$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/98DD71780ECC11F0B8E48170C4F9AE02.roa File: 98DD71780ECC11F0B8E48170C4F9AE02.roa (raw, json) Hash identifier: IaV3dmr7MH64uEELqjBq/78684gUfePzw+oStPl/t4w= Subject key identifier: DB:32:F1:AE:EF:45:09:F8:45:EB:A2:34:90:04:54:18:23:C5:17:1C Certificate issuer: /CN=A91144C9/serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Certificate serial: 0101 Authority key identifier: 95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/98DD71780ECC11F0B8E48170C4F9AE02.roa Signing time: Wed 17 Jun 2026 07:36:36 +0000 ROA not before: Wed 17 Jun 2026 07:36:36 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 10099 IP address blocks: 43.251.12.0/22 maxlen: 24 43.252.84.0/22 maxlen: 24 43.255.168.0/22 maxlen: 24 103.1.64.0/22 maxlen: 24 103.69.184.0/22 maxlen: 24 103.77.20.0/22 maxlen: 24 103.86.12.0/22 maxlen: 24 103.95.176.0/22 maxlen: 24 103.107.88.0/22 maxlen: 24 103.118.36.0/22 maxlen: 24 103.203.184.0/22 maxlen: 24 103.214.64.0/22 maxlen: 24 103.228.68.0/22 maxlen: 24 103.229.244.0/22 maxlen: 24 103.239.176.0/22 maxlen: 24 119.252.136.0/21 maxlen: 24 202.77.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=95745293C88A2726E10A57D58F42CC3169B7C922 Validity Not Before: Jun 17 07:36:36 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a324e84-08fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:46:3b:7f:cf:82:ce:31:61:10:15:62:b1: f0:dd:9a:29:34:94:4f:be:2f:42:5a:ec:d6:40:b4: 68:6b:ff:84:7b:a8:54:4d:31:1e:df:d1:44:c5:8f: 95:bd:d9:4d:37:69:51:3b:06:c4:77:22:9e:57:4c: 06:70:70:e7:cd:34:a4:6c:20:82:2e:8c:b1:bb:66: b7:96:70:5a:94:0f:a6:d2:45:32:32:c7:22:e7:68: c9:f5:1f:04:2b:2c:27:f6:36:10:5b:f7:6e:9c:c2: 71:20:20:3b:1b:87:2a:5e:15:ed:4a:e2:b9:67:7e: be:08:9c:34:eb:4f:3b:50:b0:7f:47:b8:ee:3b:c0: 46:1c:98:69:2b:0f:ff:63:29:2f:b8:c9:e2:5c:9f: 55:1a:7d:59:2d:a7:42:2a:ee:58:15:fb:74:e1:57: ba:71:be:3f:b3:14:1b:a1:78:b0:16:05:c2:20:57: 26:fb:cc:10:b6:06:72:e5:b4:52:c5:b6:39:17:22: 2a:f2:44:e1:7d:c4:06:a7:a2:68:10:ff:0f:af:f7: 5d:23:b1:58:5b:f7:23:00:89:9f:1e:06:37:79:4c: b6:5f:5e:b7:d0:31:e5:f8:bd:dc:fc:dc:bc:27:8b: a6:73:a6:72:a9:02:b7:47:2e:b7:d5:4a:0e:69:88: 10:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:32:F1:AE:EF:45:09:F8:45:EB:A2:34:90:04:54:18:23:C5:17:1C X509v3 Authority Key Identifier: keyid:95:74:52:93:C8:8A:27:26:E1:0A:57:D5:8F:42:CC:31:69:B7:C9:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/lXRSk8iKJybhClfVj0LMMWm3ySI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lXRSk8iKJybhClfVj0LMMWm3ySI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/842F98940EC911F0A26FF144C4F9AE02/98DD71780ECC11F0B8E48170C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.251.12.0/22 43.252.84.0/22 43.255.168.0/22 103.1.64.0/22 103.69.184.0/22 