$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09D4/60289CEE084711EB94AF0C1CC4F9AE02/484CDD48084B11EBA5FDD126C4F9AE02.roa File: 484CDD48084B11EBA5FDD126C4F9AE02.roa (raw, json) Hash identifier: qtMYIEnbiq7hnTXu83dyb1pR6Ew8tkioJCqNAvjo/dk= Subject key identifier: D7:78:FB:9C:00:2E:79:13:CB:C3:69:CA:39:B8:81:CA:48:39:FF:5D Certificate issuer: /CN=A91D09D4/serialNumber=49ACD3ECD327F02356C5F8817018F3D9F209F41E Certificate serial: 0859 Authority key identifier: 49:AC:D3:EC:D3:27:F0:23:56:C5:F8:81:70:18:F3:D9:F2:09:F4:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SazT7NMn8CNWxfiBcBjz2fIJ9B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09D4/60289CEE084711EB94AF0C1CC4F9AE02/484CDD48084B11EBA5FDD126C4F9AE02.roa Signing time: Mon 04 May 2026 21:25:49 +0000 ROA not before: Mon 04 May 2026 21:25:49 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 55720 IP address blocks: 103.91.64.0/24 maxlen: 24 103.91.65.0/24 maxlen: 24 103.91.66.0/24 maxlen: 24 103.91.67.0/24 maxlen: 24 123.253.32.0/24 maxlen: 24 123.253.33.0/24 maxlen: 24 123.253.34.0/24 maxlen: 24 123.253.35.0/24 maxlen: 24 2401:340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09D4/60289CEE084711EB94AF0C1CC4F9AE02/SazT7NMn8CNWxfiBcBjz2fIJ9B4.crl rsync://rpki.apnic.net/member_repository/A91D09D4/60289CEE084711EB94AF0C1CC4F9AE02/SazT7NMn8CNWxfiBcBjz2fIJ9B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SazT7NMn8CNWxfiBcBjz2fIJ9B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2137 (0x859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09D4, serialNumber=49ACD3ECD327F02356C5F8817018F3D9F209F41E Validity Not Before: May 4 21:25:49 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69f90edc-3014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b2:94:9d:bd:11:ed:10:8a:bc:97:f0:c5:de: c5:47:ac:8c:cb:b6:ea:67:bd:8f:4d:73:eb:64:f0: 34:80:2f:f8:32:76:c4:11:af:08:02:68:75:c2:c9: 61:96:b8:9d:dd:fd:67:a6:80:63:75:5d:a5:42:61: 3f:8c:41:e2:70:08:8d:b9:bb:0d:fe:6c:c5:cc:16: e2:8d:9b:c3:de:33:88:87:ed:34:40:f8:a2:3c:10: a4:06:0a:ac:a8:61:05:36:07:f2:39:eb:15:0c:bd: a5:4c:0a:19:8d:ef:b1:5e:52:9a:49:23:62:3b:ca: 5a:3b:01:d5:41:d8:f4:26:a6:36:98:73:52:a6:2f: 58:4a:48:29:ac:4b:16:dd:f3:8b:7c:d8:73:5f:bf: b9:73:eb:9b:ac:5f:0d:78:4a:a4:5c:de:a6:8a:1f: 92:5c:10:8c:59:a5:aa:e6:3c:65:74:d8:ee:60:af: 47:99:1d:39:51:4b:cc:a0:68:f5:60:cd:60:d1:f7: 18:55:64:77:52:5c:56:72:f2:11:09:90:f3:ea:9f: a4:4e:2d:4f:12:f4:1d:9f:68:84:1a:e3:d5:d4:96: 87:b3:67:8f:21:b7:bf:02:26:df:57:85:c2:f1:6f: 74:70:b7:e2:02:d6:fa:6b:be:6a:b2:5d:ab:29:0c: 74:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:78:FB:9C:00:2E:79:13:CB:C3:69:CA:39:B8:81:CA:48:39:FF:5D X509v3 Authority Key Identifier: