$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/CB8AA43A4D9B11EFB201E984C4F9AE02.roa File: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (raw, json) Hash identifier: AJrvk8IGvjnP3VJvC5dJezoK0caBMbNlEK+q3lO+374= Subject key identifier: 4C:41:43:3F:56:8B:5A:8C:5B:FC:37:DB:91:C2:F9:2D:D9:E4:55:7D Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 0498 Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/CB8AA43A4D9B11EFB201E984C4F9AE02.roa Signing time: Thu 09 Apr 2026 00:32:00 +0000 ROA not before: Thu 09 Apr 2026 00:32:00 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 149513 IP address blocks: 103.181.164.0/23 maxlen: 23 103.181.164.0/24 maxlen: 24 103.181.165.0/24 maxlen: 24 2400:5a60::/48 maxlen: 48 2400:5a60:3::/48 maxlen: 48 2400:5a60:4::/48 maxlen: 48 2400:5a60:5::/48 maxlen: 48 2400:5a60:6::/48 maxlen: 48 2400:5a60:7::/48 maxlen: 48 2400:5a60:8::/48 maxlen: 48 2400:5a60:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: Apr 9 00:32:00 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d6f380-2790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:75:b4:a1:b3:15:d6:cf:ee:6b:6c:08:35:ed: f7:b6:3f:3e:b6:1a:a6:00:40:dc:9e:1c:91:17:f1: 07:a2:ee:f0:80:f4:3d:e7:14:4e:64:d1:4e:b2:76: 03:38:bc:18:ee:ba:32:79:1f:5b:6f:8d:d0:50:b2: 77:21:8f:09:c1:ee:e3:d0:04:a8:bc:6b:1b:a5:25: a5:09:05:d9:6f:da:59:a8:da:d5:84:b0:e7:9d:f4: e5:2e:6e:77:30:18:16:64:36:10:52:32:0f:81:41: 7b:2e:f5:2e:51:e0:49:33:6d:66:01:b5:8e:86:a2: 66:2d:b2:4b:61:20:7a:e5:65:2e:bf:fa:d6:07:98: 4e:ff:f2:0d:f9:8d:f4:ef:e0:2c:e9:ac:bd:2a:cf: 12:07:d1:3a:4b:93:6e:48:9c:7c:66:86:fc:35:b5: 8b:1b:9f:09:02:fd:f2:87:3d:df:4f:35:73:a1:e4: fd:11:33:94:de:3f:ae:de:d2:fc:c0:b2:5d:c8:9a: d6:30:6c:7d:67:70:2b:80:a0:28:43:20:29:c3:d4: 53:3a:d8:4c:e5:c1:76:5c:25:be:a0:ed:f0:dd:00: c3:d6:25:f5:cf:e0:59:d4:98:db:f1:07:cb:2d:23: 22:89:67:4f:07:56:5d:2d:82:11:15:fa:ac:2c:22: 79:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:41:43:3F:56:8B:5A:8C:5B:FC:37:DB:91:C2:F9:2D:D9:E4:55:7D X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/CB8AA43A4D9B11EFB201E984C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.181.164.0/23 IPv6: 2400:5a60::/48 2400:5a60:3::-2400:5a60:9:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 99:5f:9e:8a:8a:d9:e9:b7:e4:1c:53:94:73:2a:60:c4:d7:72: 3f:97:c3:fd:92:39:a4:e4:e5:f6:45:18:c4:7c:df:96:23:3e: 14:fc:9d:a3:c2:a3:d8:34:3f:b1:f1:fd:bc:d5:30:01:57:63: b1:16:e3:a4:84:87:9f:ec:b3:b0:a3:7c:d3:f4:0d:9e:23:15: 16:ed:e5:19:bf:31:12:ee:53:dd:c3:3b:23:4e:9a:82:0d:16: 85:59:23:7c:d7:2e:92:54:73:fe:e0:66:cc:60:8f:42:8e:fc: 17:0e:50:0e:3c:bb:22:51:0a:21:56:af:18:2e:f2:10:89:82: db:b1:57:88:0c:73:32:ab:7d:f4:00:4c:b3:d4:02:92:00:61: 9d:21:24:f9:9b:2f:53:c3:d3:91:9f:08:a9:7e:5b:74:95:8c: 22:1f:26:c9:11:1c:1c:aa:e6:a2:8f:65:e5:90:36:5d:d4:e9: e3:9a:c5:48:fa:9c:ba:0c:47:88:29:6b:2a:c7:aa:9e:2b:78: 18:a6:e7:7c:1d:e8:f4:4a:c9:54:d2:f9:b5:fe:50:b5:c4:2a: 6f:fc:3a:7b:04:ac:ed:0b:04:79:cf:b4:c1:32:85:2b:50:fd: d7:a1:3d:de:8c:7a:6d:22:50:13:80:48:a1:82:74:88:95:11: c4:8f:c3:2b -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjYwNDA5MDAzMjAwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2ZjM4MC0yNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnW0obMV1s/ua2wINe33tj8+thqmAEDcnhyRF/EHou7wgPQ95xROZNFOsnYD OLwY7royeR9bb43QULJ3IY8Jwe7j0ASovGsbpSWlCQXZb9pZqNrVhLDnnfTlLm53 MBgWZDYQUjIPgUF7LvUuUeBJM21mAbWOhqJmLbJLYSB65WUuv/rWB5hO//IN+Y30 7+As6ay9Ks8SB9E6S5NuSJx8Zob8NbWLG58JAv3yhz3fTzVzoeT9ETOU3j+u3tL8 wLJdyJrWMGx9Z3ArgKAoQyApw9RTOthM5cF2XCW+oO3w3QDD1iX1z+BZ1Jjb8QfL LSMiiWdPB1ZdLYIRFfqsLCJ5XQIDAQABo4IChTCCAoEwHQYDVR0OBBYEFExBQz9W i1qMW/w325HC+S3Z5FV9MB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEwMTgvODgzNkZBNjA4RDRDMTFFQzk4OEFFODVEQzRGOUFFMDIvQ0I4QUE0M0E0 RDlCMTFFRkIyMDFFOTg0QzRGOUFFMDIucm9hMEQGCCsGAQUFBwEHAQH/BDUwMzAM BAIAATAGAwQBZ7WkMCMEAgACMB0DBwAkAFpgAAAwEgMHACQAWmAAAwMHASQAWmAA CDANBgkqhkiG9w0BAQsFAAOCAQEAmV+eiorZ6bfkHFOUcypgxNdyP5fD/ZI5pOTl 9kUYxHzfliM+FPydo8Kj2DQ/sfH9vNUwAVdjsRbjpISHn+yzsKN80/QNniMVFu3l Gb8xEu5T3cM7I06agg0WhVkjfNcuklRz/uBmzGCPQo78Fw5QDjy7IlEKIVavGC7y EImC27FXiAxzMqt99ABMs9QCkgBhnSEk+ZsvU8PTkZ8IqX5bdJWMIh8myREcHKrm oo9l5ZA2XdTp45rFSPqcugxHiClrKseqnit4GKbnfB3o9ErJVNL5tf5QtcQqb/w6 ewSs7QsEec+0wTKFK1D916E93ox6bSJQE4BIoYJ0iJURxI/DKw== -----END CERTIFICATE-----Generated at Sat Apr 18 01:07:28 2026 by rpki-client