$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa File: EC56413A5B4B11EE9A031C81C4F9AE02.roa (raw, json) Hash identifier: g7/beSnQDmTq2ey2xjXqWwakjmuPtANr1j+4Lu9F/xY= Subject key identifier: CE:2A:9B:94:DD:0D:52:94:3E:A0:26:98:F6:68:F1:4E:C6:BE:26:1B Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 0201 Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa Signing time: Fri 01 May 2026 03:36:09 +0000 ROA not before: Fri 01 May 2026 03:36:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1851 IP address blocks: 43.241.200.0/22 maxlen: 22 45.121.132.0/22 maxlen: 22 103.37.128.0/22 maxlen: 22 203.26.136.0/24 maxlen: 24 2403:7900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: May 1 03:36:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f41fa9-0ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9e:8a:5d:9d:e7:f1:72:7f:d3:bc:2f:33:86: 11:a0:31:ae:ce:a1:76:be:c9:cb:09:da:4e:51:f1: 62:90:61:47:55:7c:13:a8:19:da:49:90:b0:7c:60: 57:93:5e:1f:f5:26:e4:06:45:df:63:d8:82:03:2a: 51:96:35:1d:c1:f2:14:11:b4:10:16:bd:65:2b:b3: 51:cf:9d:01:37:c9:5a:9b:97:2e:dd:8d:7b:6f:94: 14:82:69:13:7e:7f:d9:21:41:e2:39:5b:a5:78:ee: f5:5b:bb:28:55:23:d2:47:ae:ba:d4:c1:3e:d7:00: 83:0a:4a:79:78:15:3f:de:89:31:34:61:db:9e:f5: 9b:31:00:de:b5:67:38:40:0d:09:62:d7:69:88:11: 49:1b:65:0f:af:56:5d:8b:bb:11:f6:75:4b:ef:dd: 31:82:d9:2a:21:dc:9f:49:ad:3e:08:0f:0e:5c:4b: f1:da:85:7f:b4:f8:a4:57:5a:ce:c0:50:dd:d0:cc: 15:ba:85:41:1b:36:2d:a8:c9:a2:9a:e4:4d:0e:cc: 3b:aa:78:eb:9e:bc:f5:fd:bc:03:eb:5e:66:a5:d1: 21:77:51:07:29:6c:fc:a2:1a:53:39:98:bc:ce:4e: 3c:09:a7:42:7b:4d:06:d7:ad:b7:6c:60:99:f0:00: 10:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2A:9B:94:DD:0D:52:94:3E:A0:26:98:F6:68:F1:4E:C6:BE:26:1B X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.241.200.0/22 45.121.132.0/22 103.37.128.0/22 203.26.136.0/24 IPv6: 2403:7900::/32 Signature Algorithm: sha256WithRSAEncryption 2e:81:cc:0d:a1:4d:23:38:e8:2e:99:a5:17:7c:94:25:c4:63: d1:88:49:e1:da:cb:e2:25:fb:60:bf:68:0a:37:21:25:d6:02: 8c:8e:17:e8:55:11:19:63:74:9b:25:5c:85:c4:b8:04:4e:20: 19:bb:38:4c:cd:db:ea:a1:18:b3:ac:c9:a1:cb:ca:08:6b:0e: 57:33:ca:c7:50:84:b3:38:60:84:12:a5:d3:a6:92:29:10:79: 67:84:f5:d8:ce:74:49:e2:11:f9:a0:31:61:91:aa:94:9a:c3: 9f:da:8e:28:04:6f:a6:85:aa:99:7e:bc:3b:5a:f9:1e:d5:59: ee:15:4b:f5:10:ad:46:f3:fc:20:35:bc:60:57:40:c2:89:bf: 10:f1:84:ee:15:68:1e:28:ab:f5:7b:8c:14:be:4d:34:cc:c6: f8:a2:bb:18:04:d5:2f:26:48:77:63:6c:2f:4b:b5:60:34:df: 5a:59:06:e1:be:49:70:8d:d4:7b:49:e6:6a:3e:94:30:04:cb: ae:07:d7:12:c9:46:8b:39:8b:db:cf:b2:a8:a8:a0:59:2f:82: d1:73:33:91:9c:a7:f1:52:da:04:7d:25:4a:cd:42:ff:8b:2b: 9f:bd:24:9f:ef:78:a9:42:32:77:d4:0d:2a:56:11:dd:6e:ee: c5:a9:f1:fd -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDAwOTkyOEYwQjhDRDMwRURBMDU2MzBBOEJBNjc0RTc2 MkE5RDI4MzMwHhcNMjYwNTAxMDMzNjA5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0MWZhOS0wZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Z6KXZ3n8XJ/07wvM4YRoDGuzqF2vsnLCdpOUfFikGFHVXwTqBnaSZCwfGBX k14f9SbkBkXfY9iCAypRljUdwfIUEbQQFr1lK7NRz50BN8lam5cu3Y17b5QUgmkT fn/ZIUHiOVuleO71W7soVSPSR6661ME+1wCDCkp5eBU/3okxNGHbnvWbMQDetWc4 QA0JYtdpiBFJG2UPr1Zdi7sR9nVL790xgtkqIdyfSa0+CA8OXEvx2oV/tPikV1rO wFDd0MwVuoVBGzYtqMmimuRNDsw7qnjrnrz1/bwD615mpdEhd1EHKWz8ohpTOZi8 zk48CadCe00G1623bGCZ8AAQuQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFM4qm5Td DVKUPqAmmPZo8U7GviYbMB8GA1UdIwQYMBaAFACZKPC4zTDtoFYwqLpnTnYqnSgz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9CMzc0OTcxMDVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1PMmdWakNvdW1kT2RpcWRL RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQjM3NDk3MTA1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvRUM1NjQxM0E1 QjRCMTFFRTlBMDMxQzgxQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCK/HIAwQCLXmEAwQCZyWAAwQAyxqIMA0EAgACMAcDBQAkA3kAMA0G CSqGSIb3DQEBCwUAA4IBAQAugcwNoU0jOOgumaUXfJQlxGPRiEnh2sviJftgv2gK NyEl1gKMjhfoVREZY3SbJVyFxLgETiAZuzhMzdvqoRizrMmhy8oIaw5XM8rHUISz OGCEEqXTppIpEHlnhPXYznRJ4hH5oDFhkaqUmsOf2o4oBG+mhaqZfrw7Wvke1Vnu FUv1EK1G8/wgNbxgV0DCib8Q8YTuFWgeKKv1e4wUvk00zMb4orsYBNUvJkh3Y2wv S7VgNN9aWQbhvklwjdR7SeZqPpQwBMuuB9cSyUaLOYvbz7KoqKBZL4LRczORnKfx UtoEfSVKzUL/iyufvSSf73ipQjJ31A0qVhHdbu7FqfH9 -----END CERTIFICATE-----Generated at Wed May 13 08:59:31 2026 by rpki-client