$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa File: 1E35039C42D511EEAE5F803AC4F9AE02.roa (raw, json) Hash identifier: NAyqjXxHew3fTgSiTUVKkUKTCbweGmMoTZZqsBbKNGc= Subject key identifier: 52:A2:64:D8:4C:41:1D:5F:B7:D3:FA:EC:2E:18:66:01:B0:D4:FA:8B Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 0218 Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa Signing time: Sat 13 Jun 2026 03:31:44 +0000 ROA not before: Sat 13 Jun 2026 03:31:44 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 4648 IP address blocks: 203.99.64.0/24 maxlen: 24 203.99.65.0/24 maxlen: 24 203.99.68.0/24 maxlen: 24 203.99.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103, serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Jun 13 03:31:44 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a2ccf20-267b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:70:7a:be:39:a5:a2:69:47:ec:e7:5f:21:af: 32:71:1d:56:e2:ed:e9:3a:ae:77:b7:57:08:db:74: 39:18:1b:08:52:b5:a7:62:c9:67:3f:ee:b2:fd:50: 56:8d:c4:de:c3:09:74:08:1c:2a:d6:b4:ec:42:c5: 2b:af:bc:4b:67:56:a8:a3:ab:02:3f:a9:fb:39:c2: 16:08:70:5f:b7:5c:bb:93:43:65:0e:50:f5:f3:b9: 07:3b:9e:76:43:f9:d9:c4:19:64:be:8c:c5:84:5f: 5f:52:10:9a:ec:61:da:0a:0e:c5:80:6d:a6:f6:ab: d5:04:e7:df:6f:5f:fe:6a:88:95:31:99:a4:cf:af: 9a:5e:b1:46:a5:25:b4:e7:82:ff:5a:2b:32:37:2f: c7:3e:75:85:d2:77:dc:5e:d2:4b:30:97:51:b7:1f: c3:62:8c:ab:4b:e1:43:83:b4:23:53:41:74:cf:53: 33:1e:34:83:e7:60:1c:2f:c0:ed:4c:45:92:02:ca: 69:51:07:79:10:6c:82:d0:3e:db:a5:36:cd:53:36: c4:c8:52:8f:e3:80:cb:b8:90:00:66:cd:41:e5:df: fc:5b:0d:0b:be:9c:c6:b5:54:f6:2c:bf:d5:9b:d2: 82:53:d0:e8:81:dd:26:5d:19:2a:a2:33:54:ae:b3: d9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A2:64:D8:4C:41:1D:5F:B7:D3:FA:EC:2E:18:66:01:B0:D4:FA:8B X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.99.64.0/23 203.99.68.0/24 203.99.71.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:a4:85:6a:11:72:2c:6e:3a:e9:ef:d0:05:04:c5:0f:8a:b5: 25:58:29:07:8b:d2:b5:7d:88:f9:81:e2:dd:a9:f4:87:b5:7d: 1b:3e:63:2e:e2:7f:eb:e8:8a:e4:70:cd:74:5f:ca:a0:52:dd: 23:66:3e:db:2f:03:bb:94:8b:dc:6d:8e:f1:e2:4b:cb:dc:88: 5c:f4:74:db:da:7d:83:05:86:4b:97:df:37:ac:24:b2:24:13: 69:69:d4:33:3c:d7:ac:7e:01:77:6a:76:2e:c7:59:c5:80:84: ae:b0:b7:42:39:ca:4d:32:a4:fb:9a:6f:bd:de:64:8e:63:79: 13:81:d7:2d:26:3f:ba:94:01:f5:d4:1f:91:6a:68:37:b1:d1: 70:55:42:50:60:bd:18:7e:32:63:7a:d7:de:8f:b5:9f:cd:21: 93:a2:51:b6:c6:f0:10:8d:13:95:20:98:df:9e:4a:ea:0d:dc: cc:ef:fe:6c:64:63:4a:68:56:d4:1d:5c:68:50:a3:9c:ea:7e: e9:d2:f3:38:45:b3:9a:4e:84:88:60:80:5f:0a:04:53:10:17: 7a:44:ea:ef:4b:fd:ea:06:e9:0e:77:43:f3:58:f5:25:d8:bc: d1:a9:59:34:5b:c7:b9:9b:55:cd:2b:90:14:d3:2a:11:52:86: d6:ef:e1:61 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxMDMxMTAvBgNVBAUTKEFEQTdCM0U2NDI4NDQwRTUyNERBMDY4Mzg2QTFFREYz MjFGODgxMUUwHhcNMjYwNjEzMDMzMTQ0WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJjY2YyMC0yNjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnB6vjmlomlH7OdfIa8ycR1W4u3pOq53t1cI23Q5GBsIUrWnYslnP+6y/VBW jcTewwl0CBwq1rTsQsUrr7xLZ1aoo6sCP6n7OcIWCHBft1y7k0NlDlD187kHO552 Q/nZxBlkvozFhF9fUhCa7GHaCg7FgG2m9qvVBOffb1/+aoiVMZmkz6+aXrFGpSW0 54L/WisyNy/HPnWF0nfcXtJLMJdRtx/DYoyrS+FDg7QjU0F0z1MzHjSD52AcL8Dt TEWSAsppUQd5EGyC0D7bpTbNUzbEyFKP44DLuJAAZs1B5d/8Ww0LvpzGtVT2LL/V m9KCU9Dogd0mXRkqojNUrrPZqwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFFKiZNhM QR1ft9P67C4YZgGw1PqLMB8GA1UdIwQYMBaAFK2ns+ZChEDlJNoGg4ah7fMh+IEe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzEwMy83QUI4MTEyQTQy RDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9yYWV6NWtLRVFPVWsyZ2FEaHFIdDh5SDRn UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDcxMDMvN0FCODExMkE0MkQyMTFFRUI3QzREMDFFQzRGOUFFMDIvMUUzNTAzOUM0 MkQ1MTFFRUFFNUY4MDNBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBy2NAAwQAy2NEAwQAy2NHMA0GCSqGSIb3DQEBCwUAA4IBAQBbpIVq EXIsbjrp79AFBMUPirUlWCkHi9K1fYj5geLdqfSHtX0bPmMu4n/r6IrkcM10X8qg Ut0jZj7bLwO7lIvcbY7x4kvL3Ihc9HTb2n2DBYZLl983rCSyJBNpadQzPNesfgF3 anYux1nFgISusLdCOcpNMqT7mm+93mSOY3kTgdctJj+6lAH11B+Ramg3sdFwVUJQ YL0YfjJjetfej7WfzSGTolG2xvAQjROVIJjfnkrqDdzM7/5sZGNKaFbUHVxoUKOc 6n7p0vM4RbOaToSIYIBfCgRTEBd6ROrvS/3qBukOd0PzWPUl2LzRqVk0W8e5m1XN K5AU0yoRUobW7+Fh -----END CERTIFICATE-----Generated at Sat Jun 13 09:49:33 2026 by rpki-client