$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B56/38C1E9AA3E2711F1BA24C59DB5833773/04EDE6343E2B11F1B4A6C6E4B6833773.roa File: 04EDE6343E2B11F1B4A6C6E4B6833773.roa (raw, json) Hash identifier: iVmvGDCFN84Pkf1vGvrKze2zsX7JLtz20kszTrEJLI0= Subject key identifier: 65:45:EF:EC:A9:BF:EB:D1:97:D1:39:35:EB:B0:38:A4:48:CD:A0:6C Certificate issuer: /CN=A91D2B56/serialNumber=95A34D957585E055F0368E474DA3D1F9BBCFA8DF Certificate serial: 02 Authority key identifier: 95:A3:4D:95:75:85:E0:55:F0:36:8E:47:4D:A3:D1:F9:BB:CF:A8:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/laNNlXWF4FXwNo5HTaPR-bvPqN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B56/38C1E9AA3E2711F1BA24C59DB5833773/04EDE6343E2B11F1B4A6C6E4B6833773.roa Signing time: Wed 22 Apr 2026 09:09:51 +0000 ROA not before: Wed 22 Apr 2026 09:09:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63888 IP address blocks: 43.239.64.0/22 maxlen: 22 43.239.64.0/24 maxlen: 24 43.239.65.0/24 maxlen: 24 43.239.66.0/24 maxlen: 24 43.239.67.0/24 maxlen: 24 103.194.148.0/22 maxlen: 22 103.194.148.0/24 maxlen: 24 103.194.149.0/24 maxlen: 24 103.194.150.0/24 maxlen: 24 103.194.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B56/38C1E9AA3E2711F1BA24C59DB5833773/laNNlXWF4FXwNo5HTaPR-bvPqN8.crl rsync://rpki.apnic.net/member_repository/A91D2B56/38C1E9AA3E2711F1BA24C59DB5833773/laNNlXWF4FXwNo5HTaPR-bvPqN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/laNNlXWF4FXwNo5HTaPR-bvPqN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 09:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B56, serialNumber=95A34D957585E055F0368E474DA3D1F9BBCFA8DF Validity Not Before: Apr 22 09:09:51 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69e8905f-b287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:01:05:c6:b7:20:f5:32:90:01:52:d2:fa: d6:79:1c:e7:6a:d7:2a:89:43:87:ba:0e:5b:53:b5: 28:0c:1e:69:6a:2e:4d:35:19:cb:10:58:5c:fc:d9: 14:03:5c:87:d5:07:f7:36:9a:9b:98:34:4c:64:ce: f7:e3:bf:fa:9a:56:78:31:58:5c:e8:e8:06:6a:87: 79:ab:02:f5:eb:cd:ed:8c:87:32:6d:30:c5:4f:b0: e1:90:8a:4b:d4:63:2c:ff:dd:c4:bd:99:76:6d:19: 44:05:ec:9e:cc:14:b6:ea:21:5f:a1:a3:1b:19:c4: 6f:f3:3f:6d:93:46:62:e1:68:14:79:74:87:12:d8: e7:c6:bd:79:00:a7:5d:a0:0c:c8:3a:4d:3c:41:40: bd:70:19:d2:1a:ca:47:e5:73:72:e4:43:92:0d:84: c7:35:9f:56:b1:8e:3c:4a:67:b0:ab:fd:be:4f:bb: 32:1e:ba:05:3f:e0:4a:cb:0c:db:f1:c5:cf:61:ab: b0:75:6b:bf:3b:23:c6:aa:3b:2d:27:ad:63:c8:b7: cf:86:e3:04:8f:2d:70:fb:a2:4c:f0:58:58:14:39: b8:6c:dd:5b:07:5b:e6:f7:c9:0f:01:ef:a4:ca:f3: 8c:30:f0:c9:bc:56:c6:54:ff:f7:c4:4d:e8:e9:8a: 84:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:45:EF:EC:A9:BF:EB:D1:97:D1:39:35:EB:B0:38:A4:48:CD:A0:6C X509v3 Authority Key Identifier: