$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa File: 9604F4A6899911EBA32C6224C4F9AE02.roa (raw, json) Hash identifier: V/SzYzu69tmbsxP6bWvkiUxUMh2sV1e0ifoqU8Ehrhk= Subject key identifier: 0D:58:CF:99:AA:7F:FE:D4:2A:1E:5A:CB:18:96:ED:DA:59:7E:A6:82 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37D8 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa Signing time: Thu 16 Apr 2026 15:14:37 +0000 ROA not before: Thu 16 Apr 2026 15:14:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141342 IP address blocks: 59.103.140.0/22 maxlen: 24 119.157.84.0/22 maxlen: 24 119.157.88.0/22 maxlen: 24 182.189.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14296 (0x37d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 16 15:14:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e0fcdd-5c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:19:33:52:67:45:f3:99:cc:c6:4b:94:45:84: 97:d8:89:a7:0c:32:6a:15:01:a8:b5:bc:65:1b:aa: 0f:0e:44:31:81:40:36:aa:6b:da:46:1d:17:99:68: 91:0b:55:9a:f3:e2:bd:f3:f0:89:ca:e0:9a:47:05: d6:c8:17:72:15:c5:a4:1b:1e:26:10:66:18:bb:a8: bc:fa:c2:80:80:2f:65:a4:b1:fb:82:80:39:05:c0: cf:45:44:86:fb:fb:5d:c9:1c:df:ed:a5:4e:8f:f5: 76:70:16:29:30:4b:2e:d4:e0:2b:85:86:fa:33:0f: a3:35:44:60:32:12:ca:c4:2e:71:01:87:c3:3c:ba: 74:6e:8a:84:77:c9:ce:69:ec:bc:7e:0e:5a:d7:05: 2f:e5:f3:d9:ee:c3:2c:f6:26:c1:ff:a7:99:2e:01: ab:71:fc:32:47:2f:96:ae:87:4d:71:01:ab:e6:78: 3f:16:39:96:3e:18:ea:ec:f5:e9:16:d5:98:bd:81: 83:38:30:29:a7:e2:1b:02:c7:4a:3d:e1:97:ef:3f: 8d:91:2a:7c:bf:30:85:6c:81:0b:22:ab:c2:f1:75: 34:f2:6a:9b:e5:b9:2b:b2:50:8d:8f:d3:46:1e:20: 30:9c:62:2c:4a:35:e8:86:1c:e4:83:67:79:2e:d1: fd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:58:CF:99:AA:7F:FE:D4:2A:1E:5A:CB:18:96:ED:DA:59:7E:A6:82 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.103.140.0/22 119.157.84.0-119.157.91.255 182.189.112.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:49:c4:33:b4:35:cb:61:c6:48:e2:92:90:22:98:8a:29:ae: 1f:71:ef:f8:30:f7:db:ba:a1:51:fa:f0:59:d7:87:2d:db:a5: 45:04:34:26:4c:f8:5e:24:35:65:0f:d0:09:2d:46:48:71:55: 6d:b6:06:9b:90:61:08:5c:73:db:d6:f3:d3:8a:7a:df:59:3f: 39:f6:84:f8:b3:68:d4:ff:cf:19:80:48:5e:54:16:f0:2c:39: e0:87:01:85:6c:ff:b5:ec:49:6e:fc:88:ba:5b:49:45:4f:e9: f9:1c:ae:d4:02:3d:8e:6d:3d:29:e7:c9:ce:75:90:ee:57:fc: a3:2a:b1:5d:0f:82:09:c1:3a:80:6e:f4:b5:59:e1:03:3a:47: 02:15:9a:d3:b8:f2:99:f4:67:42:5e:44:aa:8b:5c:db:58:2e: 75:12:b4:0a:c2:a6:34:23:03:65:c7:cf:be:39:88:45:84:5a: d6:8e:6a:4c:4d:3d:a4:da:f3:39:94:08:05:4b:e1:47:16:5b: 6c:ec:db:53:57:4b:37:bd:d6:44:9f:7a:6a:79:9e:b5:c0:2f: 1b:06:ca:08:00:4a:c6:53:ff:00:e8:65:ba:f9:c8:72:1c:50: b0:a1:cb:9a:78:40:41:6c:e3:07:5c:ef:24:28:76:cb:1e:bd: 9d:e9:dc:9d -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICN9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjYwNDE2MTUxNDM3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwZmNkZC01YzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRkzUmdF85nMxkuURYSX2ImnDDJqFQGotbxlG6oPDkQxgUA2qmvaRh0XmWiR C1Wa8+K98/CJyuCaRwXWyBdyFcWkGx4mEGYYu6i8+sKAgC9lpLH7goA5BcDPRUSG +/tdyRzf7aVOj/V2cBYpMEsu1OArhYb6Mw+jNURgMhLKxC5xAYfDPLp0boqEd8nO aey8fg5a1wUv5fPZ7sMs9ibB/6eZLgGrcfwyRy+WrodNcQGr5ng/FjmWPhjq7PXp FtWYvYGDODApp+IbAsdKPeGX7z+NkSp8vzCFbIELIqvC8XU08mqb5bkrslCNj9NG HiAwnGIsSjXohhzkg2d5LtH9dwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFA1Yz5mq f/7UKh5ayxiW7dpZfqaCMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvOTYwNEY0QTY4 OTk5MTFFQkEzMkM2MjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQCO2eMMAwDBAJ3nVQDBAJ3nVgDBAS2vXAwDQYJKoZIhvcNAQELBQAD ggEBADpJxDO0NcthxkjikpAimIoprh9x7/gw99u6oVH68FnXhy3bpUUENCZM+F4k NWUP0AktRkhxVW22BpuQYQhcc9vW89OKet9ZPzn2hPizaNT/zxmASF5UFvAsOeCH AYVs/7XsSW78iLpbSUVP6fkcrtQCPY5tPSnnyc51kO5X/KMqsV0PggnBOoBu9LVZ 4QM6RwIVmtO48pn0Z0JeRKqLXNtYLnUStArCpjQjA2XHz745iEWEWtaOakxNPaTa 8zmUCAVL4UcWW2zs21NXSze91kSfemp5nrXALxsGyggASsZT/wDoZbr5yHIcULCh y5p4QEFs4wdc7yQodssevZ3p3J0= -----END CERTIFICATE-----Generated at Fri Apr 17 05:31:07 2026 by rpki-client