keyid:49:AC:D3:EC:D3:27:F0:23:56:C5:F8:81:70:18:F3:D9:F2:09:F4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09D4/60289CEE084711EB94AF0C1CC4F9AE02/SazT7NMn8CNWxfiBcBjz2fIJ9B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SazT7NMn8CNWxfiBcBjz2fIJ9B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09D4/60289CEE084711EB94AF0C1CC4F9AE02/484CDD48084B11EBA5FDD126C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.64.0/22 123.253.32.0/22 IPv6: 2401:340::/32 Signature Algorithm: sha256WithRSAEncryption 1d:1f:9d:f8:ec:69:72:cc:39:13:a2:b5:6f:d6:b5:5f:90:f7: 79:dc:3c:ca:7d:ee:37:dc:88:93:27:b2:ea:f0:1d:35:5a:89: 3e:72:25:80:4e:17:09:9f:95:f7:de:f8:05:d9:58:cb:0f:94: ca:f7:de:e4:89:6f:54:0a:48:3e:e4:cf:a4:22:bf:83:49:4b: 9a:4a:3c:46:b4:21:66:d9:99:f3:24:69:fe:ad:a8:f9:de:28: 59:9f:0a:2f:da:e7:11:49:2a:fb:3e:02:b3:79:03:ed:c3:4f: 49:dd:68:70:a3:5b:a2:78:96:68:7a:30:3f:08:c3:68:4a:ac: 52:9e:c6:70:42:79:e8:29:83:c7:e5:4d:69:d9:f1:8f:3c:c7: de:70:13:a1:2a:c3:f7:9c:9a:8c:35:8b:19:98:c0:64:0e:16: 7c:eb:b3:a4:20:fa:6a:f7:14:4d:3d:13:46:bf:d5:bf:c2:7b: da:28:5d:dd:18:6d:eb:57:2d:c8:67:b9:52:c6:c1:f0:1b:4c: 10:10:87:a6:67:56:8a:b3:b8:85:f6:af:8a:f3:8c:ad:7d:e1: b7:9b:a1:3d:bd:3d:8e:29:02:06:bc:73:dd:3d:b1:71:fc:9b: 15:ad:ba:ae:1a:f6:f5:d8:5e:fe:bf:ca:f9:81:d1:63:44:94: 59:6f:0d:7b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5RDQxMTAvBgNVBAUTKDQ5QUNEM0VDRDMyN0YwMjM1NkM1Rjg4MTcwMThGM0Q5 RjIwOUY0MUUwHhcNMjYwNTA0MjEyNTQ5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5MGVkYy0zMDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubKUnb0R7RCKvJfwxd7FR6yMy7bqZ72PTXPrZPA0gC/4MnbEEa8IAmh1wslh lrid3f1npoBjdV2lQmE/jEHicAiNubsN/mzFzBbijZvD3jOIh+00QPiiPBCkBgqs qGEFNgfyOesVDL2lTAoZje+xXlKaSSNiO8paOwHVQdj0JqY2mHNSpi9YSkgprEsW 3fOLfNhzX7+5c+ubrF8NeEqkXN6mih+SXBCMWaWq5jxldNjuYK9HmR05UUvMoGj1 YM1g0fcYVWR3UlxWcvIRCZDz6p+kTi1PEvQdn2iEGuPV1JaHs2ePIbe/AibfV4XC 8W90cLfiAtb6a75qsl2rKQx0sQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFNd4+5wA LnkTy8Npyjm4gcpIOf9dMB8GA1UdIwQYMBaAFEms0+zTJ/AjVsX4gXAY89nyCfQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlENC82MDI4OUNFRTA4 NDcxMUVCOTRBRjBDMUNDNEY5QUUwMi9TYXpUN05NbjhDTld4ZmlCY0JqejJmSUo5 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NhelQ3Tk1uOENOV3hmaUJjQmp6MmZJSjlCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA5RDQvNjAyODlDRUUwODQ3MTFFQjk0QUYwQzFDQzRGOUFFMDIvNDg0Q0RENDgw ODRCMTFFQkE1RkREMTI2QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1tAAwQCe/0gMA0EAgACMAcDBQAkAQNAMA0GCSqGSIb3DQEBCwUA A4IBAQAdH5347GlyzDkTorVv1rVfkPd53DzKfe433IiTJ7Lq8B01Wok+ciWAThcJ n5X33vgF2VjLD5TK997kiW9UCkg+5M+kIr+DSUuaSjxGtCFm2ZnzJGn+raj53ihZ nwov2ucRSSr7PgKzeQPtw09J3Whwo1uieJZoejA/CMNoSqxSnsZwQnnoKYPH5U1p 2fGPPMfecBOhKsP3nJqMNYsZmMBkDhZ867OkIPpq9xRNPRNGv9W/wnvaKF3dGG3r Vy3IZ7lSxsHwG0wQEIemZ1aKs7iF9q+K84ytfeG3m6E9vT2OKQIGvHPdPbFx/JsV rbquGvb12F7+v8r5gdFjRJRZbw17 -----END CERTIFICATE-----Generated at Wed May 13 00:19:57 2026 by rpki-client