$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/8A5FC86AECB511EE8DC7B937C4F9AE02.roa File: 8A5FC86AECB511EE8DC7B937C4F9AE02.roa (raw, json) Hash identifier: wFV3hxZNMimHCra0GUvVj+qhSpRLii8tAhy60erdhQE= Subject key identifier: E9:28:C0:4D:BA:08:EC:34:A1:BE:D6:75:DE:C6:C1:59:29:F6:0C:BC Certificate issuer: /CN=A91D4A3A/serialNumber=83E4BCB763B8CED0365190E7280F0A6A34B35B51 Certificate serial: 018A Authority key identifier: 83:E4:BC:B7:63:B8:CE:D0:36:51:90:E7:28:0F:0A:6A:34:B3:5B:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g-S8t2O4ztA2UZDnKA8KajSzW1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/8A5FC86AECB511EE8DC7B937C4F9AE02.roa Signing time: Mon 13 Apr 2026 04:37:37 +0000 ROA not before: Mon 13 Apr 2026 04:37:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152665 IP address blocks: 203.28.134.0/23 maxlen: 23 203.28.134.0/24 maxlen: 24 203.28.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/g-S8t2O4ztA2UZDnKA8KajSzW1E.crl rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/g-S8t2O4ztA2UZDnKA8KajSzW1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g-S8t2O4ztA2UZDnKA8KajSzW1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A3A, serialNumber=83E4BCB763B8CED0365190E7280F0A6A34B35B51 Validity Not Before: Apr 13 04:37:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69dc7311-50fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b9:9e:4e:71:cf:53:30:e7:49:7e:fd:1d:94: 70:46:10:30:51:93:30:15:2f:3f:16:f3:ce:03:85: 08:bd:00:5e:6c:6e:9d:7c:5d:73:71:85:2f:07:6a: f5:27:ab:a8:01:ac:08:27:9e:9c:85:fc:5a:70:a6: 41:71:ca:ec:33:f8:a1:18:46:91:79:b7:80:45:b2: 64:f7:77:a7:7b:2a:1c:d8:73:4c:47:e4:51:a7:eb: 4b:59:12:63:de:7e:c6:e9:70:da:7c:11:86:12:6b: c3:6c:7e:aa:43:bf:9d:23:7c:df:47:f6:21:d9:55: c0:cd:6a:5f:3c:db:ba:a8:2b:67:cc:df:44:1c:1c: 1a:67:c7:bf:5a:98:65:dd:67:0e:db:7f:69:a3:4b: 91:3d:75:9e:42:4c:b8:99:21:ee:b0:f2:31:01:5c: 4f:ae:f6:61:81:07:f1:97:e5:02:3b:6d:ff:02:62: e1:50:d0:5c:de:43:1a:61:e4:cc:da:69:69:6e:3b: 9f:70:70:ef:c1:69:b7:2e:0c:a4:33:8e:98:fe:e0: 57:a7:09:81:3d:60:bc:b2:a8:07:22:5a:a9:27:9d: 87:8c:1b:0c:08:6d:03:30:02:6d:95:f9:8a:06:0d: 29:ce:30:db:a1:0a:ee:04:92:ca:a8:3a:73:35:ec: 95:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:28:C0:4D:BA:08:EC:34:A1:BE:D6:75:DE:C6:C1:59:29:F6:0C:BC X509v3 Authority Key Identifier: keyid:83:E4:BC:B7:63:B8:CE:D0:36:51:90:E7:28:0F:0A:6A:34:B3:5B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/g-S8t2O4ztA2UZDnKA8KajSzW1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g-S8t2O4ztA2UZDnKA8KajSzW1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A3A/1814F366ECB511EEA4650337C4F9AE02/8A5FC86AECB511EE8DC7B937C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.28.134.