$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa File: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (raw, json) Hash identifier: LWvz30J7nqbhh5taPr7hBquNOGwN6yl//Q6amBLA2ko= Subject key identifier: A7:DA:80:98:0D:61:BD:2B:37:1C:54:6D:58:8C:3B:BF:F4:D1:8B:F8 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37D7 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa Signing time: Thu 16 Apr 2026 15:14:35 +0000 ROA not before: Thu 16 Apr 2026 15:14:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141031 IP address blocks: 39.34.164.0/24 maxlen: 24 39.34.165.0/24 maxlen: 24 39.34.166.0/24 maxlen: 24 39.34.167.0/24 maxlen: 24 39.34.168.0/21 maxlen: 24 39.34.184.0/21 maxlen: 24 59.103.208.0/20 maxlen: 24 119.152.40.0/24 maxlen: 24 119.152.41.0/24 maxlen: 24 119.152.42.0/24 maxlen: 24 119.152.43.0/24 maxlen: 24 119.152.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14295 (0x37d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 16 15:14:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e0fcdb-b569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:20:05:04:b7:44:95:b3:8f:1b:ba:67:3d:98: 3f:9a:d2:92:f4:4e:4b:2a:75:40:a8:a1:2f:67:5b: 51:4a:db:4e:26:3a:d8:60:68:4e:a5:54:53:9c:d0: 75:7d:32:6b:3f:99:af:95:58:8e:77:cf:b5:1d:2a: 61:b5:4d:54:7e:4a:77:c0:8e:14:f8:95:3c:16:71: b6:38:2e:ab:d0:1a:54:51:f5:33:81:4f:80:e1:fa: 94:0d:34:8a:2c:7e:cc:eb:1f:4f:96:f4:53:68:79: 89:6e:ad:dc:7d:97:37:6c:22:22:bf:74:ed:a6:ed: 6b:b4:7d:c1:80:8a:cd:35:f6:42:a0:a6:cc:b1:c0: 88:76:a0:4e:1b:1d:ab:df:37:f5:73:32:63:89:2f: 78:75:5c:ba:15:f0:99:b7:95:3c:c1:32:19:39:d9: ce:71:5b:63:b9:75:ad:02:15:b3:b3:4b:60:cc:d8: bd:b6:0d:c8:92:fd:7e:ab:b9:78:81:0a:c6:b4:07: ec:2a:44:a0:3c:01:18:ac:e9:f9:9a:2a:51:7a:c9: 3d:19:d1:57:32:4f:4a:c9:25:be:29:a3:71:f3:f3: 62:77:e3:5c:fa:aa:65:7f:bc:28:97:da:61:23:c6: 62:7b:f6:1b:8a:58:c6:21:87:c0:c4:45:14:f3:25: 15:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DA:80:98:0D:61:BD:2B:37:1C:54:6D:58:8C:3B:BF:F4:D1:8B:F8 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.34.164.0-39.34.175.255 39.34.184.0/21 59.103.208.0/20 119.152.40.0-119.152.44.255 Signature Algorithm: sha256WithRSAEncryption 7e:80:c9:b4:87:99:31:bf:59:6a:1e:c7:ed:8f:f4:72:ce:06: c9:36:33:16:16:ee:4e:fb:2d:19:77:96:91:d2:bd:44:09:9d: 62:1b:77:49:6e:1d:2e:de:78:6d:ae:9b:ae:a1:64:91:a0:80: aa:ed:8a:a8:81:ac:37:90:f6:dd:28:d7:85:06:d3:21:5e:5b: 1d:53:f8:b2:9a:4a:46:7b:a5:26:e0:c3:a2:6d:1e:20:06:6d: 9a:86:3b:34:16:bf:9e:21:5a:05:bb:aa:05:4e:2b:71:58:dc: 04:94:9a:57:4a:d3:6d:cb:0a:44:61:ed:10:14:b4:63:bf:19: f0:a2:f9:ca:67:66:bf:17:30:89:96:31:ad:83:84:8a:c0:f4: bf:fb:35:d5:da:5e:ab:db:df:d8:4f:48:36:93:f4:5e:e0:b8: dd:3c:72:d6:5d:f3:b7:49:35:5f:77:4c:4e:c1:70:3b:2c:09: d6:8f:9d:3e:49:5d:c6:ca:9a:38:dc:6d:d9:21:ea:18:f3:31: b4:a5:47:52:49:cb:11:23:8a:d8:6f:35:1e:57:95:9c:91:ab: 8b:7a:ca:c4:10:e0:32:91:8e:ee:40:e9:f0:b0:1f:13:b1:ae: 34:08:e0:36:ac:cb:97:8e:c3:bc:9e:12:4f:ab:ea:53:8a:24: cf:81:18:d5 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICN9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjYwNDE2MTUxNDM1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwZmNkYi1iNTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiAFBLdElbOPG7pnPZg/mtKS9E5LKnVAqKEvZ1tRSttOJjrYYGhOpVRTnNB1 fTJrP5mvlViOd8+1HSphtU1Ufkp3wI4U+JU8FnG2OC6r0BpUUfUzgU+A4fqUDTSK LH7M6x9PlvRTaHmJbq3cfZc3bCIiv3Ttpu1rtH3BgIrNNfZCoKbMscCIdqBOGx2r 3zf1czJjiS94dVy6FfCZt5U8wTIZOdnOcVtjuXWtAhWzs0tgzNi9tg3Ikv1+q7l4 gQrGtAfsKkSgPAEYrOn5mipResk9GdFXMk9KySW+KaNx8/Nid+Nc+qplf7wol9ph I8Zie/YbiljGIYfAxEUU8yUVhwIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFKfagJgN Yb0rNxxUbViMO7/00Yv4MB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMTNDODI4QzYy RDg5MTFFQkE3RDIyQzNFQzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAu BAIAATAoMAwDBAInIqQDBAQnIqADBAMnIrgDBAQ7Z9AwDAMEA3eYKAMEAHeYLDAN BgkqhkiG9w0BAQsFAAOCAQEAfoDJtIeZMb9Zah7H7Y/0cs4GyTYzFhbuTvstGXeW kdK9RAmdYht3SW4dLt54ba6brqFkkaCAqu2KqIGsN5D23SjXhQbTIV5bHVP4sppK RnulJuDDom0eIAZtmoY7NBa/niFaBbuqBU4rcVjcBJSaV0rTbcsKRGHtEBS0Y78Z 8KL5ymdmvxcwiZYxrYOEisD0v/s11dpeq9vf2E9INpP0XuC43Txy1l3zt0k1X3dM TsFwOywJ1o+dPkldxsqaONxt2SHqGPMxtKVHUknLESOK2G81HleVnJGri3rKxBDg MpGO7kDp8LAfE7GuNAjgNqzLl47DvJ4ST6vqU4okz4EY1Q== -----END CERTIFICATE-----Generated at Fri Apr 17 03:06:12 2026 by rpki-client