$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/539DF534D1FB11EDA0A31C2FC4F9AE02.roa File: 539DF534D1FB11EDA0A31C2FC4F9AE02.roa (raw, json) Hash identifier: MWwHTiRjfNu9FVjZ1lVuCJLbynbBLEwj/iegk3IWVJw= Subject key identifier: D1:E6:49:0E:9A:34:60:95:5F:A1:55:34:52:56:BB:1A:BD:19:17:C2 Certificate issuer: /CN=A91D0432/serialNumber=BE37704B8C7DF3975617194AF2ADEEDA1CC9BCF6 Certificate serial: 0283 Authority key identifier: BE:37:70:4B:8C:7D:F3:97:56:17:19:4A:F2:AD:EE:DA:1C:C9:BC:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/539DF534D1FB11EDA0A31C2FC4F9AE02.roa Signing time: Wed 29 Apr 2026 02:35:01 +0000 ROA not before: Wed 29 Apr 2026 02:35:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 132080 IP address blocks: 103.136.20.0/22 maxlen: 22 103.136.20.0/24 maxlen: 24 103.136.21.0/24 maxlen: 24 103.136.22.0/24 maxlen: 24 103.136.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.crl rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0432, serialNumber=BE37704B8C7DF3975617194AF2ADEEDA1CC9BCF6 Validity Not Before: Apr 29 02:35:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f16e54-0ab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:bf:8f:2f:a7:de:7c:8f:4a:80:ee:ba:ea: a5:03:87:e7:f0:a2:bb:17:4f:b6:77:60:46:03:22: 6a:95:35:ad:ff:04:b3:98:f3:89:88:bb:ce:0a:e4: 4a:4a:ad:88:65:bf:68:29:d8:66:c3:ca:17:ff:90: e5:b6:42:66:54:b6:f7:39:b0:42:98:60:fc:71:f0: 08:af:29:9c:c4:48:ea:7f:b4:c6:43:2e:bb:d8:06: 09:a4:a2:a1:fe:df:0c:71:86:28:55:68:b1:18:a2: 13:cb:eb:2f:8c:94:11:d0:32:5f:f8:01:1d:92:3e: dd:23:51:74:19:04:0b:ba:ef:86:2e:6c:e6:49:45: 3a:b1:40:81:b0:b3:be:e7:9b:39:d6:7d:d2:71:a8: de:73:7d:ef:c6:9d:0b:73:51:42:28:7a:bf:7b:b0: d3:d3:8e:06:af:2b:6a:36:77:f0:b6:1e:59:5a:79: 77:b4:a3:7d:1f:3c:b0:b0:97:64:82:c2:d5:d0:75: 0e:23:ea:41:76:3c:76:11:18:73:6e:3c:fc:5f:be: 44:d9:7b:21:23:ba:64:3b:7d:d1:7d:7d:1b:79:d7: 44:ca:dd:a0:5c:87:0b:e0:44:23:0b:44:02:27:50: ca:0c:a5:75:01:3e:67:c1:28:0e:52:02:c2:32:01: 8b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E6:49:0E:9A:34:60:95:5F:A1:55:34:52:56:BB:1A:BD:19:17:C2 X509v3 Authority Key Identifier: keyid:BE:37:70:4B:8C:7D:F3:97:56:17:19:4A:F2:AD:EE:DA:1C:C9:BC:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/539DF534D1FB11EDA0A31C2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.20.0/22 Signature Algorithm: sha256WithRSAEncryption