$ rpki-client -vvf rpki.apnic.net/member_repository/A916B32E/8F4A0B96000F11F1B9492C613F6F56BC/CBA294E6000F11F1A395F9D03F6F56BC.roa File: CBA294E6000F11F1A395F9D03F6F56BC.roa (raw, json) Hash identifier: 7pdhmhnOODRIBE8hIy7aPVlTry8TuLzDRyLTI2kIKXU= Subject key identifier: BA:58:B4:4B:8A:F1:F9:69:7D:C0:8E:EF:65:15:FA:E4:E2:0D:46:E4 Certificate issuer: /CN=A916B32E/serialNumber=916568953171E637B5C50532E3231B36B9C68CBB Certificate serial: 2D Authority key identifier: 91:65:68:95:31:71:E6:37:B5:C5:05:32:E3:23:1B:36:B9:C6:8C:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kWVolTFx5je1xQUy4yMbNrnGjLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B32E/8F4A0B96000F11F1B9492C613F6F56BC/CBA294E6000F11F1A395F9D03F6F56BC.roa Signing time: Sat 11 Apr 2026 08:43:05 +0000 ROA not before: Sat 11 Apr 2026 08:43:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 4686 IP address blocks: 103.230.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B32E/8F4A0B96000F11F1B9492C613F6F56BC/kWVolTFx5je1xQUy4yMbNrnGjLs.crl rsync://rpki.apnic.net/member_repository/A916B32E/8F4A0B96000F11F1B9492C613F6F56BC/kWVolTFx5je1xQUy4yMbNrnGjLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kWVolTFx5je1xQUy4yMbNrnGjLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B32E, serialNumber=916568953171E637B5C50532E3231B36B9C68CBB Validity Not Before: Apr 11 08:43:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69da0999-08bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:44:60:65:ca:ab:04:4b:2e:43:10:86:01:57: 0b:61:1d:bf:1b:e2:c3:e5:5f:69:17:93:eb:12:83: 18:d4:76:c8:e1:b5:05:b8:7f:d4:24:a0:3f:eb:76: 87:c2:7e:8c:52:77:33:16:bd:6f:f2:51:14:40:94: bb:29:13:18:c0:cc:1f:65:7a:55:e0:24:cd:ad:1e: 70:28:49:a4:49:68:e2:1c:1d:dd:de:22:59:e2:78: 33:84:dc:f9:9d:7f:6c:a2:3f:92:71:16:7e:d7:1f: df:a8:85:8d:9d:1a:d8:13:fc:fe:0f:36:b3:11:0e: 2f:c1:27:ed:82:34:14:66:ae:c2:a9:2d:7b:07:08: e7:cd:0e:08:88:4f:62:37:f0:57:cd:f1:47:7c:3f: ea:52:2b:28:82:e0:ba:46:18:f7:ce:3c:bd:30:64: 98:a6:5a:57:1c:b7:65:54:25:44:64:ca:55:e8:2e: 5f:48:6e:59:72:ff:4f:c8:3f:b1:34:f8:56:22:9f: 16:07:87:19:50:b8:5d:5d:10:08:51:d6:a8:bf:8d: ac:62:da:15:f2:5a:d5:cb:60:00:90:df:a1:8a:0a: 7c:fd:60:58:42:61:78:77:0f:d0:64:1e:34:f7:0c: c4:22:50:4e:8f:8f:cc:ce:57:c4:31:68:2b:a9:73: 56:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:58:B4:4B:8A:F1:F9:69:7D:C0:8E:EF:65:15:FA:E4:E2:0D:46:E4 X509v3 Authority Key Identifier: keyid:91:65:68:95:31:71:E6:37:B5:C5:05:32:E3:23:1B:36:B9:C6:8C:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B32E/8F4A0B96000F11F1B9492C613F6F56BC/kWVolTFx5je1xQUy4yMbNrnGjLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kWVolTFx5je1xQUy4yMbNrnGjLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B32E/8F4A0B96000F11F1B9492C613F6F56BC/CBA294E6000F11F1A395F9D03F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.230.24.