$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa File: 33EB881ED9A011F08EC1CA9167D3641D.roa (raw, json) Hash identifier: PsNugEmxb0VqmOUe342oKhYJR77dyuxdQVuRbBuOR54= Subject key identifier: 24:60:BB:A4:FB:40:D9:96:32:C9:C6:80:2D:C1:09:30:28:E3:D8:25 Certificate issuer: /CN=A91F3256/serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Certificate serial: 62 Authority key identifier: 37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa Signing time: Fri 05 Jun 2026 08:41:01 +0000 ROA not before: Fri 05 Jun 2026 08:41:01 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 152194 IP address blocks: 43.243.28.0/22 maxlen: 24 103.230.240.0/22 maxlen: 24 2401:8b80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 08:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3256, serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Validity Not Before: Jun 5 08:41:01 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a228b9d-6125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b8:6c:8e:75:fc:c8:fd:68:d2:52:63:70:63: e6:d7:83:70:75:1b:0c:c4:23:ca:03:4e:a7:9f:74: a6:4c:f5:d8:42:e4:6f:fb:35:48:b1:d9:e1:ed:f2: 73:d1:a2:4d:46:e2:18:c3:69:a1:ec:a8:52:6c:4d: 2a:94:45:6c:d2:3b:c3:ee:bd:29:73:84:cf:a5:ea: 0e:58:a0:70:d9:3a:b0:f5:74:68:1b:2a:2e:9b:39: 3a:f7:3f:f7:6f:80:bd:78:be:78:32:ce:da:7e:cf: 50:21:ac:6b:90:06:2c:d3:40:09:7f:4a:d7:8c:2c: 15:8d:7e:04:54:a9:cd:89:b2:a0:9b:bb:8c:29:74: 60:10:37:73:da:98:3d:94:4e:b2:3c:34:83:07:2b: 20:54:20:a6:90:09:85:05:6d:6f:0d:18:d7:c7:7e: fd:43:55:e4:4a:d3:40:ff:24:80:71:4a:ee:cb:b1: cf:f6:0a:b8:e0:91:4b:10:7b:23:80:b4:2d:41:e2: 20:ca:28:24:89:f9:b9:c6:4b:9e:b8:89:14:a2:a6: 13:aa:61:bb:92:46:61:e9:43:c4:07:a8:96:f7:47: c9:fe:f2:97:cf:da:c7:d8:73:34:e8:80:d4:77:4f: b9:96:f3:65:d5:66:da:f9:6e:0e:be:9a:19:2a:ad: 6f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:60:BB:A4:FB:40:D9:96:32:C9:C6:80:2D:C1:09:30:28:E3:D8:25 X509v3 Authority Key Identifier: keyid:37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.243.28.0/22 103.230.240.0/22 IPv6: 2401:8b80::/32 Signature Algorithm: sha256WithRSAEncryption 4b:2c:0d:cd:46:2c:3a:fd:90:cb:fa:cb:82:f0:35:18:32:8f: cb:ae:df:be:a8:94:4b:8b:05:0f:46:39:d8:1f:8f:f9:be:1e: 91:38:01:14:cc:2e:23:c6:2e:17:63:4e:63:b8:26:49:00:c7: b9:52:70:ea:e3:3b:85:6b:cc:8f:57:42:d8:28:46:6b:d4:e7: 21:0e:bf:1e:bb:02:3c:21:48:17:11:dc:4a:fd:82:88:e9:52: 54:8d:8c:6e:9e:0d:a4:1d:5f:94:6b:7d:5b:96:ce:a6:85:10: 72:34:25:01:83:a8:be:2c:c2:a1:84:4c:1f:59:67:e1:d9:9a: ea:4e:15:0b:8e:fd:45:72:26:a7:46:cf:0b:11:3e:17:4b:09: 17:22:b6:d8:76:57:f9:21:dc:cd:58:1f:de:0c:0b:05:c5:05: 6e:b4:04:a0:83:69:db:d0:d3:44:e5:6f:ae:5e:d2:0b:16:48: 7c:93:99:da:bc:e8:48:1d:20:c3:00:62:01:06:32:e3:44:a7: ed:61:33:65:da:68:6b:d4:3a:30:71:95:e3:42:23:f1:a9:8c: bc:f5:14:2d:6b:f0:e2:cd:04:4b:f1:55:50:88:a0:0f:dc:bf: 73:9a:34:b2:a1:30:b4:c8:6d:4a:2c:ae:b3:4c:99:62:38:b7: 1e:bd:9e:58 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzI1NjExMC8GA1UEBRMoMzdDRDlCQjA4NkVGMEFGNUEzMkJEODg1NDc0Njg2ODA2 RDkwOTZGQjAeFw0yNjA2MDUwODQxMDFaFw0yNzA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMjI4YjlkLTYxMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZuGyOdfzI/WjSUmNwY+bXg3B1GwzEI8oDTqefdKZM9dhC5G/7NUix2eHt8nPR ok1G4hjDaaHsqFJsTSqURWzSO8PuvSlzhM+l6g5YoHDZOrD1dGgbKi6bOTr3P/dv gL14vngyztp+z1AhrGuQBizTQAl/SteMLBWNfgRUqc2JsqCbu4wpdGAQN3PamD2U TrI8NIMHKyBUIKaQCYUFbW8NGNfHfv1DVeRK00D/JIBxSu7Lsc/2CrjgkUsQeyOA tC1B4iDKKCSJ+bnGS564iRSiphOqYbuSRmHpQ8QHqJb3R8n+8pfP2sfYczTogNR3 T7mW82XVZtr5bg6+mhkqrW9zAgMBAAGjggJ1MIICcTAdBgNVHQ4EFgQUJGC7pPtA 2ZYyycaALcEJMCjj2CUwHwYDVR0jBBgwFoAUN82bsIbvCvWjK9iFR0aGgG2Qlvsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzMjU2LzFCNTVENzM4RDk5 RjExRjA5N0VGQkVGOTY2RDM2NDFEL044MmJzSWJ2Q3ZXaks5aUZSMGFHZ0cyUWx2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjgyYnNJYnZDdldqSzlpRlIwYUdnRzJRbHZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzI1Ni8xQjU1RDczOEQ5OUYxMUYwOTdFRkJFRjk2NkQzNjQxRC8zM0VCODgxRUQ5 QTAxMUYwOEVDMUNBOTE2N0QzNjQxRC5yb2EwNAYIKwYBBQUHAQcBAf8EJTAjMBIE AgABMAwDBAIr8xwDBAJn5vAwDQQCAAIwBwMFACQBi4AwDQYJKoZIhvcNAQELBQAD ggEBAEssDc1GLDr9kMv6y4LwNRgyj8uu376olEuLBQ9GOdgfj/m+HpE4ARTMLiPG LhdjTmO4JkkAx7lScOrjO4VrzI9XQtgoRmvU5yEOvx67AjwhSBcR3Er9gojpUlSN jG6eDaQdX5RrfVuWzqaFEHI0JQGDqL4swqGETB9ZZ+HZmupOFQuO/UVyJqdGzwsR PhdLCRcitth2V/kh3M1YH94MCwXFBW60BKCDadvQ00Tlb65e0gsWSHyTmdq86Egd IMMAYgEGMuNEp+1hM2XaaGvUOjBxleNCI/GpjLz1FC1r8OLNBEvxVVCIoA/cv3Oa NLKhMLTIbUosrrNMmWI4tx69nlg= -----END CERTIFICATE-----Generated at Sat Jun 13 18:36:59 2026 by rpki-client