$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/9CA45412A6AB11F0AA6B453DC4F9AE02.roa File: 9CA45412A6AB11F0AA6B453DC4F9AE02.roa (raw, json) Hash identifier: Fr+3c6RpSKSYZINS3tB5kOz0vDzbNjiqKIyeQ9IGWSA= Subject key identifier: B1:31:DA:D2:BE:59:7A:9E:FF:83:C2:38:03:88:49:76:E0:36:4F:81 Certificate issuer: /CN=A91E5A9F/serialNumber=95025628F14341046146AC20BA324614461A9CC3 Certificate serial: 0765 Authority key identifier: 95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/9CA45412A6AB11F0AA6B453DC4F9AE02.roa Signing time: Sat 30 May 2026 13:27:21 +0000 ROA not before: Sat 30 May 2026 13:27:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134781 IP address blocks: 103.124.236.0/22 maxlen: 24 2405:16c0::/32 maxlen: 32 2405:16c0::/34 maxlen: 34 2405:16c0::/48 maxlen: 48 2405:16c0:4000::/34 maxlen: 34 2405:16c0:4000::/48 maxlen: 48 2405:16c0:4001::/48 maxlen: 48 2405:16c0:4002::/48 maxlen: 48 2405:16c0:4003::/48 maxlen: 48 2405:16c0:4004::/48 maxlen: 48 2405:16c0:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A9F, serialNumber=95025628F14341046146AC20BA324614461A9CC3 Validity Not Before: May 30 13:27:21 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a1ae5b8-73b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:14:5b:ef:fd:2c:d2:af:8c:1b:ef:0f:e4:c8: fd:23:9e:7a:04:9b:19:a9:b1:0d:8e:0a:ba:a3:c1: 88:be:0b:25:9b:8b:0f:aa:58:27:04:18:40:b6:f7: fe:f7:cd:b2:68:e6:80:d0:1e:7f:0b:6a:62:c4:de: 10:a6:8a:6a:86:83:0d:66:f7:4d:15:07:16:c9:05: 90:31:15:66:10:a8:36:0e:a6:5c:f5:bd:fc:f8:e1: 18:ce:21:ff:75:5c:76:68:c9:1d:1f:50:13:1c:1d: 84:52:6c:a1:38:cb:25:0d:b1:ff:e4:4d:4e:e0:3c: 08:98:4a:8e:5c:09:24:65:0f:dc:09:4b:e4:ee:91: 31:f9:e8:27:f7:1f:92:4c:f0:4a:40:ae:1e:f7:d5: db:d2:d3:f6:2d:b6:53:4c:2d:d1:0c:f1:12:52:a5: 34:76:2d:e2:5a:e6:4c:46:0d:b3:60:8d:b9:0c:04: e6:0e:d1:d6:5d:b9:39:37:d7:b7:b7:80:8e:32:02: 69:34:8f:5e:15:b4:b5:05:ff:c5:d9:cd:92:53:90: 20:3c:58:db:58:95:52:bc:9b:03:89:7e:fe:eb:40: 5d:fa:46:e4:81:59:9f:de:cf:aa:97:dc:74:57:be: bf:fa:a6:65:00:ae:a6:f7:05:17:5b:b7:1a:64:28: a2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:31:DA:D2:BE:59:7A:9E:FF:83:C2:38:03:88:49:76:E0:36:4F:81 X509v3 Authority Key Identifier: keyid:95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/9CA45412A6AB11F0AA6B453DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.124.236.0/22 IPv6: 2405:16c0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:9a:76:39:75:6c:e5:6e:80:2e:62:33:86:e9:33:2b:a5:e7: 