$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa File: 3408F1BA450811F09650FF5FC4F9AE02.roa (raw, json) Hash identifier: v4VAeTRhLetshvqbEadOdfyl/dOEP9N+4RKLhZ4e7qE= Subject key identifier: F0:61:D3:9E:D2:87:0F:EF:41:C3:08:6A:07:9A:83:C0:14:43:09:8C Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 0108 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa Signing time: Sun 03 May 2026 07:39:30 +0000 ROA not before: Sun 03 May 2026 07:39:30 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 401696 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 3 07:39:30 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69f6fbb1-683a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:61:f1:40:8c:bd:a2:14:dc:a5:c2:6d:f2:3f: 6b:42:8d:59:cf:ea:c0:c7:8e:08:b3:f7:01:1b:b4: 16:f4:f5:cf:9a:61:51:ef:28:3b:87:31:9d:99:39: 5a:cb:0b:63:13:49:7e:1c:45:e9:39:33:9a:06:3d: 52:5b:e9:af:fb:98:5a:cc:dc:0c:7e:eb:10:61:c7: 8a:34:c8:3b:fe:b8:f2:85:92:f8:1a:c6:c4:1c:ad: ec:03:72:e0:5e:27:a1:48:05:76:7d:23:8d:15:19: 50:8c:1c:2a:d6:8f:b4:a2:b8:2b:4f:2c:3e:51:d9: 9e:68:4c:33:8b:fe:39:38:1a:74:c6:20:cd:1c:62: 0d:9e:19:59:2b:c6:52:5e:95:d3:67:bd:09:0c:cc: 30:e4:2d:fd:6d:bb:c6:5b:6d:f4:82:05:3c:86:f9: 22:e9:bc:dc:f8:d7:db:4a:d0:22:7b:a7:c6:aa:03: 56:65:90:ea:d2:89:ac:a7:15:29:eb:96:38:71:2e: e8:3f:3c:0f:a4:17:73:22:b6:e8:51:6d:de:2e:2b: 17:b9:8f:5b:4a:ca:04:fe:5a:98:b1:4f:05:33:b0: 87:5e:78:e8:ab:a0:57:eb:43:94:4d:5b:6d:5c:4b: 72:76:be:07:35:ab:d9:d8:0e:46:5c:14:d5:5e:41: e6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:61:D3:9E:D2:87:0F:EF:41:C3:08:6A:07:9A:83:C0:14:43:09:8C X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:f9:f9:8e:f7:ab:4b:a0:6f:8a:eb:f2:ab:6d:7a:5f:16:72: 48:c1:7a:62:c6:24:7b:d5:ff:a1:a1:e8:52:63:1b:b2:77:80: 92:1e:ba:00:66:5f:59:27:0e:02:8c:0d:bd:53:23:c3:d7:62: 87:50:bc:97:71:52:f2:56:0d:e0:da:d8:82:75:4e:ae:4f:24: 6a:6b:36:40:ae:6f:a8:58:82:58:bc:be:6c:03:fa:ef:27:43: 72:07:a3:11:ab:09:b7:44:df:e0:90:c8:56:3d:72:ec:91:64: 28:d8:3a:33:77:07:aa:d5:3c:fc:13:ee:b3:b0:be:15:18:18: 89:c5:88:5f:c3:4d:d6:01:5f:4b:c5:b8:0c:1b:af:a3:37:b4: 35:19:10:ca:c8:d9:9c:65:0f:0a:c5:8b:c6:83:5f:0d:e9:93: df:d2:ab:ba:15:35:d7:fa:07:64:f9:95:da:3e:bc:d9:e9:84: 89:e3:04:ff:86:d2:c4:f4:d5:36:9a:0a:f5:be:19:51:e2:40: 18:82:69:36:0f:31:c0:dd:61:1c:4c:17:94:b2:5d:d2:64:b6: df:52:53:ae:87:8d:41:b8:7b:bb:a6:b4:c8:ed:94:00:54:fe: e0:11:7f:5a:3b:ac:2f:d1:9a:ac:fc:10:0e:07:33:ee:d8:07: 1e:ef:6a:5d -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI0M0YxMTAvBgNVBAUTKDE4OTY3RENEQjcyNEE4NEE3MTcxMUU2NzhBQUIxRDJF NzIyMTVENkMwHhcNMjYwNTAzMDczOTMwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2ZmJiMS02ODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWHxQIy9ohTcpcJt8j9rQo1Zz+rAx44Is/cBG7QW9PXPmmFR7yg7hzGdmTla ywtjE0l+HEXpOTOaBj1SW+mv+5hazNwMfusQYceKNMg7/rjyhZL4GsbEHK3sA3Lg XiehSAV2fSONFRlQjBwq1o+0orgrTyw+UdmeaEwzi/45OBp0xiDNHGINnhlZK8ZS XpXTZ70JDMww5C39bbvGW230ggU8hvki6bzc+NfbStAie6fGqgNWZZDq0omspxUp 65Y4cS7oPzwPpBdzIrboUW3eLisXuY9bSsoE/lqYsU8FM7CHXnjoq6BX60OUTVtt XEtydr4HNavZ2A5GXBTVXkHmnQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPBh057S hw/vQcMIageag8AUQwmMMB8GA1UdIwQYMBaAFBiWfc23JKhKcXEeZ4qrHS5yIV1s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjQzRi9ENjg0RkMyRTFB OEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi9HSlo5emJja3FFcHhjUjVuaXFzZExuSWhY V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI0M0YvRDY4NEZDMkUxQThCMTFGMDlDQzI0NTM1QzRGOUFFMDIvMzQwOEYxQkE0 NTA4MTFGMDk2NTBGRjVGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ3WIAwQCZ3lcAwQBZ7rWMA0GCSqGSIb3DQEBCwUAA4IBAQCL+fmO 96tLoG+K6/KrbXpfFnJIwXpixiR71f+hoehSYxuyd4CSHroAZl9ZJw4CjA29UyPD 12KHULyXcVLyVg3g2tiCdU6uTyRqazZArm+oWIJYvL5sA/rvJ0NyB6MRqwm3RN/g kMhWPXLskWQo2Dozdweq1Tz8E+6zsL4VGBiJxYhfw03WAV9LxbgMG6+jN7Q1GRDK yNmcZQ8KxYvGg18N6ZPf0qu6FTXX+gdk+ZXaPrzZ6YSJ4wT/htLE9NU2mgr1vhlR 4kAYgmk2DzHA3WEcTBeUsl3SZLbfUlOuh41BuHu7prTI7ZQAVP7gEX9aO6wv0Zqs /BAOBzPu2Ace72pd -----END CERTIFICATE-----Generated at Wed May 13 02:20:46 2026 by rpki-client