$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/3CEA8114429511F1AFCCDC75B2833773.roa File: 3CEA8114429511F1AFCCDC75B2833773.roa (raw, json) Hash identifier: ZPrkUcTW0dkUrha+IDL+C0J+DeJogup9DGfp3ayHM4Q= Subject key identifier: A4:AF:C0:3E:8D:14:CA:2A:5E:52:27:80:AA:50:D8:58:40:33:B2:E1 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0778 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/3CEA8114429511F1AFCCDC75B2833773.roa Signing time: Tue 28 Apr 2026 22:32:05 +0000 ROA not before: Tue 28 Apr 2026 22:32:05 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137879 IP address blocks: 131.203.83.216/30 maxlen: 30 131.203.83.220/30 maxlen: 30 131.203.83.224/30 maxlen: 30 131.203.83.228/30 maxlen: 30 131.203.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 22:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Apr 28 22:32:05 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69f13565-6639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:88:4a:fd:02:ee:91:d4:ed:e4:99:92:b7:71: 55:1a:f5:3f:5d:2d:42:9a:22:42:f4:6e:c0:45:0a: 4e:42:c9:02:d1:06:1c:ba:a8:49:fd:f4:24:c2:16: ae:fe:74:b9:3b:42:6f:ce:37:2b:8e:0e:49:50:fe: 34:6f:84:58:f1:af:66:8c:25:ea:cc:68:7b:90:9f: ed:b0:16:9b:da:d6:7f:af:a4:67:28:74:ac:c2:b7: 83:76:a0:fe:c0:cf:52:d7:46:8d:ec:d5:4f:79:50: 5d:2d:32:22:84:52:88:8c:e7:09:47:87:f0:3a:f6: 12:14:be:02:35:11:af:4b:af:6b:e5:ff:3c:5a:4e: d8:80:22:1d:4d:b2:f4:48:4c:20:da:63:11:0a:1b: ff:3c:be:01:2b:c6:fc:1a:3b:45:26:b1:33:c9:61: 43:e7:a0:b1:08:9b:14:08:e4:eb:f2:9a:8d:1a:96: 71:d8:33:7e:cb:25:8d:03:e6:b2:27:db:45:74:5f: c2:78:93:75:33:75:8d:87:5b:ef:0e:ec:fb:7e:75: 98:be:bb:17:91:5e:d4:18:e0:3d:01:cb:0f:8e:a7: 5a:29:8b:81:a4:3a:65:14:7c:bf:44:fe:f8:dc:5c: 94:59:77:73:79:68:50:2c:63:c5:5c:b9:87:36:be: 98:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AF:C0:3E:8D:14:CA:2A:5E:52:27:80:AA:50:D8:58:40:33:B2:E1 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/3CEA8114429511F1AFCCDC75B2833773.roa sbgp-ipAddrBlock: critical IPv4: 131.203.83.216-131.203.83.231 131.203.143.0/24 Signature Algorithm: sha256WithRSAEncryption 25:78:c3:24:ff:c9:75:18:26:f6:a9:79:95:f8:bd:9c:4f:1f: 94:55:93:93:98:e7:9b:43:26:65:f2:37:08:ec:5f:23:bd:96: 41:cf:4f:12:b0:3d:ca:2e:fe:ce:b5:2b:0e:70:0e:b3:ea:2b: bd:ed:84:b2:2c:2a:c9:1f:e4:f4:c2:07:ad:d2:cf:fa:86:52: 4f:f7:8d:6b:cf:2c:f7:03:7b:28:b0:de:9b:67:60:67:3d:82: 02:65:b4:97:9d:08:ba:7b:b2:a4:ac:24:3f:5f:90:36:d1:1e: 7c:e8:c4:92:76:e1:fe:a9:e3:48:e9:df:ea:f2:25:e0:8a:43: 45:c4:d0:de:24:2d:a6:b1:eb:80:a0:d0:33:37:f0:c4:eb:84: 6e:e2:ea:a1:f3:cb:f0:02:0f:5f:b2:0b:28:6e:da:98:ca:df: 88:ad:fd:90:b0:b3:8e:eb:f6:a9:70:51:20:d4:75:44:dd:27: 67:50:fc:52:b4:34:51:44:75:0a:f3:49:1f:7b:66:ae:6b:74: 47:3d:c2:da:64:19:2e:9f:ef:a1:e6:69:b1:b4:b4:4b:40:8c: 4e:4b:0c:b6:f0:9c:cd:0b:5f:73:e9:fc:e3:66:eb:6e:3e:93: 95:b3:51:53:89:87:59:12:10:c8:5b:4f:f2:11:cb:c6:a5:22: 89:3f:84:f0 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjYwNDI4MjIzMjA1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxMzU2NS02NjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIhK/QLukdTt5JmSt3FVGvU/XS1CmiJC9G7ARQpOQskC0QYcuqhJ/fQkwhau /nS5O0Jvzjcrjg5JUP40b4RY8a9mjCXqzGh7kJ/tsBab2tZ/r6RnKHSswreDdqD+ wM9S10aN7NVPeVBdLTIihFKIjOcJR4fwOvYSFL4CNRGvS69r5f88Wk7YgCIdTbL0 SEwg2mMRChv/PL4BK8b8GjtFJrEzyWFD56CxCJsUCOTr8pqNGpZx2DN+yyWNA+ay J9tFdF/CeJN1M3WNh1vvDuz7fnWYvrsXkV7UGOA9AcsPjqdaKYuBpDplFHy/RP74 3FyUWXdzeWhQLGPFXLmHNr6YZwIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFKSvwD6N FMoqXlIngKpQ2FhAM7LhMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvM0NFQTgxMTQ0 Mjk1MTFGMUFGQ0NEQzc1QjI4MzM3NzMucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAc BAIAATAWMA4DBQODy1PYAwUDg8tT4AMEAIPLjzANBgkqhkiG9w0BAQsFAAOCAQEA JXjDJP/JdRgm9ql5lfi9nE8flFWTk5jnm0MmZfI3COxfI72WQc9PErA9yi7+zrUr DnAOs+orve2EsiwqyR/k9MIHrdLP+oZST/eNa88s9wN7KLDem2dgZz2CAmW0l50I unuypKwkP1+QNtEefOjEknbh/qnjSOnf6vIl4IpDRcTQ3iQtprHrgKDQMzfwxOuE buLqofPL8AIPX7ILKG7amMrfiK39kLCzjuv2qXBRINR1RN0nZ1D8UrQ0UUR1CvNJ H3tmrmt0Rz3C2mQZLp/voeZpsbS0S0CMTksMtvCczQtfc+n842brbj6TlbNRU4mH WRIQyFtP8hHLxqUiiT+E8A== -----END CERTIFICATE-----Generated at Wed Apr 29 14:32:33 2026 by rpki-client