$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/CB16EA82FB6411EF90E1E429C4F9AE02.roa File: CB16EA82FB6411EF90E1E429C4F9AE02.roa (raw, json) Hash identifier: J85gs2PwspStHZ1QSJgFlpSUo7AYF6KcJxoS8YQ7YiU= Subject key identifier: F8:C8:B9:6D:10:A6:82:CC:47:ED:34:4E:95:B9:72:4E:D6:97:AD:00 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: E3 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/CB16EA82FB6411EF90E1E429C4F9AE02.roa Signing time: Mon 11 May 2026 07:39:57 +0000 ROA not before: Mon 11 May 2026 07:39:57 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 135357 IP address blocks: 103.234.96.0/22 maxlen: 22 103.234.96.0/24 maxlen: 24 103.234.97.0/24 maxlen: 24 103.234.98.0/24 maxlen: 24 103.234.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: May 11 07:39:57 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a0187cd-87d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2a:00:8e:9b:9e:e1:6d:6c:d6:ae:3e:a0:c8: 23:5a:f9:9c:90:b1:05:1a:2c:de:8f:98:f5:ab:bd: 35:3e:fa:f6:c4:ed:7f:ef:43:30:16:da:03:44:01: 90:37:7a:14:e1:d0:4c:f7:78:79:a4:31:f8:a1:83: d7:a9:0a:1e:56:d5:a7:7f:6e:bc:47:c3:1e:30:a1: de:10:f3:9c:2a:6a:c7:b8:ff:5e:57:c7:d3:58:5d: d8:ef:00:c0:37:fb:89:b4:44:ee:58:33:34:61:85: e5:a6:98:c2:5d:4c:b7:17:c1:41:85:33:f9:d8:48: ca:c7:e0:72:24:4c:20:7f:7f:34:e3:66:89:eb:ae: 69:ba:05:bd:75:f1:e0:01:09:1e:1f:dd:20:1a:c5: 4a:9c:39:60:ed:eb:c9:9b:fe:1f:52:bb:25:d1:23: c0:3d:0d:8d:3c:29:b5:35:cc:f3:30:0d:b9:cc:5a: 27:3a:38:49:6b:ed:fd:d6:78:64:76:b0:d4:f6:80: dd:dc:33:ba:b2:86:bc:8f:aa:4d:e1:aa:de:38:28: 0a:6c:37:78:7d:01:1c:7b:74:75:c0:42:23:91:d1: 96:4f:3d:8e:05:4c:c5:50:3f:b1:d5:47:25:3a:8d: b6:81:92:21:f6:86:d3:c2:a7:f2:13:16:68:50:77: 33:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C8:B9:6D:10:A6:82:CC:47:ED:34:4E:95:B9:72:4E:D6:97:AD:00 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/CB16EA82FB6411EF90E1E429C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.96.0/22 Signature Algorithm: sha256WithRSAEncryption 52:bc:2f:1b:0b:dc:2a:74:71:8e:a5:6c:a5:75:f8:e9:1d:32: e8:a6:d9:c6:64:06:5a:6f:47:5f:36:5c:fc:69:1b:92:ff:cd: eb:86:8e:11:e3:d2:d2:fc:79:d3:cc:19:72:f6:66:76:ee:3d: b8:b3:16:ec:13:93:7b:b1:9a:5a:d6:8b:14:40:dd:48:6f:8c: f3:f3:93:e9:fe:ed:6c:4b:28:b9:11:6d:d2:3b:02:c5:48:0f: fe:f6:e4:ce:0e:48:bf:72:8a:65:f0:df:1f:f7:60:e5:e3:39: 8c:14:d9:37:c8:0d:ee:8a:08:ed:16:5f:12:7d:1b:52:a6:ee: eb:1c:bf:75:83:7b:b3:97:7d:30:63:31:63:d8:2b:ce:23:05: 98:d9:ca:6b:1c:29:50:5a:38:b8:21:06:8d:27:82:c4:09:5d: f9:e6:d7:80:a5:8d:27:69:75:8a:6b:bb:5e:3f:5a:ea:c4:47: e7:4a:a6:84:5c:64:76:7b:80:2d:8f:e1:65:f0:b5:b7:ff:01: cf:1e:ef:16:a3:f0:f3:c6:bc:d6:b5:d3:db:57:36:ed:92:04: 24:0e:b1:62:b2:98:00:a9:1e:da:bf:f5:6e:ba:30:93:2d:ca: e0:7a:ce:42:2e:f7:a9:c5:5d:24:ad:98:1c:69:af:6a:91:6c: 4d:b8:f1:53 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwNjYxMTAvBgNVBAUTKDFENEVDNDI1MzMxM0I2MkM0ODQ0OTE2Qjg1REMwRkZF NEIwN0Q1MDgwHhcNMjYwNTExMDczOTU3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAxODdjZC04N2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApioAjpue4W1s1q4+oMgjWvmckLEFGizej5j1q701Pvr2xO1/70MwFtoDRAGQ N3oU4dBM93h5pDH4oYPXqQoeVtWnf268R8MeMKHeEPOcKmrHuP9eV8fTWF3Y7wDA N/uJtETuWDM0YYXlppjCXUy3F8FBhTP52EjKx+ByJEwgf38042aJ665pugW9dfHg AQkeH90gGsVKnDlg7evJm/4fUrsl0SPAPQ2NPCm1NczzMA25zFonOjhJa+391nhk drDU9oDd3DO6soa8j6pN4areOCgKbDd4fQEce3R1wEIjkdGWTz2OBUzFUD+x1Ucl Oo22gZIh9obTwqfyExZoUHczgwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPjIuW0Q poLMR+00TpW5ck7Wl60AMB8GA1UdIwQYMBaAFB1OxCUzE7YsSESRa4XcD/5LB9UI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjA2Ni82NDhBODgzMkZC NjQxMUVGQkM5QjM1MjlDNEY5QUUwMi9IVTdFSlRNVHRpeElSSkZyaGR3UF9rc0gx UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYwNjYvNjQ4QTg4MzJGQjY0MTFFRkJDOUIzNTI5QzRGOUFFMDIvQ0IxNkVBODJG QjY0MTFFRjkwRTFFNDI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+pgMA0GCSqGSIb3DQEBCwUAA4IBAQBSvC8bC9wqdHGOpWyldfjp HTLoptnGZAZab0dfNlz8aRuS/83rho4R49LS/HnTzBly9mZ27j24sxbsE5N7sZpa 1osUQN1Ib4zz85Pp/u1sSyi5EW3SOwLFSA/+9uTODki/copl8N8f92Dl4zmMFNk3 yA3uigjtFl8SfRtSpu7rHL91g3uzl30wYzFj2CvOIwWY2cprHClQWji4IQaNJ4LE CV355teApY0naXWKa7teP1rqxEfnSqaEXGR2e4Atj+Fl8LW3/wHPHu8Wo/DzxrzW tdPbVzbtkgQkDrFispgAqR7av/VuujCTLcrges5CLvepxV0krZgcaa9qkWxNuPFT -----END CERTIFICATE-----Generated at Wed May 13 12:04:15 2026 by rpki-client