$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa File: C33EB0EC7C4211EB933D233EC4F9AE02.roa (raw, json) Hash identifier: gl38JCfINuQj5r+ArpGOl2htLCM9Mgwqo9xw/lh130Q= Subject key identifier: AA:EC:8E:24:8E:CF:3E:E6:48:ED:D2:F4:33:7B:94:15:41:ED:CB:F2 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0917 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa Signing time: Tue 12 May 2026 20:25:45 +0000 ROA not before: Tue 12 May 2026 20:25:45 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139039 IP address blocks: 103.138.212.0/23 maxlen: 23 103.138.212.0/24 maxlen: 24 103.138.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 12 20:25:45 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a038cc9-e61f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4a:f5:da:f3:a4:59:95:10:5c:da:08:99:11: 14:13:ad:2f:77:7c:90:d9:9f:28:4f:d9:f7:dc:a7: ec:dd:18:a2:a0:b7:2f:2a:58:7d:d9:49:0a:65:79: 83:7b:8c:1e:13:c4:fa:2a:f8:f6:7e:86:77:ba:ba: 28:7c:75:3a:f0:d6:61:ab:34:5a:2a:10:1a:ed:da: dd:5f:96:05:63:be:cb:18:59:ed:de:ee:9a:e7:78: 78:d1:12:40:8f:9d:0c:87:85:5e:bc:db:dc:16:d1: 26:31:e4:93:4c:7b:d6:cb:1b:85:7e:95:c6:a8:7e: ed:aa:50:c6:da:46:69:0c:8b:75:8d:b7:bd:b2:ac: 35:8a:74:a2:86:c6:9f:ab:df:b1:88:48:3b:d2:c0: b5:ce:05:88:60:1a:90:ac:21:66:6a:50:4a:e5:f3: d0:05:e2:4a:69:9b:bc:12:6a:a0:95:d1:9b:a1:70: c8:c5:28:63:a7:2d:a3:20:55:66:a3:fc:d5:2e:2c: fc:ef:9c:91:68:47:0b:5b:15:21:bc:26:9a:67:57: 5e:92:6f:b9:ed:79:0a:0b:c5:15:07:b5:ef:3f:63: 2f:36:6d:cb:a4:a1:b6:0d:d9:fd:cc:8d:36:63:8c: 27:4f:78:cc:e5:bd:3c:2e:58:9b:48:2f:46:1f:11: e4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EC:8E:24:8E:CF:3E:E6:48:ED:D2:F4:33:7B:94:15:41:ED:CB:F2 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.212.0/23 Signature Algorithm: sha256WithRSAEncryption 57:56:05:b9:ff:52:ad:fb:94:02:49:0f:42:67:b8:1a:b5:4c: f1:97:35:42:99:d5:8f:21:a0:6b:f1:64:d4:a0:2f:bf:ad:b4: bb:56:ee:25:db:3b:28:da:0d:1b:73:07:42:67:1d:0d:ab:54: 32:c5:9e:08:2a:3e:13:e1:0c:28:f0:7c:db:7b:89:ce:6d:c8: 86:54:6f:9d:c4:ce:80:13:39:82:d2:89:66:7a:66:33:9c:60: 32:35:82:0c:7c:44:00:fd:2e:c7:f3:b4:10:4e:d8:76:49:00: 6a:34:b1:67:af:fd:c8:af:07:d1:53:29:d2:6d:e3:d9:31:b1: 5e:f4:31:b5:63:54:e5:b4:40:c4:e3:4c:be:2b:ba:52:19:bf: a6:6b:e0:0d:38:04:6a:b0:f4:c8:2d:c2:72:b6:6a:7b:61:81: ca:90:6e:33:e0:47:d1:e1:8b:8c:ea:33:45:84:1d:30:86:48: 1d:96:45:d1:ba:40:ab:04:d9:93:8b:d7:5f:0a:8b:2f:e8:62: 18:3b:98:11:2c:19:39:b2:aa:a4:f6:60:d0:38:17:8e:00:b9: 16:ac:77:b7:07:3b:89:91:ca:c6:c7:86:0d:7d:94:58:a0:c4: 40:7a:b3:9f:9a:fa:f7:75:10:64:f1:57:54:fd:50:f2:f7:87: 01:55:1a:ec -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwNTEyMjAyNTQ1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzOGNjOS1lNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkr12vOkWZUQXNoImREUE60vd3yQ2Z8oT9n33Kfs3RiioLcvKlh92UkKZXmD e4weE8T6Kvj2foZ3uroofHU68NZhqzRaKhAa7drdX5YFY77LGFnt3u6a53h40RJA j50Mh4VevNvcFtEmMeSTTHvWyxuFfpXGqH7tqlDG2kZpDIt1jbe9sqw1inSihsaf q9+xiEg70sC1zgWIYBqQrCFmalBK5fPQBeJKaZu8EmqgldGboXDIxShjpy2jIFVm o/zVLiz875yRaEcLWxUhvCaaZ1dekm+57XkKC8UVB7XvP2MvNm3LpKG2Ddn9zI02 Y4wnT3jM5b08LlibSC9GHxHkzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKrsjiSO zz7mSO3S9DN7lBVB7cvyMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvQzMzRUIwRUM3 QzQyMTFFQjkzM0QyMzNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4rUMA0GCSqGSIb3DQEBCwUAA4IBAQBXVgW5/1Kt+5QCSQ9CZ7ga tUzxlzVCmdWPIaBr8WTUoC+/rbS7Vu4l2zso2g0bcwdCZx0Nq1QyxZ4IKj4T4Qwo 8Hzbe4nObciGVG+dxM6AEzmC0olmemYznGAyNYIMfEQA/S7H87QQTth2SQBqNLFn r/3IrwfRUynSbePZMbFe9DG1Y1TltEDE40y+K7pSGb+ma+ANOARqsPTILcJytmp7 YYHKkG4z4EfR4YuM6jNFhB0whkgdlkXRukCrBNmTi9dfCosv6GIYO5gRLBk5sqqk 9mDQOBeOALkWrHe3BzuJkcrGx4YNfZRYoMRAerOfmvr3dRBk8VdU/VDy94cBVRrs -----END CERTIFICATE-----Generated at Wed May 13 04:50:36 2026 by rpki-client