$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa File: 568D8AACF00511ED9239BC6EC4F9AE02.roa (raw, json) Hash identifier: XrKHKQzHMa1y0uVAA7/pa5YvcBRJFX+HV140KMXuEWw= Subject key identifier: 2A:8C:D1:32:9C:11:CC:39:76:FC:BB:1A:97:27:D0:7E:1B:7B:B4:F9 Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 023F Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa Signing time: Sat 23 May 2026 03:33:16 +0000 ROA not before: Sat 23 May 2026 03:33:16 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 151318 IP address blocks: 103.137.230.0/23 maxlen: 23 103.137.230.0/24 maxlen: 24 103.137.231.0/24 maxlen: 24 2001:df2:66c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: May 23 03:33:16 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a111ffc-b96d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:33:02:72:e3:d0:bf:18:57:55:01:be:ce: 28:48:bb:73:d1:8f:e3:44:df:b5:25:8f:a5:d1:17: 27:23:e8:f1:df:d9:c5:e8:7b:cc:00:28:df:0d:28: 0f:b9:e3:02:5c:52:8f:4b:5d:91:00:a3:c8:c0:5d: 89:2c:4b:52:55:5b:16:88:af:d2:27:38:75:54:4e: 06:81:a5:51:c6:22:17:2e:b6:3d:01:4c:70:31:c2: 8d:cf:ea:0c:5b:6c:c5:a2:88:d5:7b:87:e5:66:e4: bf:55:73:e6:5b:54:70:58:31:c2:71:ea:98:da:f2: 0b:96:52:0b:b2:4f:a9:e7:ad:50:b9:a8:1a:c5:88: b2:51:d7:bd:32:8d:b4:44:a6:f3:07:8e:d1:cc:2f: 3f:d1:dd:18:7d:4f:03:84:9b:6a:27:38:ea:9f:23: 9b:95:9d:de:95:7d:76:cb:99:35:24:3c:92:fa:c8: 7e:47:b2:cf:57:8c:12:5a:97:41:10:8c:14:dc:58: 41:64:8a:07:af:63:16:13:5e:c9:49:b9:cd:07:8d: 96:e1:10:5d:08:6f:e8:63:a0:07:0f:7b:37:4e:76: ba:d8:eb:a2:bf:0e:3f:1b:55:5f:fd:8f:2a:5e:e0: 76:ba:db:85:55:d3:0e:eb:51:0b:1a:01:0f:96:76: c8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8C:D1:32:9C:11:CC:39:76:FC:BB:1A:97:27:D0:7E:1B:7B:B4:F9 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.230.0/23 IPv6: 2001:df2:66c0::/48 Signature Algorithm: sha256WithRSAEncryption 1c:73:3b:50:d5:60:03:fa:67:f5:16:20:b6:10:e6:c9:74:6c: 8a:05:53:b2:2c:48:da:9e:d1:4f:ea:f2:ce:14:b4:83:d3:c8: 69:06:8a:bb:ec:3a:05:6e:9e:1c:d5:ad:aa:ea:a7:60:ad:44: 18:b7:1b:76:e3:71:f1:0a:5f:31:2e:34:0c:af:20:ff:d0:4f: 91:1c:2f:69:91:df:b1:5c:13:e6:57:93:cf:eb:10:a3:22:97: 1e:ad:d9:37:5f:9e:89:a9:f2:a2:4a:64:a3:b8:86:8f:65:48: f6:8c:d7:70:8c:70:e0:b8:9b:e2:04:62:d5:77:6e:7e:f3:be: 3a:c6:dd:23:bd:e6:6e:b8:8e:9c:4b:7a:bb:e4:47:4a:f9:09: b7:17:ed:dd:49:d0:6f:ea:e4:46:ed:77:02:57:5b:8e:d5:e9: d6:8a:cd:32:45:2d:bb:13:a8:ae:cd:0b:d4:19:73:9d:eb:49: d1:a3:cb:19:b6:6d:62:d7:15:9d:b4:1d:d1:d6:16:a2:bc:18: 11:4e:06:16:de:e0:13:c9:82:4d:72:3f:2e:ea:67:48:7b:52: 2a:0d:b2:d7:61:e9:60:d7:a6:b5:17:ce:31:4c:07:51:7c:a2: 8d:23:7b:13:77:6d:9e:7a:ce:af:08:d6:d4:33:17:27:68:8b: 9c:5d:50:6b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjYwNTIzMDMzMzE2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTExMWZmYy1iOTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0EzAnLj0L8YV1UBvs4oSLtz0Y/jRN+1JY+l0RcnI+jx39nF6HvMACjfDSgP ueMCXFKPS12RAKPIwF2JLEtSVVsWiK/SJzh1VE4GgaVRxiIXLrY9AUxwMcKNz+oM W2zFoojVe4flZuS/VXPmW1RwWDHCceqY2vILllILsk+p561QuagaxYiyUde9Mo20 RKbzB47RzC8/0d0YfU8DhJtqJzjqnyOblZ3elX12y5k1JDyS+sh+R7LPV4wSWpdB EIwU3FhBZIoHr2MWE17JSbnNB42W4RBdCG/oY6AHD3s3Tna62Ouivw4/G1Vf/Y8q XuB2utuFVdMO61ELGgEPlnbItwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCqM0TKc Ecw5dvy7Gpcn0H4be7T5MB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ5RTIvQjY0NDMzODRFRkZGMTFFRDg1NTZFRTU0QzRGOUFFMDIvNTY4RDhBQUNG MDA1MTFFRDkyMzlCQzZFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4nmMA8EAgACMAkDBwAgAQ3yZsAwDQYJKoZIhvcNAQELBQADggEB ABxzO1DVYAP6Z/UWILYQ5sl0bIoFU7IsSNqe0U/q8s4UtIPTyGkGirvsOgVunhzV rarqp2CtRBi3G3bjcfEKXzEuNAyvIP/QT5EcL2mR37FcE+ZXk8/rEKMilx6t2Tdf nomp8qJKZKO4ho9lSPaM13CMcOC4m+IEYtV3bn7zvjrG3SO95m64jpxLervkR0r5 CbcX7d1J0G/q5EbtdwJXW47V6daKzTJFLbsTqK7NC9QZc53rSdGjyxm2bWLXFZ20 HdHWFqK8GBFOBhbe4BPJgk1yPy7qZ0h7UioNstdh6WDXprUXzjFMB1F8oo0jexN3 bZ56zq8I1tQzFydoi5xdUGs= -----END CERTIFICATE-----Generated at Sat Jun 13 18:33:25 2026 by rpki-client