$ rpki-client -vvf rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/E24E0BA8B31111F098769D68C4F9AE02.roa File: E24E0BA8B31111F098769D68C4F9AE02.roa (raw, json) Hash identifier: /E7HUdrD9nUEK9AISsO07B+OClT3i22yXr5a1OL4hjU= Subject key identifier: 1D:7B:AA:46:CA:AE:F3:2E:2F:BB:6C:30:73:3A:78:BD:D7:D6:95:91 Certificate issuer: /CN=A91128AE/serialNumber=7E3B9BDDA50E8DA7D50FF3A7C3329CF483D517E9 Certificate serial: 0242 Authority key identifier: 7E:3B:9B:DD:A5:0E:8D:A7:D5:0F:F3:A7:C3:32:9C:F4:83:D5:17:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/E24E0BA8B31111F098769D68C4F9AE02.roa Signing time: Wed 15 Apr 2026 02:34:58 +0000 ROA not before: Wed 15 Apr 2026 02:34:58 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137498 IP address blocks: 103.82.200.0/24 maxlen: 24 2001:df1:ebc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.crl rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128AE, serialNumber=7E3B9BDDA50E8DA7D50FF3A7C3329CF483D517E9 Validity Not Before: Apr 15 02:34:58 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69def952-0c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8d:65:2b:f4:81:61:8f:df:41:0a:b3:31:3e: 19:65:14:72:63:34:5c:19:6c:d9:24:f9:ba:53:9a: 5e:7c:d8:4f:f6:50:5d:18:18:98:5c:07:8f:02:02: b9:6c:9c:4f:97:6e:a7:ff:35:9a:67:dc:73:ba:2d: b7:96:5d:f3:df:a9:72:4d:51:33:c4:80:25:b5:0f: aa:16:c9:14:49:72:c5:4e:5f:28:dd:9c:92:15:b6: fb:8e:5e:e6:26:1f:6f:52:4e:37:0e:59:2b:10:c6: 1e:08:c8:82:eb:e1:0a:eb:f7:5b:40:3c:5d:f6:20: 07:f9:d3:ca:82:9b:6a:06:3d:16:da:aa:e4:1e:a7: 19:a3:35:09:b3:e8:c2:c1:a3:0f:6a:25:d7:c8:a1: fb:bd:e9:5e:51:f9:a2:54:d0:ce:1a:a2:c0:e7:c1: ad:78:84:6a:f1:9e:63:b2:a1:b8:0b:0a:fe:56:56: 77:31:87:c8:6f:0b:9d:86:a0:7f:cd:67:b7:81:b4: f8:71:0e:a7:6a:8a:d9:95:86:ce:d6:bf:4e:75:c5: 4e:9b:06:0c:22:20:14:95:e9:e5:42:42:be:4b:fe: b6:97:17:38:b8:3a:69:bb:80:56:17:86:56:97:13: e7:ae:5c:24:82:e6:54:8c:be:74:5b:38:78:6b:8d: ac:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7B:AA:46:CA:AE:F3:2E:2F:BB:6C:30:73:3A:78:BD:D7:D6:95:91 X509v3 Authority Key Identifier: keyid:7E:3B:9B:DD:A5:0E:8D:A7:D5:0F:F3:A7:C3:32:9C:F4:83:D5:17:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/E24E0BA8B31111F098769D68C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.82.200.0/24 IPv6: 2001:df1:ebc0::/48 Signature Algorithm: sha256WithRSAEncryption 1d:c2:71:84:f4:c7:8b:e7:bd:7b:e6:77:bf:d6:7f:14:c9:2b: