$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa File: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (raw, json) Hash identifier: ohI7wVYBwQBtmxElCeFCajbRv23/Ecc9+R3JLMUvp88= Subject key identifier: 9E:D6:9F:5C:97:F4:95:18:42:7E:FD:1D:DB:F4:F4:B1:B0:10:93:C3 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 2253 Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa Signing time: Sat 02 May 2026 16:20:26 +0000 ROA not before: Sat 02 May 2026 16:20:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38719 IP address blocks: 103.52.62.0/24 maxlen: 24 103.67.234.0/23 maxlen: 24 103.67.248.0/24 maxlen: 24 2405:df80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8787 (0x2253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93, serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: May 2 16:20:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f62449-601d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:95:5f:81:79:2b:bb:78:f8:a5:0f:58:e1:f2: b9:c3:61:a8:06:df:46:b4:52:a3:11:e5:c5:17:0a: 09:92:ad:2e:78:f8:2c:86:ff:67:65:96:1b:56:c1: 22:56:4c:67:47:d7:9f:6e:b9:90:a1:1b:17:0b:ed: cf:af:1a:f8:c0:98:f9:7c:d8:a6:bb:f7:46:00:38: 12:d8:fe:ab:73:9c:c0:66:8e:dd:25:92:d6:26:e7: 7a:15:45:89:68:2b:62:0a:6b:11:e3:e2:45:3d:0e: 96:a2:b6:da:ce:84:da:ab:87:fd:06:eb:75:e0:63: 8d:dc:41:37:f0:1a:a0:53:e8:2c:fc:3a:29:69:54: 87:75:4c:a9:00:54:94:0b:23:9e:41:a9:a8:2c:35: a9:53:28:60:4f:5c:72:d2:5e:29:44:7d:1b:4b:39: 6f:a4:e2:8a:96:f3:92:fa:f2:e9:03:7e:2b:0a:a5: eb:39:29:5b:af:75:9d:e1:01:2e:5a:58:f4:d0:1c: 3c:4d:03:f5:d6:94:2e:3b:ea:02:ea:51:8a:87:0c: 81:02:1a:75:15:ca:75:8a:83:7a:58:12:31:f0:2e: bb:b4:95:12:00:02:a6:cd:ca:67:45:61:1d:ef:18: fa:1b:cd:d2:93:7a:c7:e3:38:8b:bb:c2:d7:32:0e: f5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D6:9F:5C:97:F4:95:18:42:7E:FD:1D:DB:F4:F4:B1:B0:10:93:C3 X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.52.62.0/24 103.67.234.0/23 103.67.248.0/24 IPv6: 2405:df80::/32 Signature Algorithm: sha256WithRSAEncryption 54:c5:8e:fc:f8:38:5a:53:43:1d:b5:44:c3:34:6e:24:66:09: ea:0e:c2:70:87:cb:e8:8c:dd:ff:64:67:b3:dc:98:a1:3c:12: ab:7b:26:ef:0c:f7:78:0b:92:da:e3:4d:ed:85:45:c1:56:09: 35:7f:f1:f8:6d:5a:53:16:49:79:72:32:47:44:9c:b8:21:9d: 8d:11:7b:62:fb:fb:6e:df:f4:e4:d5:62:4b:b0:07:b6:35:d9: 8a:3f:f5:bd:c8:5c:2b:83:34:e9:52:70:e4:64:8d:cd:5e:13: b4:8e:84:29:74:1b:2e:be:14:8f:8e:cb:a2:9a:7a:a9:8e:55: ca:9e:8a:b6:1b:61:d6:a3:6c:28:da:f3:d9:6a:fb:48:41:4e: 0f:b8:41:6a:92:d9:eb:8d:54:5b:d0:d3:f9:89:54:46:6c:6c: 5d:c6:51:27:f1:fb:83:08:c6:25:e7:da:ab:17:68:30:2e:5c: 2f:ec:6d:aa:6b:a9:7a:1b:93:96:c7:4c:c2:0d:56:93:dc:8d: 0b:37:91:a8:d5:92:fb:a3:6f:2a:25:b6:33:fc:0f:c2:03:d5: 8e:d1:9c:7a:7f:d6:c5:5d:76:4b:66:2b:ed:03:d1:1b:28:a5: 98:6b:ca:54:9a:6c:fd:a3:74:24:ab:1d:fd:71:62:90:74:fd: 96:be:1d:b3 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICIlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjYwNTAyMTYyMDI2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2MjQ0OS02MDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZVfgXkru3j4pQ9Y4fK5w2GoBt9GtFKjEeXFFwoJkq0uePgshv9nZZYbVsEi VkxnR9efbrmQoRsXC+3Prxr4wJj5fNimu/dGADgS2P6rc5zAZo7dJZLWJud6FUWJ aCtiCmsR4+JFPQ6WorbazoTaq4f9But14GON3EE38BqgU+gs/DopaVSHdUypAFSU CyOeQamoLDWpUyhgT1xy0l4pRH0bSzlvpOKKlvOS+vLpA34rCqXrOSlbr3Wd4QEu Wlj00Bw8TQP11pQuO+oC6lGKhwyBAhp1Fcp1ioN6WBIx8C67tJUSAAKmzcpnRWEd 7xj6G83Sk3rH4ziLu8LXMg71KQIDAQABo4ICezCCAncwHQYDVR0OBBYEFJ7Wn1yX 9JUYQn79Hdv09LGwEJPDMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVEOTMvNUMxMEE4MTBEQzVEMTFFNUIzMjU0NTJFQzRGOUFFMDIvNUQyRDI5QTI5 NjZEMTFFQTk2QzUwRTgxQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAZzQ+AwQBZ0PqAwQAZ0P4MA0EAgACMAcDBQAkBd+AMA0GCSqGSIb3 DQEBCwUAA4IBAQBUxY78+DhaU0MdtUTDNG4kZgnqDsJwh8vojN3/ZGez3JihPBKr eybvDPd4C5La403thUXBVgk1f/H4bVpTFkl5cjJHRJy4IZ2NEXti+/tu3/Tk1WJL sAe2NdmKP/W9yFwrgzTpUnDkZI3NXhO0joQpdBsuvhSPjsuimnqpjlXKnoq2G2HW o2wo2vPZavtIQU4PuEFqktnrjVRb0NP5iVRGbGxdxlEn8fuDCMYl59qrF2gwLlwv 7G2qa6l6G5OWx0zCDVaT3I0LN5Go1ZL7o28qJbYz/A/CA9WO0Zx6f9bFXXZLZivt A9EbKKWYa8pUmmz9o3Qkqx39cWKQdP2Wvh2z -----END CERTIFICATE-----Generated at Thu May 7 05:40:06 2026 by rpki-client