$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa File: 8367C13A6CA411ED9DD6425CC4F9AE02.roa (raw, json) Hash identifier: 4eRmnV1SKuH1F3TR04UxwRBazkfSRALaDVotnHYReM0= Subject key identifier: D9:57:A2:07:CE:34:97:D0:16:DD:5B:86:B4:E4:E7:17:DC:44:0C:2B Certificate issuer: /CN=A91E6EFE/serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Certificate serial: 0294 Authority key identifier: E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa Signing time: Thu 07 May 2026 02:32:50 +0000 ROA not before: Thu 07 May 2026 02:32:50 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 9509 IP address blocks: 203.22.222.0/24 maxlen: 24 221.121.64.0/19 maxlen: 19 2406:4c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6EFE, serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Validity Not Before: May 7 02:32:50 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69fbf9d2-cdfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:38:37:73:2c:ce:46:98:db:a6:6c:05:8d:5c: d2:e7:e3:2b:f5:2f:d1:94:95:c0:e7:e3:24:85:b8: 70:7e:5c:38:56:90:ce:27:53:ff:78:9a:65:79:a3: f0:15:5c:10:ec:3a:d4:b5:3e:55:84:79:19:a0:f5: bf:f4:ad:5f:c0:95:69:b2:e1:0e:7c:3e:3c:00:02: 21:49:54:ba:89:9e:51:7e:84:64:76:60:68:43:32: 29:a8:11:2a:f6:b5:12:2c:a8:07:c0:d5:45:82:61: ef:55:ce:17:94:66:8b:8c:ca:b3:d0:66:85:6a:2b: 89:fd:84:be:a1:20:0b:2e:5a:28:84:d0:d1:2d:4f: 27:2e:c6:bc:3e:75:cd:ff:17:36:23:00:e7:da:29: 8c:ae:85:16:87:78:47:e9:b6:16:3b:72:bb:cc:cd: 53:75:2e:99:13:4b:1a:73:29:0f:71:2e:9c:7b:4a: 78:2a:43:70:bf:24:62:39:f0:37:19:79:2e:42:96: 6e:1d:33:8c:9d:15:26:d8:84:46:e8:f4:0a:84:c7: 62:ce:ac:fd:02:8a:ef:a5:b9:48:02:aa:18:38:dd: 6b:c8:28:4d:7d:35:18:b2:1b:8a:b9:45:0c:69:ec: 09:42:05:50:10:b3:ff:e3:ca:81:c6:28:6d:a7:d3: f7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:57:A2:07:CE:34:97:D0:16:DD:5B:86:B4:E4:E7:17:DC:44:0C:2B X509v3 Authority Key Identifier: keyid:E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.22.222.0/24 221.121.64.0/19 IPv6: 2406:4c00::/32 Signature Algorithm: sha256WithRSAEncryption 39:76:4d:08:c9:51:97:ff:e8:dc:99:6b:a3:fe:ca:0d:ac:35: 63:c6:1b:e0:8c:0c:78:b3:8d:56:d1:e8:9e:d3:80:ff:62:cd: ba:59:94:95:ad:04:8e:3f:18:c0:48:62:6c:fd:75:db:ab:0e: 0c:91:20:bc:85:18:3e:69:d9:70:0f:9b:fe:6e:28:c2:c6:5e: 97:7d:70:46:9d:8c:42:ae:e9:5d:b5:19:eb:cc:46:eb:c6:27: 18:f3:67:47:3e:1d:5e:d6:a1:5e:8c:be:62:4a:39:72:1f:9e: 03:80:d9:0f:e8:fc:e2:ba:2d:f8:4b:2d:9c:7d:a0:16:11:ca: 8e:0f:e3:32:5c:c2:68:c6:5e:2d:c8:1b:f0:ec:dc:08:b3:06: f9:e1:9d:17:1e:0d:9a:a7:58:48:c7:aa:79:3f:d1:1a:f3:b8: 3d:f0:ab:36:64:1e:0e:ea:bd:b3:a0:88:dd:ea:53:48:47:c8: 09:cf:03:54:49:62:6a:b8:a7:8e:31:1f:ba:30:c2:03:25:4f: de:db:f8:61:d0:79:7a:b1:e9:07:d4:68:da:dd:bd:11:62:58: 1f:4e:f9:9f:82:f7:8e:eb:21:c4:47:aa:54:eb:44:eb:b9:36: 46:8e:85:d4:ed:b4:25:94:2b:7f:9a:2c:8e:ed:89:f7:77:56: cb:9d:55:ed -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFRkUxMTAvBgNVBAUTKEU4NzE3MjhDM0EyQzI2RDBFNjA4MDA0QkE3RDFFNUEz NTgzMDk1NkMwHhcNMjYwNTA3MDIzMjUwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiZjlkMi1jZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujg3cyzORpjbpmwFjVzS5+Mr9S/RlJXA5+Mkhbhwflw4VpDOJ1P/eJpleaPw FVwQ7DrUtT5VhHkZoPW/9K1fwJVpsuEOfD48AAIhSVS6iZ5RfoRkdmBoQzIpqBEq 9rUSLKgHwNVFgmHvVc4XlGaLjMqz0GaFaiuJ/YS+oSALLloohNDRLU8nLsa8PnXN /xc2IwDn2imMroUWh3hH6bYWO3K7zM1TdS6ZE0sacykPcS6ce0p4KkNwvyRiOfA3 GXkuQpZuHTOMnRUm2IRG6PQKhMdizqz9AorvpblIAqoYON1ryChNfTUYshuKuUUM aewJQgVQELP/48qBxihtp9P3+QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFNlXogfO NJfQFt1bhrTk5xfcRAwrMB8GA1UdIwQYMBaAFOhxcow6LCbQ5ggAS6fR5aNYMJVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkVGRS9FNEMwMEQzQzZD QTExMUVEQjQ0RTc2NUJDNEY5QUUwMi82SEZ5akRvc0p0RG1DQUJMcDlIbG8xZ3ds V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZIRnlqRG9zSnREbUNBQkxwOUhsbzFnd2xXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZFRkUvRTRDMDBEM0M2Q0ExMTFFREI0NEU3NjVCQzRGOUFFMDIvODM2N0MxM0E2 Q0E0MTFFRDlERDY0MjVDQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAyxbeAwQF3XlAMA0EAgACMAcDBQAkBkwAMA0GCSqGSIb3DQEBCwUA A4IBAQA5dk0IyVGX/+jcmWuj/soNrDVjxhvgjAx4s41W0eie04D/Ys26WZSVrQSO PxjASGJs/XXbqw4MkSC8hRg+adlwD5v+bijCxl6XfXBGnYxCruldtRnrzEbrxicY 82dHPh1e1qFejL5iSjlyH54DgNkP6Pziui34Sy2cfaAWEcqOD+MyXMJoxl4tyBvw 7NwIswb54Z0XHg2ap1hIx6p5P9Ea87g98Ks2ZB4O6r2zoIjd6lNIR8gJzwNUSWJq uKeOMR+6MMIDJU/e2/hh0Hl6sekH1Gja3b0RYlgfTvmfgveO6yHER6pU60TruTZG joXU7bQllCt/miyO7Yn3d1bLnVXt -----END CERTIFICATE-----Generated at Wed May 13 09:59:32 2026 by rpki-client