$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/804EBE76E89811EC8CDD1B61C4F9AE02.roa File: 804EBE76E89811EC8CDD1B61C4F9AE02.roa (raw, json) Hash identifier: Ro74anOTti8QG6vyjwS8aXc9bfV+QmfdwMUJorqRPP8= Subject key identifier: 23:6F:F7:97:11:99:79:1A:25:CE:E4:EE:0A:43:8C:2C:2B:3A:02:EF Certificate issuer: /CN=A91F8A41/serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Certificate serial: 07D5 Authority key identifier: CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/804EBE76E89811EC8CDD1B61C4F9AE02.roa Signing time: Tue 28 Apr 2026 22:29:48 +0000 ROA not before: Tue 28 Apr 2026 22:29:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 132395 IP address blocks: 103.20.24.0/22 maxlen: 22 103.42.208.0/22 maxlen: 24 202.152.68.0/24 maxlen: 24 202.152.76.0/22 maxlen: 22 202.152.76.0/24 maxlen: 24 202.152.77.0/24 maxlen: 24 202.152.78.0/24 maxlen: 24 202.152.79.0/24 maxlen: 24 202.152.88.0/22 maxlen: 22 202.160.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2005 (0x7d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A41, serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Validity Not Before: Apr 28 22:29:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f134dc-038d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:53:09:90:ed:23:45:ac:20:8f:11:87:0d: 76:96:da:31:bf:8b:c4:31:b2:58:08:5e:b2:33:5b: 45:6a:18:46:0c:2a:40:12:57:90:34:b3:b6:06:2a: 31:f5:f7:9a:39:e7:56:f9:64:1a:b4:b0:c8:56:0a: 36:e1:69:1b:81:79:d6:fa:8d:2e:50:78:b4:b0:6a: 95:a6:10:d4:1c:18:2b:3a:ca:5f:c6:c2:08:9d:0a: ac:0a:c8:43:12:61:7f:48:f5:4e:d5:f0:77:8d:54: 0d:7d:a9:03:21:4b:19:6b:28:24:1c:5c:ff:87:3a: 89:0d:d7:53:28:a7:45:88:4f:97:a8:48:bb:32:07: 6d:37:36:fe:be:a9:73:ef:f3:c5:b7:47:3e:ba:2f: 19:cb:2a:84:60:99:c3:25:b9:d1:96:23:33:5b:be: 3a:a8:b8:db:21:97:a3:58:0e:25:2f:f0:6e:ae:f3: e5:32:ac:d3:c9:76:a2:fe:66:60:44:3a:5e:b1:98: 3a:ef:76:89:c0:e7:c4:b3:5f:11:77:e2:e2:06:44: 70:c9:43:e1:6a:f5:2f:de:e4:f6:38:7c:d5:82:f9: f8:4c:d3:3e:1d:ba:42:d6:78:eb:14:d5:86:80:16: d5:ed:d4:34:96:12:a0:e6:ff:5c:f0:a2:40:c2:9f: d7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6F:F7:97:11:99:79:1A:25:CE:E4:EE:0A:43:8C:2C:2B:3A:02:EF X509v3 Authority Key Identifier: keyid:CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/804EBE76E89811EC8CDD1B61C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.20.24.0/22 103.42.208.0/22 202.152.68.0/24 202.152.76.0/22 202.152.88.0/22 202.160.32.0/20 Signature Algorithm: sha256WithRSAEncryption