$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa File: E26173CE050611EAA0470B49C4F9AE02.roa (raw, json) Hash identifier: R7rZtnSJJ0QZFo5Ja/uQYwMCd6fNJf9hdwEvNCJu1OA= Subject key identifier: E5:E0:C2:B4:BF:E8:63:5B:06:2F:BA:3C:E3:5E:C0:C0:76:2C:70:7F Certificate issuer: /CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Certificate serial: 0D31 Authority key identifier: 13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa Signing time: Fri 17 Apr 2026 00:49:21 +0000 ROA not before: Fri 17 Apr 2026 00:49:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 56132 IP address blocks: 43.246.232.0/22 maxlen: 22 49.127.0.0/16 maxlen: 16 59.191.208.0/20 maxlen: 20 59.191.220.0/22 maxlen: 22 103.35.228.0/22 maxlen: 22 118.138.0.0/16 maxlen: 16 118.138.232.0/21 maxlen: 21 118.138.240.0/20 maxlen: 20 118.138.240.0/21 maxlen: 21 118.139.0.0/17 maxlen: 17 203.6.141.0/24 maxlen: 24 2404:2400::/32 maxlen: 32 2404:2400::/40 maxlen: 40 2404:2400::/44 maxlen: 44 2404:2400::/48 maxlen: 48 2404:2400:100::/40 maxlen: 40 2404:2400:100::/44 maxlen: 44 2404:2400:100::/48 maxlen: 48 2404:2400:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3377 (0xd31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Validity Not Before: Apr 17 00:49:21 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69e18391-bb3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:28:96:0a:ef:80:98:96:ef:7e:4b:13:7a: db:27:aa:53:51:a9:85:58:04:fc:47:c6:8a:9a:dc: 44:00:79:7f:c4:44:68:d4:34:65:f5:37:53:b6:a8: 84:cc:09:c1:f9:23:1f:72:1c:18:15:7e:92:d1:96: 53:86:ed:10:3d:88:07:b2:d7:c3:f5:65:71:82:fe: 73:83:ba:f1:79:28:7e:6e:8d:07:ca:fc:7d:a9:54: 44:29:7f:db:76:00:6c:c2:7a:f0:83:d6:4f:19:97: ed:a8:b9:cc:52:b3:db:99:2e:b2:41:71:a7:1f:b1: 7b:ff:84:b4:27:9a:63:57:f9:aa:75:c2:f5:c7:cc: a0:58:df:24:d4:a0:8a:0e:ab:25:33:2d:b6:86:f0: 19:c3:03:34:d9:06:78:38:d7:d0:ef:96:b1:38:f2: 4a:d9:bf:d7:d4:ca:48:88:f8:8c:43:5b:a2:c9:fd: eb:4a:d3:ce:96:e0:6b:4a:ff:e1:a8:a2:de:59:d0: 5a:90:46:45:c8:32:53:d9:44:de:bf:42:15:81:9d: a6:01:40:d1:e3:2d:3a:ce:08:08:a1:eb:88:35:28: c7:18:5b:01:ac:d4:56:03:06:f3:e4:29:f2:77:33: 2d:b9:86:07:42:7d:51:0e:6b:46:da:bf:62:60:92: db:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E0:C2:B4:BF:E8:63:5B:06:2F:BA:3C:E3:5E:C0:C0:76:2C:70:7F X509v3 Authority Key Identifier: keyid:13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.232.0/22 49.127.0.0/16 59.191.208.0/20 103.35.228.0/22 118.138.0.0-118.139.127.255 203.6.141.0/24 IPv6: 2404:2400::/32 Signature Algorithm: sha256WithRSAEncryption 