$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/304DD002EFAB11EF97C9610FC4F9AE02.roa File: 304DD002EFAB11EF97C9610FC4F9AE02.roa (raw, json) Hash identifier: 72tND6FYfSKJu0sQNqpeEtwTYhVCnqpq4nZnR1IjkYo= Subject key identifier: A8:8D:F2:0C:DE:C8:3C:AD:6B:ED:11:0C:00:06:85:8A:88:A3:52:D7 Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 010A Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/304DD002EFAB11EF97C9610FC4F9AE02.roa Signing time: Fri 29 May 2026 06:38:06 +0000 ROA not before: Fri 29 May 2026 06:38:06 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139077 IP address blocks: 103.139.104.0/23 maxlen: 24 202.4.28.0/23 maxlen: 24 2001:df0:7380::/48 maxlen: 48 2401:c4a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: May 29 06:38:06 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a19344e-c492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:05:a1:ec:b9:73:08:e1:d8:dd:d3:3d:97:7a: 05:73:ef:b5:af:ff:fc:95:f6:4e:a3:f1:13:14:2e: f4:40:bb:d5:97:c2:99:39:51:e1:eb:13:1c:18:83: b9:d7:ad:af:34:88:64:97:c9:37:d6:44:62:12:96: ca:2d:2b:b2:c2:db:ff:5e:4b:b6:76:08:c0:8c:24: 38:24:65:c8:c2:26:f3:e6:ff:b5:31:0b:1f:58:a0: 6c:ca:62:06:00:4e:cf:f9:91:02:7b:c8:f8:0b:83: 2a:b9:0e:bc:c1:db:6d:97:91:25:1d:e9:f6:57:00: 9c:67:23:e3:f8:1c:b3:89:8f:0c:96:d0:c7:20:35: cc:1a:b7:bb:6c:61:d8:8e:81:19:35:33:7f:01:32: f8:c6:99:1b:4e:73:17:5c:d6:e1:36:71:e0:bc:ee: db:d4:f6:20:a0:b7:c7:c2:05:c9:ec:e5:e9:a4:9f: 49:bb:c9:45:df:c6:ff:0f:16:e2:b1:4d:f8:24:89: 26:96:ac:1e:93:7e:ea:9e:8d:ac:bd:b0:db:a5:dd: a1:23:ec:dc:2c:51:af:42:03:a1:54:a9:32:67:43: d0:56:cf:bf:c2:f4:3d:27:91:87:bb:1f:2c:b9:cf: 2b:b8:63:67:4b:96:1d:d4:15:69:9c:dd:38:7e:a7: df:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8D:F2:0C:DE:C8:3C:AD:6B:ED:11:0C:00:06:85:8A:88:A3:52:D7 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/304DD002EFAB11EF97C9610FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.139.104.0/23 202.4.28.0/23 IPv6: 2001:df0:7380::/48 2401:c4a0::/32 Signature Algorithm: sha256WithRSAEncryption c0:80:50:6d:19:7b:39:be:be:93:b2:13:be:60:a8:23:7b:a6: 30:58:d5:c6:47:7c:8a:2c:88:9f:1f:1e:e9:47:bc:d9:37:70: c9:20:84:02:be:7d:10:07:45:9d:1a:33:f0:9e:d0:b6:de:90: 6f:b8:89:3a:39:10:76:0f:3b:99:6c:ba:d2:40:f2:8e:ee:bc: 2b:3e:b2:c3:72:35:c6:f4:87:db:79:b4:a7:b5:a4:28:e4:bf: f8:a0:40:2f:96:40:30:2a:5c:ef:b2:9c:78:b5:4b:dc:e2:3c: 05:74:bf:18:e0:0a:84:6a:34:62:1f:88:97:51:24:4d:fb:8d: e7:e8:06:a6:48:5c:38:d0:e3:96:1c:4b:50:5f:39:cf:d3:0e: 86:44:91:ba:0b:9e:32:4b:3b:c3:60:ac:9a:81:5f:62:34:43: 6b:16:08:0c:d9:8a:3d:36:5a:52:89:77:45:3f:38:67:72:15: a9:43:29:ba:07:c6:0b:9c:1b:ff:8e:ac:b5:dc:82:da:91:62: ac:ef:90:41:ad:9c:a0:00:b9:1e:05:1a:86:08:11:42:ef:cb: 13:26:a1:5e:09:b4:18:28:07:69:91:b6:53:40:77:77:53:47: 1f:dd:83:aa:f3:72:28:32:04:59:2b:d6:0b:27:21:e5:b2:85: e8:22:7f:2a -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGOTAxMTAvBgNVBAUTKDVDMEEzNTIzRkQzNjQ1QTc2MzVBRjI1MTlBRENEMDAy RTEzMkZCQ0UwHhcNMjYwNTI5MDYzODA2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE5MzQ0ZS1jNDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkQWh7LlzCOHY3dM9l3oFc++1r//8lfZOo/ETFC70QLvVl8KZOVHh6xMcGIO5 162vNIhkl8k31kRiEpbKLSuywtv/Xku2dgjAjCQ4JGXIwibz5v+1MQsfWKBsymIG AE7P+ZECe8j4C4MquQ68wdttl5ElHen2VwCcZyPj+ByziY8MltDHIDXMGre7bGHY joEZNTN/ATL4xpkbTnMXXNbhNnHgvO7b1PYgoLfHwgXJ7OXppJ9Ju8lF38b/Dxbi sU34JIkmlqwek37qno2svbDbpd2hI+zcLFGvQgOhVKkyZ0PQVs+/wvQ9J5GHux8s uc8ruGNnS5Yd1BVpnN04fqffJQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFKiN8gze yDyta+0RDAAGhYqIo1LXMB8GA1UdIwQYMBaAFFwKNSP9NkWnY1ryUZrc0ALhMvvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEY5MC8wNDc3OUI5Q0VE ODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJhZGpXdkpSbXR6UUF1RXkt ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBGOTAvMDQ3NzlCOUNFRDgxMTFFRkEwMDM2NjE2QzRGOUFFMDIvMzA0REQwMDJF RkFCMTFFRjk3Qzk2MTBGQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAS BAIAATAMAwQBZ4toAwQBygQcMBYEAgACMBADBwAgAQ3wc4ADBQAkAcSgMA0GCSqG SIb3DQEBCwUAA4IBAQDAgFBtGXs5vr6TshO+YKgje6YwWNXGR3yKLIifHx7pR7zZ N3DJIIQCvn0QB0WdGjPwntC23pBvuIk6ORB2DzuZbLrSQPKO7rwrPrLDcjXG9Ifb ebSntaQo5L/4oEAvlkAwKlzvspx4tUvc4jwFdL8Y4AqEajRiH4iXUSRN+43n6Aam SFw40OOWHEtQXznP0w6GRJG6C54ySzvDYKyagV9iNENrFggM2Yo9NlpSiXdFPzhn chWpQym6B8YLnBv/jqy13ILakWKs75BBrZygALkeBRqGCBFC78sTJqFeCbQYKAdp kbZTQHd3U0cf3YOq83IoMgRZK9YLJyHlsoXoIn8q -----END CERTIFICATE-----Generated at Sat Jun 13 17:43:10 2026 by rpki-client