$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/CEC4C3FC903B11ED96D73F40C4F9AE02.roa File: CEC4C3FC903B11ED96D73F40C4F9AE02.roa (raw, json) Hash identifier: eNztU7B/7IHFo3dG2XOoFvu10+Q6T/lvArVNNYIftfU= Subject key identifier: 32:EB:92:67:63:38:21:62:37:7F:02:09:63:B5:7D:8F:7F:04:D2:7B Certificate issuer: /CN=A91AE984/serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Certificate serial: 0CA0 Authority key identifier: 8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/CEC4C3FC903B11ED96D73F40C4F9AE02.roa Signing time: Fri 10 Apr 2026 19:23:04 +0000 ROA not before: Fri 10 Apr 2026 19:23:04 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 59238 IP address blocks: 103.135.108.0/22 maxlen: 24 2404:7bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE984, serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Validity Not Before: Apr 10 19:23:04 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d94e17-1557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:0d:5e:03:d8:65:77:1c:65:d2:7f:80:2a: 5d:84:e7:37:36:81:f5:d2:1f:5b:74:12:78:4c:85: 2e:33:a3:cf:a8:df:84:54:63:5a:e2:e4:06:66:18: 90:76:94:51:df:ff:66:38:35:ec:a4:61:5a:0e:ea: 18:f1:3e:35:7f:a1:25:57:b8:2f:16:5f:51:de:c3: 8f:7d:9a:3e:00:0f:d8:14:b5:31:e5:7f:3a:2b:ed: 6e:fd:5e:9c:82:a4:b1:65:2e:a7:65:ec:22:2e:0b: 3b:fb:db:08:fc:73:34:a8:72:2b:b6:0c:06:43:66: ca:7a:5c:1d:ef:d1:1d:0a:70:b7:87:ff:2f:9b:d0: 69:56:96:33:97:79:02:01:81:38:3c:63:25:de:2c: 5a:0a:7c:0c:1f:1b:f3:f3:ff:ea:e4:fa:ed:62:c9: 33:c1:b0:0e:16:01:8a:40:44:9f:5a:5f:2d:d8:c2: a2:d9:56:25:6c:ad:cd:8e:4d:da:60:67:f5:d6:d9: 45:f6:58:24:9f:05:b6:15:fa:d1:70:5b:01:4b:36: 78:8c:d0:0d:1e:c4:b6:f9:2f:3e:62:a6:6a:2d:c5: ca:bd:82:f6:c9:f9:eb:f9:95:9b:bb:27:bd:0b:74: d2:22:f4:e8:7d:a1:0d:85:51:14:72:30:2b:3b:86: fb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:EB:92:67:63:38:21:62:37:7F:02:09:63:B5:7D:8F:7F:04:D2:7B X509v3 Authority Key Identifier: keyid:8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/CEC4C3FC903B11ED96D73F40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.108.0/22 IPv6: 2404:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption 9a:78:fb:e0:a7:ac:d0:4e:0d:15:e8:3d:35:8f:7a:22:72:39: 3d:17:33:c1:ce:3b:b6:05:50:1d:d0:33:d0:08:b6:99:67:f1: 1f:a4:5e:94:52:1e:27:53:83:a5:93:52:53:59:61:bd:ec:1a: 04:b2:92:22:d5:a1:4d:13:b3:19:96:1b:ee:28:c7:31:21:db: 93:f2:a1:cb:25:51:7b:6f:02:c9:e0:f9:41:ac:34:24:ba:98: 93:7f:da:a6:c5:f7:32:f8:a6:20:97:71:58:6a:44:7c:d3:ea: e7:b3:ee:58:c2:9f:fe:01:dc:fc:75:d9:d0:e7:ea:2f:42:f2: 9f:0f:48:ff:90:51:d8:76:0f:30:45:a1:3e:a3:d6:81:57:45: 4e:23:a0:56:4f:06:e0:ef:2f:e7:46:79:2e:a5:c7:67:82:13: 7e:db:30:25:c0:6e:35:a6:5f:61:a6:7b:f3:0e:7a:d4:60:d5: ba:a7:5d:23:f0:87:d3:df:b8:fc:f3:bb:bb:66:da:1c:a0:9f: 2a:a5:32:6c:bd:67:32:9f:e7:7a:6a:0b:1b:b4:17:75:26:bd: b9:42:7d:dd:71:dc:b3:08:7b:b8:43:fe:4e:f4:ba:06:58:e9: 98:f8:f9:2c:93:b7:48:a7:cb:a7:3c:ee:f8:85:fb:87:c3:87: 6e:1c:70:60 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5ODQxMTAvBgNVBAUTKDhBQkEzRTQ3RDUxQzVEMkM5RUYzNDNFNUFGNDExMDFF NDNDNThBODgwHhcNMjYwNDEwMTkyMzA0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ5NGUxNy0xNTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApt8NXgPYZXccZdJ/gCpdhOc3NoH10h9bdBJ4TIUuM6PPqN+EVGNa4uQGZhiQ dpRR3/9mODXspGFaDuoY8T41f6ElV7gvFl9R3sOPfZo+AA/YFLUx5X86K+1u/V6c gqSxZS6nZewiLgs7+9sI/HM0qHIrtgwGQ2bKelwd79EdCnC3h/8vm9BpVpYzl3kC AYE4PGMl3ixaCnwMHxvz8//q5PrtYskzwbAOFgGKQESfWl8t2MKi2VYlbK3Njk3a YGf11tlF9lgknwW2FfrRcFsBSzZ4jNANHsS2+S8+YqZqLcXKvYL2yfnr+ZWbuye9 C3TSIvTofaENhVEUcjArO4b7+wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDLrkmdj OCFiN38CCWO1fY9/BNJ7MB8GA1UdIwQYMBaAFIq6PkfVHF0snvND5a9BEB5DxYqI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk4NC8yODc0NUU0QzE1 RUUxMUVBQTJEOUUwNkVDNEY5QUUwMi9pcm8tUjlVY1hTeWU4MFBscjBFUUhrUEZp b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lyby1SOVVjWFN5ZTgwUGxyMEVRSGtQRmlvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5ODQvMjg3NDVFNEMxNUVFMTFFQUEyRDlFMDZFQzRGOUFFMDIvQ0VDNEMzRkM5 MDNCMTFFRDk2RDczRjQwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4dsMA0EAgACMAcDBQAkBHvAMA0GCSqGSIb3DQEBCwUAA4IBAQCa ePvgp6zQTg0V6D01j3oicjk9FzPBzju2BVAd0DPQCLaZZ/EfpF6UUh4nU4Olk1JT WWG97BoEspIi1aFNE7MZlhvuKMcxIduT8qHLJVF7bwLJ4PlBrDQkupiTf9qmxfcy +KYgl3FYakR80+rns+5Ywp/+Adz8ddnQ5+ovQvKfD0j/kFHYdg8wRaE+o9aBV0VO I6BWTwbg7y/nRnkupcdnghN+2zAlwG41pl9hpnvzDnrUYNW6p10j8IfT37j887u7 ZtocoJ8qpTJsvWcyn+d6agsbtBd1Jr25Qn3dcdyzCHu4Q/5O9LoGWOmY+Pksk7dI p8unPO74hfuHw4duHHBg -----END CERTIFICATE-----Generated at Fri Apr 17 14:57:09 2026 by rpki-client