$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa File: C4CB04C4E2A911EBB4631960C4F9AE02.roa (raw, json) Hash identifier: BBAmY6MdAQ+wmYvNw4W6no6AMV+HiT0P/KzwMpsrX3k= Subject key identifier: 0E:68:E8:29:9E:94:92:8A:10:06:21:6C:42:CB:F9:D7:86:82:2A:C0 Certificate issuer: /CN=A91F3B6C/serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Certificate serial: 062A Authority key identifier: 9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa Signing time: Tue 28 Apr 2026 23:30:49 +0000 ROA not before: Tue 28 Apr 2026 23:30:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55581 IP address blocks: 27.116.36.0/22 maxlen: 24 45.125.120.0/22 maxlen: 24 103.166.56.0/23 maxlen: 24 103.194.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B6C, serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Validity Not Before: Apr 28 23:30:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f14329-927f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d9:0f:4c:0a:bd:55:43:db:4d:48:98:a8:66: 68:fc:f3:01:63:00:55:27:00:2c:ec:91:a5:62:6b: 8e:26:9d:e5:d9:dd:3e:86:d1:d8:ec:d7:30:0a:a1: 2f:42:69:04:8c:17:e9:f4:d2:23:54:68:e6:87:bd: f1:06:4d:df:05:0a:e7:85:53:d3:01:ff:c6:2a:9d: e6:42:75:d2:9f:f4:ae:51:59:33:4e:e3:f8:51:f9: f1:ee:cb:85:d7:09:7a:72:c2:c2:89:64:9f:e4:0b: 65:5d:9e:22:31:bb:59:8f:55:6d:e8:1e:40:27:33: 6d:69:15:49:63:be:04:25:30:31:87:88:a7:e1:47: 92:e2:b4:a4:7d:22:fc:e0:80:7c:56:63:75:40:92: 05:2d:2a:b9:8b:e1:5e:ba:dd:11:5d:86:44:7b:ba: 89:1c:3a:6f:37:0f:d1:db:d0:10:b5:d0:8a:d0:cd: 5b:5c:3e:7f:5a:81:f6:3d:e7:07:a2:49:22:0a:d6: 5d:60:44:d2:d8:25:a1:98:5b:42:d1:83:8e:c0:05: 96:8d:e9:16:b2:b8:bb:34:6d:95:fb:fe:d8:5d:58: e6:97:c2:4c:3d:1e:3b:8e:30:cb:18:d9:b6:0c:6c: 4c:1f:f1:64:31:1c:dc:70:1e:f9:b0:67:27:12:d2: 3b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:68:E8:29:9E:94:92:8A:10:06:21:6C:42:CB:F9:D7:86:82:2A:C0 X509v3 Authority Key Identifier: keyid:9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/C4CB04C4E2A911EBB4631960C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.116.36.0/22 45.125.120.0/22 103.166.56.0/23 103.194.0.0/22 Signature Algorithm: sha256WithRSAEncryption 52:68:70:bb:f8:93:8a:57:42:e0:5a:4d:d7:cf:48:2c:57:80: 68:fb:cf:13:37:8f:ff:38:24:a9:0a:89:c6:7e:28:7d:6d:cb: 31:6e:07:07:80:c0:22:7e:e9:79:58:84:be:a1:4f:56:60:9a: d3:1f:87:3b:45:c7:21:e8:51:ca:eb:8c:cd:0a:1c:62:7c:af: 57:5f:b2:f7:6b:e8:26:ab:92:db:43:38:de:ec:1a:7e:c2:82: a8:07:37:99:ba:8d:27:7e:e7:d2:5e:2b:14:23:0d:a3:e2:57: c6:54:55:26:c5:c6:1f:1d:55:4e:1d:a0:29:fd:e0:45:21:b8: 39:78:fd:71:b4:8e:c8:b6:e4:0f:1e:cd:16:da:44:17:09:c7: 0e:dc:2a:f5:4d:a4:7f:19:3e:95:1f:83:0d:87:ed:b5:ff:35: 06:bb:25:3f:1b:7f:c4:f0:a2:6d:eb:c5:45:20:0a:de:e0:df: 93:2b:35:61:4f:76:25:f8:b1:ec:73:7d:d0:0d:98:cb:f0:3a: 3d:ec:fc:da:81:07:ab:97:27:7a:93:b6:38:75:b2:de:af:2b: b6:e9:46:fa:9b:0d:e3:4e:85:f6:e1:da:0d:c7:4a:14:71:43: 30:24:55:a8:12:e2:77:f6:c2:55:b7:0f:a7:c5:74:3f:d7:20: 60:7a:e5:00 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNkMxMTAvBgNVBAUTKDlCMDlFOTVGRTQ2QUJEQkM5RjkwMjA1ODVGOUE1ODMy Njc3NzNGQzkwHhcNMjYwNDI4MjMzMDQ5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxNDMyOS05MjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdkPTAq9VUPbTUiYqGZo/PMBYwBVJwAs7JGlYmuOJp3l2d0+htHY7NcwCqEv QmkEjBfp9NIjVGjmh73xBk3fBQrnhVPTAf/GKp3mQnXSn/SuUVkzTuP4Ufnx7suF 1wl6csLCiWSf5AtlXZ4iMbtZj1Vt6B5AJzNtaRVJY74EJTAxh4in4UeS4rSkfSL8 4IB8VmN1QJIFLSq5i+Feut0RXYZEe7qJHDpvNw/R29AQtdCK0M1bXD5/WoH2PecH okkiCtZdYETS2CWhmFtC0YOOwAWWjekWsri7NG2V+/7YXVjml8JMPR47jjDLGNm2 DGxMH/FkMRzccB75sGcnEtI7RQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFA5o6Cme lJKKEAYhbELL+deGgirAMB8GA1UdIwQYMBaAFJsJ6V/kar28n5AgWF+aWDJndz/J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I2Qy84QjA4OTIwQUUy QTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZieWZrQ0JZWDVwWU1tZDNQ OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL213bnBYLVJxdmJ5ZmtDQllYNXBZTW1kM1A4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNCNkMvOEIwODkyMEFFMkE1MTFFQkFEMTNDQzM1QzRGOUFFMDIvQzRDQjA0QzRF MkE5MTFFQkI0NjMxOTYwQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCG3QkAwQCLX14AwQBZ6Y4AwQCZ8IAMA0GCSqGSIb3DQEBCwUAA4IB AQBSaHC7+JOKV0LgWk3Xz0gsV4Bo+88TN4//OCSpConGfih9bcsxbgcHgMAiful5 WIS+oU9WYJrTH4c7Rcch6FHK64zNChxifK9XX7L3a+gmq5LbQzje7Bp+woKoBzeZ uo0nfufSXisUIw2j4lfGVFUmxcYfHVVOHaAp/eBFIbg5eP1xtI7ItuQPHs0W2kQX CccO3Cr1TaR/GT6VH4MNh+21/zUGuyU/G3/E8KJt68VFIAre4N+TKzVhT3Yl+LHs c33QDZjL8Do97PzagQerlyd6k7Y4dbLeryu26Ub6mw3jToX24doNx0oUcUMwJFWo EuJ39sJVtw+nxXQ/1yBgeuUA -----END CERTIFICATE-----Generated at Wed May 13 03:13:47 2026 by rpki-client