$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa File: D29DE1E6C98611ED8D5AE04CC4F9AE02.roa (raw, json) Hash identifier: HmIlCNViGVQc0Khs8nRBOHgBuzDEV5/tZXqnnM3HNCQ= Subject key identifier: 1E:45:3F:15:BE:00:7A:4F:64:12:BD:B6:FE:3E:04:99:B1:E5:48:92 Certificate issuer: /CN=A91C3DC8/serialNumber=A6C9611130C5167455136E85ABF236AAAA937BAD Certificate serial: 0CE7 Authority key identifier: A6:C9:61:11:30:C5:16:74:55:13:6E:85:AB:F2:36:AA:AA:93:7B:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa Signing time: Fri 24 Apr 2026 19:23:49 +0000 ROA not before: Fri 24 Apr 2026 19:23:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136141 IP address blocks: 103.137.66.0/24 maxlen: 24 103.137.67.0/24 maxlen: 24 2001:df0:1c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.crl rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3DC8, serialNumber=A6C9611130C5167455136E85ABF236AAAA937BAD Validity Not Before: Apr 24 19:23:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69ebc345-89d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:c4:45:17:4b:79:93:b0:0e:86:42:a5:74: 7a:4b:31:da:38:31:db:a4:54:80:2e:cb:d0:3f:62: d9:e5:53:d8:9c:01:41:fc:54:0f:04:92:b3:db:d1: 9f:45:76:d4:8e:03:f7:0e:7c:3d:d7:6c:11:97:3d: db:ca:b8:7a:5f:66:74:da:f9:6c:75:98:0c:a5:6a: 33:fa:c7:e0:84:17:d0:cb:2d:be:55:2c:1d:a4:b5: 38:e7:48:09:5a:b8:df:36:5c:27:c3:c7:03:46:78: 7b:59:da:33:12:81:5e:6c:09:5f:56:3b:d9:ec:b2: 04:1f:1a:c1:1c:b9:a5:13:c2:a8:53:2b:47:46:05: 61:b9:e3:62:08:65:66:b0:a7:5d:6f:d4:71:97:2d: 8f:fe:27:53:10:69:14:1a:b1:a4:ae:5c:e5:62:83: 37:e0:92:59:34:50:90:9b:c3:8f:dd:3e:ff:ad:18: 83:a6:ff:5a:96:cc:13:02:8b:f9:3a:51:b4:4a:40: 5f:ec:3b:7e:42:07:c1:6c:2b:da:a8:1d:42:34:06: 2f:cb:3f:e0:dc:6f:a9:da:0f:15:cd:5f:a1:ce:f2: 64:cf:a9:86:f7:21:8c:13:94:be:83:10:63:f9:8e: 67:14:93:d0:d8:2d:d9:a4:1d:b5:da:8a:3f:b4:92: 2c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:45:3F:15:BE:00:7A:4F:64:12:BD:B6:FE:3E:04:99:B1:E5:48:92 X509v3 Authority Key Identifier: keyid:A6:C9:61:11:30:C5:16:74:55:13:6E:85:AB:F2:36:AA:AA:93:7B:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.66.0/23 IPv6: 2001:df0:1c80::/48 Signature Algorithm: sha256WithRSAEncryption 1d:7a:f1:f7:d8:39:09:94:28:00:91:c5:67:ba:14:32:a8:94: f1:3a:ad:01:1d:d5:ec:04:e6:87:f7:4d:a0:0d:b9:0d:7f:d5: 