103.77.20.0/22 103.86.12.0/22 103.95.176.0/22 103.107.88.0/22 103.118.36.0/22 103.203.184.0/22 103.214.64.0/22 103.228.68.0/22 103.229.244.0/22 103.239.176.0/22 119.252.136.0/21 202.77.16.0/21 Signature Algorithm: sha256WithRSAEncryption c2:47:f8:58:d0:4e:63:a8:cf:a3:c7:c1:35:53:63:93:50:9e: 98:54:e4:df:2d:33:34:b9:41:dd:58:11:e4:00:72:5e:d3:5e: 2d:44:3f:46:08:20:36:cd:bf:73:70:4e:64:a6:01:75:11:7c: 1f:11:c1:0f:4f:cc:c7:50:5d:5d:c3:20:0e:fa:57:12:33:f0: 17:22:29:79:18:6d:c2:6d:6f:d3:12:f8:ce:02:cd:8e:15:6b: e5:c8:4e:20:3a:06:ea:c6:16:06:e0:ea:ac:50:3f:51:0c:2a: 9d:cc:e3:66:e2:88:bb:9c:a3:9c:77:c7:3e:e3:91:cf:45:bb: c0:24:96:6f:7a:51:6b:fc:f4:da:a7:e3:9b:b5:2d:9c:d9:c8: f8:5d:a3:1f:f0:57:fb:ef:95:2a:33:75:1c:1b:6a:1b:34:87: 33:55:a3:37:3b:8d:c8:87:0d:e6:29:32:f5:7b:29:3c:43:4d: 74:20:07:af:6f:93:33:3b:6b:5e:4c:7b:54:1e:4b:45:d3:9f: 4f:1c:5b:1f:8f:af:1c:d3:49:c3:b5:a5:f3:d0:33:3b:c7:d0: f8:f0:87:fa:2d:dd:b0:f6:8d:df:17:eb:c0:1e:ed:7a:3b:d0: f1:c5:56:ac:c3:6b:b6:e6:25:dc:56:f2:6c:f5:91:f5:cf:db: d2:ec:a1:be -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QzkxMTAvBgNVBAUTKDk1NzQ1MjkzQzg4QTI3MjZFMTBBNTdENThGNDJDQzMx NjlCN0M5MjIwHhcNMjYwNjE3MDczNjM2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTMyNGU4NC0wOGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvlGO3/Pgs4xYRAVYrHw3ZopNJRPvi9CWuzWQLRoa/+Ee6hUTTEe39FExY+V vdlNN2lROwbEdyKeV0wGcHDnzTSkbCCCLoyxu2a3lnBalA+m0kUyMsci52jJ9R8E Kywn9jYQW/dunMJxICA7G4cqXhXtSuK5Z36+CJw06087ULB/R7juO8BGHJhpKw// YykvuMniXJ9VGn1ZLadCKu5YFft04Ve6cb4/sxQboXiwFgXCIFcm+8wQtgZy5bRS xbY5FyIq8kThfcQGp6JoEP8Pr/ddI7FYW/cjAImfHgY3eUy2X1630DHl+L3c/Ny8 J4umc6ZyqQK3Ry631UoOaYgQ9wIDAQABo4ICwDCCArwwHQYDVR0OBBYEFNsy8a7v RQn4ReuiNJAEVBgjxRccMB8GA1UdIwQYMBaAFJV0UpPIiicm4QpX1Y9CzDFpt8ki MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRDOS84NDJGOTg5NDBF QzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9sWFJTazhpS0p5YmhDbGZWajBMTU1XbTN5 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYUlNrOGlLSnliaENsZlZqMExNTVdtM3lTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQ0QzkvODQyRjk4OTQwRUM5MTFGMEEyNkZGMTQ0QzRGOUFFMDIvOThERDcxNzgw RUNDMTFGMEI4RTQ4MTcwQzRGOUFFMDIucm9hMH8GCCsGAQUFBwEHAQH/BHAwbjBs BAIAATBmAwQCK/sMAwQCK/xUAwQCK/+oAwQCZwFAAwQCZ0W4AwQCZ00UAwQCZ1YM AwQCZ1+wAwQCZ2tYAwQCZ3YkAwQCZ8u4AwQCZ9ZAAwQCZ+REAwQCZ+X0AwQCZ++w AwQDd/yIAwQDyk0QMA0GCSqGSIb3DQEBCwUAA4IBAQDCR/hY0E5jqM+jx8E1U2OT UJ6YVOTfLTM0uUHdWBHkAHJe014tRD9GCCA2zb9zcE5kpgF1EXwfEcEPT8zHUF1d wyAO+lcSM/AXIil5GG3CbW/TEvjOAs2OFWvlyE4gOgbqxhYG4OqsUD9RDCqdzONm 4oi7nKOcd8c+45HPRbvAJJZvelFr/PTap+ObtS2c2cj4XaMf8Ff775UqM3UcG2ob NIczVaM3O43Ihw3mKTL1eyk8Q010IAevb5MzO2teTHtUHktF059PHFsfj68c00nD taXz0DM7x9D48If6Ld2w9o3fF+vAHu16O9DxxVasw2u25iXcVvJs9ZH1z9vS7KG+ -----END CERTIFICATE-----Generated at Wed Jun 17 09:28:30 2026 by rpki-client