$ rpki-client -vvf rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa File: B0B70006B19211EC9EAAD44EC4F9AE02.roa (raw, json) Hash identifier: Bv4I5rq7MBx0s2USNkw1xSvDRiJ8d4Rtj7uOmiuLiRo= Subject key identifier: 38:4C:D1:A2:B4:2F:1C:94:7F:C3:3E:AC:F3:DE:EC:7C:E5:31:14:3C Certificate issuer: /CN=A91642A0/serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Certificate serial: 0D88 Authority key identifier: 02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa Signing time: Thu 16 Apr 2026 18:22:41 +0000 ROA not before: Thu 16 Apr 2026 18:22:41 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138612 IP address blocks: 103.134.124.0/24 maxlen: 24 103.134.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3464 (0xd88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91642A0, serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Validity Not Before: Apr 16 18:22:41 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69e128f1-1ea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:c8:be:09:03:96:14:9c:2f:95:c6:d7:7d:87: 7b:f2:d0:74:d4:0c:fc:45:85:a3:b3:d7:25:8b:95: 72:0d:76:41:be:9b:9f:7d:99:d2:3c:35:fc:76:1e: 3a:e0:5e:fc:7e:77:02:20:e0:6b:28:27:2b:5d:5a: bd:78:66:8e:f5:e2:47:78:67:28:31:a7:c2:70:05: 57:54:6e:f9:a6:c3:c6:b4:4a:75:75:88:1c:2b:44: a5:82:a8:30:65:2f:84:bd:fc:47:81:7b:b3:5c:5f: 0b:d2:dc:8f:39:e6:ce:42:ba:a3:73:01:f9:3d:cf: 42:30:d3:e5:90:b5:7d:de:ac:1f:e4:33:77:31:f7: 8a:2c:72:6b:a7:2a:6c:5b:f8:8d:51:81:1a:53:8b: c8:db:5a:f0:7b:46:e5:3b:08:78:71:a4:c3:4a:9a: f4:a5:34:5c:43:00:28:0b:e8:2c:74:3b:b0:85:d5: 3e:60:6f:4f:99:86:da:f5:2c:d5:a5:e0:47:f0:6e: 5b:77:1b:c6:21:64:36:00:1d:fb:23:f9:c1:00:10: d1:74:c5:5f:98:e6:01:2d:48:6a:fe:fa:9b:bc:f6: ab:b1:40:a2:85:1f:03:50:c4:37:af:bd:56:f6:8a: 1b:a6:39:82:76:5e:24:89:0e:96:08:7f:62:46:7a: f7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:4C:D1:A2:B4:2F:1C:94:7F:C3:3E:AC:F3:DE:EC:7C:E5:31:14:3C X509v3 Authority Key Identifier: keyid:02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.124.0/23 Signature Algorithm: sha256WithRSAEncryption a8:18:e0:28:3d:0c:28:41:1d:4b:91:10:8d:03:a7:2b:da:90: 46:ab:78:65:2d:55:9f:19:d9:7d:f7:2a:cf:d2:24:89:0c:28: 9e:44:54:f2:80:47:f4:b7:89:77:a5:b0:9b:27:af:17:09:e4: ef:7f:d1:ad:28:36:05:3e:55:d1:44:32:b6:3f:3e:fc:ea:80: 52:16:e4:1b:7d:bc:0f:b3:5b:a0:40:23:5a:86:fb:de:d6:a7: 00:7d:55:bd:73:10:58:a2:7c:dc:30:59:7f:9e:52:f5:af:2f: fb:4d:fe:b5:8f:58:b1:a8:a7:44:22:4c:b9:ed:91:f1:34:e1: 73:64:12:82:71:cb:33:c8:e7:cb:4e:74:c8:8b:8a:1b:39:4c: 0c:59:d2:98:6c:68:be:0b:df:ce:ff:ed:d1:05:0e:3e:38:f5: 6f:4c:71:2e:2f:4e:d5:bd:f2:1f:53:01:3a:53:e8:d7:a8:49: ee:82:19:36:8d:8c:8d:47:ff:2c:82:7a:f7:69:b2:21:83:2b: 5f:e4:26:19:80:ec:8a:9e:65:04:65:2e:20:14:44:33:b9:19: 9f:3c:ed:74:9e:43:9c:e1:05:65:c9:5d:59:45:8f:d2:54:27: 13:75:98:1d:db:ca:c3:5f:4e:47:f6:f1:bc:2d:58:46:ad:c2: a0:49:02:fb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyQTAxMTAvBgNVBAUTKDAyQUU4NEY2MTFCN0U4MkZEN0Q2RkY4RjQ1MkQ4NzI1 RUY0ODkwODgwHhcNMjYwNDE2MTgyMjQxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxMjhmMS0xZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhsi+CQOWFJwvlcbXfYd78tB01Az8RYWjs9cli5VyDXZBvpuffZnSPDX8dh46 4F78fncCIOBrKCcrXVq9eGaO9eJHeGcoMafCcAVXVG75psPGtEp1dYgcK0Slgqgw ZS+EvfxHgXuzXF8L0tyPOebOQrqjcwH5Pc9CMNPlkLV93qwf5DN3MfeKLHJrpyps W/iNUYEaU4vI21rwe0blOwh4caTDSpr0pTRcQwAoC+gsdDuwhdU+YG9PmYba9SzV peBH8G5bdxvGIWQ2AB37I/nBABDRdMVfmOYBLUhq/vqbvParsUCihR8DUMQ3r71W 9oobpjmCdl4kiQ6WCH9iRnr39wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDhM0aK0 LxyUf8M+rPPe7HzlMRQ8MB8GA1UdIwQYMBaAFAKuhPYRt+gv19b/j0UthyXvSJCI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDJBMC9DQTdEMTE2MkY2 NzYxMUU5OTBCQUEyMjJDNEY5QUUwMi9BcTZFOWhHMzZDX1gxdi1QUlMySEplOUlr SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxNkU5aEczNkNfWDF2LVBSUzJISmU5SWtJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQyQTAvQ0E3RDExNjJGNjc2MTFFOTkwQkFBMjIyQzRGOUFFMDIvQjBCNzAwMDZC MTkyMTFFQzlFQUFENDRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4Z8MA0GCSqGSIb3DQEBCwUAA4IBAQCoGOAoPQwoQR1LkRCNA6cr 2pBGq3hlLVWfGdl99yrP0iSJDCieRFTygEf0t4l3pbCbJ68XCeTvf9GtKDYFPlXR RDK2Pz786oBSFuQbfbwPs1ugQCNahvve1qcAfVW9cxBYonzcMFl/nlL1ry/7Tf61 j1ixqKdEIky57ZHxNOFzZBKCccszyOfLTnTIi4obOUwMWdKYbGi+C9/O/+3RBQ4+ OPVvTHEuL07VvfIfUwE6U+jXqEnughk2jYyNR/8sgnr3abIhgytf5CYZgOyKnmUE ZS4gFEQzuRmfPO10nkOc4QVlyV1ZRY/SVCcTdZgd28rDX05H9vG8LVhGrcKgSQL7 -----END CERTIFICATE-----Generated at Fri Apr 17 20:49:54 2026 by rpki-client