$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/ADFF1B80076711F1A8EB0774023D8C67.roa File: ADFF1B80076711F1A8EB0774023D8C67.roa (raw, json) Hash identifier: RKwgcMwcAkIc7uHynZPrQbWlXsZHj1vx0pht/X1vhHY= Subject key identifier: F0:6B:A6:FC:59:2D:BD:16:F1:AF:4E:D1:01:32:DA:6A:C0:EC:7A:33 Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 1096 Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/ADFF1B80076711F1A8EB0774023D8C67.roa Signing time: Wed 03 Jun 2026 17:41:06 +0000 ROA not before: Wed 03 Jun 2026 17:41:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1828 IP address blocks: 103.38.152.0/24 maxlen: 24 103.38.153.0/24 maxlen: 24 103.38.154.0/23 maxlen: 23 103.38.154.0/24 maxlen: 24 103.38.155.0/24 maxlen: 24 111.221.57.0/24 maxlen: 24 111.221.58.0/23 maxlen: 24 202.58.136.0/21 maxlen: 21 2401:5dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4246 (0x1096) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Jun 3 17:41:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a206731-f85b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b5:ec:fb:6a:4b:65:b2:b9:34:87:72:a2:0f: 6a:c2:44:b1:f4:dd:44:62:16:ff:26:8e:40:17:d6: d6:ce:6c:f3:7b:bd:fb:82:c3:20:1f:c9:53:0d:64: f1:2b:d1:c2:30:8a:7b:dc:95:3d:4a:67:ae:13:8a: 90:55:2b:24:ac:bd:89:91:92:b1:99:f0:6c:95:29: 7f:16:0b:1a:56:12:d6:e1:9c:c7:9e:d7:a1:52:17: 11:f1:85:16:b1:2f:64:73:e6:f5:0c:33:8a:6f:0e: 70:08:81:27:1a:2c:86:db:fe:8d:45:95:7e:e0:d7: 69:64:9b:f4:38:78:d8:ec:66:b5:6f:5e:4b:0a:9f: 75:3f:cf:07:c1:48:ae:72:bf:a8:a0:53:b2:32:80: f9:5e:eb:a2:56:d5:7b:f6:9b:81:24:fe:3f:85:03: 04:9a:5a:f7:49:60:ed:51:e1:e6:d1:9a:84:ce:77: 08:cd:24:bf:4c:56:a3:71:c0:7c:d2:cf:29:51:0d: 88:33:ea:89:75:bf:47:10:0d:6e:1f:2e:4f:ba:92: 59:3c:55:d3:2d:07:3c:6d:0d:4b:39:86:0f:33:2a: 86:46:68:f7:b2:b3:80:9f:32:aa:90:82:ac:49:bd: ff:b4:73:98:ec:4b:c8:11:10:cc:9e:1e:04:a6:27: 1a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6B:A6:FC:59:2D:BD:16:F1:AF:4E:D1:01:32:DA:6A:C0:EC:7A:33 X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/ADFF1B80076711F1A8EB0774023D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.38.152.0/22 111.221.57.0-111.221.59.255 202.58.136.0/21 IPv6: 2401:5dc0::/32 Signature Algorithm: sha256WithRSAEncryption 2f:90:eb:3f:3e:5a:79:63:67:cc:5d:f1:62:c1:8d:4f:67:f5: 72:21:7b:52:ad:d1:bc:6e:fa:ff:69:e1:25:03:ad:c7:77:47: 2c:fb:23:b9:db:ad:69:9f:ab:d9:bd:88:d0:29:61:7c:a3:49: 33:43:2b:10:99:3b:28:a2:2e:3c:f2:c6:03:bd:8a:81:37:17: 39:7f:5f:66:43:c1:e5:b7:db:eb:ef:03:52:fd:62:67:29:22: d2:34:c6:2e:ac:b2:3f:69:18:7f:e1:2e:32:b9:80:7d:a1:9f: 50:5e:ad:aa:a9:85:bd:42:15:77:34:fa:e2:8a:41:88:2b:8b: 15:c4:59:3f:b7:4e:91:89:13:f3:f0:6d:fc:b6:02:93:77:c1: 58:7d:d3:3a:57:e7:45:84:e4:15:67:a9:c1:14:0a:ec:c7:0d: 6c:89:95:a2:d2:5d:d3:25:b6:8b:f2:71:68:95:78:5d:b7:64: 9c:12:b5:5a:88:3d:61:00:cf:87:de:d9:84:cd:11:a6:fc:c3: 91:f5:7e:ce:ba:bd:3b:8c:4b:81:cb:ca:5d:3b:1b:a6:cd:6b: 6e:56:87:cb:40:a0:d9:73:7c:6d:4f:46:3d:3f:5d:b6:10:c5: 5f:4c:13:c3:ae:d9:ec:bf:ac:df:8b:dc:4d:b4:3b:64:02:db: 0a:78:47:46 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICEJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjYwNjAzMTc0MTA2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIwNjczMS1mODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLXs+2pLZbK5NIdyog9qwkSx9N1EYhb/Jo5AF9bWzmzze737gsMgH8lTDWTx K9HCMIp73JU9SmeuE4qQVSskrL2JkZKxmfBslSl/FgsaVhLW4ZzHntehUhcR8YUW sS9kc+b1DDOKbw5wCIEnGiyG2/6NRZV+4NdpZJv0OHjY7Ga1b15LCp91P88HwUiu cr+ooFOyMoD5XuuiVtV79puBJP4/hQMEmlr3SWDtUeHm0ZqEzncIzSS/TFajccB8 0s8pUQ2IM+qJdb9HEA1uHy5PupJZPFXTLQc8bQ1LOYYPMyqGRmj3srOAnzKqkIKs Sb3/tHOY7EvIERDMnh4EpicamwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFPBrpvxZ Lb0W8a9O0QEy2mrA7HozMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFMTYvMTc0ODg1NTA1QkIxMTFFOThCMTAzQjEzQzRGOUFFMDIvQURGRjFCODAw NzY3MTFGMUE4RUIwNzc0MDIzRDhDNjcucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAg BAIAATAaAwQCZyaYMAwDBABv3TkDBAJv3TgDBAPKOogwDQQCAAIwBwMFACQBXcAw DQYJKoZIhvcNAQELBQADggEBAC+Q6z8+WnljZ8xd8WLBjU9n9XIhe1Kt0bxu+v9p 4SUDrcd3Ryz7I7nbrWmfq9m9iNApYXyjSTNDKxCZOyiiLjzyxgO9ioE3Fzl/X2ZD weW32+vvA1L9YmcpItI0xi6ssj9pGH/hLjK5gH2hn1Beraqphb1CFXc0+uKKQYgr ixXEWT+3TpGJE/Pwbfy2ApN3wVh90zpX50WE5BVnqcEUCuzHDWyJlaLSXdMltovy cWiVeF23ZJwStVqIPWEAz4fe2YTNEab8w5H1fs66vTuMS4HLyl07G6bNa25Wh8tA oNlzfG1PRj0/XbYQxV9ME8Ou2ey/rN+L3E20O2QC2wp4R0Y= -----END CERTIFICATE-----Generated at Sat Jun 13 21:29:34 2026 by rpki-client