$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa File: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (raw, json) Hash identifier: 59G5/JH3Jy7HOVQ7Fwa2htossMKLT5qvwu9fkF+mzSU= Subject key identifier: 03:CF:FE:C2:DA:22:60:0D:2B:52:59:6D:58:9A:FF:91:17:F6:D8:25 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 091C Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa Signing time: Thu 14 May 2026 18:22:42 +0000 ROA not before: Thu 14 May 2026 18:22:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138917 IP address blocks: 103.137.40.0/24 maxlen: 24 2001:df0:1880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2332 (0x91c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: May 14 18:22:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a0612f2-a733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:c8:af:f2:b1:69:8a:97:72:c4:c8:00:43:5d: 54:86:f9:d8:8c:03:71:a1:be:b0:43:0f:c0:20:24: 49:1b:d0:51:9e:90:03:84:35:cb:a5:6f:d1:01:a5: b8:63:19:59:71:dd:f9:b0:27:cf:06:cb:15:f2:bf: 52:6d:a6:8b:b4:0b:70:6e:d9:e3:76:49:a2:44:84: f5:b5:15:4a:88:dc:ef:8f:65:ef:99:96:35:84:54: ec:21:63:97:71:67:58:c9:e8:ad:6c:6e:bf:68:84: 71:e2:5a:d0:a3:e6:8b:c9:2b:08:13:ba:df:9a:29: a5:57:93:33:4e:d2:4d:a8:85:35:21:bf:e5:da:9b: f6:b4:22:57:2f:84:85:5d:ad:42:fd:3b:5d:45:6a: 2c:ba:20:07:ef:96:fb:03:be:89:77:83:2e:32:b0: 74:cb:b3:d4:e9:b4:0f:4e:48:38:53:81:f8:ac:e1: ae:86:c4:64:dc:18:40:c2:94:23:1d:7f:0d:17:6f: 5b:20:8d:ee:de:c3:95:d3:1c:e0:b6:51:41:ee:eb: 9e:96:ac:bd:9e:38:c2:bd:0e:d9:a3:be:1b:cb:e1: 64:f0:35:e0:9e:f1:d8:47:4b:26:a5:66:4d:df:76: 7e:78:e6:8b:0c:b6:9f:88:fa:16:c4:61:a6:40:5a: c5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CF:FE:C2:DA:22:60:0D:2B:52:59:6D:58:9A:FF:91:17:F6:D8:25 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.40.0/24 IPv6: 2001:df0:1880::/48 Signature Algorithm: sha256WithRSAEncryption 24:e8:c8:6d:9c:b1:80:3a:ff:f8:97:37:d3:f2:c7:dd:94:99: 0d:44:8a:9f:51:07:13:84:7d:ed:ad:50:1a:d7:1f:16:9e:c7: 47:ec:84:39:d4:f7:38:2b:48:f2:6e:b5:2e:98:eb:cf:79:13: 56:dd:48:78:d8:78:e8:33:47:47:00:7f:12:57:aa:b8:29:b4: b0:52:f1:e6:48:10:4d:e5:fe:0a:b8:f6:78:ec:aa:96:f4:f5: 7d:a2:f3:6b:4d:96:fc:db:ad:0e:7e:92:8a:cd:92:56:de:38: 34:ca:13:aa:37:1d:b5:f7:38:b1:5b:55:35:e5:bc:8d:b0:88: 4b:52:4a:b0:31:18:e6:04:2e:87:66:f8:ec:d8:ea:00:9b:f9: 55:3f:46:d7:2d:88:a6:f5:29:ff:d3:be:15:61:2d:b1:0a:b7: 3c:bd:23:ba:b2:ce:5e:a2:27:9d:c9:76:b9:e1:ff:ee:ec:bb: b2:f2:d2:50:9e:0e:ce:8a:53:a1:e3:4a:85:f0:75:89:d2:9e: 14:a2:9d:cb:4d:be:30:5d:92:ca:04:2f:d4:13:83:32:58:6c: ba:b5:93:29:46:b4:f9:b4:1b:9a:e4:bf:1a:fc:7c:ad:39:cb: a3:38:8d:ce:9f:89:d9:10:4f:8f:76:84:12:01:10:00:c1:f0: 76:71:61:a1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjYwNTE0MTgyMjQyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA2MTJmMi1hNzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhsiv8rFpipdyxMgAQ11UhvnYjANxob6wQw/AICRJG9BRnpADhDXLpW/RAaW4 YxlZcd35sCfPBssV8r9SbaaLtAtwbtnjdkmiRIT1tRVKiNzvj2XvmZY1hFTsIWOX cWdYyeitbG6/aIRx4lrQo+aLySsIE7rfmimlV5MzTtJNqIU1Ib/l2pv2tCJXL4SF Xa1C/TtdRWosuiAH75b7A76Jd4MuMrB0y7PU6bQPTkg4U4H4rOGuhsRk3BhAwpQj HX8NF29bII3u3sOV0xzgtlFB7uuelqy9njjCvQ7Zo74by+Fk8DXgnvHYR0smpWZN 33Z+eOaLDLafiPoWxGGmQFrFLQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAPP/sLa ImANK1JZbVia/5EX9tglMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA5REMvQTVCQkZBQTYwOTM1MTFFQUFCMTBDOTFGQzRGOUFFMDIvREI3OEIyNjg0 QkNEMTFFRThGOTc2QjdFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ4koMA8EAgACMAkDBwAgAQ3wGIAwDQYJKoZIhvcNAQELBQADggEB ACToyG2csYA6//iXN9Pyx92UmQ1Eip9RBxOEfe2tUBrXHxaex0fshDnU9zgrSPJu tS6Y6895E1bdSHjYeOgzR0cAfxJXqrgptLBS8eZIEE3l/gq49njsqpb09X2i82tN lvzbrQ5+korNklbeODTKE6o3HbX3OLFbVTXlvI2wiEtSSrAxGOYELodm+OzY6gCb +VU/RtctiKb1Kf/TvhVhLbEKtzy9I7qyzl6iJ53Jdrnh/+7su7Ly0lCeDs6KU6Hj SoXwdYnSnhSinctNvjBdksoEL9QTgzJYbLq1kylGtPm0G5rkvxr8fK05y6M4jc6f idkQT492hBIBEADB8HZxYaE= -----END CERTIFICATE-----Generated at Thu May 21 11:03:11 2026 by rpki-client