$ rpki-client -vvf rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/4D03B06C83FA11EF9E6EC075C4F9AE02.roa File: 4D03B06C83FA11EF9E6EC075C4F9AE02.roa (raw, json) Hash identifier: GS31IweHyWVTb2bQEYgfVbcUzETrTTg70KsbKgZ5rbc= Subject key identifier: 42:0D:2E:06:BA:7D:1D:F5:ED:E7:58:1A:82:66:D4:56:55:4F:D1:87 Certificate issuer: /CN=A91676E2/serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Certificate serial: 03E6 Authority key identifier: 33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/4D03B06C83FA11EF9E6EC075C4F9AE02.roa Signing time: Fri 15 May 2026 01:30:50 +0000 ROA not before: Fri 15 May 2026 01:30:50 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 149806 IP address blocks: 103.186.216.0/23 maxlen: 23 103.186.216.0/24 maxlen: 24 103.186.217.0/24 maxlen: 24 2400:7520::/32 maxlen: 32 2400:7520::/48 maxlen: 48 2400:7520:1::/48 maxlen: 48 2400:7520:2::/48 maxlen: 48 2400:7520:3::/48 maxlen: 48 2400:7520:4::/48 maxlen: 48 2400:7520:5::/48 maxlen: 48 2400:7520:6::/48 maxlen: 48 2400:7520:7::/48 maxlen: 48 2400:7520:8::/48 maxlen: 48 2400:7520:9::/48 maxlen: 48 2400:7520:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91676E2, serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Validity Not Before: May 15 01:30:50 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a06774a-a7bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:de:90:c6:04:d8:cf:78:c4:b4:bf:cb:a0:75: 5a:c9:0e:c7:83:e7:45:67:37:a5:9a:fb:80:30:75: 6c:f5:3b:89:7e:49:00:76:57:11:ad:3c:57:49:83: 5a:34:40:dc:fb:48:1f:28:da:38:f6:82:3b:48:67: 18:37:34:50:f4:dc:fd:68:ff:e3:65:73:f9:cd:e7: de:11:c7:65:89:af:e5:2a:dd:d4:ef:5f:91:01:f6: 0a:94:62:da:a0:18:bd:f6:a2:e4:5d:a5:60:0f:ef: a1:a6:27:1a:08:9b:b4:0e:71:ea:f5:c8:6e:37:fe: 31:38:77:2c:2c:6f:64:1b:c3:34:b1:36:cc:12:f2: c3:91:56:dd:e4:62:6e:72:d4:42:4e:5d:54:bf:2e: 2c:73:50:79:c2:35:77:3c:66:81:65:75:99:d1:30: a2:2d:3b:e2:94:b0:82:4e:be:88:6e:27:47:66:a2: 4e:f8:7a:ec:5c:3b:1d:e3:de:8d:7b:f5:f2:ae:62: 9e:9a:65:dc:62:bb:4d:40:7a:8f:0e:66:eb:f5:b8: e8:be:2f:af:25:b6:50:dd:97:9c:2c:95:e8:f0:83: c0:8d:90:b3:ed:27:bb:eb:6e:1d:22:60:d4:0a:37: c2:20:73:94:36:18:cb:4c:22:43:5c:7a:0a:08:61: a9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0D:2E:06:BA:7D:1D:F5:ED:E7:58:1A:82:66:D4:56:55:4F:D1:87 X509v3 Authority Key Identifier: keyid:33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/4D03B06C83FA11EF9E6EC075C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.216.0/23 IPv6: 