$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa File: 331C6A2C66DF11F0A3F38136C4F9AE02.roa (raw, json) Hash identifier: JaUMO42d058IElCDiIbG4Rs0tOfpVC1kruVkh0dRo+Q= Subject key identifier: 75:36:4D:99:50:1A:B9:6F:19:8D:83:4A:18:F4:26:F1:13:8D:48:A8 Certificate issuer: /CN=A91B9E19/serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Certificate serial: 0E99 Authority key identifier: 25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa Signing time: Sun 12 Apr 2026 17:21:21 +0000 ROA not before: Sun 12 Apr 2026 17:21:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401276 IP address blocks: 103.88.94.0/24 maxlen: 24 220.158.194.0/24 maxlen: 24 220.158.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3737 (0xe99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9E19, serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Validity Not Before: Apr 12 17:21:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69dbd491-a2ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:7b:84:04:a1:da:dc:55:0d:24:92:c4:9f: 76:7f:fb:d7:ec:60:c5:ff:3b:7a:27:a7:c5:4e:09: e3:7d:a4:17:a8:a1:40:b9:3a:de:86:b1:d4:3c:75: dc:4f:ff:50:2c:e9:ac:68:f5:ec:34:a0:7e:d2:c9: 70:66:17:38:0b:e4:5b:1b:e9:b9:33:24:ef:a2:46: c9:e9:da:d6:00:a5:a4:5f:f6:e1:33:83:aa:33:d9: 9d:14:3a:93:cb:46:51:aa:83:42:4d:3c:31:52:8d: 98:64:47:be:9f:1f:14:8d:1b:82:75:2c:ea:ea:2d: c1:8c:8b:e7:a0:d7:55:ce:02:75:de:2c:33:0b:f8: b5:f1:f5:b4:c7:cc:48:10:3c:bd:49:2c:f8:8e:c0: 43:16:1e:46:b9:bd:5f:13:c6:c4:6f:78:f0:07:28: 60:22:8d:34:6a:ca:a8:25:1f:dd:a8:05:07:d9:58: c0:ae:01:e9:bf:6a:f7:c3:99:6e:fe:a1:1b:58:5b: 0f:b2:a6:59:29:d8:0b:53:68:c0:b2:33:e4:bb:7a: 23:79:ca:33:c9:3b:c1:20:ec:d3:66:6c:7e:14:24: 82:61:dc:12:46:74:e4:84:7a:ce:5a:79:1b:30:2f: 90:2c:40:f3:99:93:a5:2f:53:6e:5b:c3:22:15:05: f5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:36:4D:99:50:1A:B9:6F:19:8D:83:4A:18:F4:26:F1:13:8D:48:A8 X509v3 Authority Key Identifier: keyid:25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.94.0/24 220.158.194.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:18:10:d1:3f:08:b6:0e:94:06:00:0d:82:e0:65:05:75:24: 5c:ba:e7:c1:53:2c:09:29:03:16:62:83:70:24:80:71:17:8e: f2:59:54:19:f2:84:a5:0e:e5:dd:52:85:98:9a:c2:8c:24:3c: 58:51:6b:f7:66:89:b4:3b:de:6a:30:78:b9:af:78:6f:d3:a4: 8f:e2:68:9b:9b:ac:3c:55:8c:7d:30:00:e6:10:e8:8a:ee:eb: 87:a3:29:bb:e5:dc:2d:07:e0:fe:85:28:25:2c:7c:7b:93:b8: e9:70:fa:56:96:03:e3:36:42:54:e6:2e:cc:24:77:be:ed:6c: 73:35:3c:00:8f:98:78:dd:d3:01:37:c9:38:e3:c5:27:70:38: 8c:e3:c7:14:6b:24:5f:90:6b:2c:7a:e1:be:8f:fc:2e:ee:7a: 97:15:b9:3f:b1:bf:9c:eb:7d:02:ba:59:6d:40:3d:48:8c:8b: 62:f3:7e:38:eb:72:a8:1d:46:aa:20:ae:a8:b9:08:19:f3:90: 1e:e1:b5:9d:ef:a7:9e:7c:d9:bb:57:84:72:79:de:d9:77:c1: af:15:10:2b:b7:a9:df:48:21:14:34:09:44:a4:ef:a1:f0:7a: 50:7c:d4:e5:1e:77:c7:7f:2a:f0:3e:f7:3c:a7:08:b6:25:aa: a7:c0:4e:b5 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFMTkxMTAvBgNVBAUTKDI1NTI5MEEwMUFBOUI5MTE4QjY2RUVEQTBGOTA1RjZE NDBEQjA1QUUwHhcNMjYwNDEyMTcyMTIxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRiZDQ5MS1hMmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcF7hASh2txVDSSSxJ92f/vX7GDF/zt6J6fFTgnjfaQXqKFAuTrehrHUPHXc T/9QLOmsaPXsNKB+0slwZhc4C+RbG+m5MyTvokbJ6drWAKWkX/bhM4OqM9mdFDqT y0ZRqoNCTTwxUo2YZEe+nx8UjRuCdSzq6i3BjIvnoNdVzgJ13iwzC/i18fW0x8xI EDy9SSz4jsBDFh5Gub1fE8bEb3jwByhgIo00asqoJR/dqAUH2VjArgHpv2r3w5lu /qEbWFsPsqZZKdgLU2jAsjPku3ojecozyTvBIOzTZmx+FCSCYdwSRnTkhHrOWnkb MC+QLEDzmZOlL1NuW8MiFQX1fQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHU2TZlQ GrlvGY2DShj0JvETjUioMB8GA1UdIwQYMBaAFCVSkKAaqbkRi2bu2g+QX21A2wWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUUxOS8zNTZGMkYzRUMx QTUxMUU5QThCOEYzMzZDNEY5QUUwMi9KVktRb0JxcHVSR0xadTdhRDVCZmJVRGJC YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pWS1FvQnFwdVJHTFp1N2FENUJmYlVEYkJhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFMTkvMzU2RjJGM0VDMUE1MTFFOUE4QjhGMzM2QzRGOUFFMDIvMzMxQzZBMkM2 NkRGMTFGMEEzRjM4MTM2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ1heAwQB3J7CMA0GCSqGSIb3DQEBCwUAA4IBAQA6GBDRPwi2DpQG AA2C4GUFdSRcuufBUywJKQMWYoNwJIBxF47yWVQZ8oSlDuXdUoWYmsKMJDxYUWv3 Zom0O95qMHi5r3hv06SP4mibm6w8VYx9MADmEOiK7uuHoym75dwtB+D+hSglLHx7 k7jpcPpWlgPjNkJU5i7MJHe+7WxzNTwAj5h43dMBN8k448UncDiM48cUayRfkGss euG+j/wu7nqXFbk/sb+c630CulltQD1IjIti834463KoHUaqIK6ouQgZ85Ae4bWd 76eefNm7V4Ryed7Zd8GvFRArt6nfSCEUNAlEpO+h8HpQfNTlHnfHfyrwPvc8pwi2 JaqnwE61 -----END CERTIFICATE-----Generated at Sun Apr 19 10:55:14 2026 by rpki-client