$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/2B07FA82EADC11EBBE430B5EC4F9AE02.roa File: 2B07FA82EADC11EBBE430B5EC4F9AE02.roa (raw, json) Hash identifier: bBojOiS31o6PX2SPb7aw0i/v7gUX2MMQIPUxqEZpkrw= Subject key identifier: 40:91:BB:3C:C7:AF:F6:83:94:9F:BD:66:78:83:D6:7B:EB:5C:FD:9C Certificate issuer: /CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Certificate serial: 0619 Authority key identifier: C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/2B07FA82EADC11EBBE430B5EC4F9AE02.roa Signing time: Tue 26 May 2026 23:28:09 +0000 ROA not before: Tue 26 May 2026 23:28:09 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 133613 IP address blocks: 43.247.24.0/22 maxlen: 22 43.247.24.0/24 maxlen: 24 43.247.25.0/24 maxlen: 24 43.247.26.0/24 maxlen: 24 43.247.27.0/24 maxlen: 24 103.237.124.0/24 maxlen: 24 103.237.125.0/24 maxlen: 24 103.237.126.0/24 maxlen: 24 103.237.127.0/24 maxlen: 24 2401:3280:1000::/36 maxlen: 36 2401:3280:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:51:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28BC, serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Validity Not Before: May 26 23:28:09 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a162c89-83f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5e:e2:3d:42:89:39:35:19:13:6f:91:3c:ee: 60:6b:39:b4:b7:7f:fa:82:73:0a:71:56:f8:29:87: 23:fb:b0:1c:44:10:7f:2b:0a:57:69:6f:ad:87:a5: b7:ff:72:61:35:34:d8:e0:74:53:35:2d:e7:c4:4b: 96:0e:12:58:d5:a6:09:b2:90:da:1c:64:07:46:fc: 42:f9:a4:d4:25:56:1e:f4:0a:54:55:2b:fc:95:87: 01:cd:f5:c4:d7:5d:30:e4:4b:b0:aa:e7:7a:bf:20: b8:20:2f:59:56:e3:99:70:d1:47:9d:85:fe:f8:78: 6a:cc:cc:32:a0:43:30:c2:ec:63:fc:8a:60:8a:15: a6:92:2e:9e:b1:7e:1c:f2:78:4c:24:d6:62:77:45: 36:40:71:00:af:22:c8:6b:c6:87:d6:05:94:ff:78: e6:ac:7d:b8:76:7f:f8:92:db:1b:2b:05:1d:4c:a2: 30:c1:13:83:ff:7f:59:6c:98:67:3c:0f:4b:8e:84: 53:dc:df:90:36:10:b8:27:21:0e:c3:4d:b6:db:e6: 56:7d:38:d7:b0:1d:6d:e9:5e:40:85:aa:3a:f8:80: f3:26:0b:5b:2a:66:e6:63:44:01:3c:40:0f:e4:e7: 3a:52:7e:a0:ce:fe:73:98:ac:40:b6:8a:09:11:45: 02:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:91:BB:3C:C7:AF:F6:83:94:9F:BD:66:78:83:D6:7B:EB:5C:FD:9C X509v3 Authority Key Identifier: keyid:C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/2B07FA82EADC11EBBE430B5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.247.24.0/22 103.237.124.0/22 IPv6: 2401:3280:1000::-2401:3280:2fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 