$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/1CA71D84493D11EAAB30C638C4F9AE02.roa File: 1CA71D84493D11EAAB30C638C4F9AE02.roa (raw, json) Hash identifier: WIOTnnHZpCOfxDVsg8g5aDJ6JWSGnelmuPFVOIcEOGE= Subject key identifier: 51:5A:92:FE:A0:C7:89:83:49:76:CC:1E:49:21:2F:82:7E:06:4B:46 Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 14B8 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/1CA71D84493D11EAAB30C638C4F9AE02.roa Signing time: Wed 22 Apr 2026 17:21:42 +0000 ROA not before: Wed 22 Apr 2026 17:21:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64095 IP address blocks: 103.212.52.0/22 maxlen: 22 139.5.164.0/22 maxlen: 22 2404:9e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5304 (0x14b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Apr 22 17:21:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e903a6-c089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9a:32:23:9d:9a:2c:d6:5d:49:66:50:ae:fe: 36:fb:77:82:ab:59:a0:96:a9:ec:8d:f1:5b:98:fb: 7e:d3:75:c1:8e:f8:47:dd:47:b0:b0:ea:ea:0e:2d: 84:79:b3:ca:5c:ca:33:98:f8:d3:e6:fc:fc:e6:db: ba:74:24:17:e0:39:ae:1b:95:47:e5:2b:8f:ea:12: 5b:c4:dc:da:69:89:54:e4:03:6c:8d:c2:05:7b:1b: 23:9c:15:f1:a1:89:b6:ff:52:fd:46:1c:54:03:90: c1:07:1c:56:fc:5f:a2:36:f4:24:34:51:d8:e6:26: 7f:49:59:50:de:5a:54:be:f9:3e:9b:c8:00:66:5d: 5e:ff:03:db:bf:19:7c:cf:12:c9:b7:9d:fd:e1:02: bf:ac:b2:71:e1:94:64:b8:48:45:48:bd:e7:ca:9d: d7:82:d6:ea:8b:42:00:9a:8d:fe:20:b6:64:7e:91: db:4b:f4:e5:9c:3f:ea:dc:aa:f9:94:6a:f1:9c:6e: fa:c9:49:ac:69:3e:fa:c3:d4:fa:78:f5:fb:93:91: 41:9a:7e:b0:06:15:28:2d:20:47:1a:87:39:f5:2b: 12:79:63:c3:d3:3a:3f:5c:38:8c:53:95:4e:be:55: c5:c1:4c:c7:29:a6:2a:ef:51:07:12:ad:4a:b4:2b: fe:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5A:92:FE:A0:C7:89:83:49:76:CC:1E:49:21:2F:82:7E:06:4B:46 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/1CA71D84493D11EAAB30C638C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.212.52.0/22 139.5.164.0/22 IPv6: 2404:9e80::/32 Signature Algorithm: sha256WithRSAEncryption 41:64:86:d4:77:41:6d:5f:9a:d9:0b:26:c1:0d:b9:9d:a6:65: 5a:49:90:4f:2d:30:42:11:b7:e5:82:28:10:a6:60:1e:82:89: 24:e3:2c:60:d2:ff:b3:e3:f3:4a:d4:cc:9c:ce:ac:2c:2c:f1: a5:37:e6:cf:e2:05:d3:ae:ef:9e:3c:82:23:71:83:d1:11:cd: 6e:2e:ec:79:0f:38:ae:46:4e:ae:c4:16:3a:27:08:cc:8f:3c: 13:9b:75:f7:d5:fc:47:b0:9e:e3:2e:72:77:d0:bf:c7:e0:75: 70:90:7e:ab:42:e9:50:cb:9e:94:fe:25:ed:b0:9d:06:b4:27: ec:7e:a4:93:37:af:ec:56:c2:19:78:bf:6e:51:b0:ed:d7:b7: bc:a9:03:ba:ac:ee:db:77:61:92:5f:21:c1:23:06:75:42:ad: 62:55:ff:bc:80:9e:7e:e5:23:49:dc:bf:92:60:95:3f:12:50: 1d:e1:55:af:a2:9d:b7:60:06:95:ce:28:89:74:2e:96:d6:3d: bc:74:67:8d:ea:c9:5f:50:6e:e5:2c:8b:a1:47:ee:7f:a5:85: 46:fe:b4:8e:a8:9a:1b:67:33:73:17:82:25:eb:86:eb:f8:2f: 04:26:3b:9d:16:fc:d5:42:9e:da:ac:2e:df:04:24:6d:9d:95: b9:d1:78:02 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICFLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjYwNDIyMTcyMTQyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU5MDNhNi1jMDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5oyI52aLNZdSWZQrv42+3eCq1mglqnsjfFbmPt+03XBjvhH3UewsOrqDi2E ebPKXMozmPjT5vz85tu6dCQX4DmuG5VH5SuP6hJbxNzaaYlU5ANsjcIFexsjnBXx oYm2/1L9RhxUA5DBBxxW/F+iNvQkNFHY5iZ/SVlQ3lpUvvk+m8gAZl1e/wPbvxl8 zxLJt5394QK/rLJx4ZRkuEhFSL3nyp3Xgtbqi0IAmo3+ILZkfpHbS/TlnD/q3Kr5 lGrxnG76yUmsaT76w9T6ePX7k5FBmn6wBhUoLSBHGoc59SsSeWPD0zo/XDiMU5VO vlXFwUzHKaYq71EHEq1KtCv+cwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFFFakv6g x4mDSXbMHkkhL4J+BktGMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQyODYvQjIxQUEwOTQ3RjQ5MTFFODg4RDM1NjQyQzRGOUFFMDIvMUNBNzFEODQ0 OTNEMTFFQUFCMzBDNjM4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ9Q0AwQCiwWkMA0EAgACMAcDBQAkBJ6AMA0GCSqGSIb3DQEBCwUA A4IBAQBBZIbUd0FtX5rZCybBDbmdpmVaSZBPLTBCEbflgigQpmAegokk4yxg0v+z 4/NK1MyczqwsLPGlN+bP4gXTru+ePIIjcYPREc1uLux5DziuRk6uxBY6JwjMjzwT m3X31fxHsJ7jLnJ30L/H4HVwkH6rQulQy56U/iXtsJ0GtCfsfqSTN6/sVsIZeL9u UbDt17e8qQO6rO7bd2GSXyHBIwZ1Qq1iVf+8gJ5+5SNJ3L+SYJU/ElAd4VWvop23 YAaVziiJdC6W1j28dGeN6slfUG7lLIuhR+5/pYVG/rSOqJobZzNzF4Il64br+C8E JjudFvzVQp7arC7fBCRtnZW50XgC -----END CERTIFICATE-----Generated at Wed May 13 15:18:44 2026 by rpki-client