2400:7520::/32 Signature Algorithm: sha256WithRSAEncryption 57:70:3a:7b:44:7a:85:e8:9c:d1:f7:e6:8e:e3:15:6c:52:58: 9a:83:9a:1d:35:a7:ed:0e:4b:81:a1:cd:bd:53:b3:aa:09:eb: 00:bc:46:a7:af:e4:5a:0a:2c:14:7c:fc:b4:ee:f5:3f:20:c4: 1f:bc:63:90:cc:fb:69:3c:d8:10:fc:60:e3:af:17:fc:bc:f1: cd:7b:9b:68:c4:73:b9:5d:1f:cd:25:50:d8:f2:b7:41:ce:40: 24:9f:3a:f8:ef:db:50:df:c9:7d:0c:37:59:59:94:5d:e8:e0: 35:b0:9c:ae:33:62:b1:82:4a:f3:68:95:72:52:27:31:83:07: fe:84:c7:c7:ba:60:35:9d:df:08:ae:4b:c1:cb:91:98:b8:fd: 87:d4:a6:3c:69:76:66:bb:e8:b7:69:8b:92:73:10:ab:c4:a3: e2:a8:0e:c8:56:36:c1:30:38:bd:0c:ac:f0:b6:c4:b7:bd:96: 7d:f5:a5:cd:26:5e:58:3a:e8:93:c6:c0:78:fb:a9:43:ff:78: b8:30:f2:70:64:14:b6:b5:a1:1f:e2:72:29:86:a2:3d:11:b9: e1:ff:fe:5b:63:3d:bc:55:a5:65:53:50:91:42:65:c1:cd:97: 77:24:dd:1d:e8:fb:ef:33:91:54:7b:6c:22:e4:15:98:54:5f: 6f:94:2b:d8 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njc2RTIxMTAvBgNVBAUTKDMzNDRBNDM5NjBEQzRBNDc3M0JCMURGMEZGMDM4REY0 MTYwRjM1N0EwHhcNMjYwNTE1MDEzMDUwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA2Nzc0YS1hN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt96QxgTYz3jEtL/LoHVayQ7Hg+dFZzelmvuAMHVs9TuJfkkAdlcRrTxXSYNa NEDc+0gfKNo49oI7SGcYNzRQ9Nz9aP/jZXP5zefeEcdlia/lKt3U71+RAfYKlGLa oBi99qLkXaVgD++hpicaCJu0DnHq9chuN/4xOHcsLG9kG8M0sTbMEvLDkVbd5GJu ctRCTl1Uvy4sc1B5wjV3PGaBZXWZ0TCiLTvilLCCTr6IbidHZqJO+HrsXDsd496N e/XyrmKemmXcYrtNQHqPDmbr9bjovi+vJbZQ3ZecLJXo8IPAjZCz7Se7624dImDU CjfCIHOUNhjLTCJDXHoKCGGpkQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEINLga6 fR317edYGoJm1FZVT9GHMB8GA1UdIwQYMBaAFDNEpDlg3EpHc7sd8P8DjfQWDzV6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzZFMi8yMjU5QTE4NkQ4 NTQxMUVDQjlFMUU0ODZDNEY5QUUwMi9NMFNrT1dEY1NrZHp1eDN3X3dPTjlCWVBO WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00wU2tPV0RjU2tkenV4M3dfd09OOUJZUE5Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njc2RTIvMjI1OUExODZEODU0MTFFQ0I5RTFFNDg2QzRGOUFFMDIvNEQwM0IwNkM4 M0ZBMTFFRjlFNkVDMDc1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7rYMA0EAgACMAcDBQAkAHUgMA0GCSqGSIb3DQEBCwUAA4IBAQBX cDp7RHqF6JzR9+aO4xVsUliag5odNaftDkuBoc29U7OqCesAvEanr+RaCiwUfPy0 7vU/IMQfvGOQzPtpPNgQ/GDjrxf8vPHNe5toxHO5XR/NJVDY8rdBzkAknzr479tQ 38l9DDdZWZRd6OA1sJyuM2KxgkrzaJVyUicxgwf+hMfHumA1nd8IrkvBy5GYuP2H 1KY8aXZmu+i3aYuScxCrxKPiqA7IVjbBMDi9DKzwtsS3vZZ99aXNJl5YOuiTxsB4 +6lD/3i4MPJwZBS2taEf4nIphqI9Ebnh//5bYz28VaVlU1CRQmXBzZd3JN0d6Pvv M5FUe2wi5BWYVF9vlCvY -----END CERTIFICATE-----Generated at Thu May 21 11:15:02 2026 by rpki-client