$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/A1E11254233211F193BBD607A5833773.roa File: A1E11254233211F193BBD607A5833773.roa (raw, json) Hash identifier: yATqUA3STQ8R5PmkT2WcIp8HtIqcDGU6lhFcb0afmd4= Subject key identifier: 08:5F:F0:AE:B2:88:BD:0D:07:E9:02:A0:8A:CB:BD:F4:A9:62:F5:0D Certificate issuer: /CN=A91D2A10/serialNumber=94D2CF44A369A422344F765783BF01E982A9C401 Certificate serial: 16 Authority key identifier: 94:D2:CF:44:A3:69:A4:22:34:4F:76:57:83:BF:01:E9:82:A9:C4:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNLPRKNppCI0T3ZXg78B6YKpxAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/A1E11254233211F193BBD607A5833773.roa Signing time: Mon 20 Apr 2026 11:50:57 +0000 ROA not before: Mon 20 Apr 2026 11:50:57 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 6364 IP address blocks: 43.228.212.0/22 maxlen: 24 103.47.224.0/22 maxlen: 24 2402:4180::/32 maxlen: 40 2402:4180::/44 maxlen: 52 2402:4180:10::/44 maxlen: 52 2402:4180:100::/44 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/lNLPRKNppCI0T3ZXg78B6YKpxAE.crl rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/lNLPRKNppCI0T3ZXg78B6YKpxAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNLPRKNppCI0T3ZXg78B6YKpxAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 09:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2A10, serialNumber=94D2CF44A369A422344F765783BF01E982A9C401 Validity Not Before: Apr 20 11:50:57 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69e61321-35a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:37:23:22:e2:32:c9:40:bb:5b:fe:05:08:b4: 59:63:c6:56:09:6d:9b:6e:a6:c8:5e:83:92:73:79: 2b:22:5b:bd:e4:3b:68:d4:f4:37:bd:4b:e3:f5:ac: b2:e2:3e:66:dc:05:18:6a:c0:08:ec:f3:9e:49:dc: 8b:1a:4a:76:08:de:a3:e7:de:4d:be:eb:83:46:2c: a2:f8:39:d9:87:12:82:96:ce:93:56:4a:b6:2f:31: 1f:52:72:39:15:4d:b6:2d:27:b8:b4:e5:1a:1e:57: 83:55:3b:1f:74:9a:8e:d9:1c:39:31:9e:31:bb:90: 13:ff:0d:63:9c:4e:7c:bb:9a:0b:4b:30:88:69:ef: d2:49:16:98:4a:84:2a:10:36:6d:b6:f9:5d:b2:b9: f0:c5:6e:99:58:32:43:a1:8e:8a:ca:1d:fb:38:db: 42:64:86:32:53:8e:78:67:db:17:dc:6c:3e:38:62: a7:22:ac:17:63:9e:5c:d1:82:bc:14:5a:19:6d:ca: 61:02:be:c2:4e:c5:64:48:e2:38:83:82:7d:20:bb: a5:30:79:9c:f9:aa:b4:4d:1f:0f:5c:55:ed:71:1c: 1b:09:8e:6f:e1:4c:fb:d8:3b:ba:25:22:c8:0f:95: ca:65:0a:b0:e7:b2:09:13:10:c1:b0:a4:d2:d8:0d: 2f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:5F:F0:AE:B2:88:BD:0D:07:E9:02:A0:8A:CB:BD:F4:A9:62:F5:0D X509v3 Authority Key Identifier: keyid:94:D2:CF:44:A3:69:A4:22:34:4F:76:57:83:BF:01:E9:82:A9:C4:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/lNLPRKNppCI0T3ZXg78B6YKpxAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNLPRKNppCI0T3ZXg78B6YKpxAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2A10/F256CC16232C11F193A4D832A3833773/A1E11254233211F193BBD607A5833773.roa