$ rpki-client -vvf rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa File: DB5AB9A0195A11F081485C3AC4F9AE02.roa (raw, json) Hash identifier: jB9ZqEnqdIszDGFJvo2SWapp/RyB0KZyHeXyC06d7dQ= Subject key identifier: 3B:DD:8B:87:33:5D:D6:B7:FA:14:9D:00:33:AE:02:BA:1A:71:D4:A0 Certificate issuer: /CN=A91F264C/serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Certificate serial: DE Authority key identifier: EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa Signing time: Sun 03 May 2026 07:39:04 +0000 ROA not before: Sun 03 May 2026 07:39:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136396 IP address blocks: 163.223.220.0/23 maxlen: 24 2001:df5:4d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F264C, serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Validity Not Before: May 3 07:39:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f6fb98-f29b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ce:49:7e:3d:04:4a:06:75:cf:ac:e7:b1:ec: a9:1d:d6:cc:9f:45:08:dc:52:83:4e:b9:a0:ad:9b: 38:9d:09:2a:90:35:8a:cb:ab:2a:76:74:66:3d:0f: 1b:09:af:bf:77:93:83:ab:72:ff:8a:f7:bf:ba:ba: 1b:a6:aa:c7:7f:86:a0:93:32:cf:83:78:f9:3b:85: 5d:87:0d:93:b4:56:88:d6:7e:da:2b:2f:e6:d9:48: 33:3b:1e:00:28:d1:11:0b:8b:b6:d6:4e:c5:c5:50: 61:b9:ab:a6:84:a5:f0:52:f3:5c:bb:e4:a6:52:9d: db:96:3a:db:de:79:91:e1:09:ec:3b:44:c0:9a:df: d5:40:95:d1:6e:cb:ff:e3:0c:c1:2a:25:b2:b6:64: 16:7c:da:71:94:6a:16:b3:79:fb:83:6a:54:22:8b: a3:d2:c6:54:6c:f4:dc:e9:0b:77:95:8a:28:66:5a: e2:69:d1:d6:c0:de:db:e2:c2:bf:98:09:3a:b4:df: b2:cd:21:f9:85:89:5a:6e:a9:46:bb:f3:56:c3:97: 07:3f:e4:40:27:5e:23:c2:52:57:9e:72:b9:bf:d2: e9:c0:c3:97:a8:9f:d9:49:a4:b4:88:81:3a:22:a0: 71:4f:59:f5:a5:7d:54:5a:66:ab:2f:62:11:26:70: e0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DD:8B:87:33:5D:D6:B7:FA:14:9D:00:33:AE:02:BA:1A:71:D4:A0 X509v3 Authority Key Identifier: keyid:EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.220.0/23 IPv6: 2001:df5:4d40::/48 Signature Algorithm: sha256WithRSAEncryption 5d:e4:3f:b7:ad:b4:be:04:a7:9b:e8:1b:e1:5b:fc:27:c3:69: b6:c1:4e:d5:3d:3d:8b:d4:d4:35:e7:2d:8d:c6:9d:3a:77:84: 7e:85:b4:53:72:56:e7:17:40:66:71:6e:6b:a5:28:e7:3f:8a: 9a:00:a7:7b:7a:b6:c3:1b:76:12:a6:3a:bd:52:b4:a3:48:ae: 54:67:d6:f3:54:dd:83:47:71:0d:87:94:17:11:39:ce:e4:b4: 3d:e1:72:e6:4c:34:2f:20:0d:71:e6:38:63:82:d4:82:f2:14: 21:6b:3c:bb:30:8c:06:c5:fe:90:f5:7e:e6:f2:82:e5:39:75: 47:58:8c:dd:f1:7f:a1:2f:80:28:2f:a3:66:a5:0a:bf:1d:93: 98:1a:ee:56:ef:63:37:70:0e:6c:92:8f:7e:bc:7a:4c:8f:a7: 55:81:8a:59:8b:cc:75:cf:33:42:95:e1:1f:2b:9c:04:7f:ea: b8:86:3c:b1:36:23:d3:79:4e:5a:d9:eb:66:f3:45:de:fb:09: e6:07:a9:ed:8b:28:8c:45:ed:fb:85:e9:2a:f0:a8:d2:f1:77: 02:ad:0f:ac:a1:9c:cf:40:81:ad:b5:a8:b5:7f:c4:52:72:b6: 39:13:d0:47:0c:30:3c:2c:3b:f0:ad:87:45:c9:41:85:8e:ee: 49:73:d2:12 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI2NEMxMTAvBgNVBAUTKEVGQTQyM0JBRjVCRkQxODkzMTZFNjUwMzFFOENFQUY1 QTNGRkExNEIwHhcNMjYwNTAzMDczOTA0WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2ZmI5OC1mMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqc5Jfj0ESgZ1z6znseypHdbMn0UI3FKDTrmgrZs4nQkqkDWKy6sqdnRmPQ8b Ca+/d5ODq3L/ive/urobpqrHf4agkzLPg3j5O4Vdhw2TtFaI1n7aKy/m2UgzOx4A KNERC4u21k7FxVBhuaumhKXwUvNcu+SmUp3bljrb3nmR4QnsO0TAmt/VQJXRbsv/ 4wzBKiWytmQWfNpxlGoWs3n7g2pUIouj0sZUbPTc6Qt3lYooZlriadHWwN7b4sK/ mAk6tN+yzSH5hYlabqlGu/NWw5cHP+RAJ14jwlJXnnK5v9LpwMOXqJ/ZSaS0iIE6 IqBxT1n1pX1UWmarL2IRJnDgeQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDvdi4cz Xda3+hSdADOuAroacdSgMB8GA1UdIwQYMBaAFO+kI7r1v9GJMW5lAx6M6vWj/6FL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjY0Qy8yNDFBQzdCRTBF MTgxMUYwQjY5QjhCMzhDNEY5QUUwMi83NlFqdXZXXzBZa3hibVVESG96cTlhUF9v VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc2UWp1dldfMFlreGJtVURIb3pxOWFQX29Vcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI2NEMvMjQxQUM3QkUwRTE4MTFGMEI2OUI4QjM4QzRGOUFFMDIvREI1QUI5QTAx OTVBMTFGMDgxNDg1QzNBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo9/cMA8EAgACMAkDBwAgAQ31TUAwDQYJKoZIhvcNAQELBQADggEB AF3kP7ettL4Ep5voG+Fb/CfDabbBTtU9PYvU1DXnLY3GnTp3hH6FtFNyVucXQGZx bmulKOc/ipoAp3t6tsMbdhKmOr1StKNIrlRn1vNU3YNHcQ2HlBcROc7ktD3hcuZM NC8gDXHmOGOC1ILyFCFrPLswjAbF/pD1fubyguU5dUdYjN3xf6EvgCgvo2alCr8d k5ga7lbvYzdwDmySj368ekyPp1WBilmLzHXPM0KV4R8rnAR/6riGPLE2I9N5TlrZ 62bzRd77CeYHqe2LKIxF7fuF6SrwqNLxdwKtD6yhnM9Aga21qLV/xFJytjkT0EcM MDwsO/Cth0XJQYWO7klz0hI= -----END CERTIFICATE-----Generated at Wed May 13 07:19:45 2026 by rpki-client