50:f4:dc:c9:97:8b:0b:4c:b8:d3:bb:ee:41:e4:8f:8c:ac:6f: 83:5c:3b:73:f2:47:c7:70:20:2f:82:49:e0:d1:a6:f1:4b:2c: 14:aa:14:7a:4a:66:de:91:3b:33:ca:79:a5:a5:e7:50:9b:ad: 21:f9:f9:5c:ca:14:da:7a:20:31:10:81:be:a2:28:9a:06:89: 38:14:fd:88:a5:ee:97:99:de:f6:ef:65:55:de:7e:04:c8:a7: 49:c7:ca:8a:79:b7:90:5c:fd:ec:d0:c9:2d:bd:0a:2e:c3:97: 6f:03:46:86:8b:7f:2a:a4:af:3c:a3:18:40:03:2d:d3:37:4d: 50:a4:cd:c4:e2:1e:57:1d:08:9d:c3:c4:23:d5:c0:41:ac:31: 65:61:a1:1d:03:60:c0:5b:ad:13:56:5b:93:31:40:82:1e:01: c1:59:f5:57:a6:0d:16:4c:c7:f0:21:9c:88:1a:48:05:04:e2: af:3c:99:bc:86:bd:47:01:9f:73:bb:98:be:cf:ec:f1:fe:ec: 0e:83:2d:4f:1e:57:89:f8:84:86:ed:6a:3b:d3:fc:93:5f:8e: 5b:1e:13:f5:b3:96:f6:d7:c9:8c:9f:58:51:2d:8e:24:93:53: 93:35:10:1d:f3:4a:d5:a0:79:15:a0:0e:0a:99:4c:5e:ae:bf: e4:de:a5:f4 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4QkMxMTAvBgNVBAUTKEM0OEEwRTQwRkI3RkUzOTc1QjEyQzIzRTAzMEFDNTRD NTIwNTcxNjMwHhcNMjYwNTI2MjMyODA5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2MmM4OS04M2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt17iPUKJOTUZE2+RPO5gazm0t3/6gnMKcVb4KYcj+7AcRBB/KwpXaW+th6W3 /3JhNTTY4HRTNS3nxEuWDhJY1aYJspDaHGQHRvxC+aTUJVYe9ApUVSv8lYcBzfXE 110w5Euwqud6vyC4IC9ZVuOZcNFHnYX++HhqzMwyoEMwwuxj/IpgihWmki6esX4c 8nhMJNZid0U2QHEAryLIa8aH1gWU/3jmrH24dn/4ktsbKwUdTKIwwROD/39ZbJhn PA9LjoRT3N+QNhC4JyEOw0222+ZWfTjXsB1t6V5Ahao6+IDzJgtbKmbmY0QBPEAP 5Oc6Un6gzv5zmKxAtooJEUUCsQIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFECRuzzH r/aDlJ+9ZniD1nvrXP2cMB8GA1UdIwQYMBaAFMSKDkD7f+OXWxLCPgMKxUxSBXFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhCQy85MjA5MjM5MEVB RDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1ZGJFc0ktQXdyRlRGSUZj V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJb09RUHRfNDVkYkVzSS1Bd3JGVEZJRmNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI4QkMvOTIwOTIzOTBFQUQ4MTFFQkJEMkNDNzU4QzRGOUFFMDIvMkIwN0ZBODJF QURDMTFFQkJFNDMwQjVFQzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAS BAIAATAMAwQCK/cYAwQCZ+18MBgEAgACMBIwEAMGBCQBMoAQAwYEJAEygCAwDQYJ KoZIhvcNAQELBQADggEBAFD03MmXiwtMuNO77kHkj4ysb4NcO3PyR8dwIC+CSeDR pvFLLBSqFHpKZt6ROzPKeaWl51CbrSH5+VzKFNp6IDEQgb6iKJoGiTgU/Yil7peZ 3vbvZVXefgTIp0nHyop5t5Bc/ezQyS29Ci7Dl28DRoaLfyqkrzyjGEADLdM3TVCk zcTiHlcdCJ3DxCPVwEGsMWVhoR0DYMBbrRNWW5MxQIIeAcFZ9VemDRZMx/AhnIga SAUE4q88mbyGvUcBn3O7mL7P7PH+7A6DLU8eV4n4hIbtajvT/JNfjlseE/WzlvbX yYyfWFEtjiSTU5M1EB3zStWgeRWgDgqZTF6uv+TepfQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:52:07 2026 by rpki-client