$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/AF95E6D8F2B711EAA1C01744C4F9AE02.roa File: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (raw, json) Hash identifier: gn4KKIjx+cVov8CUqaUqG9obpblSjgg6mNoakxKefS0= Subject key identifier: 60:0C:BC:D9:02:04:E2:3B:9C:65:BF:C6:8A:C4:78:AE:3D:9F:1A:80 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 0882 Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/AF95E6D8F2B711EAA1C01744C4F9AE02.roa Signing time: Sat 18 Apr 2026 21:27:21 +0000 ROA not before: Sat 18 Apr 2026 21:27:21 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 56229 IP address blocks: 43.231.72.0/24 maxlen: 24 43.231.73.0/24 maxlen: 24 43.231.74.0/24 maxlen: 24 43.231.75.0/24 maxlen: 24 103.3.72.0/24 maxlen: 24 103.3.73.0/24 maxlen: 24 103.3.74.0/24 maxlen: 24 103.3.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: Apr 18 21:27:21 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69e3f739-00a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f1:9b:90:07:5b:cb:b9:5a:26:24:f0:90:75: 9e:fb:3c:51:1c:18:3c:f3:55:59:04:25:c7:b9:22: 3b:3f:e8:cc:87:06:37:42:87:31:0c:ca:b9:e6:55: c7:fe:6a:1d:be:e4:0c:9c:be:4e:00:8e:34:52:38: f4:12:c6:d2:13:09:db:17:a8:fc:c1:02:6d:10:0c: c9:e4:55:c0:02:44:54:6d:50:b4:8d:21:d0:88:62: c6:ae:a5:17:7f:e9:0d:11:dc:6f:16:c3:a4:01:b8: 7b:06:0e:c5:0b:2f:8d:eb:67:0c:88:4a:82:4f:11: 7a:61:c1:17:c9:e7:2d:77:14:ee:07:d3:7b:62:50: de:83:cd:6e:69:ab:1b:4b:15:32:95:d9:22:62:4d: 18:f5:67:31:0f:81:82:78:62:75:86:5e:4a:08:bb: 48:a1:9c:a0:19:ad:4c:9c:3c:3c:9b:6d:8a:c9:78: 55:89:a6:bf:a0:f5:a6:10:be:f3:f2:de:8c:09:c1: 1c:c5:98:47:d1:c2:f3:00:72:4e:ef:39:30:31:05: 15:52:27:3b:b3:c9:3a:ff:c4:1f:d6:d5:8c:08:55: 41:75:89:5d:a9:fd:19:d7:a5:d8:b7:b2:89:5f:29: 07:cf:fe:4a:bd:1d:1b:11:e6:9c:78:bf:3d:e6:fa: 5e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:0C:BC:D9:02:04:E2:3B:9C:65:BF:C6:8A:C4:78:AE:3D:9F:1A:80 X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/AF95E6D8F2B711EAA1C01744C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.231.72.0/22 103.3.72.0/22 Signature Algorithm: sha256WithRSAEncryption 84:15:51:1c:44:5b:38:6c:7b:fe:26:02:42:05:62:6e:84:82: 98:9a:cc:0c:02:d6:f6:41:58:2f:79:e7:f8:be:96:00:1d:c8: 52:61:fa:ae:c7:a1:46:e0:57:17:50:18:b1:8d:6f:b3:e6:a5: 4f:68:a3:e4:91:e3:18:06:a3:de:e4:7b:eb:c0:2c:c7:c3:07: a6:91:5a:9a:99:e8:95:80:74:39:77:c4:d7:13:fe:61:0c:d0: 72:40:7e:0c:ac:38:8a:68:b5:f7:eb:02:e3:f7:ff:09:71:da: 9e:a2:5a:97:f0:01:b3:9c:51:8c:d2:db:7e:4e:20:37:4e:3d: 1a:80:be:38:c6:72:d0:03:09:f6:00:4d:24:1c:20:84:29:3b: 7c:28:5c:fd:9c:9b:fd:c3:e6:f5:c7:b3:b1:dd:52:79:f1:33: bc:a9:77:4a:6f:36:8d:7e:e7:c8:ff:1d:c0:a1:92:23:e8:81: c9:cc:1f:41:c4:3d:30:d3:75:93:fe:6b:3b:bc:fe:33:cb:11: 9f:c3:53:e4:00:a0:19:00:6a:f4:7a:6c:b1:bd:e7:5f:f4:b0: 04:7d:d2:f1:f0:93:22:e7:d3:10:34:0e:f9:c0:8b:be:4c:85: 02:76:46:57:64:b7:d2:30:7e:17:40:5b:8b:4f:07:a3:23:17: c6:82:35:fa -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjYwNDE4MjEyNzIxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUzZjczOS0wMGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/GbkAdby7laJiTwkHWe+zxRHBg881VZBCXHuSI7P+jMhwY3QocxDMq55lXH /modvuQMnL5OAI40Ujj0EsbSEwnbF6j8wQJtEAzJ5FXAAkRUbVC0jSHQiGLGrqUX f+kNEdxvFsOkAbh7Bg7FCy+N62cMiEqCTxF6YcEXyectdxTuB9N7YlDeg81uaasb SxUyldkiYk0Y9WcxD4GCeGJ1hl5KCLtIoZygGa1MnDw8m22KyXhViaa/oPWmEL7z 8t6MCcEcxZhH0cLzAHJO7zkwMQUVUic7s8k6/8Qf1tWMCFVBdYldqf0Z16XYt7KJ XykHz/5KvR0bEeaceL895vpeuQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFGAMvNkC BOI7nGW/xorEeK49nxqAMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3RjYvRUQ5M0NFRThGMkI1MTFFQTlBM0Y2MzQxQzRGOUFFMDIvQUY5NUU2RDhG MkI3MTFFQUExQzAxNzQ0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+dIAwQCZwNIMA0GCSqGSIb3DQEBCwUAA4IBAQCEFVEcRFs4bHv+ JgJCBWJuhIKYmswMAtb2QVgveef4vpYAHchSYfqux6FG4FcXUBixjW+z5qVPaKPk keMYBqPe5HvrwCzHwwemkVqameiVgHQ5d8TXE/5hDNByQH4MrDiKaLX36wLj9/8J cdqeolqX8AGznFGM0tt+TiA3Tj0agL44xnLQAwn2AE0kHCCEKTt8KFz9nJv9w+b1 x7Ox3VJ58TO8qXdKbzaNfufI/x3AoZIj6IHJzB9BxD0w03WT/ms7vP4zyxGfw1Pk AKAZAGr0emyxvedf9LAEfdLx8JMi59MQNA75wIu+TIUCdkZXZLfSMH4XQFuLTwej IxfGgjX6 -----END CERTIFICATE-----Generated at Wed May 13 01:21:39 2026 by rpki-client