keyid:95:A3:4D:95:75:85:E0:55:F0:36:8E:47:4D:A3:D1:F9:BB:CF:A8:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B56/38C1E9AA3E2711F1BA24C59DB5833773/laNNlXWF4FXwNo5HTaPR-bvPqN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/laNNlXWF4FXwNo5HTaPR-bvPqN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B56/38C1E9AA3E2711F1BA24C59DB5833773/04EDE6343E2B11F1B4A6C6E4B6833773.roa sbgp-ipAddrBlock: critical IPv4: 43.239.64.0/22 103.194.148.0/22 Signature Algorithm: sha256WithRSAEncryption 19:46:6e:1f:fc:6b:23:ed:1c:92:12:57:ac:37:c2:89:a3:f4: e7:a4:ab:73:b3:49:00:23:c5:2c:bb:b9:ee:de:57:db:2a:b3: 15:7f:56:ef:a8:86:96:3c:cf:c4:42:1b:e1:c2:17:dc:ad:ea: 32:63:b8:c3:67:eb:fc:b2:6e:1a:b4:df:a4:f6:ef:c0:ba:c1: 8a:98:b1:25:89:73:10:2f:66:b4:61:b6:b1:b3:83:13:3d:84: c8:70:32:1e:53:cb:ae:94:a7:f2:fe:c2:09:6b:39:e3:d4:53: 0c:ee:dc:f3:ac:3e:25:61:f2:fe:7c:6a:84:0c:8e:e9:75:c1: f2:8c:87:37:23:aa:ee:19:52:ce:eb:31:5b:a1:fd:1f:8c:ac: c7:d0:41:37:88:cc:e5:42:5d:20:62:b1:7e:b5:16:ca:15:3d: d3:2f:86:e5:e2:57:ba:21:99:39:14:48:67:52:a1:2a:14:55: b4:43:81:6a:33:49:92:bb:f1:9f:0e:a8:a9:f9:1a:b3:c9:a6: 67:5b:33:ed:48:86:87:8a:c6:b6:2a:fa:d1:63:e3:23:e0:74: 38:f2:89:1c:44:8f:d4:94:eb:80:c8:7f:38:cd:19:30:e1:e2: f3:ea:67:61:a9:e9:04:bc:30:39:b0:74:03:3c:f7:ef:f4:2b: 91:ea:2e:78 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkI1NjExMC8GA1UEBRMoOTVBMzREOTU3NTg1RTA1NUYwMzY4RTQ3NERBM0QxRjlC QkNGQThERjAeFw0yNjA0MjIwOTA5NTFaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTg5MDVmLWIyODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGegEFxrcg9TKQAVLS+tZ5HOdq1yqJQ4e6DltTtSgMHmlqLk01GcsQWFz82RQD XIfVB/c2mpuYNExkzvfjv/qaVngxWFzo6AZqh3mrAvXrze2MhzJtMMVPsOGQikvU Yyz/3cS9mXZtGUQF7J7MFLbqIV+hoxsZxG/zP22TRmLhaBR5dIcS2OfGvXkAp12g DMg6TTxBQL1wGdIaykflc3LkQ5INhMc1n1axjjxKZ7Cr/b5PuzIeugU/4ErLDNvx xc9hq7B1a787I8aqOy0nrWPIt8+G4wSPLXD7okzwWFgUObhs3VsHW+b3yQ8B76TK 84ww8Mm8VsZU//fETejpioRlAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUZUXv7Km/ 69GX0Tk167A4pEjNoGwwHwYDVR0jBBgwFoAUlaNNlXWF4FXwNo5HTaPR+bvPqN8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjU2LzM4QzFFOUFBM0Uy NzExRjFCQTI0QzU5REI1ODMzNzczL2xhTk5sWFdGNEZYd05vNUhUYVBSLWJ2UHFO OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGFOTmxYV0Y0Rlh3Tm81SFRhUFItYnZQcU44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI1Ni8zOEMxRTlBQTNFMjcxMUYxQkEyNEM1OURCNTgzMzc3My8wNEVERTYzNDNF MkIxMUYxQjRBNkM2RTRCNjgzMzc3My5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAIr70ADBAJnwpQwDQYJKoZIhvcNAQELBQADggEBABlGbh/8ayPtHJIS V6w3womj9Oekq3OzSQAjxSy7ue7eV9sqsxV/Vu+ohpY8z8RCG+HCF9yt6jJjuMNn 6/yybhq036T278C6wYqYsSWJcxAvZrRhtrGzgxM9hMhwMh5Ty66Up/L+wglrOePU Uwzu3POsPiVh8v58aoQMjul1wfKMhzcjqu4ZUs7rMVuh/R+MrMfQQTeIzOVCXSBi sX61FsoVPdMvhuXiV7ohmTkUSGdSoSoUVbRDgWozSZK78Z8OqKn5GrPJpmdbM+1I hoeKxrYq+tFj4yPgdDjyiRxEj9SU64DIfzjNGTDh4vPqZ2Gp6QS8MDmwdAM89+/0 K5HqLng= -----END CERTIFICATE-----Generated at Wed May 13 06:37:18 2026 by rpki-client