$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/DF6E9324D08D11EA9010E72EC4F9AE02.roa File: DF6E9324D08D11EA9010E72EC4F9AE02.roa (raw, json) Hash identifier: GDlrFsOMkk+fcO+QcoEg0Xz8k+lsBwDQwOJ1oO6ZWm8= Subject key identifier: 70:AC:57:4C:2D:55:5C:C5:C5:DB:08:57:C5:D6:1A:04:EF:C8:6E:18 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37E8 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/DF6E9324D08D11EA9010E72EC4F9AE02.roa Signing time: Thu 16 Apr 2026 15:15:08 +0000 ROA not before: Thu 16 Apr 2026 15:15:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9557 IP address blocks: 58.181.96.0/20 maxlen: 24 119.159.0.0/16 maxlen: 24 182.176.0.0/16 maxlen: 24 202.70.144.0/20 maxlen: 24 202.125.128.0/19 maxlen: 24 203.135.0.0/19 maxlen: 24 203.135.32.0/19 maxlen: 24 221.120.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14312 (0x37e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 16 15:15:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e0fcfc-f256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dc:06:a8:88:1d:d5:fb:e7:a4:0e:dc:2f:2f: 83:54:9d:83:12:34:b7:40:fe:d3:dd:58:e3:69:70: 1d:48:59:db:cf:63:02:a4:0b:08:e9:00:9a:1d:23: 65:16:6f:92:74:6c:7b:9c:74:41:e3:a0:4a:26:6f: 33:9e:70:af:3c:d1:54:c8:c1:c5:52:b4:aa:6f:c9: 44:68:12:dc:d1:64:c3:70:06:d0:22:b9:61:67:1c: e6:25:ac:3f:ee:68:b7:11:74:87:32:34:40:20:78: 28:a3:12:d5:ad:cb:b1:3a:62:5d:3c:9e:b8:76:d2: 8c:4f:1f:da:8c:6a:fb:95:d5:f1:8a:05:40:b7:1f: 8d:4b:db:66:e2:f8:b6:fa:05:94:42:a7:6c:b1:bf: 4f:b5:49:36:d8:ee:8b:c0:d0:75:6c:35:c8:2f:22: 01:1e:1f:94:6d:06:d6:d4:09:59:3d:97:20:fd:79: eb:bc:ab:88:fc:2f:86:dc:79:54:74:55:a3:00:04: 4d:25:b0:a9:ac:d1:54:06:7c:d4:df:fe:be:44:f9: d1:90:58:2b:af:30:62:c0:10:58:47:ba:ee:b0:6e: 07:98:01:27:fb:33:0c:ce:0d:88:bc:e1:dd:1f:e0: eb:dd:74:a8:27:2c:e5:4b:e9:4e:b3:cd:89:f7:73: 42:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AC:57:4C:2D:55:5C:C5:C5:DB:08:57:C5:D6:1A:04:EF:C8:6E:18 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/DF6E9324D08D11EA9010E72EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.181.96.0/20 119.159.0.0/16 182.176.0.0/16 202.70.144.0/20 202.125.128.0/19 203.135.0.0/18 221.120.192.0/18 Signature Algorithm: sha256WithRSAEncryption 5a:1b:38:c5:e7:9a:14:5c:88:4c:c8:44:14:3e:78:e9:ac:b0: b5:0a:7d:6a:17:b2:d2:6c:2c:b7:5c:3d:94:28:6d:3f:25:ca: e7:c9:16:d0:a4:26:60:07:38:34:73:b2:4e:2f:9a:2f:7b:c8: 68:d4:b7:9f:74:71:08:5b:4b:a1:f2:ff:8a:7e:e0:a6:25:0b: f5:d4:76:f5:1c:3a:2a:e6:8a:7b:13:43:3a:bb:01:5b:f5:52: 6c:15:9e:e4:08:d8:7d:bf:c8:45:07:2b:cc:06:e3:15:34:44: 10:cd:97:2e:cb:f0:7b:1c:9f:4f:72:d9:24:6c:40:00:40:9d: 36:a7:5b:14:70:37:bb:91:0d:6a:18:81:4d:09:d5:2e:20:7f: 6e:0d:f0:77:2c:db:70:83:e6:57:73:be:8d:c9:6a:d5:b0:f2: 02:fc:cf:2b:73:0b:60:44:99:bf:dd:9b:1c:4b:65:5a:d5:b7: 6a:cd:c1:24:f3:f8:2f:78:16:3d:cc:7d:4b:42:9d:f9:db:7a: 63:61:82:c7:6b:ae:ee:d4:5d:04:1e:6a:98:c5:76:b2:97:9d: 58:36:24:9d:bd:3b:6e:ea:ac:32:92:ee:9d:1c:f4:57:af:d9: 86:0d:e7:69:9e:9f:3b:4e:b2:38:a7:06:03:a9:04:7c:88:c7: 3d:32:a4:a0 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICN+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjYwNDE2MTUxNTA4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwZmNmYy1mMjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodwGqIgd1fvnpA7cLy+DVJ2DEjS3QP7T3VjjaXAdSFnbz2MCpAsI6QCaHSNl Fm+SdGx7nHRB46BKJm8znnCvPNFUyMHFUrSqb8lEaBLc0WTDcAbQIrlhZxzmJaw/ 7mi3EXSHMjRAIHgooxLVrcuxOmJdPJ64dtKMTx/ajGr7ldXxigVAtx+NS9tm4vi2 +gWUQqdssb9PtUk22O6LwNB1bDXILyIBHh+UbQbW1AlZPZcg/XnrvKuI/C+G3HlU dFWjAARNJbCprNFUBnzU3/6+RPnRkFgrrzBiwBBYR7rusG4HmAEn+zMMzg2IvOHd H+Dr3XSoJyzlS+lOs82J93NCjQIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFHCsV0wt VVzFxdsIV8XWGgTvyG4YMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvREY2RTkzMjRE MDhEMTFFQTkwMTBFNzJFQzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAu BAIAATAoAwQEOrVgAwMAd58DAwC2sAMEBMpGkAMEBcp9gAMEBsuHAAMEBt14wDAN BgkqhkiG9w0BAQsFAAOCAQEAWhs4xeeaFFyITMhEFD546aywtQp9ahey0mwst1w9 lChtPyXK58kW0KQmYAc4NHOyTi+aL3vIaNS3n3RxCFtLofL/in7gpiUL9dR29Rw6 KuaKexNDOrsBW/VSbBWe5AjYfb/IRQcrzAbjFTREEM2XLsvwexyfT3LZJGxAAECd NqdbFHA3u5ENahiBTQnVLiB/bg3wdyzbcIPmV3O+jclq1bDyAvzPK3MLYESZv92b HEtlWtW3as3BJPP4L3gWPcx9S0Kd+dt6Y2GCx2uu7tRdBB5qmMV2spedWDYknb07 buqsMpLunRz0V6/Zhg3naZ6fO06yOKcGA6kEfIjHPTKkoA== -----END CERTIFICATE-----Generated at Fri Apr 17 04:10:26 2026 by rpki-client