06:9b:3a:4f:04:68:3b:6c:6e:32:ea:da:99:1c:f6:9e:02:1f: b5:1a:c4:ab:40:14:78:e1:94:74:ea:a1:15:d2:93:4a:1e:0a: ae:ca:70:eb:31:2e:ca:bb:a4:cd:e2:95:7e:6e:7c:c0:ab:e6: ab:c1:87:46:e7:05:0b:2f:35:7a:b9:eb:af:ba:7e:8b:24:68: 34:75:7f:5d:06:8d:23:e3:28:70:18:42:1b:85:12:4e:95:be: 0b:4c:55:69:a4:cd:f6:08:66:81:21:f7:3d:08:5f:2d:21:ce: a5:e1:9b:d7:32:33:57:f6:ae:66:9f:3a:0f:3b:e1:3a:9b:af: 34:8e:5d:6e:02:aa:e3:8c:d3:b2:a2:05:cc:09:4b:fe:37:f9: 25:5a:f4:1f:e2:c2:0a:8a:c4:88:b4:1b:e9:90:42:26:c4:0c: 21:86:a7:7e:b7:0d:53:f2:ba:95:52:1d:07:14:6d:76:7a:31: 35:ae:ed:ca:f6:7d:b2:52:7e:01:e2:bf:b6:92:c3:b8:0a:12: 10:f9:6e:c3:e9:48:e3:c4:2a:00:0d:6d:2a:6e:16:7a:17:b4: 6f:06:7b:89 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNEQzgxMTAvBgNVBAUTKEE2Qzk2MTExMzBDNTE2NzQ1NTEzNkU4NUFCRjIzNkFB QUE5MzdCQUQwHhcNMjYwNDI0MTkyMzQ5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWViYzM0NS04OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsfERRdLeZOwDoZCpXR6SzHaODHbpFSALsvQP2LZ5VPYnAFB/FQPBJKz29Gf RXbUjgP3Dnw912wRlz3byrh6X2Z02vlsdZgMpWoz+sfghBfQyy2+VSwdpLU450gJ WrjfNlwnw8cDRnh7WdozEoFebAlfVjvZ7LIEHxrBHLmlE8KoUytHRgVhueNiCGVm sKddb9Rxly2P/idTEGkUGrGkrlzlYoM34JJZNFCQm8OP3T7/rRiDpv9alswTAov5 OlG0SkBf7Dt+QgfBbCvaqB1CNAYvyz/g3G+p2g8VzV+hzvJkz6mG9yGME5S+gxBj +Y5nFJPQ2C3ZpB212oo/tJIslQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFB5FPxW+ AHpPZBK9tv4+BJmx5UiSMB8GA1UdIwQYMBaAFKbJYREwxRZ0VRNuhavyNqqqk3ut MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0RDOC9FNUNBRjkzRTEx RDgxMUVBQjcxNjdDNEZDNEY5QUUwMi9wc2xoRVRERkZuUlZFMjZGcV9JMnFxcVRl NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BzbGhFVERGRm5SVkUyNkZxX0kycXFxVGU2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNEQzgvRTVDQUY5M0UxMUQ4MTFFQUI3MTY3QzRGQzRGOUFFMDIvRDI5REUxRTZD OTg2MTFFRDhENUFFMDRDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4lCMA8EAgACMAkDBwAgAQ3wHIAwDQYJKoZIhvcNAQELBQADggEB AB168ffYOQmUKACRxWe6FDKolPE6rQEd1ewE5of3TaANuQ1/1QabOk8EaDtsbjLq 2pkc9p4CH7UaxKtAFHjhlHTqoRXSk0oeCq7KcOsxLsq7pM3ilX5ufMCr5qvBh0bn BQsvNXq566+6foskaDR1f10GjSPjKHAYQhuFEk6VvgtMVWmkzfYIZoEh9z0IXy0h zqXhm9cyM1f2rmafOg874TqbrzSOXW4CquOM07KiBcwJS/43+SVa9B/iwgqKxIi0 G+mQQibEDCGGp363DVPyupVSHQcUbXZ6MTWu7cr2fbJSfgHiv7aSw7gKEhD5bsPp SOPEKgANbSpuFnoXtG8Ge4k= -----END CERTIFICATE-----Generated at Wed May 13 07:22:20 2026 by rpki-client