ac:52:10:6b:0f:67:f2:84:25:89:92:68:e9:93:b5:af:ef:a8: dc:57:e3:a3:ed:07:af:98:0c:d0:31:8d:40:0f:43:77:a7:17: 2f:f0:9d:8b:d8:6c:3d:6f:12:0d:78:df:9a:37:da:e2:d0:e9: e0:7e:5f:9d:f4:dd:41:6f:13:66:5d:b9:81:97:e1:5a:b9:98: 09:5e:a8:7c:0c:54:c8:3c:8d:16:41:b8:3c:ef:38:ea:a2:8c: 7f:41:25:f1:5a:1f:a4:ff:8b:06:d7:fd:49:17:30:83:ac:15: a8:8b:51:49:3f:1e:84:1f:c5:78:72:77:c8:e7:ea:89:a1:2f: 0d:b7:99:58:31:3c:8f:37:70:b7:83:52:f2:c7:00:2c:5d:c0: f4:58:fc:b2:4e:63:f1:30:93:a8:74:da:f2:95:ba:f8:13:2a: aa:22:a0:1a:c1:a6:99:96:1d:24:06:80:e4:69:b8:e3:33:23: dc:67:8c:3f:8e:50:08:a2:d2:a4:07:65:28:15:db:06:d1:aa: bb:05:2d:60:be:eb:73:6f:1e:84:b2:1c:66:1f:61:d3:89:4e: 60:11:4b:50:6e:be:a5:a2:08:ef:72:74:90:c8:13:c3:c3:94: 0b:01:03:04:11:c6:6c:d5:ea:9c:fb:f2:bb:12:8e:e0:2f:61: cc:12:9c:5a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA0MzIxMTAvBgNVBAUTKEJFMzc3MDRCOEM3REYzOTc1NjE3MTk0QUYyQURFRURB MUNDOUJDRjYwHhcNMjYwNDI5MDIzNTAxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxNmU1NC0wYWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgq/jy+n3nyPSoDuuuqlA4fn8KK7F0+2d2BGAyJqlTWt/wSzmPOJiLvOCuRK Sq2IZb9oKdhmw8oX/5DltkJmVLb3ObBCmGD8cfAIrymcxEjqf7TGQy672AYJpKKh /t8McYYoVWixGKITy+svjJQR0DJf+AEdkj7dI1F0GQQLuu+GLmzmSUU6sUCBsLO+ 55s51n3Scajec33vxp0Lc1FCKHq/e7DT044GrytqNnfwth5ZWnl3tKN9HzywsJdk gsLV0HUOI+pBdjx2ERhzbjz8X75E2XshI7pkO33RfX0beddEyt2gXIcL4EQjC0QC J1DKDKV1AT5nwSgOUgLCMgGLewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNHmSQ6a NGCVX6FVNFJWuxq9GRfCMB8GA1UdIwQYMBaAFL43cEuMffOXVhcZSvKt7tocybz2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDQzMi9FM0NBMThFQzdC ODcxMUVEQjU5RTNCODBDNEY5QUUwMi92amR3UzR4OTg1ZFdGeGxLOHEzdTJoekp2 UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZqZHdTNHg5ODVkV0Z4bEs4cTN1Mmh6SnZQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA0MzIvRTNDQTE4RUM3Qjg3MTFFREI1OUUzQjgwQzRGOUFFMDIvNTM5REY1MzRE MUZCMTFFREEwQTMxQzJGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4gUMA0GCSqGSIb3DQEBCwUAA4IBAQCsUhBrD2fyhCWJkmjpk7Wv 76jcV+Oj7QevmAzQMY1AD0N3pxcv8J2L2Gw9bxINeN+aN9ri0Ongfl+d9N1BbxNm XbmBl+FauZgJXqh8DFTIPI0WQbg87zjqoox/QSXxWh+k/4sG1/1JFzCDrBWoi1FJ Px6EH8V4cnfI5+qJoS8Nt5lYMTyPN3C3g1LyxwAsXcD0WPyyTmPxMJOodNrylbr4 EyqqIqAawaaZlh0kBoDkabjjMyPcZ4w/jlAIotKkB2UoFdsG0aq7BS1gvutzbx6E shxmH2HTiU5gEUtQbr6logjvcnSQyBPDw5QLAQMEEcZs1eqc+/K7Eo7gL2HMEpxa -----END CERTIFICATE-----Generated at Wed May 13 15:01:31 2026 by rpki-client