$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/E86E188A795F11EFBF3B491CC4F9AE02.roa File: E86E188A795F11EFBF3B491CC4F9AE02.roa (raw, json) Hash identifier: EzjCQSqiPhSaFvXF1H6L31ZEuTh+F8SaBy2h9H/JZOI= Subject key identifier: F2:B7:24:83:F7:3F:3A:73:65:03:DA:77:C5:F2:CB:8C:E4:29:4B:53 Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 2AFC Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/E86E188A795F11EFBF3B491CC4F9AE02.roa Signing time: Sun 24 May 2026 16:17:58 +0000 ROA not before: Sun 24 May 2026 16:17:58 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 58601 IP address blocks: 103.9.112.0/22 maxlen: 22 103.9.112.0/24 maxlen: 24 103.9.113.0/24 maxlen: 24 103.9.114.0/24 maxlen: 24 103.9.115.0/24 maxlen: 24 2403:e100::/32 maxlen: 32 2403:e100:1000::/48 maxlen: 48 2403:e100:1000:4::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11004 (0x2afc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7, serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Validity Not Before: May 24 16:17:58 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1324b6-7029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:67:a3:02:98:97:d1:ea:ca:b2:39:81:e3:08: a0:a9:7e:87:f6:ea:01:02:a4:a1:18:43:5c:a1:6b: b9:b1:4a:90:4a:6d:da:01:d0:1e:b7:2f:8f:f2:f3: b1:b4:26:09:ae:6f:9b:3d:06:09:b0:1e:78:d3:3c: 76:22:18:1b:bd:cc:ae:36:15:a2:2e:39:41:21:43: ec:87:83:c6:df:73:42:50:3c:a8:21:35:19:d7:c6: dd:29:28:3a:ad:cd:7e:cc:fb:17:79:12:17:08:e6: f2:4e:a3:3e:d7:e3:f1:2b:00:87:da:0a:68:4e:69: 8b:75:dc:9d:34:e1:8b:b0:d7:57:e5:0f:5c:53:a2: 1d:d2:06:a5:ff:da:df:3c:d5:ff:fe:6c:03:a5:64: 50:04:96:ef:83:c6:93:a9:e8:e7:37:da:64:bc:66: 90:3e:23:6e:23:31:24:2a:7c:4e:73:bb:d7:23:cd: fd:9f:63:33:fe:b6:9f:1c:50:aa:de:68:d5:38:02: 3c:8b:8b:71:30:85:ec:56:14:f0:92:ad:1c:21:12: bd:f1:cb:5a:e2:96:fe:9c:93:44:2a:92:d5:90:f3: c1:62:0b:d8:30:cb:d1:7b:ec:62:fb:98:ed:ff:ee: ac:d6:5f:11:0c:c1:9f:39:9d:95:b6:14:fc:bf:9e: 20:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B7:24:83:F7:3F:3A:73:65:03:DA:77:C5:F2:CB:8C:E4:29:4B:53 X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/E86E188A795F11EFBF3B491CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.112.0/22 IPv6: 2403:e100::/32 Signature Algorithm: sha256WithRSAEncryption 49:90:bc:7e:38:c7:75:f1:a0:00:36:6d:b9:63:61:b3:2c:bb: 7e:0a:be:30:24:2a:de:bb:4e:0e:43:38:eb:69:11:85:96:23: 7c:ba:42:1d:11:44:0f:7e:7d:94:7c:28:42:eb:5e:dd:62:ed: 2e:8e:48:79:ae:6d:55:83:33:19:b3:a8:5c:c8:7a:75:45:94: 72:1d:f3:b8:31:27:f9:6d:ac:4b:c5:40:33:52:db:94:67:95: 00:1e:fe:60:77:2d:03:e2:05:f7:a0:d4:c4:b7:f8:3f:97:54: 17:e9:19:50:1a:c9:ad:21:aa:67:90:cf:3d:9d:60:e8:53:76: ad:e2:0c:b8:76:2e:40:45:3e:b4:d5:67:6d:1b:36:27:7f:83: f0:45:6b:6d:28:d2:f8:25:57:69:2c:3c:f2:8c:6b:b9:6a:58: 07:d2:0b:0e:da:e7:a7:3b:36:b7:5f:3e:8e:6f:f6:8a:ec:0a: 60:b8:78:29:0a:d0:2c:af:5b:78:40:db:e4:dd:88:78:66:cd: b0:f5:c1:ac:7a:17:95:17:92:ac:c4:2f:7f:bf:d5:67:9f:3f: 88:a3:69:2b:e9:43:cb:69:e7:0f:44:72:1b:00:e7:4d:ac:8e: c3:7d:da:62:0a:f1:8d:b1:95:cf:8f:95:9e:4f:b2:60:f5:b3: 93:c2:a5:59 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICKvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjYwNTI0MTYxNzU4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEzMjRiNi03MDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mejApiX0erKsjmB4wigqX6H9uoBAqShGENcoWu5sUqQSm3aAdAety+P8vOx tCYJrm+bPQYJsB540zx2IhgbvcyuNhWiLjlBIUPsh4PG33NCUDyoITUZ18bdKSg6 rc1+zPsXeRIXCObyTqM+1+PxKwCH2gpoTmmLddydNOGLsNdX5Q9cU6Id0gal/9rf PNX//mwDpWRQBJbvg8aTqejnN9pkvGaQPiNuIzEkKnxOc7vXI839n2Mz/rafHFCq 3mjVOAI8i4txMIXsVhTwkq0cIRK98cta4pb+nJNEKpLVkPPBYgvYMMvRe+xi+5jt /+6s1l8RDMGfOZ2VthT8v54gowIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPK3JIP3 PzpzZQPad8Xyy4zkKUtTMB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvRTg2RTE4OEE3 OTVGMTFFRkJGM0I0OTFDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZwlwMA0EAgACMAcDBQAkA+EAMA0GCSqGSIb3DQEBCwUAA4IBAQBJ kLx+OMd18aAANm25Y2GzLLt+Cr4wJCreu04OQzjraRGFliN8ukIdEUQPfn2UfChC 617dYu0ujkh5rm1VgzMZs6hcyHp1RZRyHfO4MSf5baxLxUAzUtuUZ5UAHv5gdy0D 4gX3oNTEt/g/l1QX6RlQGsmtIapnkM89nWDoU3at4gy4di5ART601WdtGzYnf4Pw RWttKNL4JVdpLDzyjGu5algH0gsO2uenOza3Xz6Ob/aK7ApguHgpCtAsr1t4QNvk 3Yh4Zs2w9cGseheVF5KsxC9/v9Vnnz+Io2kr6UPLaecPRHIbAOdNrI7DfdpiCvGN sZXPj5WeT7Jg9bOTwqVZ -----END CERTIFICATE-----Generated at Sun Jun 14 02:11:47 2026 by rpki-client