$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5D58A6368CBD11EFBA479615C4F9AE02.roa File: 5D58A6368CBD11EFBA479615C4F9AE02.roa (raw, json) Hash identifier: am92Gr0MD4Jd5/4EoBAS/UqJDGiw/kv6GtuALWW7PUU= Subject key identifier: D6:22:30:2F:73:BE:74:7C:D3:47:CC:3B:4B:DE:69:D7:E0:D0:1F:0D Certificate issuer: /CN=A91EDFAF/serialNumber=0E663CB4900EF4D822F99ABDE27FA403AB9F4C40 Certificate serial: 014D Authority key identifier: 0E:66:3C:B4:90:0E:F4:D8:22:F9:9A:BD:E2:7F:A4:03:AB:9F:4C:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5D58A6368CBD11EFBA479615C4F9AE02.roa Signing time: Tue 09 Jun 2026 06:36:45 +0000 ROA not before: Tue 09 Jun 2026 06:36:45 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 132804 IP address blocks: 27.109.104.0/22 maxlen: 22 103.2.105.0/24 maxlen: 24 103.2.106.0/24 maxlen: 24 2404:e600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.crl rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 05:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDFAF, serialNumber=0E663CB4900EF4D822F99ABDE27FA403AB9F4C40 Validity Not Before: Jun 9 06:36:45 2026 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=6a27b47d-3d62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9f:77:b8:30:8d:1e:78:01:d0:9b:fd:12:b4: 12:87:35:8a:0b:32:28:42:8a:26:5c:a6:f0:34:9a: d6:19:f5:a0:6f:d5:71:ee:c7:c9:5b:2d:77:e0:a2: 95:47:42:25:b9:d5:31:88:b7:64:99:ad:aa:12:68: a5:8c:3d:9f:fc:54:2e:f6:e1:03:e9:22:c9:c9:8a: 98:b9:24:63:ed:20:44:11:1b:29:27:20:0a:1f:bb: b5:03:18:bc:d7:a2:71:b3:37:c8:1c:61:ee:ad:f1: 4b:fd:43:3e:d8:6f:56:c2:f4:53:c7:bc:58:1a:b7: a2:08:4e:57:12:7f:a3:02:18:dd:be:d3:73:a9:ea: f6:b2:17:11:1a:7b:c8:2e:17:68:01:bf:9e:44:64: 1b:b4:5e:6f:dd:bc:c7:62:4b:75:74:0b:74:bd:2b: d3:6c:2f:70:e7:7c:61:b1:68:fb:66:aa:b0:50:98: af:cd:a5:38:16:38:94:4a:99:68:0c:5d:a4:3a:a3: 65:3f:27:3f:85:90:23:61:a1:ef:2c:64:15:d4:a0: e1:45:a7:0a:ea:95:91:05:0f:5b:bc:e8:46:ac:4e: 6a:a2:5f:ac:01:d2:a6:09:9e:87:1a:ec:b2:e9:27: 11:4e:14:6a:be:d6:52:e4:2d:b4:01:ec:af:3b:92: da:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:22:30:2F:73:BE:74:7C:D3:47:CC:3B:4B:DE:69:D7:E0:D0:1F:0D X509v3 Authority Key Identifier: keyid:0E:66:3C:B4:90:0E:F4:D8:22:F9:9A:BD:E2:7F:A4:03:AB:9F:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5D58A6368CBD11EFBA479615C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.109.104.0/22 103.2.105.0-103.2.106.255 IPv6: 2404:e600::/48 Signature Algorithm: sha256WithRSAEncryption 