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:c9:ad:0c:56:4d:e1:39:ca:2f:a7:85:1f:05:07:60:7e:44: dc:c5:01:14:96:60:c3:69:f7:42:0e:c5:8e:ee:8c:68:a2:42: c7:b9:4f:21:64:72:69:66:48:9d:c3:50:03:8e:9b:fa:74:16: 2c:d5:09:3c:08:72:17:24:9e:2e:5c:c2:27:1f:b5:ec:c2:7e: e6:8e:d8:74:cd:6c:b4:3c:58:78:c8:47:bc:78:94:fc:8d:c0: 99:fe:49:3e:03:a7:5b:62:74:af:87:60:c5:0d:9f:db:c7:30: 57:b1:f4:65:68:f5:fb:3e:1b:89:25:c4:a1:2f:d0:98:65:00: a5:ef:b9:6f:ab:8e:8d:03:4c:89:6f:fc:bb:57:63:ad:d7:23: b7:32:ed:47:20:aa:43:03:c0:47:ec:46:fd:eb:6c:fa:4d:63: 83:01:5a:14:9e:5b:48:db:19:c9:80:d1:0e:99:29:76:ad:81: de:66:37:80:9c:06:f1:91:66:39:dc:6d:b8:40:b8:31:9c:a9: d8:52:b7:99:6a:1e:a5:a7:c2:1b:2b:44:27:00:ac:3f:58:ba: e9:a9:41:0f:6a:3a:39:2a:06:02:46:f6:42:53:9b:a8:13:34: 1a:21:e8:df:3f:c3:0d:59:bb:e6:b0:b8:05:3b:de:cc:12:f1: ee:3c:04:3d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBM0ExMTAvBgNVBAUTKDgzRTRCQ0I3NjNCOENFRDAzNjUxOTBFNzI4MEYwQTZB MzRCMzVCNTEwHhcNMjYwNDEzMDQzNzM3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRjNzMxMS01MGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7meTnHPUzDnSX79HZRwRhAwUZMwFS8/FvPOA4UIvQBebG6dfF1zcYUvB2r1 J6uoAawIJ56chfxacKZBccrsM/ihGEaRebeARbJk93eneyoc2HNMR+RRp+tLWRJj 3n7G6XDafBGGEmvDbH6qQ7+dI3zfR/Yh2VXAzWpfPNu6qCtnzN9EHBwaZ8e/Wphl 3WcO239po0uRPXWeQky4mSHusPIxAVxPrvZhgQfxl+UCO23/AmLhUNBc3kMaYeTM 2mlpbjufcHDvwWm3LgykM46Y/uBXpwmBPWC8sqgHIlqpJ52HjBsMCG0DMAJtlfmK Bg0pzjDboQruBJLKqDpzNeyVYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOkowE26 COw0ob7Wdd7GwVkp9gy8MB8GA1UdIwQYMBaAFIPkvLdjuM7QNlGQ5ygPCmo0s1tR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEEzQS8xODE0RjM2NkVD QjUxMUVFQTQ2NTAzMzdDNEY5QUUwMi9nLVM4dDJPNHp0QTJVWkRuS0E4S2FqU3pX MUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ctUzh0Mk80enRBMlVaRG5LQThLYWpTelcxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDRBM0EvMTgxNEYzNjZFQ0I1MTFFRUE0NjUwMzM3QzRGOUFFMDIvOEE1RkM4NkFF Q0I1MTFFRThEQzdCOTM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByxyGMA0GCSqGSIb3DQEBCwUAA4IBAQAKya0MVk3hOcovp4UfBQdg fkTcxQEUlmDDafdCDsWO7oxookLHuU8hZHJpZkidw1ADjpv6dBYs1Qk8CHIXJJ4u XMInH7Xswn7mjth0zWy0PFh4yEe8eJT8jcCZ/kk+A6dbYnSvh2DFDZ/bxzBXsfRl aPX7PhuJJcShL9CYZQCl77lvq46NA0yJb/y7V2Ot1yO3Mu1HIKpDA8BH7Eb962z6 TWODAVoUnltI2xnJgNEOmSl2rYHeZjeAnAbxkWY53G24QLgxnKnYUreZah6lp8Ib K0QnAKw/WLrpqUEPajo5KgYCRvZCU5uoEzQaIejfP8MNWbvmsLgFO97MEvHuPAQ9 -----END CERTIFICATE-----Generated at Fri Apr 17 23:35:03 2026 by rpki-client