d9:0c:34:88:1a:6e:22:fa:a6:1d:ee:a2:ea:0e:a6:94:45:9f: f8:a5:b7:63:74:b7:12:72:86:af:3a:6f:f4:7f:21:a3:51:54: 89:6c:d9:78:64:03:03:da:ae:9e:0d:79:fb:8f:57:7c:d4:7e: a9:e8:d0:8f:03:f8:fd:f3:f5:9b:1f:d0:b8:33:77:dc:70:f4: 1c:ac:22:2b:36:73:0e:c8:4a:28:64:e2:28:84:66:fe:5e:7f: 92:04:bf:8f:23:9f:b4:05:55:eb:91:b6:21:76:27:e1:03:46: 31:81:c8:91:b1:29:30:85:59:16:8b:d9:0e:5b:36:4b:f1:f5: fa:a7:2d:09:46:13:b2:64:78:3c:cd:66:83:b5:22:a6:e4:3d: b4:e1:65:58:27:67:19:b3:04:85:b1:1d:e3:90:1a:a8:6b:0f: f5:ea:00:be:d4:e1:09:d7:f7:2c:50:3e:f2:b9:b7:11:e0:08: 36:c7:13:b5:91:2a:9c:44:ca:35:81:fc:13:bd:b7:51:7e:43: 4e:0b:93:6a:26:d1:7d:4b:66:6e:aa:e5:13:79:4e:63:99:9e: 08:b5:09:8d:69:40:3e:fd:30:73:12:74:3e:a1:52:ff:1e:32: d8:f1:4c:a3 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QUUxMTAvBgNVBAUTKDdFM0I5QkREQTUwRThEQTdENTBGRjNBN0MzMzI5Q0Y0 ODNENTE3RTkwHhcNMjYwNDE1MDIzNDU4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRlZjk1Mi0wYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI1lK/SBYY/fQQqzMT4ZZRRyYzRcGWzZJPm6U5pefNhP9lBdGBiYXAePAgK5 bJxPl26n/zWaZ9xzui23ll3z36lyTVEzxIAltQ+qFskUSXLFTl8o3ZySFbb7jl7m Jh9vUk43DlkrEMYeCMiC6+EK6/dbQDxd9iAH+dPKgptqBj0W2qrkHqcZozUJs+jC waMPaiXXyKH7veleUfmiVNDOGqLA58GteIRq8Z5jsqG4Cwr+VlZ3MYfIbwudhqB/ zWe3gbT4cQ6naorZlYbO1r9OdcVOmwYMIiAUlenlQkK+S/62lxc4uDppu4BWF4ZW lxPnrlwkguZUjL50Wzh4a42sCQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFB17qkbK rvMuL7tsMHM6eL3X1pWRMB8GA1UdIwQYMBaAFH47m92lDo2n1Q/zp8MynPSD1Rfp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhBRS81M0VFMzE4RUVE QUQxMUVEOTE2NkZBNTNDNEY5QUUwMi9manViM2FVT2phZlZEX09ud3pLYzlJUFZG LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqdWIzYVVPamFmVkRfT253ektjOUlQVkYtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4QUUvNTNFRTMxOEVFREFEMTFFRDkxNjZGQTUzQzRGOUFFMDIvRTI0RTBCQThC MzExMTFGMDk4NzY5RDY4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ1LIMA8EAgACMAkDBwAgAQ3x68AwDQYJKoZIhvcNAQELBQADggEB AB3CcYT0x4vnvXvmd7/WfxTJK9kMNIgabiL6ph3uouoOppRFn/ilt2N0txJyhq86 b/R/IaNRVIls2XhkAwParp4NefuPV3zUfqno0I8D+P3z9Zsf0Lgzd9xw9BysIis2 cw7ISihk4iiEZv5ef5IEv48jn7QFVeuRtiF2J+EDRjGByJGxKTCFWRaL2Q5bNkvx 9fqnLQlGE7JkeDzNZoO1IqbkPbThZVgnZxmzBIWxHeOQGqhrD/XqAL7U4QnX9yxQ PvK5txHgCDbHE7WRKpxEyjWB/BO9t1F+Q04Lk2om0X1LZm6q5RN5TmOZngi1CY1p QD79MHMSdD6hUv8eMtjxTKM= -----END CERTIFICATE-----Generated at Fri Apr 17 11:54:17 2026 by rpki-client