$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa File: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (raw, json) Hash identifier: w5l5bzdUBbOiymqqgIFAis/HyOoUZwKfNyUgPTXlOrs= Subject key identifier: F7:92:4E:56:E2:A2:AF:27:9F:8B:1E:11:1F:1B:56:3C:DF:EA:BD:C2 Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 06F1 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa Signing time: Wed 06 May 2026 13:33:12 +0000 ROA not before: Wed 06 May 2026 13:33:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 44356 IP address blocks: 103.229.96.0/24 maxlen: 24 180.178.72.0/22 maxlen: 22 180.178.72.0/24 maxlen: 24 180.178.73.0/24 maxlen: 24 180.178.74.0/24 maxlen: 24 180.178.75.0/24 maxlen: 24 180.178.76.0/24 maxlen: 24 180.178.77.0/24 maxlen: 24 180.178.78.0/23 maxlen: 24 203.13.69.0/24 maxlen: 24 2402:4400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: May 6 13:33:12 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69fb4318-fdcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c8:a4:3c:e3:42:80:d1:6b:8a:15:96:ac:af: 94:ba:b4:6d:66:e4:88:e2:d4:8f:7f:c2:9f:d2:4e: ea:f9:3d:ce:87:d6:a3:f6:72:ea:8d:67:4f:0e:6a: 1d:1e:50:02:5c:18:b1:29:d7:80:cd:60:29:fb:d3: 90:4b:03:d7:d1:71:0a:d5:31:10:d1:43:f8:0e:27: a9:cf:7b:59:b8:6e:32:0e:f2:a6:cf:69:2c:ce:7e: d6:c6:b1:0b:73:44:19:d3:eb:47:60:20:ca:3b:c4: b1:59:63:34:14:db:44:ec:0b:0d:89:a5:9b:68:62: 52:93:d1:d5:49:27:15:5a:bc:a4:dc:63:a4:c3:9a: 81:80:f3:91:a6:c7:bb:b1:9c:0e:cb:68:37:b2:71: 64:d8:ed:95:6a:cc:58:2f:1d:aa:f1:fe:18:b6:74: 1d:dc:da:78:83:3d:32:f3:29:84:1e:b4:cd:95:cc: aa:0e:5a:64:38:32:c6:a3:7a:a3:23:09:ef:4f:47: 98:48:0d:8b:14:21:62:5d:43:86:77:94:46:56:93: 01:40:0a:3e:07:bb:d1:a6:18:5a:e4:61:45:0a:45: 02:95:df:c1:98:9b:ee:b0:0b:f4:58:4e:82:ee:8b: 68:88:7b:3c:29:a0:45:76:d7:fa:80:16:b8:7f:7b: 9f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:92:4E:56:E2:A2:AF:27:9F:8B:1E:11:1F:1B:56:3C:DF:EA:BD:C2 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.96.0/24 180.178.72.0/21 203.13.69.0/24 IPv6: 2402:4400::/32 Signature Algorithm: sha256WithRSAEncryption 4e:ac:be:e7:bf:cb:a5:66:69:f5:53:0e:42:59:8d:78:7f:1e: b0:a7:08:3f:80:49:12:26:2b:77:8b:ba:3c:a0:65:b3:da:36: 9b:1a:1d:56:bd:18:c9:22:e1:c1:5e:94:43:59:22:4f:ca:e1: a0:d9:a0:40:ee:a9:da:a7:db:d7:e4:d9:13:3f:8b:96:ab:3b: f7:2f:eb:c8:15:6e:45:ce:bb:61:de:b4:6d:5c:f7:aa:05:44: 20:5a:a6:26:0f:7e:f9:c5:e2:02:06:5b:19:5b:3f:4e:7a:af: bf:56:da:79:bc:13:03:d0:fd:15:b9:9d:9f:ff:20:2e:d8:d1: 32:58:c9:88:10:12:b3:f0:79:46:ab:76:8b:46:d0:89:76:5e: c3:f3:3d:25:d7:ef:fc:5f:02:28:db:69:ff:c0:ac:9b:96:c3: a4:a6:0b:65:cd:cb:2d:30:18:fe:f7:f4:42:c0:3a:d3:8c:33: 4c:84:96:82:da:bf:43:8a:de:ea:33:d6:32:6c:aa:8a:42:68: 2b:71:c3:40:12:c7:bd:3e:75:5d:f8:b1:79:36:6f:52:fa:2c: c4:8d:8a:27:4a:d5:2c:3a:bd:0e:33:3d:45:e9:0f:15:3a:af: 6e:d5:98:d4:62:2f:53:25:0b:0b:5e:37:81:cf:b0:e7:34:b4: ab:e3:c8:65 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjYwNTA2MTMzMzEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiNDMxOC1mZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28ikPONCgNFrihWWrK+UurRtZuSI4tSPf8Kf0k7q+T3Oh9aj9nLqjWdPDmod HlACXBixKdeAzWAp+9OQSwPX0XEK1TEQ0UP4Diepz3tZuG4yDvKmz2kszn7WxrEL c0QZ0+tHYCDKO8SxWWM0FNtE7AsNiaWbaGJSk9HVSScVWryk3GOkw5qBgPORpse7 sZwOy2g3snFk2O2VasxYLx2q8f4YtnQd3Np4gz0y8ymEHrTNlcyqDlpkODLGo3qj IwnvT0eYSA2LFCFiXUOGd5RGVpMBQAo+B7vRphha5GFFCkUCld/BmJvusAv0WE6C 7otoiHs8KaBFdtf6gBa4f3ufeQIDAQABo4ICezCCAncwHQYDVR0OBBYEFPeSTlbi oq8nn4seER8bVjzf6r3CMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJDODgvMjQyOTlEQ0E5NzhFMTFFQkJEODFCMDU1QzRGOUFFMDIvM0M1RTU1RjA0 MUE0MTFFQ0E3M0M4QzBFQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAZ+VgAwQDtLJIAwQAyw1FMA0EAgACMAcDBQAkAkQAMA0GCSqGSIb3 DQEBCwUAA4IBAQBOrL7nv8ulZmn1Uw5CWY14fx6wpwg/gEkSJit3i7o8oGWz2jab Gh1WvRjJIuHBXpRDWSJPyuGg2aBA7qnap9vX5NkTP4uWqzv3L+vIFW5Fzrth3rRt XPeqBUQgWqYmD375xeICBlsZWz9Oeq+/Vtp5vBMD0P0VuZ2f/yAu2NEyWMmIEBKz 8HlGq3aLRtCJdl7D8z0l1+/8XwIo22n/wKyblsOkpgtlzcstMBj+9/RCwDrTjDNM hJaC2r9Dit7qM9YybKqKQmgrccNAEse9PnVd+LF5Nm9S+izEjYonStUsOr0OMz1F 6Q8VOq9u1ZjUYi9TJQsLXjeBz7DnNLSr48hl -----END CERTIFICATE-----Generated at Wed May 13 12:03:36 2026 by rpki-client