$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa File: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (raw, json) Hash identifier: poNMGSGrpTAPCrqfdK25sN3Vft9NfKGAwiYy9nIgFS0= Subject key identifier: C1:A8:29:7E:1D:74:DC:01:C8:82:63:A3:AC:EB:1B:91:41:8E:90:E4 Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3606 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa Signing time: Tue 12 May 2026 15:13:06 +0000 ROA not before: Tue 12 May 2026 15:13:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38477 IP address blocks: 103.11.124.0/22 maxlen: 24 116.90.128.0/20 maxlen: 20 116.90.128.0/21 maxlen: 21 116.90.128.0/24 maxlen: 24 116.90.129.0/24 maxlen: 24 116.90.130.0/24 maxlen: 24 116.90.133.0/24 maxlen: 24 116.90.134.0/24 maxlen: 24 116.90.136.0/21 maxlen: 21 116.90.136.0/23 maxlen: 23 116.90.138.0/24 maxlen: 24 116.90.139.0/24 maxlen: 24 116.90.140.0/24 maxlen: 24 116.90.142.0/24 maxlen: 24 116.90.143.0/24 maxlen: 24 120.136.62.0/24 maxlen: 24 122.102.108.0/23 maxlen: 23 202.6.116.0/23 maxlen: 23 2401:f000::/32 maxlen: 32 2401:f000::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13830 (0x3606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: May 12 15:13:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a034381-1431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:75:39:b7:b2:a7:13:6e:63:c4:2a:c3:c0:0b: 3f:71:a4:b4:07:d7:55:6c:14:f7:af:4a:6f:73:fb: 48:4e:bf:69:3e:64:c2:78:d5:0a:c5:65:4c:0b:8b: 04:5d:83:ac:27:7f:f5:88:30:63:05:34:ae:a3:da: fd:96:0e:da:dc:c1:f5:de:f9:b8:4c:46:8e:ba:11: ed:cb:ee:bb:d7:a5:1d:9f:d0:79:7e:ff:4e:f2:56: 19:41:05:28:df:b8:73:fc:08:8c:60:e6:09:ff:b0: 1f:88:b2:cb:f7:0d:1f:0d:72:b9:23:51:64:f5:e1: 16:66:fb:6c:e0:68:ba:cc:a4:73:64:c6:1e:cb:9a: 96:4e:88:d0:89:68:7b:69:11:fe:c9:86:79:3b:00: d7:25:ed:9f:59:52:a1:cf:f5:fb:57:3d:15:20:28: 82:d5:f3:6c:ce:89:e0:4b:b3:7a:15:ac:2b:85:61: 4a:07:6f:0d:d8:c6:55:72:7b:aa:c5:67:07:93:74: ee:45:5b:c2:eb:96:ad:18:65:46:49:8a:67:c9:0e: e7:8c:7c:54:af:ee:e3:95:3c:06:ff:3b:19:28:ce: 5d:4f:5e:1e:f1:4d:eb:6b:67:df:a8:a3:f6:29:92: 45:67:51:3b:11:8d:d0:b1:cb:8c:90:82:b1:62:e2: d5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A8:29:7E:1D:74:DC:01:C8:82:63:A3:AC:EB:1B:91:41:8E:90:E4 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.11.124.0/22 116.90.128.0/20 120.136.62.0/24 122.102.108.0/23 202.6.116.0/23 IPv6: 2401:f000::/32 Signature Algorithm: sha256WithRSAEncryption b1:e2:c4:e8:b9:b2:c2:d5:55:b4:11:48:cd:d3:86:64:07:f5: 08:e4:76:ea:9e:c9:c3:54:b5:71:1d:2d:0c:ae:8a:ed:ee:0b: 58:21:d0:35:c4:bc:e1:37:e8:b1:c2:f8:f5:ba:6f:e8:a2:1c: 6b:be:c7:c3:b6:34:6d:5f:6f:a0:c5:8d:d2:ac:09:d0:68:74: 52:c1:dd:13:60:8c:63:04:d3:d1:93:97:27:8d:38:f7:dc:fd: 86:3f:fb:24:2f:4e:e2:81:5e:b5:8e:5a:b1:c6:d3:7b:26:8a: 28:03:11:42:9a:7c:43:52:73:fa:6d:83:b8:01:36:e3:2c:e8: 80:fe:16:77:39:9a:b4:56:80:91:13:db:99:28:e0:bb:93:06: 89:b8:1b:ab:e2:f1:f6:28:ad:1b:51:3e:06:cc:39:bd:2f:02: 1f:9d:aa:03:58:a0:13:04:5c:f6:c9:f1:a8:2e:45:cd:a1:41: a4:92:68:42:ce:46:82:78:cd:a6:b8:3b:7b:82:66:f7:55:de: 8d:4c:33:e6:15:9d:b1:dd:c4:d7:3b:99:30:ab:60:18:2b:c1: 6b:82:70:aa:2f:74:b5:39:54:d9:ce:21:fb:bd:e4:a5:e9:fa: 5a:85:bf:a1:19:8e:ca:82:65:9b:10:08:8d:72:96:d2:74:ed: c2:3c:08:91 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICNgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjYwNTEyMTUxMzA1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzNDM4MS0xNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3U5t7KnE25jxCrDwAs/caS0B9dVbBT3r0pvc/tITr9pPmTCeNUKxWVMC4sE XYOsJ3/1iDBjBTSuo9r9lg7a3MH13vm4TEaOuhHty+6716Udn9B5fv9O8lYZQQUo 37hz/AiMYOYJ/7AfiLLL9w0fDXK5I1Fk9eEWZvts4Gi6zKRzZMYey5qWTojQiWh7 aRH+yYZ5OwDXJe2fWVKhz/X7Vz0VICiC1fNszongS7N6FawrhWFKB28N2MZVcnuq xWcHk3TuRVvC65atGGVGSYpnyQ7njHxUr+7jlTwG/zsZKM5dT14e8U3ra2ffqKP2 KZJFZ1E7EY3QscuMkIKxYuLVowIDAQABo4IChzCCAoMwHQYDVR0OBBYEFMGoKX4d dNwByIJjo6zrG5FBjpDkMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5NzgvMzIyM0YzNUUxRDk4MTFFMjhBOEMyRTgyMDhCMDJDRDIvRDFFRTY4ODRG MDZDMTFFRUE1QkFBNjU2QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCZwt8AwQEdFqAAwQAeIg+AwQBemZsAwQBygZ0MA0EAgACMAcDBQAk AfAAMA0GCSqGSIb3DQEBCwUAA4IBAQCx4sToubLC1VW0EUjN04ZkB/UI5HbqnsnD VLVxHS0Mrort7gtYIdA1xLzhN+ixwvj1um/oohxrvsfDtjRtX2+gxY3SrAnQaHRS wd0TYIxjBNPRk5cnjTj33P2GP/skL07igV61jlqxxtN7JoooAxFCmnxDUnP6bYO4 ATbjLOiA/hZ3OZq0VoCRE9uZKOC7kwaJuBur4vH2KK0bUT4GzDm9LwIfnaoDWKAT BFz2yfGoLkXNoUGkkmhCzkaCeM2muDt7gmb3Vd6NTDPmFZ2x3cTXO5kwq2AYK8Fr gnCqL3S1OVTZziH7veSl6fpahb+hGY7KgmWbEAiNcpbSdO3CPAiR -----END CERTIFICATE-----Generated at Wed May 13 02:29:30 2026 by rpki-client