$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa File: E9056E5A520611E9ABE43055C4F9AE02.roa (raw, json) Hash identifier: RzwYZuvd4XyjCOm9BluFD+cQ9dlkUBoYuq3X1xwqlGU= Subject key identifier: 7F:8D:6E:7C:78:89:FE:3E:09:ED:33:46:26:88:D9:50:64:D9:E7:10 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 108D Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa Signing time: Thu 02 Apr 2026 17:22:55 +0000 ROA not before: Thu 02 Apr 2026 17:22:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56140 IP address blocks: 42.0.28.0/22 maxlen: 22 42.0.28.0/24 maxlen: 24 42.0.29.0/24 maxlen: 24 42.0.30.0/24 maxlen: 24 42.0.31.0/24 maxlen: 24 103.140.6.0/24 maxlen: 24 103.140.7.0/24 maxlen: 24 2407:c600::/32 maxlen: 32 2407:c600:1::/48 maxlen: 48 2407:c600:2::/48 maxlen: 48 2407:c600:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4237 (0x108d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Apr 2 17:22:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cea5ef-c364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f6:44:19:23:f9:76:ab:d3:88:75:a2:42:0e: 20:8f:fb:14:59:de:4c:94:58:95:7a:c6:67:7a:9e: 2e:f6:26:aa:e1:4f:5e:5d:05:2f:36:5b:fd:65:18: 04:04:6e:eb:ea:b8:df:c8:a6:58:3d:69:c4:25:b0: 3d:8b:e2:ed:2e:c2:4a:7f:c5:41:77:ad:31:15:3b: fa:94:0c:56:5d:df:f3:ed:02:ba:1d:b8:07:b9:a0: 77:4f:9e:80:9b:ac:c2:d4:89:54:6a:94:ac:8d:86: f0:ad:dc:28:87:1a:00:95:f1:83:30:ac:3b:de:a6: d2:79:45:b3:d4:96:85:b9:ba:3b:c3:ed:24:4e:c5: 3d:54:e0:f4:19:19:01:bd:38:51:c9:f4:59:3f:c0: 84:11:2e:f8:67:00:7a:2f:40:40:31:de:36:88:ab: bb:ae:44:26:44:70:e5:a3:8e:00:d9:b1:56:86:e6: 8e:1e:d9:7e:52:66:94:b9:1c:1b:05:e4:14:20:08: f3:7a:f7:fd:eb:37:58:94:24:56:a8:16:6d:03:84: 7b:ab:df:75:74:0f:9f:8b:bc:42:c0:e1:b7:cc:33: 83:62:23:06:df:f6:3d:70:8e:7c:60:06:49:40:57: 35:4d:98:71:e9:90:bd:b1:42:fa:8e:e4:8b:a9:5e: 22:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8D:6E:7C:78:89:FE:3E:09:ED:33:46:26:88:D9:50:64:D9:E7:10 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 42.0.28.0/22 103.140.6.0/23 IPv6: 2407:c600::/32 Signature Algorithm: sha256WithRSAEncryption 00:9a:dd:cb:18:8d:7b:2d:97:2b:68:59:1f:52:e3:da:05:06: bd:de:f7:3f:41:4c:49:66:65:07:86:ed:21:fc:c2:fd:fc:18: 30:15:96:19:ea:a6:06:9c:f3:32:fb:21:da:45:2c:bf:56:35: 8b:0a:0b:fd:28:7b:14:a1:6c:7b:33:dc:30:68:d4:6d:fe:4e: 8d:ca:5d:c4:70:a4:c6:02:94:08:78:1f:0f:80:c4:73:0b:af: 4f:be:1c:55:81:1a:be:19:e5:97:13:21:70:db:22:12:20:de: f1:8b:bd:47:d1:21:0f:7d:8d:7e:4e:f5:a5:81:bd:66:6f:a5: c7:0d:e2:56:5a:31:3d:6c:c4:c1:35:55:e9:79:0b:02:c1:75: 07:ea:b3:37:82:31:98:7f:9d:4b:a1:54:37:7f:a5:af:5f:90: f0:72:4e:fd:46:0e:2d:64:10:40:42:28:97:f4:48:b0:64:70: ec:92:ce:ee:db:69:dc:94:91:0c:b3:81:de:5c:ba:bc:3c:5d: 1a:30:ee:8f:bd:a6:49:ec:64:86:b2:85:36:47:14:2f:d9:25: 9e:b2:75:15:02:8c:8a:a3:4e:14:fc:d7:7b:ed:62:43:a6:89: fd:64:00:7c:34:8f:0d:ee:8f:3e:7d:9c:9f:08:57:08:7f:78: 23:ab:2a:e8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICEI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjYwNDAyMTcyMjU1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYTVlZi1jMzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPZEGSP5dqvTiHWiQg4gj/sUWd5MlFiVesZnep4u9iaq4U9eXQUvNlv9ZRgE BG7r6rjfyKZYPWnEJbA9i+LtLsJKf8VBd60xFTv6lAxWXd/z7QK6HbgHuaB3T56A m6zC1IlUapSsjYbwrdwohxoAlfGDMKw73qbSeUWz1JaFubo7w+0kTsU9VOD0GRkB vThRyfRZP8CEES74ZwB6L0BAMd42iKu7rkQmRHDlo44A2bFWhuaOHtl+UmaUuRwb BeQUIAjzevf96zdYlCRWqBZtA4R7q991dA+fi7xCwOG3zDODYiMG3/Y9cI58YAZJ QFc1TZhx6ZC9sUL6juSLqV4iywIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFH+Nbnx4 if4+Ce0zRiaI2VBk2ecQMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y4QkMvNEUxM0Y0MEM1MjA2MTFFOThFRkMzQTU0QzRGOUFFMDIvRTkwNTZFNUE1 MjA2MTFFOUFCRTQzMDU1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCKgAcAwQBZ4wGMA0EAgACMAcDBQAkB8YAMA0GCSqGSIb3DQEBCwUA A4IBAQAAmt3LGI17LZcraFkfUuPaBQa93vc/QUxJZmUHhu0h/ML9/BgwFZYZ6qYG nPMy+yHaRSy/VjWLCgv9KHsUoWx7M9wwaNRt/k6Nyl3EcKTGApQIeB8PgMRzC69P vhxVgRq+GeWXEyFw2yISIN7xi71H0SEPfY1+TvWlgb1mb6XHDeJWWjE9bMTBNVXp eQsCwXUH6rM3gjGYf51LoVQ3f6WvX5Dwck79Rg4tZBBAQiiX9EiwZHDsks7u22nc lJEMs4HeXLq8PF0aMO6PvaZJ7GSGsoU2RxQv2SWesnUVAoyKo04U/Nd77WJDpon9 ZAB8NI8N7o8+fZyfCFcIf3gjqyro -----END CERTIFICATE-----Generated at Fri Apr 17 14:41:56 2026 by rpki-client