGlKafPRGMkr4oFqjTtnStOhx8yZXAFah6MxGwFI7uhSqyQq5t3zQtWViDpqzh3V 69D1x+MrKqznY9aZuTvmoGdFKKzhkXy8oWQYLkwSZdVd/JCnauCvpaktwM/ytCbJ fursx0SXOI3/kMlDyqIQb+pRxBsGgB8swFlRyftB7RmlbOojCydPM87gQVjiSwEk uRM0yftQ3HjGq0fyQD71e1ZYtJf670bvwjD/ELH1a6UuNzUYGyHkqIivDJvFtPTb DqUK9nD7z3DnrJP4Pg4tHZJ0PwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFLIVDuhy JPdw5WK7rJUDjig5oGlhMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3NzAvQzMzNjgzQjYxRDhFMTFFMjhBOUI1N0VEMDhCMDJDRDIvQzJERkRBMjBE RTA2MTFFRjlEQzZBMTM1QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCe/LwAwQCe/L4AwQByj0IAwQCy72wMA0GCSqGSIb3DQEBCwUAA4IB AQAT+t0xqKxm64NXhIw1EZOSrEgJyTbkg1Ov+u1W2Ep3w6XukJXF9MLEjUerHU4a r8amQTb2Tl8qh+w+L432ej5UEZxvhqcOq8u/ecR6xEuZRhCMZclW/4eFdtS+L5Fr ju8Sgo0xU1vWsnKx4MmwNh/hbJcH0TCjFufIilfQus0S9cy/eJ6H7H/2dH5IMbPx qmx1n8rDjEHiVQK45uWI+Nx2ZarSJL2PBU/IeVYxdA3iyp8GRoGCRen7D4ZIDRyd AF9hsThw560pSCqDINzq80bYtrX2T3ef30a52tnsSPJNKGnlE2CgUSHDyjn6b0v5 Z9/KLEcJ6y5U4cF8miZBxzth -----END CERTIFICATE-----Generated at Wed May 13 10:49:46 2026 by rpki-client