0f:c9:76:29:ae:b6:6b:df:0a:7f:12:e6:1f:4d:24:96:e6:d9: 99:59:d3:13:e1:08:20:3e:b0:44:77:78:f3:ab:c1:2f:c0:21: 8a:7b:b8:2c:24:49:3b:72:9e:c4:7b:05:c9:06:2d:6f:14:75: ac:11:be:20:e2:4d:51:22:d8:fb:d5:ea:02:3d:16:9c:bb:7b: 31:40:66:6c:7f:83:e1:33:cc:1b:0d:65:f4:1b:6f:d1:ba:bd: 5c:62:31:a4:bd:4e:ba:3b:15:94:e6:a9:8a:60:21:f8:56:c0: a5:18:14:71:48:af:dc:f9:b1:7b:2e:58:2a:50:de:50:8a:9b: df:63:4f:d0:6f:60:54:4e:1d:9e:68:f2:69:75:b4:44:d8:28: 61:28:74:bc:bf:3e:67:4e:bf:37:84:3a:07:42:71:17:90:06: 3c:df:70:db:8c:12:ee:7c:c1:8c:49:d9:bf:08:56:67:45:34: b9:b7:61:e6:a5:02:b8:f2:6c:61:a6:c2:b1:ce:87:40:17:d1: ac:30:2d:e1:63:7a:86:d9:88:76:5d:e9:5a:40:e2:db:c1:d4: 2c:48:f0:ab:e4:1e:96:c0:01:e2:ab:12:e7:ca:bc:99:c9:b7: cc:50:69:b9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBOUYxMTAvBgNVBAUTKDk1MDI1NjI4RjE0MzQxMDQ2MTQ2QUMyMEJBMzI0NjE0 NDYxQTlDQzMwHhcNMjYwNTMwMTMyNzIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFhZTViOC03M2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hRb7/0s0q+MG+8P5Mj9I556BJsZqbENjgq6o8GIvgslm4sPqlgnBBhAtvf+ 982yaOaA0B5/C2pixN4QpopqhoMNZvdNFQcWyQWQMRVmEKg2DqZc9b38+OEYziH/ dVx2aMkdH1ATHB2EUmyhOMslDbH/5E1O4DwImEqOXAkkZQ/cCUvk7pEx+egn9x+S TPBKQK4e99Xb0tP2LbZTTC3RDPESUqU0di3iWuZMRg2zYI25DATmDtHWXbk5N9e3 t4COMgJpNI9eFbS1Bf/F2c2SU5AgPFjbWJVSvJsDiX7+60Bd+kbkgVmf3s+ql9x0 V76/+qZlAK6m9wUXW7caZCiiXQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLEx2tK+ WXqe/4PCOAOISXbgNk+BMB8GA1UdIwQYMBaAFJUCVijxQ0EEYUasILoyRhRGGpzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUE5Ri82NzM2RjMzNEUz M0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFRUmhScXdndWpKR0ZFWWFu TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRSldLUEZEUVFSaFJxd2d1akpHRkVZYW5NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTVBOUYvNjczNkYzMzRFMzNBMTFFODg2MTE3NzgwQzRGOUFFMDIvOUNBNDU0MTJB NkFCMTFGMEFBNkI0NTNEQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3zsMA0EAgACMAcDBQAkBRbAMA0GCSqGSIb3DQEBCwUAA4IBAQAb mnY5dWzlboAuYjOG6TMrpecPyXYprrZr3wp/EuYfTSSW5tmZWdMT4QggPrBEd3jz q8EvwCGKe7gsJEk7cp7EewXJBi1vFHWsEb4g4k1RItj71eoCPRacu3sxQGZsf4Ph M8wbDWX0G2/Rur1cYjGkvU66OxWU5qmKYCH4VsClGBRxSK/c+bF7LlgqUN5Qipvf Y0/Qb2BUTh2eaPJpdbRE2ChhKHS8vz5nTr83hDoHQnEXkAY833DbjBLufMGMSdm/ CFZnRTS5t2HmpQK48mxhpsKxzodAF9GsMC3hY3qG2Yh2XelaQOLbwdQsSPCr5B6W wAHiqxLnyryZybfMUGm5 -----END CERTIFICATE-----Generated at Sat Jun 13 19:01:52 2026 by rpki-client