sbgp-ipAddrBlock: critical IPv4: 43.228.212.0/22 103.47.224.0/22 IPv6: 2402:4180::/32 Signature Algorithm: sha256WithRSAEncryption 57:11:e8:e1:b9:3a:5e:51:3c:43:73:be:e5:14:64:1b:f0:b8: 74:ed:08:4e:9d:68:57:34:21:1d:c9:d9:af:03:fb:27:4f:83: e2:eb:7a:50:3d:22:1f:38:15:de:97:8c:b7:54:0a:a0:13:14: 38:f3:50:c7:91:cd:dd:a9:50:61:59:54:92:0b:bd:44:9c:26: 71:b6:0f:a3:b7:1a:59:a5:32:58:38:ef:86:0e:8a:0a:f8:80: 11:de:3f:28:72:27:12:b6:e2:0d:34:39:29:7b:f0:08:10:c7: cc:72:3b:3e:4c:c7:f5:20:29:ca:01:11:a5:d4:22:c1:c3:34: 67:92:06:8c:42:06:16:6f:f7:96:82:b3:6c:c7:35:21:23:0c: d3:ce:0d:84:85:43:a9:11:43:17:3f:63:e3:f3:73:83:ed:1e: c9:c7:b0:de:ba:f7:e7:3d:a7:92:03:49:7f:52:3e:10:1f:1c: c6:2d:93:a6:59:88:f4:5e:31:f8:9c:5f:21:76:8b:04:43:a5: 63:0e:e5:80:92:48:bb:e2:3a:ee:52:62:f6:33:3c:b4:f3:20: a7:df:db:b9:2e:4a:c1:80:4e:34:3f:53:50:5c:e3:22:03:fe: 3b:e1:7d:5d:0e:4f:58:65:94:42:14:e0:2e:92:09:9a:0b:b0: ef:24:bc:b4 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkExMDExMC8GA1UEBRMoOTREMkNGNDRBMzY5QTQyMjM0NEY3NjU3ODNCRjAxRTk4 MkE5QzQwMTAeFw0yNjA0MjAxMTUwNTdaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTYxMzIxLTM1YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCNyMi4jLJQLtb/gUItFljxlYJbZtupsheg5JzeSsiW73kO2jU9De9S+P1rLLi PmbcBRhqwAjs855J3IsaSnYI3qPn3k2+64NGLKL4OdmHEoKWzpNWSrYvMR9ScjkV TbYtJ7i05RoeV4NVOx90mo7ZHDkxnjG7kBP/DWOcTny7mgtLMIhp79JJFphKhCoQ Nm22+V2yufDFbplYMkOhjorKHfs420JkhjJTjnhn2xfcbD44YqcirBdjnlzRgrwU WhltymECvsJOxWRI4jiDgn0gu6UweZz5qrRNHw9cVe1xHBsJjm/hTPvYO7olIsgP lcplCrDnsgkTEMGwpNLYDS/dAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUCF/wrrKI vQ0H6QKgisu99Kli9Q0wHwYDVR0jBBgwFoAUlNLPRKNppCI0T3ZXg78B6YKpxAEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQTEwL0YyNTZDQzE2MjMy QzExRjE5M0E0RDgzMkEzODMzNzczL2xOTFBSS05wcENJMFQzWlhnNzhCNllLcHhB RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbE5MUFJLTnBwQ0kwVDNaWGc3OEI2WUtweEFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkExMC9GMjU2Q0MxNjIzMkMxMUYxOTNBNEQ4MzJBMzgzMzc3My9BMUUxMTI1NDIz MzIxMUYxOTNCQkQ2MDdBNTgzMzc3My5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr5NQDBAJnL+AwDQQCAAIwBwMFACQCQYAwDQYJKoZIhvcNAQELBQAD ggEBAFcR6OG5Ol5RPENzvuUUZBvwuHTtCE6daFc0IR3J2a8D+ydPg+LrelA9Ih84 Fd6XjLdUCqATFDjzUMeRzd2pUGFZVJILvUScJnG2D6O3GlmlMlg474YOigr4gBHe PyhyJxK24g00OSl78AgQx8xyOz5Mx/UgKcoBEaXUIsHDNGeSBoxCBhZv95aCs2zH NSEjDNPODYSFQ6kRQxc/Y+Pzc4PtHsnHsN669+c9p5IDSX9SPhAfHMYtk6ZZiPRe MficXyF2iwRDpWMO5YCSSLviOu5SYvYzPLTzIKff27kuSsGATjQ/U1Bc4yID/jvh fV0OT1hllEIU4C6SCZoLsO8kvLQ= -----END CERTIFICATE-----Generated at Wed May 13 11:08:33 2026 by rpki-client