$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/2DE1069C050311EA93648E33C4F9AE02.roa File: 2DE1069C050311EA93648E33C4F9AE02.roa (raw, json) Hash identifier: lt2U8Cu18VjD9LLrlZLJxuz3gscrRVmnZ1LYN6DAgls= Subject key identifier: 2B:35:AC:A7:0D:BD:02:92:1D:87:A7:13:4A:00:42:DE:67:EE:44:11 Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0D07 Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/2DE1069C050311EA93648E33C4F9AE02.roa Signing time: Sat 02 May 2026 18:22:16 +0000 ROA not before: Sat 02 May 2026 18:22:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135895 IP address blocks: 103.17.232.0/22 maxlen: 24 103.220.225.0/24 maxlen: 24 116.206.216.0/22 maxlen: 24 2402:4280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3335 (0xd07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: May 2 18:22:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f640d7-4137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f1:a3:1f:55:72:9a:cf:38:ce:65:55:60:99: 06:12:7b:73:82:11:7d:d2:9e:24:69:12:f2:40:71: 72:b3:4a:95:a2:6c:fb:30:b5:68:a2:70:da:7f:76: 0b:a2:a1:36:51:b1:72:a0:5d:2f:1a:30:00:f2:08: 09:3a:43:ed:f8:e0:01:b9:70:ca:0f:53:4a:dc:eb: 5e:17:9f:78:71:04:ec:1d:8a:6f:38:09:ae:69:58: a5:49:10:82:c8:a2:88:36:b4:bb:25:e5:dc:63:81: ed:ab:bd:e4:ab:a9:cb:b4:d7:01:85:ae:dc:66:ff: e0:94:44:06:53:62:92:29:32:e3:c6:69:c5:c7:86: 31:19:30:e8:61:28:d2:bc:40:8d:d2:21:2a:9c:9b: 2f:3d:f4:7f:fe:77:12:ed:f2:57:25:aa:48:f8:a0: af:02:91:89:a7:7e:d1:26:34:4c:e5:0b:e9:29:d8: 66:8e:b0:16:9e:0f:54:cd:12:4f:60:77:0c:86:98: 19:98:a0:42:59:bf:1c:bd:a5:46:3b:ac:03:20:d9: b7:af:e3:87:88:58:2a:3e:71:05:ec:5d:c4:86:b6: 79:81:de:30:ab:a2:ab:20:3d:0a:7a:e6:8d:ec:b9: d6:e3:b7:50:87:12:33:5d:a3:32:28:4e:8b:4a:81: e9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:35:AC:A7:0D:BD:02:92:1D:87:A7:13:4A:00:42:DE:67:EE:44:11 X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/2DE1069C050311EA93648E33C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.232.0/22 103.220.225.0/24 116.206.216.0/22 IPv6: 2402:4280::/32 Signature Algorithm: sha256WithRSAEncryption 60:6e:3a:c5:5a:00:f3:8a:97:84:7a:4c:8a:03:52:43:0f:f7: ff:6e:93:12:ca:76:4d:a6:22:a7:65:ab:af:99:b4:81:9b:ba: 43:99:68:66:01:ca:a5:a9:ba:d9:f2:18:7e:e1:d4:f7:1d:37: fd:fd:22:78:c2:1f:92:44:ee:6d:e2:f6:b3:19:71:7b:9a:a6: 42:d0:b6:7b:7e:15:01:70:22:bb:80:6c:8f:f4:4f:4c:90:fd: 07:62:36:8a:b3:e6:f4:15:2f:95:1a:02:0d:ae:80:94:f1:5b: 2b:a1:75:40:65:29:1d:1a:17:57:e6:5d:eb:00:4d:e9:30:72: cc:32:f2:7a:52:28:87:25:ea:0b:86:b7:fe:6a:6e:87:6c:24: 2f:16:f4:bf:da:8a:3b:dc:a7:d2:11:17:97:de:38:91:f6:a9: 96:13:13:e9:13:8d:dd:0f:1f:7f:10:fe:d8:ad:fa:dd:e3:8f: 6a:64:cd:e5:5c:07:f7:62:a2:0b:a4:1b:47:35:31:3e:e2:bc: 81:99:67:88:a6:aa:d3:00:d0:13:b7:03:22:e5:4e:14:49:f4: 09:0f:5d:06:59:86:d0:1a:92:13:fd:81:df:47:47:2d:e3:02: 6e:d1:e8:ee:e6:e8:a2:3b:b9:1b:cd:31:7f:16:d4:27:9e:ed: aa:ad:c6:a3 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICDQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjYwNTAyMTgyMjE2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2NDBkNy00MTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfGjH1Vyms84zmVVYJkGEntzghF90p4kaRLyQHFys0qVomz7MLVoonDaf3YL oqE2UbFyoF0vGjAA8ggJOkPt+OABuXDKD1NK3OteF594cQTsHYpvOAmuaVilSRCC yKKINrS7JeXcY4Htq73kq6nLtNcBha7cZv/glEQGU2KSKTLjxmnFx4YxGTDoYSjS vECN0iEqnJsvPfR//ncS7fJXJapI+KCvApGJp37RJjRM5QvpKdhmjrAWng9UzRJP YHcMhpgZmKBCWb8cvaVGO6wDINm3r+OHiFgqPnEF7F3EhrZ5gd4wq6KrID0KeuaN 7LnW47dQhxIzXaMyKE6LSoHpqwIDAQABo4ICezCCAncwHQYDVR0OBBYEFCs1rKcN vQKSHYenE0oAQt5n7kQRMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNENTAvMTU0NjRGRDYwNTAxMTFFQUFEOTcyNTJDQzRGOUFFMDIvMkRFMTA2OUMw NTAzMTFFQTkzNjQ4RTMzQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZxHoAwQAZ9zhAwQCdM7YMA0EAgACMAcDBQAkAkKAMA0GCSqGSIb3 DQEBCwUAA4IBAQBgbjrFWgDzipeEekyKA1JDD/f/bpMSynZNpiKnZauvmbSBm7pD mWhmAcqlqbrZ8hh+4dT3HTf9/SJ4wh+SRO5t4vazGXF7mqZC0LZ7fhUBcCK7gGyP 9E9MkP0HYjaKs+b0FS+VGgINroCU8VsroXVAZSkdGhdX5l3rAE3pMHLMMvJ6UiiH JeoLhrf+am6HbCQvFvS/2oo73KfSEReX3jiR9qmWExPpE43dDx9/EP7Yrfrd449q ZM3lXAf3YqILpBtHNTE+4ryBmWeIpqrTANATtwMi5U4USfQJD10GWYbQGpIT/YHf R0ct4wJu0eju5uiiO7kbzTF/FtQnnu2qrcaj -----END CERTIFICATE-----Generated at Wed May 13 07:53:17 2026 by rpki-client