$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/D2E899F86EB511F0A3A63A59C4F9AE02.roa File: D2E899F86EB511F0A3A63A59C4F9AE02.roa (raw, json) Hash identifier: xEXvfKX+aG3p5VbMMgXsIKibCHC0+2nun/Vfmh+Twl8= Subject key identifier: 70:54:B2:D5:0B:1F:97:08:33:F1:A7:16:12:BB:B1:78:8D:FC:CF:1D Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 010C Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/D2E899F86EB511F0A3A63A59C4F9AE02.roa Signing time: Wed 27 May 2026 07:38:54 +0000 ROA not before: Wed 27 May 2026 07:38:54 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 151188 IP address blocks: 103.224.92.0/24 maxlen: 24 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: May 27 07:38:54 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a169f8e-1350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a9:44:87:42:23:aa:c9:7d:56:bc:39:cc:58: 30:c8:49:8e:94:59:1b:b7:5f:85:6e:d4:d7:da:d7: 46:8b:74:51:73:91:c2:fa:01:e1:98:fe:67:df:b2: fb:45:a7:97:c9:97:d7:ea:23:1a:3c:50:2a:1c:e5: 0d:8c:5d:21:7c:de:bb:e9:63:ad:bf:39:8a:bc:73: b9:e4:39:58:da:6c:4b:8f:94:33:5c:b4:bf:7b:83: 80:de:84:55:35:21:1c:ad:8e:23:91:79:61:df:19: 87:b7:28:03:b3:81:f9:4a:8b:a9:dc:ab:43:b0:64: af:ad:22:85:d0:e0:71:1a:b0:65:17:63:a2:ca:b1: bc:23:84:a1:2a:99:54:1e:d9:ff:a0:3d:94:f0:92: 8f:b0:04:f8:95:35:18:77:5b:a4:4c:f4:6a:da:28: a1:ef:28:30:d2:10:36:a1:f5:ca:5c:21:ff:f8:08: 18:15:55:ee:a1:42:dd:2b:77:f3:0e:68:75:0a:9b: 8e:38:47:cf:6d:56:52:8a:84:95:2c:88:c2:48:d0: 9e:f8:0b:80:3e:2e:0a:b6:0c:a0:7c:d8:5c:3a:55: 2e:00:88:dc:f8:2c:03:4b:6c:a1:74:59:da:cf:a2: e5:71:52:f9:5d:27:65:78:9f:a2:fb:69:de:6f:67: 68:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:54:B2:D5:0B:1F:97:08:33:F1:A7:16:12:BB:B1:78:8D:FC:CF:1D X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/D2E899F86EB511F0A3A63A59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.92.0/24 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption 60:6b:d3:22:f3:c2:ef:67:69:15:06:11:eb:6c:07:12:a2:88: 2a:c6:2f:b1:8e:c1:e5:2d:db:a8:9e:22:38:84:9f:a4:37:a0: be:d5:10:e9:c3:87:4b:02:f8:d3:a1:e1:da:a7:34:dc:fb:84: 5c:3a:cd:fa:fa:8f:8a:32:dc:01:e1:25:99:ae:21:3b:3d:65: 06:2a:10:b2:fb:f5:5b:c1:fe:e3:01:63:2a:50:3a:f4:f7:e5: 25:9f:6c:a2:27:42:28:39:9f:1c:21:fd:1e:ae:e2:50:bc:06: 08:0f:bb:c5:77:56:e4:49:d6:8e:30:f2:1a:db:f0:05:af:13: 3b:18:3a:1d:90:60:2f:c4:97:f7:6d:c1:97:69:d2:af:78:5b: 25:cb:28:37:06:b1:7a:74:a2:55:da:48:48:a0:ac:be:53:c5: a5:9b:80:7e:66:94:42:57:d2:94:09:4c:1c:7e:1b:0c:0f:d3: ab:c0:b7:c0:b6:48:2b:49:30:d8:d4:1a:d1:f9:1c:45:a9:15: 9e:87:50:7e:1a:3b:9b:9a:5f:f4:ed:a0:41:b5:37:07:49:69: 26:4c:77:68:11:cb:1c:5c:96:d0:45:9c:71:e9:9a:ca:7c:a4: c3:f3:82:86:7d:e8:e7:11:f2:81:1d:3c:4a:59:16:f2:76:a9: cd:10:43:09 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThERjUxMTAvBgNVBAUTKEM2Rjc1OEVDRERDNEM5QjBGNzJGMDY1QzM1QUQ1NDY5 NzQzMjcxMUIwHhcNMjYwNTI3MDczODU0WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2OWY4ZS0xMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKlEh0Ijqsl9Vrw5zFgwyEmOlFkbt1+FbtTX2tdGi3RRc5HC+gHhmP5n37L7 RaeXyZfX6iMaPFAqHOUNjF0hfN676WOtvzmKvHO55DlY2mxLj5QzXLS/e4OA3oRV NSEcrY4jkXlh3xmHtygDs4H5Soup3KtDsGSvrSKF0OBxGrBlF2OiyrG8I4ShKplU Htn/oD2U8JKPsAT4lTUYd1ukTPRq2iih7ygw0hA2ofXKXCH/+AgYFVXuoULdK3fz Dmh1CpuOOEfPbVZSioSVLIjCSNCe+AuAPi4KtgygfNhcOlUuAIjc+CwDS2yhdFna z6LlcVL5XSdleJ+i+2neb2dojwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHBUstUL H5cIM/GnFhK7sXiN/M8dMB8GA1UdIwQYMBaAFMb3WOzdxMmw9y8GXDWtVGl0MnEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOERGNS8zMUUwRjE2QUY5 NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi94dmRZN04zRXliRDNMd1pjTmExVWFYUXlj UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThERjUvMzFFMEYxNkFGOTYwMTFFRjlENjc5QzdBQzRGOUFFMDIvRDJFODk5Rjg2 RUI1MTFGMEEzQTYzQTU5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ+BcAwQAZ/SjMA0GCSqGSIb3DQEBCwUAA4IBAQBga9Mi88LvZ2kV BhHrbAcSoogqxi+xjsHlLduoniI4hJ+kN6C+1RDpw4dLAvjToeHapzTc+4RcOs36 +o+KMtwB4SWZriE7PWUGKhCy+/Vbwf7jAWMqUDr09+Uln2yiJ0IoOZ8cIf0eruJQ vAYID7vFd1bkSdaOMPIa2/AFrxM7GDodkGAvxJf3bcGXadKveFslyyg3BrF6dKJV 2khIoKy+U8Wlm4B+ZpRCV9KUCUwcfhsMD9OrwLfAtkgrSTDY1BrR+RxFqRWeh1B+ Gjubml/07aBBtTcHSWkmTHdoEcscXJbQRZxx6ZrKfKTD84KGfejnEfKBHTxKWRby dqnNEEMJ -----END CERTIFICATE-----Generated at Sat Jun 13 14:15:33 2026 by rpki-client