$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/E52DE77630B611EC981BBF1CC4F9AE02.roa File: E52DE77630B611EC981BBF1CC4F9AE02.roa (raw, json) Hash identifier: PcJZfXfLy1L3lPjl8IWMOAup670DbyOJDvUTrpg2JcM= Subject key identifier: E3:B5:79:F0:1E:0D:6C:35:90:95:DC:88:69:49:B7:E0:DA:71:6B:36 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 055E Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/E52DE77630B611EC981BBF1CC4F9AE02.roa Signing time: Fri 24 Apr 2026 23:31:27 +0000 ROA not before: Fri 24 Apr 2026 23:31:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45753 IP address blocks: 103.89.72.0/24 maxlen: 24 103.133.72.0/23 maxlen: 24 103.133.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Apr 24 23:31:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69ebfd4e-b0b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b9:3f:bc:cc:44:5c:0a:43:a9:01:d6:a2:4f: 5b:81:04:a2:4e:03:0b:8f:d5:d5:25:be:17:31:c8: fd:f3:e9:81:f8:3e:a4:ed:2d:6c:4a:84:cc:30:cc: 1d:7a:54:64:93:42:89:0a:93:f1:5c:c2:5d:d9:30: 9e:33:79:e4:19:e4:6a:5c:ad:49:b9:5b:82:25:3f: 86:f6:6c:d0:7b:91:ce:3b:16:65:f0:4e:df:63:af: 6e:6d:e9:be:37:60:3d:37:a0:80:57:d7:46:e3:9a: 4f:75:a9:d1:1c:50:70:98:94:53:5c:7b:05:1e:a4: 48:82:75:54:61:a7:ec:74:86:e4:9a:2a:90:ea:b5: d2:59:32:42:6b:f3:a9:5f:18:9c:c8:f0:07:a6:8c: f0:2a:3d:77:13:04:3a:de:5a:92:1c:c6:1d:22:cf: e8:d6:11:43:d5:ef:18:ae:81:1e:f1:be:ea:e1:e3: 3a:3a:82:31:94:e3:b4:63:0c:a5:c5:1a:98:19:85: 32:36:9d:a4:24:7a:65:95:7d:7a:57:c7:e6:36:31: c8:2e:8b:e7:c3:e0:bc:d8:6f:06:6b:4b:45:a1:8a: 47:aa:ab:1c:7f:ea:42:86:3e:e5:c9:3e:c4:61:47: 53:16:11:72:28:18:cc:eb:3b:20:30:a1:0d:fb:ec: 49:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B5:79:F0:1E:0D:6C:35:90:95:DC:88:69:49:B7:E0:DA:71:6B:36 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/E52DE77630B611EC981BBF1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.89.72.0/24 103.133.72.0-103.133.74.255 Signature Algorithm: sha256WithRSAEncryption 4f:0b:2b:1f:36:cb:fb:be:1b:cc:a2:4e:71:81:ae:6c:33:3d: f7:8f:05:a2:72:83:84:e7:2d:fc:14:51:82:fa:25:54:48:2f: 0f:c9:76:ed:f2:bf:eb:17:72:07:0f:9a:6c:dd:fd:8d:1e:c1: 43:2a:48:f0:33:16:28:f9:07:c0:19:57:61:5e:3f:4b:e6:4d: 12:89:8d:40:5c:27:cb:58:70:83:39:8f:bc:12:01:8d:32:58: e9:91:41:96:eb:86:d8:fd:9a:c5:c9:38:0a:55:70:e8:2f:5c: c4:ac:24:6c:22:89:71:58:d2:f4:eb:94:e2:62:ad:bb:d0:ef: 9e:7a:41:c5:7e:b0:e4:7e:57:7d:32:62:d4:55:a3:5d:c4:79: 5a:4c:ab:b8:f3:0b:47:8e:69:38:fe:e0:5f:39:0e:05:8c:28: 7b:9e:da:6a:6b:05:d7:cd:48:ca:0d:80:43:92:24:ae:65:91: 7d:56:bd:67:84:e7:45:7d:38:c2:bb:59:28:88:39:88:dc:f7: 94:9d:db:c8:a2:9c:f3:26:bd:d5:9f:95:5d:c7:dc:76:0b:6e: e5:1a:c7:c8:50:73:fd:bc:36:b3:5f:5f:18:ab:2b:b5:b0:31: ab:d6:bd:42:b4:fa:42:25:46:ff:f9:32:59:39:8b:2c:42:63: ba:05:e0:59 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjYwNDI0MjMzMTI3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWViZmQ0ZS1iMGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrk/vMxEXApDqQHWok9bgQSiTgMLj9XVJb4XMcj98+mB+D6k7S1sSoTMMMwd elRkk0KJCpPxXMJd2TCeM3nkGeRqXK1JuVuCJT+G9mzQe5HOOxZl8E7fY69ubem+ N2A9N6CAV9dG45pPdanRHFBwmJRTXHsFHqRIgnVUYafsdIbkmiqQ6rXSWTJCa/Op XxicyPAHpozwKj13EwQ63lqSHMYdIs/o1hFD1e8YroEe8b7q4eM6OoIxlOO0Ywyl xRqYGYUyNp2kJHpllX16V8fmNjHILovnw+C82G8Ga0tFoYpHqqscf+pChj7lyT7E YUdTFhFyKBjM6zsgMKEN++xJfQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFOO1efAe DWw1kJXciGlJt+DacWs2MB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI3QjMvMkZEODE1RUMzMEI0MTFFQzgwNjA5Mjc1QzRGOUFFMDIvRTUyREU3NzYz MEI2MTFFQzk4MUJCRjFDQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQAZ1lIMAwDBANnhUgDBABnhUowDQYJKoZIhvcNAQELBQADggEBAE8L Kx82y/u+G8yiTnGBrmwzPfePBaJyg4TnLfwUUYL6JVRILw/Jdu3yv+sXcgcPmmzd /Y0ewUMqSPAzFij5B8AZV2FeP0vmTRKJjUBcJ8tYcIM5j7wSAY0yWOmRQZbrhtj9 msXJOApVcOgvXMSsJGwiiXFY0vTrlOJirbvQ7556QcV+sOR+V30yYtRVo13EeVpM q7jzC0eOaTj+4F85DgWMKHue2mprBdfNSMoNgEOSJK5lkX1WvWeE50V9OMK7WSiI OYjc95Sd28iinPMmvdWflV3H3HYLbuUax8hQc/28NrNfXxirK7WwMavWvUK0+kIl Rv/5Mlk5iyxCY7oF4Fk= -----END CERTIFICATE-----Generated at Wed May 13 06:33:00 2026 by rpki-client