$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/DF3CAFC44D9E11F0B1307858C4F9AE02.roa File: DF3CAFC44D9E11F0B1307858C4F9AE02.roa (raw, json) Hash identifier: Gj36dWubgKABqlkFIW8O6/4ONoiv/qzcPv5+4kWBHuk= Subject key identifier: E7:0B:82:7A:FA:7B:E7:33:F0:15:09:72:6D:B9:F2:F9:C3:ED:3D:D2 Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 0852 Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/DF3CAFC44D9E11F0B1307858C4F9AE02.roa Signing time: Fri 10 Apr 2026 21:26:35 +0000 ROA not before: Fri 10 Apr 2026 21:26:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55720 IP address blocks: 103.212.68.0/24 maxlen: 24 103.212.69.0/24 maxlen: 24 103.212.70.0/24 maxlen: 24 103.212.71.0/24 maxlen: 24 139.5.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2130 (0x852) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Validity Not Before: Apr 10 21:26:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d96b0b-e45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a0:57:2b:af:f3:31:e1:f5:fd:79:d9:38:f5: f2:4b:11:1b:82:31:d2:4b:a9:f6:93:90:0b:de:25: 18:e5:e1:be:5d:81:b9:d6:d5:6b:06:f3:cd:9a:7b: 1f:b6:91:1b:1f:19:c7:de:b6:ec:c6:58:cf:bf:e8: 76:b5:c1:e8:3b:19:5b:64:78:8f:2f:07:95:cd:d9: 3c:a5:d1:f2:68:ca:8d:7c:20:aa:7a:4d:10:5a:38: 02:24:12:8a:31:70:26:88:26:2e:5b:ab:61:9a:fb: bf:b7:5a:a0:a9:2e:b1:7f:32:82:d7:15:80:3b:93: e6:a4:4a:c3:78:16:5c:ec:52:ad:c0:5c:4f:ba:45: 60:67:e5:b0:ad:1b:f9:d1:4b:fe:e9:d0:bc:ba:89: 62:f7:92:60:52:64:82:50:cf:1e:8f:cb:d3:88:96: d6:87:c7:7b:b9:9c:93:5c:87:2a:df:59:6f:83:42: a9:90:b8:bb:98:8b:37:df:a0:ea:10:10:bd:47:13: b6:7b:4c:30:98:f7:1d:0f:6c:d6:cb:0a:03:c6:f6: 0d:93:59:5b:a2:3a:4d:23:e1:23:02:08:16:b8:70: a4:27:1d:e3:d1:4e:56:b9:b3:79:20:34:e6:c8:db: e0:cc:fb:7b:84:87:d5:91:74:a5:de:d5:ba:a2:83: 21:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0B:82:7A:FA:7B:E7:33:F0:15:09:72:6D:B9:F2:F9:C3:ED:3D:D2 X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/DF3CAFC44D9E11F0B1307858C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.212.68.0/22 139.5.177.0/24 Signature Algorithm: sha256WithRSAEncryption 54:73:80:75:db:c2:50:fd:27:29:7e:4a:5c:e0:9c:0b:24:83: 0c:62:d9:94:83:4e:d9:ef:d1:12:a0:63:b9:a6:17:33:d2:87: ad:96:97:db:75:d1:e7:fc:cc:fa:f8:22:68:dc:b9:eb:07:e1: 85:1f:70:0b:e9:a1:b6:8f:99:42:4c:64:3b:89:02:82:2b:a5: 8d:04:d8:c1:27:8a:72:23:29:ff:05:e9:6a:bc:dc:25:12:56: ea:8e:58:ac:be:7e:e8:b1:8c:ad:64:fd:14:26:43:9d:d1:57: d1:7d:fb:1d:36:64:8a:6e:7b:87:4a:83:8c:c4:8e:9b:7e:4d: 70:9b:21:99:2e:af:28:1c:71:3e:d6:13:07:6b:fb:0b:c5:e7: 92:96:b4:b0:d9:60:3d:f8:f0:ff:bb:de:61:16:93:f7:13:14: 38:cd:f1:42:03:5c:43:ee:0b:94:b1:a1:70:a6:b6:89:85:14: f2:3d:60:e6:b7:64:b9:e2:4e:82:6d:19:56:50:a7:f6:1a:c2: 29:c6:07:f5:5d:8d:8a:3d:44:19:f5:4c:65:d6:69:09:5c:1f: 96:24:34:b9:1a:87:6d:40:1b:de:d5:01:b9:1b:d4:f4:ff:01: 5b:ad:54:27:ae:65:b3:8f:b2:8e:30:5f:24:b8:1b:03:e3:b0: d4:63:22:f3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjYwNDEwMjEyNjM1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ5NmIwYi1lNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl6BXK6/zMeH1/XnZOPXySxEbgjHSS6n2k5AL3iUY5eG+XYG51tVrBvPNmnsf tpEbHxnH3rbsxljPv+h2tcHoOxlbZHiPLweVzdk8pdHyaMqNfCCqek0QWjgCJBKK MXAmiCYuW6thmvu/t1qgqS6xfzKC1xWAO5PmpErDeBZc7FKtwFxPukVgZ+WwrRv5 0Uv+6dC8uoli95JgUmSCUM8ej8vTiJbWh8d7uZyTXIcq31lvg0KpkLi7mIs336Dq EBC9RxO2e0wwmPcdD2zWywoDxvYNk1lbojpNI+EjAggWuHCkJx3j0U5WubN5IDTm yNvgzPt7hIfVkXSl3tW6ooMhdQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOcLgnr6 e+cz8BUJcm258vnD7T3SMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYzMTIvQUE5MkI5NzgwQzI5MTFFQjk1NDBERDYxQzRGOUFFMDIvREYzQ0FGQzQ0 RDlFMTFGMEIxMzA3ODU4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9REAwQAiwWxMA0GCSqGSIb3DQEBCwUAA4IBAQBUc4B128JQ/Scp fkpc4JwLJIMMYtmUg07Z79ESoGO5phcz0oetlpfbddHn/Mz6+CJo3LnrB+GFH3AL 6aG2j5lCTGQ7iQKCK6WNBNjBJ4pyIyn/BelqvNwlElbqjlisvn7osYytZP0UJkOd 0VfRffsdNmSKbnuHSoOMxI6bfk1wmyGZLq8oHHE+1hMHa/sLxeeSlrSw2WA9+PD/ u95hFpP3ExQ4zfFCA1xD7guUsaFwpraJhRTyPWDmt2S54k6CbRlWUKf2GsIpxgf1 XY2KPUQZ9Uxl1mkJXB+WJDS5GodtQBve1QG5G9T0/wFbrVQnrmWzj7KOMF8kuBsD 47DUYyLz -----END CERTIFICATE-----Generated at Fri Apr 17 09:48:37 2026 by rpki-client