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:39:9d:8a:02:4c:af:57:0c:41:0f:f7:8e:b7:a0:cc:c4:4a: cc:43:4b:ad:07:6d:0e:4e:e4:77:07:c3:24:c7:b3:f1:84:02: f7:88:0c:18:0f:13:9f:d5:49:e4:2e:c3:4c:6c:48:3f:33:9d: 73:33:2f:74:0a:ec:14:fd:35:21:10:6d:77:cc:ff:df:cd:2e: 7f:60:5c:9b:5d:3e:19:8b:90:25:c8:cd:15:ae:d0:99:c8:bf: d1:8a:12:45:79:22:c3:c5:59:42:7d:39:45:1d:c5:14:76:e8: 87:51:87:a2:17:8e:02:89:42:5b:5b:0d:f5:db:e4:ef:0c:2f: cd:82:d8:06:b7:76:95:33:f2:81:e1:40:e1:ed:f6:9e:ab:35: 23:be:3a:d7:b8:03:0e:6b:66:cc:a7:25:ed:7b:ef:3e:0c:79: bb:3d:7d:ad:e2:4f:63:e7:26:da:ad:4d:f4:71:e4:10:0e:32: df:64:e0:32:2f:50:61:6f:b8:b9:da:85:6b:f3:fe:11:e8:b8: 14:0d:22:35:29:ad:46:31:bf:c4:68:b4:20:6a:51:0a:2c:17: 16:df:c7:07:fd:1c:0f:91:3a:79:16:cf:80:d8:06:97:65:da: 55:62:1e:48:5e:35:fc:98:d1:1f:9e:dd:fe:ca:2a:ca:49:20: 53:f4:da:81 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjMyRTExMC8GA1UEBRMoOTE2NTY4OTUzMTcxRTYzN0I1QzUwNTMyRTMyMzFCMzZC OUM2OENCQjAeFw0yNjA0MTEwODQzMDVaFw0yNzA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZGEwOTk5LTA4YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwRGBlyqsESy5DEIYBVwthHb8b4sPlX2kXk+sSgxjUdsjhtQW4f9QkoD/rdofC foxSdzMWvW/yURRAlLspExjAzB9lelXgJM2tHnAoSaRJaOIcHd3eIlnieDOE3Pmd f2yiP5JxFn7XH9+ohY2dGtgT/P4PNrMRDi/BJ+2CNBRmrsKpLXsHCOfNDgiIT2I3 8FfN8Ud8P+pSKyiC4LpGGPfOPL0wZJimWlcct2VUJURkylXoLl9Iblly/0/IP7E0 +FYinxYHhxlQuF1dEAhR1qi/jaxi2hXyWtXLYACQ36GKCnz9YFhCYXh3D9BkHjT3 DMQiUE6Pj8zOV8QxaCupc1ZPAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUuli0S4rx +Wl9wI7vZRX65OINRuQwHwYDVR0jBBgwFoAUkWVolTFx5je1xQUy4yMbNrnGjLsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCMzJFLzhGNEEwQjk2MDAw RjExRjFCOTQ5MkM2MTNGNkY1NkJDL2tXVm9sVEZ4NWplMXhRVXk0eU1iTnJuR2pM cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1dWb2xURng1amUxeFFVeTR5TWJOcm5HakxzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjMyRS84RjRBMEI5NjAwMEYxMUYxQjk0OTJDNjEzRjZGNTZCQy9DQkEyOTRFNjAw MEYxMUYxQTM5NUY5RDAzRjZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJn5hgwDQYJKoZIhvcNAQELBQADggEBAH85nYoCTK9XDEEP9463oMzE SsxDS60HbQ5O5HcHwyTHs/GEAveIDBgPE5/VSeQuw0xsSD8znXMzL3QK7BT9NSEQ bXfM/9/NLn9gXJtdPhmLkCXIzRWu0JnIv9GKEkV5IsPFWUJ9OUUdxRR26IdRh6IX jgKJQltbDfXb5O8ML82C2Aa3dpUz8oHhQOHt9p6rNSO+Ote4Aw5rZsynJe177z4M ebs9fa3iT2PnJtqtTfRx5BAOMt9k4DIvUGFvuLnahWvz/hHouBQNIjUprUYxv8Ro tCBqUQosFxbfxwf9HA+ROnkWz4DYBpdl2lViHkheNfyY0R+e3f7KKspJIFP02oE= -----END CERTIFICATE-----Generated at Fri Apr 17 10:45:58 2026 by rpki-client