$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa File: 38E45CE08C2511EDB64DB410C4F9AE02.roa (raw, json) Hash identifier: Hb11VPodi8i0P+rMM2y+1RDJ6AN+xMk67SgHzAaL58I= Subject key identifier: FD:AE:5C:2E:1E:F5:B5:D3:C5:D8:FE:EB:05:E7:F8:2C:55:23:DC:26 Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 02A7 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa Signing time: Sun 03 May 2026 02:34:06 +0000 ROA not before: Sun 03 May 2026 02:34:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131471 IP address blocks: 103.152.42.0/24 maxlen: 24 103.152.43.0/24 maxlen: 24 2001:df7:1f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE, serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Validity Not Before: May 3 02:34:06 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69f6b41e-85de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:6c:37:30:69:79:7e:b6:ac:99:b1:b1:51: 3e:d9:b7:13:38:e1:bb:cb:83:d3:32:e2:3e:76:bb: 8f:8d:41:eb:67:61:ea:1d:be:a9:5c:cf:d9:91:50: 45:8f:48:02:33:99:b0:bc:5a:6e:d0:3c:8c:41:60: 54:8a:88:7c:23:16:66:9c:de:f7:a5:9b:d9:05:04: 3f:f8:3e:72:d4:6e:ce:58:f8:a1:8a:20:10:9f:02: 19:79:7d:7f:89:be:b8:81:c2:e3:2d:9a:17:7b:db: 10:ea:6b:6a:55:66:59:fd:bb:2a:a5:0a:36:02:94: aa:d1:71:5d:76:4c:b2:2e:2e:2a:5c:73:09:90:1b: f9:31:d0:a9:8d:2e:0a:96:91:c9:60:12:3b:b7:8a: 74:f4:40:3d:81:39:78:13:fd:bf:f1:fe:50:de:af: de:6a:ec:ce:d2:de:c8:5c:85:0d:b3:5d:ec:d6:60: 62:2a:1d:89:89:0a:d1:6c:f7:66:d2:72:b7:37:2b: 57:75:4c:b4:27:c8:fa:bf:31:53:da:5f:48:a4:0a: 49:c6:34:74:b3:cf:14:b9:53:82:4e:e1:12:82:3c: c8:15:8f:08:03:0b:34:ee:a8:37:36:a1:42:48:cb: 78:7b:f9:a8:46:89:06:61:27:a8:9f:d0:58:7a:74: de:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AE:5C:2E:1E:F5:B5:D3:C5:D8:FE:EB:05:E7:F8:2C:55:23:DC:26 X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.42.0/23 IPv6: 2001:df7:1f80::/48 Signature Algorithm: sha256WithRSAEncryption 34:45:4d:15:4c:04:7b:f9:6a:75:bc:71:73:5b:cf:14:77:c0: 24:90:fa:3d:9e:60:95:e2:03:e7:e3:a3:f1:1e:6f:f5:24:10: cc:49:7b:7b:6e:27:7b:8f:45:be:f0:20:3c:d4:f2:3a:57:8d: 45:00:10:22:a7:3f:ae:c5:c0:ef:2a:82:99:25:ef:e7:c2:05: e7:a2:6e:1f:23:3f:c6:28:f4:20:63:7a:7e:ea:40:e1:2f:e1: f0:8c:17:34:73:43:7d:a5:ed:1c:06:8a:ed:82:b8:0e:05:62: 0d:c8:1b:e2:88:5a:fd:ac:57:5f:75:bf:27:67:d6:8d:a9:3d: 50:b2:36:c5:35:c5:6c:0b:46:7d:c5:47:91:ee:3a:aa:a1:af: e3:f0:15:25:da:57:26:07:42:f1:64:d0:68:50:b5:0b:5b:40: 49:83:1d:e6:40:40:f8:47:4f:d1:bf:d4:2e:a6:48:c0:59:36: fe:fc:9a:a8:97:a4:90:91:bc:db:64:db:cf:9c:99:c4:bf:de: 2e:d8:64:ca:13:0f:e9:b0:ad:d2:32:9c:ea:29:29:b9:20:1e: 0e:01:97:1a:53:27:27:e9:d2:f6:7e:a7:23:cb:28:6d:d5:af: 89:ef:66:19:e9:8d:e2:04:a3:5b:34:1c:a2:d9:b1:d5:50:2f: 17:58:d5:35 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjYwNTAzMDIzNDA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2YjQxZS04NWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb1sNzBpeX62rJmxsVE+2bcTOOG7y4PTMuI+druPjUHrZ2HqHb6pXM/ZkVBF j0gCM5mwvFpu0DyMQWBUioh8IxZmnN73pZvZBQQ/+D5y1G7OWPihiiAQnwIZeX1/ ib64gcLjLZoXe9sQ6mtqVWZZ/bsqpQo2ApSq0XFddkyyLi4qXHMJkBv5MdCpjS4K lpHJYBI7t4p09EA9gTl4E/2/8f5Q3q/eauzO0t7IXIUNs13s1mBiKh2JiQrRbPdm 0nK3NytXdUy0J8j6vzFT2l9IpApJxjR0s88UuVOCTuESgjzIFY8IAws07qg3NqFC SMt4e/moRokGYSeon9BYenTe/wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFP2uXC4e 9bXTxdj+6wXn+CxVI9wmMB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvMzhFNDVDRTA4 QzI1MTFFREI2NERCNDEwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5gqMA8EAgACMAkDBwAgAQ33H4AwDQYJKoZIhvcNAQELBQADggEB ADRFTRVMBHv5anW8cXNbzxR3wCSQ+j2eYJXiA+fjo/Eeb/UkEMxJe3tuJ3uPRb7w IDzU8jpXjUUAECKnP67FwO8qgpkl7+fCBeeibh8jP8Yo9CBjen7qQOEv4fCMFzRz Q32l7RwGiu2CuA4FYg3IG+KIWv2sV191vydn1o2pPVCyNsU1xWwLRn3FR5HuOqqh r+PwFSXaVyYHQvFk0GhQtQtbQEmDHeZAQPhHT9G/1C6mSMBZNv78mqiXpJCRvNtk 28+cmcS/3i7YZMoTD+mwrdIynOopKbkgHg4BlxpTJyfp0vZ+pyPLKG3Vr4nvZhnp jeIEo1s0HKLZsdVQLxdY1TU= -----END CERTIFICATE-----Generated at Wed May 13 08:16:48 2026 by rpki-client