$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa File: 3785190EF0FE11EEA034D07EC4F9AE02.roa (raw, json) Hash identifier: 0j5aE5hiEdJstFRcjjMbmu5rVLRxiGYSHh/mpTlglk4= Subject key identifier: 13:C3:8F:7B:A6:D8:3C:82:AD:16:D0:23:7A:D1:00:E7:3B:FD:5F:31 Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 2AFB Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa Signing time: Sun 24 May 2026 16:17:55 +0000 ROA not before: Sun 24 May 2026 16:17:55 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 24323 IP address blocks: 43.245.192.0/22 maxlen: 22 43.245.192.0/24 maxlen: 24 43.245.193.0/24 maxlen: 24 43.245.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11003 (0x2afb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7, serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Validity Not Before: May 24 16:17:55 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1324b3-21f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ef:ff:49:57:a0:d2:5c:ce:8a:27:13:ec:34: ec:b3:be:95:32:a3:6a:68:8a:72:af:e0:9b:7d:d1: 93:4f:21:ef:7a:86:fc:7f:ae:b2:37:28:35:d9:55: 2f:31:82:f9:76:f1:23:c4:1e:15:4e:8d:41:2e:cc: 26:05:2c:da:75:bc:af:ce:d5:55:96:82:d1:7e:ba: cb:eb:5b:bd:22:5b:94:c0:71:6e:38:6c:b3:e4:40: 85:fc:83:a2:45:56:c3:31:e9:99:ee:8a:ee:71:0e: 82:2d:bd:3d:72:d8:fc:78:52:b3:0a:54:5e:63:43: 02:58:fa:b9:93:55:04:65:d6:34:09:26:7a:fd:e1: f3:a2:4d:87:fc:01:69:56:ee:1a:e8:b1:38:25:43: 2a:b0:dc:70:e8:f8:5c:fa:dd:53:79:63:f7:9f:0b: 5d:0a:57:07:b9:66:f7:2d:31:7b:5e:21:01:bc:7d: a8:e6:55:e8:1b:49:71:c9:18:9a:97:6c:3f:ca:19: e4:28:19:8a:bc:ae:1b:6f:83:07:16:43:59:8f:bc: 48:3b:d5:d7:00:bb:8f:13:82:1c:ad:22:df:c0:4e: c1:d5:eb:f4:b5:c7:e7:7d:44:16:75:bc:9b:f8:fe: 43:fc:50:ef:2e:71:3f:56:1e:77:af:e2:85:80:45: 18:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C3:8F:7B:A6:D8:3C:82:AD:16:D0:23:7A:D1:00:E7:3B:FD:5F:31 X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.192.0/22 Signature Algorithm: sha256WithRSAEncryption 27:f4:db:cb:6a:1f:51:5a:59:91:c1:84:83:54:77:f3:42:a2: 0c:8c:33:3f:37:ff:30:8f:96:7a:6e:c6:b0:7f:aa:23:04:a4: 5f:57:a5:8b:3f:87:81:a9:b2:82:f1:2b:62:42:27:fe:f1:de: 6e:d4:92:42:3f:7e:3c:26:dc:27:c4:fc:04:ac:8f:1f:da:0a: c0:72:b6:58:2a:47:f1:cc:9e:ec:94:aa:87:9c:21:75:78:45: e7:3a:c5:16:b0:ec:90:89:e8:cb:3a:a5:6b:e3:94:c9:6f:05: f2:93:1d:7b:90:3d:8e:a7:d2:17:da:96:a3:a7:67:7c:99:34: c6:81:89:63:bb:3c:e9:af:98:0e:8c:f6:d3:91:0c:aa:8f:6e: b4:02:dd:95:c9:d7:82:4c:9d:fe:49:7c:fb:ce:8d:89:32:cd: 89:4b:cd:3d:2e:8a:d8:0e:8e:1e:40:05:00:ae:d4:bf:d9:72: ec:0e:7e:f0:3c:d1:f9:15:6c:ac:e6:69:52:5a:4e:68:ae:17: 7f:d5:bc:e7:9c:d3:8c:8d:bd:9d:7c:3d:d6:ab:75:24:3f:70: ca:0d:1a:8a:a3:cd:60:3d:37:a9:06:62:0d:b4:f7:08:85:27: 9a:8f:c4:33:11:0d:d6:a8:c4:a3:8d:f3:bc:0a:ea:97:94:25: 81:be:37:89 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjYwNTI0MTYxNzU1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEzMjRiMy0yMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+//SVeg0lzOiicT7DTss76VMqNqaIpyr+CbfdGTTyHveob8f66yNyg12VUv MYL5dvEjxB4VTo1BLswmBSzadbyvztVVloLRfrrL61u9IluUwHFuOGyz5ECF/IOi RVbDMemZ7orucQ6CLb09ctj8eFKzClReY0MCWPq5k1UEZdY0CSZ6/eHzok2H/AFp Vu4a6LE4JUMqsNxw6Phc+t1TeWP3nwtdClcHuWb3LTF7XiEBvH2o5lXoG0lxyRia l2w/yhnkKBmKvK4bb4MHFkNZj7xIO9XXALuPE4IcrSLfwE7B1ev0tcfnfUQWdbyb +P5D/FDvLnE/Vh53r+KFgEUY0QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBPDj3um 2DyCrRbQI3rRAOc7/V8xMB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvMzc4NTE5MEVG MEZFMTFFRUEwMzREMDdFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/XAMA0GCSqGSIb3DQEBCwUAA4IBAQAn9NvLah9RWlmRwYSDVHfz QqIMjDM/N/8wj5Z6bsawf6ojBKRfV6WLP4eBqbKC8StiQif+8d5u1JJCP348Jtwn xPwErI8f2grAcrZYKkfxzJ7slKqHnCF1eEXnOsUWsOyQiejLOqVr45TJbwXykx17 kD2Op9IX2pajp2d8mTTGgYljuzzpr5gOjPbTkQyqj260At2VydeCTJ3+SXz7zo2J Ms2JS809LorYDo4eQAUArtS/2XLsDn7wPNH5FWys5mlSWk5orhd/1bznnNOMjb2d fD3Wq3UkP3DKDRqKo81gPTepBmINtPcIhSeaj8QzEQ3WqMSjjfO8CuqXlCWBvjeJ -----END CERTIFICATE-----Generated at Sat Jun 13 14:42:18 2026 by rpki-client