98:ce:2c:9e:36:a6:02:e2:a8:fb:a5:71:3d:03:68:39:2c:c6: 6a:4d:08:bf:15:24:5d:3c:10:52:2e:2e:7f:5d:f5:6a:3f:43: 28:8f:60:4a:ee:14:3d:e0:cc:aa:8a:a2:ba:d5:18:03:d8:4e: 97:4f:f5:b6:6c:6f:d3:85:30:b8:37:ad:2f:71:a9:00:1f:b0: 15:80:f6:14:43:98:45:8e:67:03:fb:be:c0:b1:79:3c:44:ed: 30:c1:bc:63:07:02:38:9a:e9:ba:46:8c:88:05:37:39:19:f5: 11:a2:1e:37:3f:2d:9a:a5:96:79:4e:1e:18:47:17:59:30:f3: 9e:be:9a:17:b5:fd:a9:e7:85:2d:8b:3d:ec:24:ae:47:01:a5: dd:cb:c3:8a:10:a8:32:31:bb:0d:91:fe:da:d6:24:fe:3e:87: 85:ad:c4:0e:26:df:54:8a:f8:ff:ec:ac:07:9f:bb:0d:fb:c9: e7:dd:ee:a5:a5:e5:43:99:35:b2:e1:91:b2:3b:c6:ee:85:97: 72:c4:b0:36:ff:bf:bc:da:42:51:c7:5d:29:ab:29:11:33:8a: fd:9b:89:ed:81:18:d2:e6:e0:79:b3:06:67:b2:25:90:64:7a: 2d:58:d8:f8:38:14:79:77:30:72:b7:7f:ec:7d:b5:31:ba:4e: 69:20:00:50 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGQUYxMTAvBgNVBAUTKDBFNjYzQ0I0OTAwRUY0RDgyMkY5OUFCREUyN0ZBNDAz QUI5RjRDNDAwHhcNMjYwNjA5MDYzNjQ1WhcNMjcwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI3YjQ3ZC0zZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJ93uDCNHngB0Jv9ErQShzWKCzIoQoomXKbwNJrWGfWgb9Vx7sfJWy134KKV R0IludUxiLdkma2qEmiljD2f/FQu9uED6SLJyYqYuSRj7SBEERspJyAKH7u1Axi8 16JxszfIHGHurfFL/UM+2G9WwvRTx7xYGreiCE5XEn+jAhjdvtNzqer2shcRGnvI LhdoAb+eRGQbtF5v3bzHYkt1dAt0vSvTbC9w53xhsWj7ZqqwUJivzaU4FjiUSplo DF2kOqNlPyc/hZAjYaHvLGQV1KDhRacK6pWRBQ9bvOhGrE5qol+sAdKmCZ6HGuyy 6ScRThRqvtZS5C20AeyvO5LaEwIDAQABo4ICfzCCAnswHQYDVR0OBBYEFNYiMC9z vnR800fMO0veadfg0B8NMB8GA1UdIwQYMBaAFA5mPLSQDvTYIvmaveJ/pAOrn0xA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREZBRi85N0JFOTMwRThD QkMxMUVGQkYyMjAwMTJDNEY5QUUwMi9EbVk4dEpBTzlOZ2ktWnE5NG4ta0E2dWZU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtWTh0SkFPOU5naS1acTk0bi1rQTZ1ZlRFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURGQUYvOTdCRTkzMEU4Q0JDMTFFRkJGMjIwMDEyQzRGOUFFMDIvNUQ1OEE2MzY4 Q0JEMTFFRkJBNDc5NjE1QzRGOUFFMDIucm9hMD4GCCsGAQUFBwEHAQH/BC8wLTAa BAIAATAUAwQCG21oMAwDBABnAmkDBABnAmowDwQCAAIwCQMHACQE5gAAADANBgkq hkiG9w0BAQsFAAOCAQEAmM4snjamAuKo+6VxPQNoOSzGak0IvxUkXTwQUi4uf131 aj9DKI9gSu4UPeDMqoqiutUYA9hOl0/1tmxv04UwuDetL3GpAB+wFYD2FEOYRY5n A/u+wLF5PETtMMG8YwcCOJrpukaMiAU3ORn1EaIeNz8tmqWWeU4eGEcXWTDznr6a F7X9qeeFLYs97CSuRwGl3cvDihCoMjG7DZH+2tYk/j6Hha3EDibfVIr4/+ysB5+7 DfvJ593upaXlQ5k1suGRsjvG7oWXcsSwNv+/vNpCUcddKaspETOK/ZuJ7YEY0ubg ebMGZ7IlkGR6LVjY+DgUeXcwcrd/7H21MbpOaSAAUA== -----END CERTIFICATE-----Generated at Sat Jun 13 18:58:01 2026 by rpki-client