c2:2d:d5:44:3f:61:ff:7a:1d:7e:bd:09:33:bd:86:9a:8c:9b: c4:6d:75:2c:95:b6:c5:65:dc:3a:e8:d2:56:96:11:3a:18:2b: 3d:ba:6a:70:0a:ca:82:be:d6:1c:e5:e2:85:17:38:ee:07:2b: cd:10:62:e3:22:c6:ea:db:62:63:82:69:ef:06:4f:72:8a:d2: 61:df:7a:6f:2d:09:1a:0e:ed:3b:7d:49:ca:91:85:58:57:03: fc:eb:4e:72:36:fd:c3:3f:69:25:9b:82:79:52:2b:4e:1f:4a: e0:b0:aa:27:a9:f2:6a:91:4a:f4:06:5d:eb:eb:4f:98:24:0a: 7e:ef:c0:16:72:6a:2c:fb:dc:7b:47:2c:87:b6:05:16:f1:d4: 12:d8:da:60:c0:8d:9d:f1:dd:49:65:fc:35:26:ed:b9:91:9a: 00:69:ca:c2:df:14:88:29:80:59:ca:ef:06:cf:54:17:b7:e9: 70:03:a5:04:96:a0:0d:3b:2f:b5:51:07:dd:da:6f:9f:29:e8: 00:1b:70:22:12:86:82:f9:b6:44:be:56:dd:71:9d:eb:ba:af: 4e:d3:30:d2:cc:a1:09:e0:65:e6:4d:fd:d9:51:84:42:ef:cb: 6a:db:2b:f2:b1:52:93:fa:4f:f1:10:f9:c7:1a:0e:3f:5e:dc: e1:98:bc:de -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICB9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDExMTAvBgNVBAUTKENERkVERjJENDExQzg0QzM2REMzQkI2QTAyRkRGMUFD NTBCNUJBMTQwHhcNMjYwNDI4MjIyOTQ4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxMzRkYy0wMzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4RTCZDtI0WsII8Rhw12ltoxv4vEMbJYCF6yM1tFahhGDCpAEleQNLO2Biox 9feaOedW+WQatLDIVgo24WkbgXnW+o0uUHi0sGqVphDUHBgrOspfxsIInQqsCshD EmF/SPVO1fB3jVQNfakDIUsZaygkHFz/hzqJDddTKKdFiE+XqEi7MgdtNzb+vqlz 7/PFt0c+ui8ZyyqEYJnDJbnRliMzW746qLjbIZejWA4lL/BurvPlMqzTyXai/mZg RDpesZg673aJwOfEs18Rd+LiBkRwyUPhavUv3uT2OHzVgvn4TNM+HbpC1njrFNWG gBbV7dQ0lhKg5v9c8KJAwp/XnQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFCNv95cR mXkaJc7k7gpDjCwrOgLvMB8GA1UdIwQYMBaAFM3+3y1BHITDbcO7agL98axQtboU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0MS81NTQxNDBERTg3 QkMxMUVCQjNDMDgyNzJDNEY5QUUwMi96ZjdmTFVFY2hNTnR3N3RxQXYzeHJGQzF1 aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pmN2ZMVUVjaE1OdHc3dHFBdjN4ckZDMXVoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhBNDEvNTU0MTQwREU4N0JDMTFFQkIzQzA4MjcyQzRGOUFFMDIvODA0RUJFNzZF ODk4MTFFQzhDREQxQjYxQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQCZxQYAwQCZyrQAwQAyphEAwQCyphMAwQCyphYAwQEyqAgMA0GCSqG SIb3DQEBCwUAA4IBAQDCLdVEP2H/eh1+vQkzvYaajJvEbXUslbbFZdw66NJWlhE6 GCs9umpwCsqCvtYc5eKFFzjuByvNEGLjIsbq22JjgmnvBk9yitJh33pvLQkaDu07 fUnKkYVYVwP8605yNv3DP2klm4J5UitOH0rgsKonqfJqkUr0Bl3r60+YJAp+78AW cmos+9x7RyyHtgUW8dQS2NpgwI2d8d1JZfw1Ju25kZoAacrC3xSIKYBZyu8Gz1QX t+lwA6UElqANOy+1UQfd2m+fKegAG3AiEoaC+bZEvlbdcZ3ruq9O0zDSzKEJ4GXm Tf3ZUYRC78tq2yvysVKT+k/xEPnHGg4/XtzhmLze -----END CERTIFICATE-----Generated at Wed May 13 13:15:20 2026 by rpki-client