$ rpki-client -vvf rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/A856E7621BBC11F182440C5A133D8C67.roa File: A856E7621BBC11F182440C5A133D8C67.roa (raw, json) Hash identifier: UIVYsay7KQVs5dzePoAdcxAtnbz74xRDDqNirYjgjg4= Subject key identifier: EA:72:99:F8:F6:DA:80:7E:30:56:05:AF:08:A8:BB:BC:20:04:EA:52 Certificate issuer: /CN=A91D560D/serialNumber=D7146DA9DE28F5BB5E3DE2FF00C59FC85C9938DA Certificate serial: 0966 Authority key identifier: D7:14:6D:A9:DE:28:F5:BB:5E:3D:E2:FF:00:C5:9F:C8:5C:99:38:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/A856E7621BBC11F182440C5A133D8C67.roa Signing time: Tue 28 Apr 2026 19:25:25 +0000 ROA not before: Tue 28 Apr 2026 19:25:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135030 IP address blocks: 103.111.164.0/23 maxlen: 23 103.111.164.0/24 maxlen: 24 103.111.165.0/24 maxlen: 24 2402:9f40::/32 maxlen: 32 2402:9f40:1::/48 maxlen: 48 2402:9f40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.crl rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2406 (0x966) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D560D, serialNumber=D7146DA9DE28F5BB5E3DE2FF00C59FC85C9938DA Validity Not Before: Apr 28 19:25:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f109a4-8a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:44:97:cd:81:05:49:96:48:7a:b5:f0:b2:58: 1d:7b:00:ff:2b:3b:32:34:bc:4e:1b:9d:87:11:37: 99:06:05:31:68:69:64:8a:ec:4e:89:5c:03:44:82: 01:b7:d0:82:aa:7c:05:a9:f4:a5:4e:82:be:45:43: 36:28:8e:fe:03:ad:99:a8:0e:17:2a:9c:80:a0:95: c2:51:43:c2:75:f8:e4:7a:7f:26:eb:12:cd:a8:e8: 9a:cf:39:4c:9c:09:1f:8f:80:f9:7d:f7:39:5f:74: d9:a9:be:58:10:a5:2b:89:e6:1f:0f:5d:40:03:7e: a9:b7:af:a4:a4:bb:46:80:75:88:e1:1c:e7:86:b2: cc:cd:10:89:c3:fb:bf:38:3e:7f:d5:3c:8c:a3:d9: ae:5a:a9:60:5b:2e:9b:77:51:4a:a5:93:9b:3b:3d: 3d:3c:84:14:1f:49:24:4d:83:b9:07:00:f7:f5:3f: 65:5c:2c:d4:bb:d4:a5:06:13:d8:50:22:a2:5a:50: 7d:91:8d:e1:da:78:3c:a7:0d:a9:32:58:82:04:66: 76:7f:91:ec:99:30:87:73:d4:2a:bd:8e:d2:29:1a: f9:1c:5d:9e:79:7a:b1:e2:67:ea:3c:ca:52:97:f7: f6:34:9b:a7:1f:28:ff:8e:a1:13:a8:66:37:8b:da: 8c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:72:99:F8:F6:DA:80:7E:30:56:05:AF:08:A8:BB:BC:20:04:EA:52 X509v3 Authority Key Identifier: keyid:D7:14:6D:A9:DE:28:F5:BB:5E:3D:E2:FF:00:C5:9F:C8:5C:99:38:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/A856E7621BBC11F182440C5A133D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.111.164.0/23 IPv6: 2402:9f40::/32 Signature