$ rpki-client -vvf rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa File: 3773AC0C8B6111EFA3A49037C4F9AE02.roa (raw, json) Hash identifier: uzaZKpbjTrWsFfOiIa8WfR03ueqsK9oa9a46XDa7tCk= Subject key identifier: 8A:D0:D7:63:7A:79:B8:3C:3B:7D:1E:2F:17:92:C8:F1:51:4C:8D:88 Certificate issuer: /CN=A91E689D/serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Certificate serial: 3552 Authority key identifier: 40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa Signing time: Thu 04 Jun 2026 15:13:18 +0000 ROA not before: Thu 04 Jun 2026 15:13:18 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 45810 IP address blocks: 203.217.128.0/22 maxlen: 22 203.217.128.0/23 maxlen: 23 203.217.130.0/24 maxlen: 24 203.217.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13650 (0x3552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E689D, serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Validity Not Before: Jun 4 15:13:18 2026 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=6a21960d-3d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:10:11:7f:21:bf:8c:6c:ff:c2:74:80:78:17: b6:b5:d4:fa:03:c8:42:08:c6:33:9e:5b:39:12:df: ab:d8:6d:ba:c2:de:57:99:bf:b0:f0:15:86:23:f0: 16:e7:a1:96:5e:d3:ad:58:c0:53:df:71:1f:9c:62: 88:93:8b:80:3b:c8:c3:e3:28:2e:f3:58:62:b3:50: 5e:76:01:65:a8:4d:a2:19:fd:ce:f4:0c:09:87:1b: 5d:33:c4:d3:98:76:bf:ea:cf:0a:69:11:81:c5:ab: a5:0b:ca:dd:21:99:72:2d:56:ba:2b:61:52:fd:d4: b1:9d:27:df:d9:6e:91:96:5b:22:d3:99:24:c5:c4: 31:76:1f:f9:37:d9:04:3f:55:96:5c:b3:c6:97:a9: ca:80:8d:ec:2b:11:39:95:b6:f1:75:4a:fb:c7:1f: d4:5c:a7:0d:90:25:a1:05:29:4c:45:1d:d6:0f:e1: 58:dd:03:cc:23:7f:bd:4a:27:65:c9:41:78:59:cd: e0:0a:71:d5:00:20:a3:b3:81:b7:db:17:f5:ec:df: e7:a0:f8:31:40:80:80:0b:3a:8f:1c:f9:bc:19:26: 6c:a6:83:e0:f8:10:2a:e8:af:06:3c:e5:9a:0b:9d: 7f:5d:59:6d:ab:52:c8:cb:59:7a:f3:11:33:5d:46: 18:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D0:D7:63:7A:79:B8:3C:3B:7D:1E:2F:17:92:C8:F1:51:4C:8D:88 X509v3 Authority Key Identifier: keyid:40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.217.128.0/22 Signature Algorithm: sha256WithRSAEncryption 88:e3:c3:4b:d9:d8:0c:5a:9d:c5:33:f1:47:34:7e:28:9a:cb: 5e:ac:9e:cf:20:82:1b:7f:3c:5b:cb:f0:7d:1c:ad:c7:c9:52: 36:74:ac:91:fb:ff:84:7c:97:df:5d:07:a5:65:87:01:a5:fd: 45:12:7d:d0:39:e9:56:5b:26:58:5a:7b:c7:19:f7:c9:18:f8: 41:41:6e:db:3f:a9:72:55:3e:a0:f9:b1:f2:dc:98:ff:0c:42: f3:ea:bd:e6:fc:65:8d:b2:8a:93:e3:04:21:21:95:39:bc:fc: 44:d3:1e:e3:b8:ae:bc:b7:a8:2a:13:00:99:63:30:6f:fa:ae: d0:b5:9a:be:2d:52:49:db:ce:35:f2:23:92:31:be:e5:22:1d: 0e:10:dc:d1:d0:7a:96:09:99:34:de:e0:43:8d:f8:ad:d3:d9: 20:26:c7:a7:9b:97:7c:b9:70:da:2a:98:17:7b:df:88:ca:65: e0:e4:dd:d7:41:8b:7b:d7:58:3b:6b:b9:fc:e6:d5:24:96:54: 5d:33:a2:37:fa:e8:64:a8:9a:bc:4d:b7:70:d7:ad:7c:b1:1c: 8d:64:49:e8:41:55:de:b0:70:80:7a:91:05:0a:01:a9:04:fa: e1:2d:7a:85:71:fe:24:0a:0c:7d:52:81:96:26:89:f3:7e:f7: 92:2c:08:53 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4OUQxMTAvBgNVBAUTKDQwQjhEMjJFRjIzQjM3QjBCOUU1M0YzQzRFMTBENkFF M0VCOEE5OUYwHhcNMjYwNjA0MTUxMzE4WhcNMjcwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxOTYwZC0zZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BARfyG/jGz/wnSAeBe2tdT6A8hCCMYznls5Et+r2G26wt5Xmb+w8BWGI/AW 56GWXtOtWMBT33EfnGKIk4uAO8jD4ygu81his1BedgFlqE2iGf3O9AwJhxtdM8TT mHa/6s8KaRGBxaulC8rdIZlyLVa6K2FS/dSxnSff2W6Rllsi05kkxcQxdh/5N9kE P1WWXLPGl6nKgI3sKxE5lbbxdUr7xx/UXKcNkCWhBSlMRR3WD+FY3QPMI3+9Sidl yUF4Wc3gCnHVACCjs4G32xf17N/noPgxQICACzqPHPm8GSZspoPg+BAq6K8GPOWa C51/XVltq1LIy1l68xEzXUYYSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIrQ12N6 ebg8O30eLxeSyPFRTI2IMB8GA1UdIwQYMBaAFEC40i7yOzewueU/PE4Q1q4+uKmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg5RC9DN0M2M0RBODFE OUUxMUUyODNDRUZBOEUwOEIwMkNEMi9RTGpTTHZJN043QzU1VDg4VGhEV3JqNjRx WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMalNMdkk3TjdDNTVUODhUaERXcmo2NHFaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4OUQvQzdDNjNEQTgxRDlFMTFFMjgzQ0VGQThFMDhCMDJDRDIvMzc3M0FDMEM4 QjYxMTFFRkEzQTQ5MDM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy9mAMA0GCSqGSIb3DQEBCwUAA4IBAQCI48NL2dgMWp3FM/FHNH4o msterJ7PIIIbfzxby/B9HK3HyVI2dKyR+/+EfJffXQelZYcBpf1FEn3QOelWWyZY WnvHGffJGPhBQW7bP6lyVT6g+bHy3Jj/DELz6r3m/GWNsoqT4wQhIZU5vPxE0x7j uK68t6gqEwCZYzBv+q7QtZq+LVJJ28418iOSMb7lIh0OENzR0HqWCZk03uBDjfit 09kgJsenm5d8uXDaKpgXe9+IymXg5N3XQYt711g7a7n85tUkllRdM6I3+uhkqJq8 Tbdw1618sRyNZEnoQVXesHCAepEFCgGpBPrhLXqFcf4kCgx9UoGWJonzfveSLAhT -----END CERTIFICATE-----Generated at Sat Jun 13 13:49:41 2026 by rpki-client