$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa File: 1F8D757623B811E9971D8168C4F9AE02.roa (raw, json) Hash identifier: EtRVC+Tnay/XwjjnfrzZ4VWnKxvjsSi9zbht2seIWhQ= Subject key identifier: F6:1B:49:A7:64:F1:6F:0B:16:2E:58:30:5A:7E:C8:34:E6:AA:23:20 Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 11A5 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa Signing time: Thu 28 May 2026 13:40:05 +0000 ROA not before: Thu 28 May 2026 13:40:05 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138549 IP address blocks: 103.132.220.0/22 maxlen: 22 103.132.220.0/23 maxlen: 23 103.132.220.0/24 maxlen: 24 103.132.221.0/24 maxlen: 24 103.132.222.0/23 maxlen: 23 103.132.222.0/24 maxlen: 24 103.132.223.0/24 maxlen: 24 2404:40c0::/32 maxlen: 32 2404:40c0:1::/48 maxlen: 48 2404:40c0:2::/48 maxlen: 48 2404:40c0:3::/48 maxlen: 48 2404:40c0:4::/48 maxlen: 48 2404:40c0:5::/48 maxlen: 48 2404:40c0:6::/48 maxlen: 48 2404:40c0:7::/48 maxlen: 48 2404:40c0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4517 (0x11a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: May 28 13:40:05 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a1845b5-d03e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:03:7a:fb:17:d2:87:24:a5:2c:77:af:01:ee: 8e:d7:ad:10:e8:f0:e3:69:b2:d8:a1:cc:3c:84:c3: f7:c3:67:10:06:61:ae:35:11:e5:7f:c7:0e:00:bc: a0:8b:31:2d:1d:24:fb:10:36:cb:73:3b:f8:58:bd: 9d:26:83:f4:38:b3:b5:47:a3:94:14:08:52:c2:ac: 29:a9:41:a8:f9:f4:7c:ec:6d:42:ef:fb:b3:8b:a8: b9:57:90:da:18:5a:88:e5:fc:17:27:9b:a0:9a:11: 45:c3:05:5c:e9:27:e3:03:e7:52:b0:5f:3c:17:c5: b2:a7:92:7b:d7:d1:3c:2e:89:c3:81:a8:5f:85:fd: 43:b5:8d:9f:55:0f:23:f8:22:6f:83:f1:a0:42:98: 11:9f:ac:2f:2c:59:97:8d:80:71:d5:bd:3b:d8:8e: 1a:b6:ac:88:6f:c6:7c:4f:93:9e:35:8f:00:d9:70: d0:3d:b4:aa:22:ed:64:e2:e9:7f:2e:fc:05:1b:eb: 53:4a:95:39:57:b1:f6:c1:4a:b3:65:3c:0f:3f:47: 81:0e:26:22:26:ae:e5:0e:ff:52:f0:ff:77:fe:ef: 35:48:4b:d9:c7:60:e1:fa:ca:19:e8:3d:d0:bb:77: 05:d7:5f:b7:da:9a:0e:4d:e3:96:ee:33:2a:b8:71: 05:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:1B:49:A7:64:F1:6F:0B:16:2E:58:30:5A:7E:C8:34:E6:AA:23:20 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.220.0/22 IPv6: 2404:40c0::/32 Signature Algorithm: sha256WithRSAEncryption 7b:e8:ee:ce:2d:d8:27:cf:f1:a0:19:b1:5c:02:28:ab:47:79: bb:dc:1e:55:75:a2:56:3f:9d:e9:6c:31:c5:ee:c4:07:5c:bb: ba:c5:02:2e:22:54:57:57:45:99:8b:f5:35:84:88:85:ea:e7: 65:6d:8c:a8:42:d8:27:83:b3:37:46:fb:73:54:ea:37:2b:97: 9a:12:b1:23:cf:b2:ce:a4:f3:e3:a5:c3:c4:14:4d:03:de:ce: c4:59:2c:d1:01:8f:dd:73:20:c2:64:eb:4a:82:d3:00:8f:4f: 7f:9e:46:8b:8d:c5:e7:ea:bd:d5:83:c0:a3:dc:4c:0d:c2:55: 61:8b:6a:14:da:21:77:09:9d:97:75:49:a3:eb:84:a1:70:26: 77:35:1b:4f:f5:63:c5:52:93:d1:d7:c2:7f:c2:d5:0c:0f:22: be:29:1f:e4:f6:20:c7:31:ab:e8:cb:35:2a:9c:d0:b7:12:0f: 5d:bd:d1:76:65:dd:34:12:47:f4:a9:6c:bc:0d:d3:70:bf:64: a7:d2:c9:0e:f3:d7:dd:b6:91:02:0a:6f:d2:40:b1:89:bc:5a: 07:9e:9f:b9:d9:35:3c:8f:0d:f9:d5:cf:ec:b8:5d:7a:6d:f4: ed:f5:ff:54:86:4c:3a:53:7a:9e:54:c5:50:e8:0f:27:4b:fa: ff:94:3b:bf -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjYwNTI4MTM0MDA1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE4NDViNS1kMDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AN6+xfShySlLHevAe6O160Q6PDjabLYocw8hMP3w2cQBmGuNRHlf8cOALyg izEtHST7EDbLczv4WL2dJoP0OLO1R6OUFAhSwqwpqUGo+fR87G1C7/uzi6i5V5Da GFqI5fwXJ5ugmhFFwwVc6SfjA+dSsF88F8Wyp5J719E8LonDgahfhf1DtY2fVQ8j +CJvg/GgQpgRn6wvLFmXjYBx1b072I4atqyIb8Z8T5OeNY8A2XDQPbSqIu1k4ul/ LvwFG+tTSpU5V7H2wUqzZTwPP0eBDiYiJq7lDv9S8P93/u81SEvZx2Dh+soZ6D3Q u3cF11+32poOTeOW7jMquHEFZQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPYbSadk 8W8LFi5YMFp+yDTmqiMgMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFEMzEvNjVFRjI5NkEyMzEzMTFFOUEyOUJCMTc0QzRGOUFFMDIvMUY4RDc1NzYy M0I4MTFFOTk3MUQ4MTY4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4TcMA0EAgACMAcDBQAkBEDAMA0GCSqGSIb3DQEBCwUAA4IBAQB7 6O7OLdgnz/GgGbFcAiirR3m73B5VdaJWP53pbDHF7sQHXLu6xQIuIlRXV0WZi/U1 hIiF6udlbYyoQtgng7M3RvtzVOo3K5eaErEjz7LOpPPjpcPEFE0D3s7EWSzRAY/d cyDCZOtKgtMAj09/nkaLjcXn6r3Vg8Cj3EwNwlVhi2oU2iF3CZ2XdUmj64ShcCZ3 NRtP9WPFUpPR18J/wtUMDyK+KR/k9iDHMavoyzUqnNC3Eg9dvdF2Zd00Ekf0qWy8 DdNwv2Sn0skO89fdtpECCm/SQLGJvFoHnp+52TU8jw351c/suF16bfTt9f9Uhkw6 U3qeVMVQ6A8nS/r/lDu/ -----END CERTIFICATE-----Generated at Sun Jun 14 00:14:04 2026 by rpki-client