Algorithm: sha256WithRSAEncryption 4f:73:7c:e9:73:95:0e:ef:5e:95:44:78:b9:ae:3a:45:5a:95: dd:7c:a0:cb:ba:62:f3:20:65:71:52:7e:02:ae:48:7f:ea:bd: 58:2b:f8:53:af:19:d4:14:eb:79:7c:c0:15:fc:41:24:7e:58: d8:9b:de:43:0d:06:2b:ac:ab:8d:da:ea:6c:cd:cc:da:50:8f: 74:f2:e9:7a:c0:35:92:59:d2:c2:99:c4:a6:76:ef:67:aa:bb: 23:ad:43:22:97:1e:3f:4d:07:43:23:9e:bc:a4:24:cc:0a:cd: 98:02:d7:36:c9:bf:6f:3f:d8:7e:0c:ae:11:5b:af:05:87:16: e8:89:10:6c:e1:ab:1b:23:54:01:f4:95:17:ab:86:94:a9:3a: de:6e:ab:02:15:fc:ec:8f:b2:43:0c:a6:d2:b1:66:eb:9a:81: e8:65:83:66:7b:4a:4c:96:44:a5:24:60:7b:23:4b:3b:88:7d: c5:a7:05:35:5c:5c:ce:11:af:3d:c1:f1:73:ba:85:39:3a:49: 5e:1c:8f:d8:49:68:88:67:f4:14:17:69:e8:8e:4e:21:25:b7: 42:cc:da:5c:3a:02:5c:bb:c2:f6:30:d2:d6:4d:9d:8e:e6:01: 23:43:bb:56:90:11:8e:bf:15:7f:05:01:c4:f7:de:f3:52:34: e6:48:c2:1d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2MEQxMTAvBgNVBAUTKEQ3MTQ2REE5REUyOEY1QkI1RTNERTJGRjAwQzU5RkM4 NUM5OTM4REEwHhcNMjYwNDI4MTkyNTI1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxMDlhNC04YTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApESXzYEFSZZIerXwslgdewD/KzsyNLxOG52HETeZBgUxaGlkiuxOiVwDRIIB t9CCqnwFqfSlToK+RUM2KI7+A62ZqA4XKpyAoJXCUUPCdfjken8m6xLNqOiazzlM nAkfj4D5ffc5X3TZqb5YEKUrieYfD11AA36pt6+kpLtGgHWI4RznhrLMzRCJw/u/ OD5/1TyMo9muWqlgWy6bd1FKpZObOz09PIQUH0kkTYO5BwD39T9lXCzUu9SlBhPY UCKiWlB9kY3h2ng8pw2pMliCBGZ2f5HsmTCHc9QqvY7SKRr5HF2eeXqx4mfqPMpS l/f2NJunHyj/jqETqGY3i9qMQQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOpymfj2 2oB+MFYFrwiou7wgBOpSMB8GA1UdIwQYMBaAFNcUbaneKPW7Xj3i/wDFn8hcmTja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTYwRC82OEMzRjQ5QTQx RUUxMUVBOUNFQTFGNzVDNEY5QUUwMi8xeFJ0cWQ0bzlidGVQZUxfQU1XZnlGeVpP Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4UnRxZDRvOWJ0ZVBlTF9BTVdmeUZ5Wk9Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU2MEQvNjhDM0Y0OUE0MUVFMTFFQTlDRUExRjc1QzRGOUFFMDIvQTg1NkU3NjIx QkJDMTFGMTgyNDQwQzVBMTMzRDhDNjcucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ2+kMA0EAgACMAcDBQAkAp9AMA0GCSqGSIb3DQEBCwUAA4IBAQBP c3zpc5UO716VRHi5rjpFWpXdfKDLumLzIGVxUn4Crkh/6r1YK/hTrxnUFOt5fMAV /EEkfljYm95DDQYrrKuN2upszczaUI908ul6wDWSWdLCmcSmdu9nqrsjrUMilx4/ TQdDI568pCTMCs2YAtc2yb9vP9h+DK4RW68FhxboiRBs4asbI1QB9JUXq4aUqTre bqsCFfzsj7JDDKbSsWbrmoHoZYNme0pMlkSlJGB7I0s7iH3FpwU1XFzOEa89wfFz uoU5OkleHI/YSWiIZ/QUF2nojk4hJbdCzNpcOgJcu8L2MNLWTZ2O5gEjQ7tWkBGO vxV/BQHE997zUjTmSMId -----END CERTIFICATE-----Generated at Wed May 13 07:18:59 2026 by rpki-client