33:a7:a4:8a:23:a2:0d:67:72:cf:f0:4e:d6:73:77:6a:35:1f: db:3a:f1:43:fa:60:65:8f:92:86:a5:d5:ac:37:77:88:0e:94: 35:cc:8d:31:a3:d9:6e:49:48:58:20:71:e7:75:2e:2b:36:69: 61:6d:66:23:b9:37:9a:3e:ae:15:a8:d2:a9:20:08:64:62:fc: 10:3d:1f:c1:87:2c:34:1c:f0:b0:3a:34:59:a9:6c:21:d2:19: c0:c4:ae:d9:2a:48:96:f3:8e:12:e3:da:2c:87:f7:2d:39:81: 24:f7:02:31:3d:fb:67:37:7d:e9:01:bd:6a:17:a5:39:0b:fb: c1:7b:47:05:be:98:7a:c9:aa:59:ba:02:18:4c:43:93:a4:c8: a4:f8:a8:e6:ca:62:64:94:ab:29:8e:c9:9f:0f:9e:5f:f3:1f: 7f:dc:dd:71:24:8e:a9:51:13:00:17:57:b9:71:fd:37:eb:c2: b4:bb:75:c1:85:1a:d7:8c:cb:61:8a:48:8b:12:9e:90:6a:92: 5d:fe:84:fa:6c:d6:78:30:97:b2:ac:c1:09:50:2b:e1:92:80: cf:bb:1d:bc:84:0b:46:2c:91:39:98:c2:3e:36:46:97:53:1a: 5e:84:5b:bc:2b:65:0c:44:48:aa:aa:d6:0e:d2:05:89:82:1f: bb:41:44:69 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICDTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQjUxMTAvBgNVBAUTKDEzNTVENTE4N0QyRTYzRDdFNkQ0OTA3OEQ4RTcxRkEw NTFDNDU2RTMwHhcNMjYwNDE3MDA0OTIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxODM5MS1iYjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB8olgrvgJiW735LE3rbJ6pTUamFWAT8R8aKmtxEAHl/xERo1DRl9TdTtqiE zAnB+SMfchwYFX6S0ZZThu0QPYgHstfD9WVxgv5zg7rxeSh+bo0Hyvx9qVREKX/b dgBswnrwg9ZPGZftqLnMUrPbmS6yQXGnH7F7/4S0J5pjV/mqdcL1x8ygWN8k1KCK DqslMy22hvAZwwM02QZ4ONfQ75axOPJK2b/X1MpIiPiMQ1uiyf3rStPOluBrSv/h qKLeWdBakEZFyDJT2UTev0IVgZ2mAUDR4y06zggIoeuINSjHGFsBrNRWAwbz5Cny dzMtuYYHQn1RDmtG2r9iYJLbbQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFOXgwrS/ 6GNbBi+6PONewMB2LHB/MB8GA1UdIwQYMBaAFBNV1Rh9LmPX5tSQeNjnH6BRxFbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NCNS82MzI2NTBGODA1 MDUxMUVBQUE5MzRDNDNDNEY5QUUwMi9FMVhWR0gwdVk5Zm0xSkI0Mk9jZm9GSEVW dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UxWFZHSDB1WTlmbTFKQjQyT2Nmb0ZIRVZ1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQjUvNjMyNjUwRjgwNTA1MTFFQUFBOTM0QzQzQzRGOUFFMDIvRTI2MTczQ0Uw NTA2MTFFQUEwNDcwQjQ5QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAw BAIAATAqAwQCK/boAwMAMX8DBAQ7v9ADBAJnI+QwCwMDAXaKAwQHdosAAwQAywaN MA0EAgACMAcDBQAkBCQAMA0GCSqGSIb3DQEBCwUAA4IBAQAzp6SKI6INZ3LP8E7W c3dqNR/bOvFD+mBlj5KGpdWsN3eIDpQ1zI0xo9luSUhYIHHndS4rNmlhbWYjuTea Pq4VqNKpIAhkYvwQPR/Bhyw0HPCwOjRZqWwh0hnAxK7ZKkiW844S49osh/ctOYEk 9wIxPftnN33pAb1qF6U5C/vBe0cFvph6yapZugIYTEOTpMik+KjmymJklKspjsmf D55f8x9/3N1xJI6pURMAF1e5cf0368K0u3XBhRrXjMthikiLEp6QapJd/oT6bNZ4 MJeyrMEJUCvhkoDPux28hAtGLJE5mMI+NkaXUxpehFu8K2UMREiqqtYO0gWJgh+7 QURp -----END CERTIFICATE-----Generated at Fri Apr 17 18:25:42 2026 by rpki-client