$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa File: 3B495FFCA46211E9B730310FC4F9AE02.roa (raw, json) Hash identifier: 4lDpGUim/KAgzaEuEFqQeILbJPyTanzET71bwtPn5Wc= Subject key identifier: 7B:EC:6C:DB:31:75:AC:80:88:C8:84:58:1E:91:86:D2:7E:3F:8D:05 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0EDF Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa Signing time: Tue 14 Apr 2026 18:22:09 +0000 ROA not before: Tue 14 Apr 2026 18:22:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55482 IP address blocks: 103.78.32.0/24 maxlen: 24 103.78.33.0/24 maxlen: 24 103.78.34.0/24 maxlen: 24 103.78.35.0/24 maxlen: 24 182.173.72.0/22 maxlen: 22 182.173.72.0/24 maxlen: 24 182.173.73.0/24 maxlen: 24 182.173.74.0/24 maxlen: 24 182.173.75.0/24 maxlen: 24 2401:3140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3807 (0xedf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Apr 14 18:22:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69de85d1-e84b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:db:7c:f2:2f:66:a5:56:82:d4:ca:f0:9f:c2: 61:46:db:cd:52:40:6c:d3:11:14:93:39:ea:f5:43: af:34:ab:54:a0:3b:d0:af:26:8d:1c:63:19:f2:a7: ea:cc:e6:71:da:41:95:2b:67:7d:3d:fc:a9:5e:a7: f6:b3:ff:c4:5b:03:50:fe:13:90:50:16:94:41:ca: f5:66:07:c4:34:b6:3a:bc:cf:77:47:01:53:f6:d5: 05:b5:4a:d7:10:0e:69:e2:4d:75:51:81:c4:96:da: d5:03:cc:12:a3:39:8e:25:29:40:84:68:75:e2:cd: bb:47:44:f9:54:5a:7c:06:82:c0:59:e7:ae:fe:99: 61:3c:e2:1e:8b:84:f9:67:2b:cf:5c:15:74:43:46: 8b:9a:83:80:39:1e:a4:27:11:ea:8b:e3:ef:51:81: 3c:db:1d:43:52:52:86:e5:57:d2:54:9d:c2:bb:bd: fd:03:aa:75:34:8e:88:2b:d9:77:c8:64:33:8a:d7: 3c:5c:4e:39:e6:28:96:07:3c:ad:a8:3c:10:fc:b1: c5:b4:9f:d3:86:69:79:3a:14:0e:fd:5a:5f:00:2e: 27:d3:a7:d6:8b:ce:59:0a:0b:5a:4c:43:18:f1:0e: 7f:a0:3c:d8:e7:ec:ac:bc:43:46:cc:e7:34:73:89: bb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:EC:6C:DB:31:75:AC:80:88:C8:84:58:1E:91:86:D2:7E:3F:8D:05 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.78.32.0/22 182.173.72.0/22 IPv6: 2401:3140::/48 Signature Algorithm: sha256WithRSAEncryption 8b:b7:82:e7:17:a8:62:d2:ba:58:68:8b:91:6c:e9:88:df:72: 20:80:6f:4a:75:a2:e2:57:4a:e8:69:4b:8e:05:bc:e2:19:25: a6:d8:25:ed:bf:87:62:b9:5f:8e:7f:6a:ef:d8:b0:d1:9d:fc: 38:03:d6:22:b8:a4:a2:39:2a:9d:14:3c:2b:1d:5b:69:c9:7d: 49:3d:54:c8:c3:31:ff:95:c2:3b:b0:b7:53:50:cf:f2:8e:40: 2b:97:79:12:84:1d:df:f3:4e:57:4e:bc:88:d0:8f:f6:0a:25: a2:40:35:21:5d:63:47:57:7d:be:26:bc:e2:74:c9:34:f5:48: 74:e4:4d:0a:26:39:ca:a9:cc:af:29:7f:ce:c4:a2:21:96:d9: 17:c4:3e:ea:00:e0:f8:6c:b6:c8:9b:2c:97:72:90:e9:6d:26: 87:06:a1:31:35:96:10:5e:e4:b3:b3:70:99:9d:36:23:5a:f5: dc:0b:85:7f:0f:77:5d:a4:1b:7e:fc:5c:69:59:a1:41:7c:0d: 9e:b4:e7:d7:4f:d8:10:60:d7:8f:d5:29:6f:7d:9b:9c:29:74: a3:42:15:fa:e5:85:1a:5d:f0:68:4b:00:2e:3f:a2:a4:d9:aa: 31:fb:c0:82:34:16:e1:85:e7:cc:9a:06:8e:8e:6d:af:a0:ff: e5:44:b2:df -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICDt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjYwNDE0MTgyMjA5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRlODVkMS1lODRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdt88i9mpVaC1Mrwn8JhRtvNUkBs0xEUkznq9UOvNKtUoDvQryaNHGMZ8qfq zOZx2kGVK2d9PfypXqf2s//EWwNQ/hOQUBaUQcr1ZgfENLY6vM93RwFT9tUFtUrX EA5p4k11UYHEltrVA8wSozmOJSlAhGh14s27R0T5VFp8BoLAWeeu/plhPOIei4T5 ZyvPXBV0Q0aLmoOAOR6kJxHqi+PvUYE82x1DUlKG5VfSVJ3Cu739A6p1NI6IK9l3 yGQzitc8XE455iiWBzytqDwQ/LHFtJ/Thml5OhQO/VpfAC4n06fWi85ZCgtaTEMY 8Q5/oDzY5+ysvENGzOc0c4m7ewIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFHvsbNsx dayAiMiEWB6RhtJ+P40FMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlCQzQvOTJFODIxRjBBNDYwMTFFOTgxMEE1QzBCQzRGOUFFMDIvM0I0OTVGRkNB NDYyMTFFOUI3MzAzMTBGQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCZ04gAwQCtq1IMA8EAgACMAkDBwAkATFAAAAwDQYJKoZIhvcNAQEL BQADggEBAIu3gucXqGLSulhoi5Fs6YjfciCAb0p1ouJXSuhpS44FvOIZJabYJe2/ h2K5X45/au/YsNGd/DgD1iK4pKI5Kp0UPCsdW2nJfUk9VMjDMf+Vwjuwt1NQz/KO QCuXeRKEHd/zTldOvIjQj/YKJaJANSFdY0dXfb4mvOJ0yTT1SHTkTQomOcqpzK8p f87EoiGW2RfEPuoA4PhstsibLJdykOltJocGoTE1lhBe5LOzcJmdNiNa9dwLhX8P d12kG378XGlZoUF8DZ6059dP2BBg14/VKW99m5wpdKNCFfrlhRpd8GhLAC4/oqTZ qjH7wII0FuGF58yaBo6Oba+g/+VEst8= -----END CERTIFICATE-----Generated at Fri Apr 17 20:29:23 2026 by rpki-client