$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa File: A6389578DAD111ECA6DEA174C4F9AE02.roa (raw, json) Hash identifier: Nd5LJWLEKqPkMF+QYE0DT1Y009jS1C4c/uC9UR1i2Fo= Subject key identifier: B5:ED:2A:8F:19:16:42:03:E9:22:A2:DF:1A:B4:2E:09:FF:F2:D0:71 Certificate issuer: /CN=A91F9ADA/serialNumber=2CB616102977D4C90B23F3AF03B891E89B805CC3 Certificate serial: 039B Authority key identifier: 2C:B6:16:10:29:77:D4:C9:0B:23:F3:AF:03:B8:91:E8:9B:80:5C:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa Signing time: Tue 31 Mar 2026 01:32:16 +0000 ROA not before: Tue 31 Mar 2026 01:32:16 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 133106 IP address blocks: 103.230.72.0/22 maxlen: 24 2001:df5:5800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.crl rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9ADA, serialNumber=2CB616102977D4C90B23F3AF03B891E89B805CC3 Validity Not Before: Mar 31 01:32:16 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cb2420-b5c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:cf:f5:46:fc:28:e3:d5:a7:82:cf:6f:84:00: 0d:b5:b8:c3:cf:87:4d:2a:59:da:af:db:9f:aa:e6: c2:89:43:08:37:4a:97:08:56:f0:43:6e:e9:26:90: 27:08:dd:aa:d9:9d:63:85:11:af:4b:6a:c6:f9:33: ea:4c:b7:23:11:8a:b8:dd:c8:24:b3:79:fc:52:0c: e4:50:3e:2b:8f:af:0e:39:e6:14:04:e8:38:d5:8d: 01:77:ec:be:cb:13:27:62:8c:be:6e:03:0d:ca:75: 4d:bf:ae:7c:2e:a9:57:5b:10:0e:62:9a:21:16:1f: 93:9e:cb:bf:41:4a:1b:43:31:cf:7e:ee:27:60:ac: 47:77:f7:63:78:88:6a:c7:46:f6:15:e1:25:5a:9a: 39:32:e7:5f:98:e1:39:60:bc:dd:b6:4f:43:35:5c: 3c:94:42:71:79:bf:6f:20:80:dd:fe:70:41:94:65: ea:16:74:36:01:f8:5d:dd:5f:95:70:99:d3:3d:dd: 01:2e:21:9d:e7:d2:b3:d8:9f:d2:7d:69:e3:20:ff: 54:d5:7d:43:e7:3b:28:3c:67:0c:a5:f1:cd:98:0a: 5b:15:87:57:3a:2c:b2:ce:40:e3:f2:d6:aa:59:d8: e3:af:ed:3b:d6:87:f9:33:7d:b6:51:6d:fb:58:5d: 43:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:ED:2A:8F:19:16:42:03:E9:22:A2:DF:1A:B4:2E:09:FF:F2:D0:71 X509v3 Authority Key Identifier: keyid:2C:B6:16:10:29:77:D4:C9:0B:23:F3:AF:03:B8:91:E8:9B:80:5C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.230.72.0/22 IPv6: 2001:df5:5800::/48 Signature Algorithm: sha256WithRSAEncryption 37:b1:dc:16:04:a8:b7:31:c5:54:9c:b9:83:81:9a:50:72:f4: eb:fc:1f:ea:67:8d:cc:f0:ad:4a:b5:cd:c0:b0:18:1c:74:59: 3a:bb:22:23:bf:e1:f7:0b:20:53:29:70:c2:9b:88:9c:1d:60: 63:31:32:57:28:aa:9c:89:4d:8d:9a:fa:64:d7:0b:7f:2e:72: d3:e5:7c:5b:52:bd:15:61:c3:4e:3a:ef:a5:f8:8d:b4:2f:01: 7f:15:40:c5:4e:c4:fa:25:67:86:7c:12:28:93:9a:a3:4b:88: a3:5c:51:6a:21:44:0b:97:74:00:8f:e8:cb:b3:26:24:59:4f: b6:4f:16:25:ea:d1:f9:9b:78:88:cb:6a:e0:43:28:7f:db:cf: 24:25:34:8b:78:90:8a:68:6f:f3:f8:91:2f:cf:a9:a5:b7:7b: cb:41:a6:5c:56:2b:8d:6f:d4:cb:89:09:b0:f4:d6:8d:51:36: 93:3c:3e:16:37:75:62:0e:6c:7e:2e:6f:22:ba:58:2a:fc:e9: 9e:a0:26:b4:d9:68:bd:74:db:3c:9e:c8:54:21:86:a1:ed:22: 7f:b0:23:4e:db:d2:5c:21:bf:0f:b8:7f:28:a2:67:c5:d2:4a: 95:70:63:02:52:29:40:d2:29:e3:fa:ee:9a:d6:7d:96:95:09: eb:72:d7:a0 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlBREExMTAvBgNVBAUTKDJDQjYxNjEwMjk3N0Q0QzkwQjIzRjNBRjAzQjg5MUU4 OUI4MDVDQzMwHhcNMjYwMzMxMDEzMjE2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiMjQyMC1iNWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkc/1Rvwo49Wngs9vhAANtbjDz4dNKlnar9ufqubCiUMIN0qXCFbwQ27pJpAn CN2q2Z1jhRGvS2rG+TPqTLcjEYq43cgks3n8UgzkUD4rj68OOeYUBOg41Y0Bd+y+ yxMnYoy+bgMNynVNv658LqlXWxAOYpohFh+Tnsu/QUobQzHPfu4nYKxHd/djeIhq x0b2FeElWpo5MudfmOE5YLzdtk9DNVw8lEJxeb9vIIDd/nBBlGXqFnQ2Afhd3V+V cJnTPd0BLiGd59Kz2J/SfWnjIP9U1X1D5zsoPGcMpfHNmApbFYdXOiyyzkDj8taq Wdjjr+071of5M322UW37WF1D8wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLXtKo8Z FkID6SKi3xq0Lgn/8tBxMB8GA1UdIwQYMBaAFCy2FhApd9TJCyPzrwO4keibgFzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUFEQS8wRTlDN0M3MkRB QzUxMUVDOTE5QTRDNUFDNEY5QUUwMi9MTFlXRUNsMzFNa0xJX092QTdpUjZKdUFY TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xMWVdFQ2wzMU1rTElfT3ZBN2lSNkp1QVhNTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlBREEvMEU5QzdDNzJEQUM1MTFFQzkxOUE0QzVBQzRGOUFFMDIvQTYzODk1NzhE QUQxMTFFQ0E2REVBMTc0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ+ZIMA8EAgACMAkDBwAgAQ31WAAwDQYJKoZIhvcNAQELBQADggEB ADex3BYEqLcxxVScuYOBmlBy9Ov8H+pnjczwrUq1zcCwGBx0WTq7IiO/4fcLIFMp cMKbiJwdYGMxMlcoqpyJTY2a+mTXC38uctPlfFtSvRVhw04676X4jbQvAX8VQMVO xPolZ4Z8EiiTmqNLiKNcUWohRAuXdACP6MuzJiRZT7ZPFiXq0fmbeIjLauBDKH/b zyQlNIt4kIpob/P4kS/PqaW3e8tBplxWK41v1MuJCbD01o1RNpM8PhY3dWIObH4u byK6WCr86Z6gJrTZaL102zyeyFQhhqHtIn+wI07b0lwhvw+4fyiiZ8XSSpVwYwJS KUDSKeP67prWfZaVCety16A= -----END CERTIFICATE-----Generated at Fri Apr 17 07:19:56 2026 by rpki-client