$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/21028CF67EF811EAAD47CD30C4F9AE02.roa File: 21028CF67EF811EAAD47CD30C4F9AE02.roa (raw, json) Hash identifier: 5qiov1nLKq5hzpu8tNYLrN/GDNf/4xMMx86PHr1cmkE= Subject key identifier: 40:1F:50:0F:5D:4C:C7:B1:AA:C7:16:73:B7:C3:5A:E8:3B:18:98:76 Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 0A89 Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/21028CF67EF811EAAD47CD30C4F9AE02.roa Signing time: Tue 28 Apr 2026 20:26:19 +0000 ROA not before: Tue 28 Apr 2026 20:26:18 +0000 ROA not after: Fri 28 Aug 2026 00:00:00 +0000 asID: 138684 IP address blocks: 103.136.132.0/22 maxlen: 22 103.136.132.0/24 maxlen: 24 103.136.133.0/24 maxlen: 24 103.136.134.0/24 maxlen: 24 103.136.135.0/24 maxlen: 24 2404:93c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2697 (0xa89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Apr 28 20:26:18 2026 GMT Not After : Aug 28 00:00:00 2026 GMT Subject: CN=69f117ea-e29e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ce:2c:e7:c8:21:98:62:23:9b:87:52:5f:45: c3:76:89:ab:62:8e:42:1d:f4:ac:f3:82:81:6f:90: 4e:09:d3:bf:ac:3d:90:0b:0b:60:79:05:99:8b:ea: 71:48:9b:94:b2:9f:11:e0:3c:67:48:e3:6c:e7:39: cb:f7:d6:9d:b5:34:eb:d2:b7:e4:5c:28:fa:32:a7: 33:94:b8:7e:73:b6:ca:7e:91:a2:88:74:e5:6b:31: 68:56:a3:0c:23:ad:38:32:bc:51:c4:a8:bb:4d:4a: 62:7a:be:e0:fc:7a:fe:e9:4e:73:c7:ec:49:89:58: 1a:09:b5:65:d5:d3:11:08:61:cb:ff:2c:b4:2e:47: fd:cd:8e:e2:3e:15:8c:c2:21:ba:bd:c1:f8:6e:cb: 0b:bf:5b:74:62:62:ff:be:10:f0:6c:3e:44:6f:68: f9:92:f5:7a:f3:08:4a:fc:06:d0:37:2b:cc:c2:7c: 11:49:0d:df:7a:88:e3:75:9b:1f:dd:14:8e:aa:a9: 8f:a6:64:8f:23:cd:64:6a:b0:d8:07:d8:bd:46:ff: 67:fd:15:32:b5:40:6d:19:13:5e:68:16:0c:e3:77: a4:44:7a:90:17:62:5a:36:10:80:b3:12:79:6f:60: 98:e0:7c:34:d3:e6:e8:dc:a9:52:18:45:31:b7:e8: 1e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:1F:50:0F:5D:4C:C7:B1:AA:C7:16:73:B7:C3:5A:E8:3B:18:98:76 X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/21028CF67EF811EAAD47CD30C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.132.0/22 IPv6: 2404:93c0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:e6:9e:dd:f5:a7:8b:c0:68:3c:7e:5a:8a:ad:39:ac:d3:ae: 7d:90:90:8a:d3:18:9d:b0:2c:1d:d2:04:73:18:43:2a:df:5e: 0a:7f:1f:bf:81:82:7b:e5:5b:91:8c:fd:80:53:d9:f0:08:28: bc:26:f3:a5:bf:de:91:45:b0:db:eb:73:c8:d8:2d:77:1b:59: ca:d0:3c:25:ce:ec:ef:68:ea:b4:da:66:7c:9c:0f:eb:af:c8: cd:89:86:19:ca:18:11:a2:d9:4b:a4:d8:06:b9:a4:c0:1b:f0: b8:bd:60:00:4f:d6:d3:d3:0a:d1:52:54:aa:ff:c7:3b:e1:8c: 4f:05:0c:98:27:c5:24:7b:43:1f:22:aa:1c:84:d6:5a:1e:b9: 03:5a:06:f4:6e:a0:c5:4c:40:f3:e7:04:2d:7d:81:82:0d:60: af:58:b8:20:b4:4e:f5:aa:a1:80:c9:cb:d8:fd:a0:5c:dd:6d: ef:99:9f:88:b1:9d:1d:53:57:53:c4:59:9b:b8:fe:82:8b:d3: b5:4b:05:4f:c0:99:b0:86:7f:59:ae:ab:58:00:a4:ea:92:93: 4a:8b:91:6a:f8:79:23:95:8a:dc:96:8a:ff:c9:97:a9:87:3a: dc:ab:47:83:40:23:27:9b:d2:dc:9e:7d:e7:d9:7f:1a:5a:bf: 2f:7c:e2:af -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjYwNDI4MjAyNjE4WhcNMjYwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxMTdlYS1lMjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c4s58ghmGIjm4dSX0XDdomrYo5CHfSs84KBb5BOCdO/rD2QCwtgeQWZi+px SJuUsp8R4DxnSONs5znL99adtTTr0rfkXCj6MqczlLh+c7bKfpGiiHTlazFoVqMM I604MrxRxKi7TUpier7g/Hr+6U5zx+xJiVgaCbVl1dMRCGHL/yy0Lkf9zY7iPhWM wiG6vcH4bssLv1t0YmL/vhDwbD5Eb2j5kvV68whK/AbQNyvMwnwRSQ3feojjdZsf 3RSOqqmPpmSPI81karDYB9i9Rv9n/RUytUBtGRNeaBYM43ekRHqQF2JaNhCAsxJ5 b2CY4Hw00+bo3KlSGEUxt+gejwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEAfUA9d TMexqscWc7fDWug7GJh2MB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1OUQvNUZBQjk3MkU3RUY2MTFFQUE5NzlBMzJEQzRGOUFFMDIvMjEwMjhDRjY3 RUY4MTFFQUFENDdDRDMwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4iEMA0EAgACMAcDBQAkBJPAMA0GCSqGSIb3DQEBCwUAA4IBAQB+ 5p7d9aeLwGg8flqKrTms0659kJCK0xidsCwd0gRzGEMq314Kfx+/gYJ75VuRjP2A U9nwCCi8JvOlv96RRbDb63PI2C13G1nK0DwlzuzvaOq02mZ8nA/rr8jNiYYZyhgR otlLpNgGuaTAG/C4vWAAT9bT0wrRUlSq/8c74YxPBQyYJ8Uke0MfIqochNZaHrkD Wgb0bqDFTEDz5wQtfYGCDWCvWLggtE71qqGAycvY/aBc3W3vmZ+IsZ0dU1dTxFmb uP6Ci9O1SwVPwJmwhn9ZrqtYAKTqkpNKi5Fq+HkjlYrclor/yZephzrcq0eDQCMn m9Lcnn3n2X8aWr8vfOKv -----END CERTIFICATE-----Generated at Sun Jun 14 04:01:59 2026 by rpki-client