$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/8CA3BAEC7DCB11EC99806E25C4F9AE02.roa File: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (raw, json) Hash identifier: PshvNGbB4abUIR4WhdP2tqE8ctCHY2hFz8KdbCyAThY= Subject key identifier: A9:4F:AB:B4:B0:E2:AA:0D:55:90:69:19:4B:8C:E3:54:06:D5:A6:8E Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 04A0 Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/8CA3BAEC7DCB11EC99806E25C4F9AE02.roa Signing time: Thu 07 May 2026 00:29:45 +0000 ROA not before: Thu 07 May 2026 00:29:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58885 IP address blocks: 45.116.136.0/22 maxlen: 22 45.116.136.0/24 maxlen: 24 45.116.137.0/24 maxlen: 24 45.116.138.0/24 maxlen: 24 45.116.139.0/24 maxlen: 24 103.19.20.0/22 maxlen: 22 103.19.20.0/24 maxlen: 24 103.19.21.0/24 maxlen: 24 103.19.22.0/24 maxlen: 24 103.19.23.0/24 maxlen: 24 2001:df5:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D, serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: May 7 00:29:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69fbdcf9-85e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cf:f3:8a:f2:1a:a1:27:22:c3:31:ef:6c:2a: 26:f7:84:6b:d6:9a:2b:d6:17:b8:f1:7e:08:e9:ba: 3e:87:0b:c4:16:51:f7:96:6b:a5:d7:b9:b9:de:51: 53:bb:9b:f1:78:47:5c:8c:cf:71:91:17:6e:2d:ba: 0b:10:84:15:40:49:1e:dc:8b:e7:ab:db:54:0c:37: 68:d9:cd:d1:cb:a0:92:5e:3d:fa:b8:75:c8:28:23: ec:2f:bc:7b:57:cd:0a:be:2a:f4:a5:5d:e1:73:c1: 47:d1:26:a4:5a:39:3f:ff:1c:f6:a7:e5:43:c5:a4: 63:f2:ef:51:e3:e5:c5:e1:b9:28:de:0f:9a:36:71: ec:b8:35:57:e1:b0:10:e0:45:97:32:02:8c:2b:0c: a0:1a:42:e8:a6:8a:bd:1f:f8:c1:69:94:24:5c:36: ce:94:f7:0f:a6:48:5d:ae:33:0a:15:1a:b1:36:14: 42:e2:6d:18:bb:77:ee:96:b5:a4:4c:7e:53:d9:28: 88:51:a3:d7:ab:4d:aa:02:91:d0:63:29:54:b9:2e: 1e:0c:28:9f:bf:1b:f0:38:66:22:73:b5:7a:c4:69: 3c:b5:d5:76:0f:2a:fe:97:9d:b6:17:94:45:ed:90: 2d:cd:df:48:63:0b:72:4f:e2:09:1e:84:a6:a1:58: db:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4F:AB:B4:B0:E2:AA:0D:55:90:69:19:4B:8C:E3:54:06:D5:A6:8E X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/8CA3BAEC7DCB11EC99806E25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.116.136.0/22 103.19.20.0/22 IPv6: 2001:df5:8000::/48 Signature Algorithm: sha256WithRSAEncryption a5:b2:3f:96:97:69:39:15:a1:6c:3a:e4:4e:12:d1:da:a1:72: a4:1a:7a:c8:d5:f7:68:b8:2d:bb:aa:08:eb:ee:d9:4b:5d:0b: 4b:56:66:5a:70:61:9f:8c:f6:07:2d:72:a5:6f:51:fa:4d:f6: 59:9c:57:48:df:fe:cb:53:e8:7d:ef:fa:be:cf:c1:6a:42:09: 99:f7:f3:dc:74:f8:e0:fc:5a:bc:b7:29:3a:2f:79:07:1d:50: cc:bc:92:3a:98:0b:f6:34:17:13:3f:89:22:98:bb:bd:3b:78: 73:1d:40:58:b2:b4:bb:23:0f:64:80:15:35:0a:95:b8:39:53: da:80:3c:d0:86:79:57:ce:63:79:93:88:a9:16:c3:db:94:c2: a5:12:d1:63:2b:39:bd:1d:2b:a4:6a:ec:cd:64:da:2a:24:c9: f5:5a:61:0c:d4:26:de:89:72:0c:26:b1:67:af:57:fb:58:d9: a7:c9:cd:da:0e:11:f9:ba:e6:bb:7d:e3:48:f4:46:db:10:6e: f8:82:64:5c:53:ff:55:31:b4:a4:3d:cf:22:18:cb:d4:f3:91: 42:17:83:5f:d4:4a:81:5e:23:ef:90:47:31:a8:8e:45:c2:a5: 4c:b2:f8:7c:da:54:16:a9:15:13:5b:f0:52:52:44:ee:69:b5: 14:02:15:f2 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjYwNTA3MDAyOTQ1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiZGNmOS04NWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAls/zivIaoSciwzHvbCom94Rr1por1he48X4I6bo+hwvEFlH3lmul17m53lFT u5vxeEdcjM9xkRduLboLEIQVQEke3Ivnq9tUDDdo2c3Ry6CSXj36uHXIKCPsL7x7 V80Kvir0pV3hc8FH0SakWjk//xz2p+VDxaRj8u9R4+XF4bko3g+aNnHsuDVX4bAQ 4EWXMgKMKwygGkLopoq9H/jBaZQkXDbOlPcPpkhdrjMKFRqxNhRC4m0Yu3fulrWk TH5T2SiIUaPXq02qApHQYylUuS4eDCifvxvwOGYic7V6xGk8tdV2Dyr+l522F5RF 7ZAtzd9IYwtyT+IJHoSmoVjbvQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFKlPq7Sw 4qoNVZBpGUuM41QG1aaOMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkxNUQvNzEwOUVGQzQ3REM5MTFFQ0JCRkI2RjI0QzRGOUFFMDIvOENBM0JBRUM3 RENCMTFFQzk5ODA2RTI1QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCLXSIAwQCZxMUMA8EAgACMAkDBwAgAQ31gAAwDQYJKoZIhvcNAQEL BQADggEBAKWyP5aXaTkVoWw65E4S0dqhcqQaesjV92i4LbuqCOvu2UtdC0tWZlpw YZ+M9gctcqVvUfpN9lmcV0jf/stT6H3v+r7PwWpCCZn389x0+OD8Wry3KToveQcd UMy8kjqYC/Y0FxM/iSKYu707eHMdQFiytLsjD2SAFTUKlbg5U9qAPNCGeVfOY3mT iKkWw9uUwqUS0WMrOb0dK6Rq7M1k2iokyfVaYQzUJt6JcgwmsWevV/tY2afJzdoO Efm65rt940j0RtsQbviCZFxT/1UxtKQ9zyIYy9TzkUIXg1/USoFeI++QRzGojkXC pUyy+HzaVBapFRNb8FJSRO5ptRQCFfI= -----END CERTIFICATE-----Generated at Wed May 13 05:29:47 2026 by rpki-client