$ rpki-client -vvf rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa File: AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa (raw, json) Hash identifier: EzHhVhOcZNg4rGX3+arvWhv7Y1/rtxS40spbE5dRN4w= Subject key identifier: 45:37:77:6D:EB:64:28:E5:8D:13:0C:78:39:D4:DF:1E:ED:D5:66:D7 Certificate issuer: /CN=A91642A0/serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Certificate serial: 0D87 Authority key identifier: 02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa Signing time: Thu 16 Apr 2026 18:22:39 +0000 ROA not before: Thu 16 Apr 2026 18:22:39 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137453 IP address blocks: 103.134.126.0/24 maxlen: 24 103.134.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3463 (0xd87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91642A0, serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Validity Not Before: Apr 16 18:22:39 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69e128ef-c5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c8:3e:ac:35:fb:78:56:61:4e:fc:86:b4:df: 12:1c:78:19:d0:a1:d3:b3:11:3b:a0:d4:40:7f:75: fa:c3:84:9d:68:fd:b8:22:39:05:79:87:32:18:5e: ff:ae:7e:1e:d1:6e:5c:99:03:77:69:88:6e:ca:54: 99:8f:e6:c6:ef:e8:84:6d:42:e4:51:05:7d:46:01: 45:5a:e5:61:9a:aa:cd:19:10:c6:23:6f:e0:c7:2f: ac:f1:86:bf:47:81:38:79:48:7c:39:1b:ce:33:a4: 8f:d7:24:1e:20:85:3d:50:93:c0:4e:02:b3:31:01: 4b:1b:7e:b8:d8:18:f5:bc:f1:2f:f8:74:7f:0c:f1: 49:ca:2d:58:24:c7:e3:26:64:a2:37:95:0e:ab:41: 90:09:5f:e2:15:19:bd:4d:bc:e6:e4:5c:a4:76:04: 1d:65:21:70:9c:5c:bd:04:ca:59:d7:ac:26:9d:8a: 73:98:78:15:c2:08:7c:cf:74:60:27:b5:71:93:e1: e3:11:0a:d0:cb:86:3d:ac:4e:6c:25:68:a6:09:7a: c7:45:28:f5:8c:26:45:2e:0d:79:4b:45:4c:a8:fb: 62:2f:6c:37:41:b4:39:63:cd:c3:7f:96:6b:24:7c: 35:41:14:55:b9:88:13:bd:53:bc:14:67:ec:e8:39: 61:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:37:77:6D:EB:64:28:E5:8D:13:0C:78:39:D4:DF:1E:ED:D5:66:D7 X509v3 Authority Key Identifier: keyid:02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.126.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:dc:b3:3c:3c:9c:36:58:70:4c:7e:3f:e5:21:18:18:ee:56: d9:26:b1:ad:00:e3:54:51:4e:d6:cc:f3:1f:b1:88:2b:8c:3c: db:24:ac:a5:52:07:f2:f5:44:75:d2:16:52:8a:18:b8:13:f8: ea:6f:74:f5:2a:19:09:51:b5:ee:aa:68:c2:e5:0a:ca:ba:4c: 57:ba:8b:9f:fa:bc:5d:e9:d9:a0:b0:3a:57:a1:1f:06:2e:2e: e1:28:93:ee:e4:b2:06:c9:48:b0:89:c1:af:ca:f5:36:4e:37: 34:77:20:e9:79:91:29:f4:ee:da:b2:3e:0b:99:cb:83:ca:89: 84:bc:f6:a5:30:8d:99:d9:20:16:8c:a6:3d:29:e2:93:80:95: ca:4d:33:a7:cc:5c:46:24:eb:d9:68:6e:58:03:b7:e2:6c:9e: a3:92:03:e3:bc:03:e0:f2:06:15:24:b7:dc:08:0e:93:ec:0c: a9:f7:45:53:f1:d3:e6:83:a7:32:cc:b9:e9:4d:d3:76:f2:02: 9e:f3:7f:1a:0b:e3:5a:0b:56:da:8c:93:7a:93:4f:d4:ce:95: c4:fe:60:8e:61:37:93:02:0c:ad:12:8c:13:64:26:2d:2a:6a: 73:48:2f:0c:59:e5:fe:09:70:5d:97:74:af:5d:ac:a3:39:5b: 31:71:8b:47 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyQTAxMTAvBgNVBAUTKDAyQUU4NEY2MTFCN0U4MkZEN0Q2RkY4RjQ1MkQ4NzI1 RUY0ODkwODgwHhcNMjYwNDE2MTgyMjM5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxMjhlZi1jNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjMg+rDX7eFZhTvyGtN8SHHgZ0KHTsxE7oNRAf3X6w4SdaP24IjkFeYcyGF7/ rn4e0W5cmQN3aYhuylSZj+bG7+iEbULkUQV9RgFFWuVhmqrNGRDGI2/gxy+s8Ya/ R4E4eUh8ORvOM6SP1yQeIIU9UJPATgKzMQFLG3642Bj1vPEv+HR/DPFJyi1YJMfj JmSiN5UOq0GQCV/iFRm9Tbzm5FykdgQdZSFwnFy9BMpZ16wmnYpzmHgVwgh8z3Rg J7Vxk+HjEQrQy4Y9rE5sJWimCXrHRSj1jCZFLg15S0VMqPtiL2w3QbQ5Y83Df5Zr JHw1QRRVuYgTvVO8FGfs6DlhSQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEU3d23r ZCjljRMMeDnU3x7t1WbXMB8GA1UdIwQYMBaAFAKuhPYRt+gv19b/j0UthyXvSJCI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDJBMC9DQTdEMTE2MkY2 NzYxMUU5OTBCQUEyMjJDNEY5QUUwMi9BcTZFOWhHMzZDX1gxdi1QUlMySEplOUlr SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxNkU5aEczNkNfWDF2LVBSUzJISmU5SWtJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQyQTAvQ0E3RDExNjJGNjc2MTFFOTkwQkFBMjIyQzRGOUFFMDIvQUZCMEZGQ0NC MTkyMTFFQzlFQUFENDRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4Z+MA0GCSqGSIb3DQEBCwUAA4IBAQBc3LM8PJw2WHBMfj/lIRgY 7lbZJrGtAONUUU7WzPMfsYgrjDzbJKylUgfy9UR10hZSihi4E/jqb3T1KhkJUbXu qmjC5QrKukxXuouf+rxd6dmgsDpXoR8GLi7hKJPu5LIGyUiwicGvyvU2Tjc0dyDp eZEp9O7asj4LmcuDyomEvPalMI2Z2SAWjKY9KeKTgJXKTTOnzFxGJOvZaG5YA7fi bJ6jkgPjvAPg8gYVJLfcCA6T7Ayp90VT8dPmg6cyzLnpTdN28gKe838aC+NaC1ba jJN6k0/UzpXE/mCOYTeTAgytEowTZCYtKmpzSC8MWeX+CXBdl3SvXayjOVsxcYtH -----END CERTIFICATE-----Generated at Fri Apr 17 19:20:16 2026 by rpki-client