$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa File: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (raw, json) Hash identifier: gt5MzzOyMRjHAQJ1OB2Ov2agdEJbjl0iI4HuG5lS+Fs= Subject key identifier: B6:DF:36:77:4C:4D:FA:AD:1D:AA:85:D5:04:70:64:43:51:0A:E1:F4 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 071D Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa Signing time: Thu 26 Mar 2026 22:29:18 +0000 ROA not before: Thu 26 Mar 2026 22:29:18 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 137455 IP address blocks: 103.2.240.0/22 maxlen: 24 103.74.200.0/23 maxlen: 23 103.74.202.0/23 maxlen: 23 103.109.112.0/22 maxlen: 24 2402:78c0:1000::/36 maxlen: 36 2402:78c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Mar 26 22:29:18 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c5b33e-3e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e8:67:a4:e8:a4:67:88:ab:d9:9b:53:56:31: 4f:09:5d:cb:53:14:29:2a:f3:72:a2:23:bb:48:03: 6a:99:8c:71:99:c7:5d:b3:9b:61:e3:1a:c4:91:1d: 8e:6a:2e:ea:a9:1e:68:44:f6:9f:62:2e:ce:a2:0f: 0e:e3:a6:e4:d4:ce:97:36:df:84:a8:1f:0f:fa:5b: 46:ab:6d:b8:5b:98:e7:9d:fc:3e:e3:a8:2e:5c:71: 89:aa:ad:0c:f6:6d:10:8c:7c:ab:05:ef:81:ee:49: c3:4b:5c:f1:75:92:8f:7f:f4:ca:ee:23:56:e4:7d: d9:23:3e:97:02:21:f5:6c:79:0e:3a:c6:f2:2a:3e: 38:23:fc:3f:77:b4:8b:f9:10:a6:8c:5c:11:4a:65: 71:63:2d:89:ad:4f:9f:a3:48:70:ad:e5:79:a3:4c: a7:1d:95:63:9c:a2:75:f6:3c:62:3c:da:0d:8a:4e: cb:24:49:f2:1d:59:08:48:43:d9:13:80:9d:f9:6d: 03:19:a0:93:ed:37:11:0a:6a:18:ab:66:71:3d:7b: 17:90:ba:46:1e:cf:e3:e4:79:5b:89:49:87:d6:86: 85:54:e1:8c:05:f2:87:9f:70:16:57:fd:50:3c:c4: 3b:17:1f:51:3b:fd:4c:26:74:76:cb:d6:68:5a:c1: 94:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:DF:36:77:4C:4D:FA:AD:1D:AA:85:D5:04:70:64:43:51:0A:E1:F4 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.2.240.0/22 103.74.200.0/22 103.109.112.0/22 IPv6: 2402:78c0:1000::-2402:78c0:2fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3a:42:43:ec:dd:19:d0:d6:d8:e1:4f:6a:5d:a5:c1:9d:a5:c7: fe:4b:c7:bc:52:3f:e2:90:1d:b7:91:11:a8:dd:4e:59:6c:13: aa:e5:c0:47:c1:34:80:d0:18:00:9b:24:b7:31:f5:46:96:7a: f7:63:9b:53:2d:84:5f:0d:4a:57:dd:af:1f:5f:1c:02:88:1c: a9:6a:b6:e8:41:34:5e:25:3a:a7:fe:83:d7:52:ac:93:8d:74: 7d:75:79:6b:03:22:dc:b2:00:dc:9e:03:95:c8:b1:74:d8:a6: 1e:cc:1b:9d:ad:61:9a:cc:6d:6a:92:e6:56:91:61:40:9d:aa: 31:20:fc:28:81:68:01:52:0f:b7:f7:13:2c:e7:c8:31:d3:49: 31:64:c0:06:53:2e:1f:7b:22:f6:40:c2:38:9c:c7:ec:09:f2: 8d:75:ee:b3:9b:b6:54:d2:9b:9b:4b:a8:85:3a:88:1b:d4:8c: cc:56:b2:e6:0f:ca:fa:8b:39:40:2d:03:32:5c:d8:3b:6d:6e: 45:8a:ed:f4:64:c8:64:65:9e:ff:9e:fb:93:c0:9c:84:60:7a: ad:71:7d:cb:dd:20:36:40:dd:90:cd:0e:03:d3:80:f8:4e:a0: 3c:d0:1d:96:f3:8b:2c:23:2e:c0:ee:58:62:0c:13:04:77:7c: ea:49:34:19 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjYwMzI2MjIyOTE4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1YjMzZS0zZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxehnpOikZ4ir2ZtTVjFPCV3LUxQpKvNyoiO7SANqmYxxmcdds5th4xrEkR2O ai7qqR5oRPafYi7Oog8O46bk1M6XNt+EqB8P+ltGq224W5jnnfw+46guXHGJqq0M 9m0QjHyrBe+B7knDS1zxdZKPf/TK7iNW5H3ZIz6XAiH1bHkOOsbyKj44I/w/d7SL +RCmjFwRSmVxYy2JrU+fo0hwreV5o0ynHZVjnKJ19jxiPNoNik7LJEnyHVkISEPZ E4Cd+W0DGaCT7TcRCmoYq2ZxPXsXkLpGHs/j5HlbiUmH1oaFVOGMBfKHn3AWV/1Q PMQ7Fx9RO/1MJnR2y9ZoWsGUjQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFLbfNndM TfqtHaqF1QRwZENRCuH0MB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QUMvNDk3MjA5OTY4MTQ1MTFFQkIyREQ1RDRCQzRGOUFFMDIvMDA4MUYzRDZG MjIxMTFFRThFRUMwNzBFQzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAY BAIAATASAwQCZwLwAwQCZ0rIAwQCZ21wMBgEAgACMBIwEAMGBCQCeMAQAwYEJAJ4 wCAwDQYJKoZIhvcNAQELBQADggEBADpCQ+zdGdDW2OFPal2lwZ2lx/5Lx7xSP+KQ HbeREajdTllsE6rlwEfBNIDQGACbJLcx9UaWevdjm1MthF8NSlfdrx9fHAKIHKlq tuhBNF4lOqf+g9dSrJONdH11eWsDItyyANyeA5XIsXTYph7MG52tYZrMbWqS5laR YUCdqjEg/CiBaAFSD7f3EyznyDHTSTFkwAZTLh97IvZAwjicx+wJ8o117rObtlTS m5tLqIU6iBvUjMxWsuYPyvqLOUAtAzJc2DttbkWK7fRkyGRlnv+e+5PAnIRgeq1x fcvdIDZA3ZDNDgPTgPhOoDzQHZbziywjLsDuWGIMEwR3fOpJNBk= -----END CERTIFICATE-----Generated at Fri Apr 17 19:19:56 2026 by rpki-client