$ rpki-client -vvf rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/A8EF2B58A89A11EFA52A9970C4F9AE02.roa File: A8EF2B58A89A11EFA52A9970C4F9AE02.roa (raw, json) Hash identifier: YXsyQGuuH2Ze8ICIsxBPXxxceEa4kPbLyKBkakXaFe0= Subject key identifier: B7:56:73:8C:BD:0F:68:8A:AF:D4:51:EE:A4:45:F6:48:7C:28:5C:7A Certificate issuer: /CN=A919EC2D/serialNumber=304D64E3F1051297E4B62AC7DE3480F47A29AE0F Certificate serial: 012D Authority key identifier: 30:4D:64:E3:F1:05:12:97:E4:B6:2A:C7:DE:34:80:F4:7A:29:AE:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/A8EF2B58A89A11EFA52A9970C4F9AE02.roa Signing time: Sun 31 May 2026 02:32:51 +0000 ROA not before: Sun 31 May 2026 02:32:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136969 IP address blocks: 103.188.92.0/23 maxlen: 23 103.188.92.0/24 maxlen: 24 103.188.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.crl rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 04:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EC2D, serialNumber=304D64E3F1051297E4B62AC7DE3480F47A29AE0F Validity Not Before: May 31 02:32:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a1b9dd2-99bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:07:34:bc:db:39:be:15:e8:af:21:9e:1d:65: 17:28:39:68:df:fc:d9:52:08:c1:c0:89:a2:b6:c4: fc:0b:1f:68:9c:3c:86:e0:22:65:4c:00:32:ad:01: 2c:23:3c:2d:d1:3c:7a:4a:86:76:1f:7d:08:33:94: 1c:68:24:54:6d:5d:72:65:57:a9:e2:f2:0e:ff:cd: 7f:87:97:c6:09:54:5b:8b:52:a8:aa:6e:77:87:92: f4:f3:44:ca:b2:cd:35:7b:c0:79:e2:2c:cd:70:4f: 41:91:54:62:c5:7a:c7:f2:dd:8f:fc:b5:13:d3:1b: dd:34:32:18:13:9b:e9:de:cd:ce:9f:73:51:37:0e: d9:23:b5:23:01:62:9d:50:a2:63:a8:8e:fd:d1:b0: ab:4a:23:c5:0b:4b:80:22:7a:3a:91:77:26:dc:71: cf:4d:34:52:c1:a4:21:59:aa:35:5c:cd:43:82:20: 23:39:43:15:f3:c9:8e:ba:ef:fa:0a:21:0b:1e:a4: cd:30:3f:81:88:27:65:03:39:3f:ce:67:36:d7:b8: 05:90:41:da:27:69:79:79:db:f3:6e:41:82:34:87: ae:37:31:eb:6d:3d:b9:2a:2d:06:b9:dc:8b:81:a0: 30:e8:3b:66:0c:d4:77:39:ff:a8:eb:d3:a2:0b:75: 42:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:56:73:8C:BD:0F:68:8A:AF:D4:51:EE:A4:45:F6:48:7C:28:5C:7A X509v3 Authority Key Identifier: keyid:30:4D:64:E3:F1:05:12:97:E4:B6:2A:C7:DE:34:80:F4:7A:29:AE:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/A8EF2B58A89A11EFA52A9970C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.188.92.0/23 Signature Algorithm: sha256WithRSAEncryption 95:98:28:d5:85:76:9e:fb:ed:51:c5:92:4e:46:b5:80:22:22: aa:38:16:cb:da:27:3c:60:31:eb:64:f2:6d:18:28:e1:f8:b5: 86:61:b0:7a:73:bc:b5:5f:02:f4:ce:6e:00:49:30:4d:8f:b5: 1d:f3:d8:19:22:f2:fa:90:65:89:1b:6f:a3:e9:a0:5d:00:1e: 30:cf:9e:f8:64:c0:e0:83:a3:35:f6:7b:6a:38:e8:28:3f:77: c3:12:39:3c:e9:a6:df:28:f5:87:14:c9:25:8a:25:28:d1:e2: 73:e8:80:f3:54:12:f1:13:48:31:be:39:db:8f:45:07:16:5d: 67:ee:e2:6c:b8:f5:3e:82:4a:43:85:85:81:40:9c:aa:84:01: 77:c2:7f:ac:34:a0:a1:f1:b6:31:01:c9:a0:f9:4a:cf:17:d8: ac:c3:3c:a2:15:35:34:8d:ff:ae:7c:b7:c5:c3:cf:74:29:79: fa:18:93:0b:ea:40:e5:87:06:d8:24:2d:00:55:2f:f6:c2:bd: 68:68:62:48:90:cc:ef:08:43:04:2e:06:6d:55:03:32:17:9a: e0:a4:e9:f7:e7:9d:09:00:a6:bf:fe:2e:a8:fe:91:c1:49:e8: 9e:6f:58:78:d3:5a:60:db:cd:99:5b:25:c7:45:f5:d2:68:33: 6f:0c:57:fc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVDMkQxMTAvBgNVBAUTKDMwNEQ2NEUzRjEwNTEyOTdFNEI2MkFDN0RFMzQ4MEY0 N0EyOUFFMEYwHhcNMjYwNTMxMDIzMjUwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFiOWRkMi05OWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQc0vNs5vhXoryGeHWUXKDlo3/zZUgjBwImitsT8Cx9onDyG4CJlTAAyrQEs Izwt0Tx6SoZ2H30IM5QcaCRUbV1yZVep4vIO/81/h5fGCVRbi1Koqm53h5L080TK ss01e8B54izNcE9BkVRixXrH8t2P/LUT0xvdNDIYE5vp3s3On3NRNw7ZI7UjAWKd UKJjqI790bCrSiPFC0uAIno6kXcm3HHPTTRSwaQhWao1XM1DgiAjOUMV88mOuu/6 CiELHqTNMD+BiCdlAzk/zmc217gFkEHaJ2l5edvzbkGCNIeuNzHrbT25Ki0GudyL gaAw6DtmDNR3Of+o69OiC3VC/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLdWc4y9 D2iKr9RR7qRF9kh8KFx6MB8GA1UdIwQYMBaAFDBNZOPxBRKX5LYqx940gPR6Ka4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUMyRC84MkI3MjVFOEJD RTMxMUVEODQ5RjkzMzFDNEY5QUUwMi9NRTFrNF9FRkVwZmt0aXJIM2pTQTlIb3By ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01FMWs0X0VGRXBma3RpckgzalNBOUhvcHJnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVDMkQvODJCNzI1RThCQ0UzMTFFRDg0OUY5MzMxQzRGOUFFMDIvQThFRjJCNThB ODlBMTFFRkE1MkE5OTcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ7xcMA0GCSqGSIb3DQEBCwUAA4IBAQCVmCjVhXae++1RxZJORrWA IiKqOBbL2ic8YDHrZPJtGCjh+LWGYbB6c7y1XwL0zm4ASTBNj7Ud89gZIvL6kGWJ G2+j6aBdAB4wz574ZMDgg6M19ntqOOgoP3fDEjk86abfKPWHFMkliiUo0eJz6IDz VBLxE0gxvjnbj0UHFl1n7uJsuPU+gkpDhYWBQJyqhAF3wn+sNKCh8bYxAcmg+UrP F9iswzyiFTU0jf+ufLfFw890KXn6GJML6kDlhwbYJC0AVS/2wr1oaGJIkMzvCEME LgZtVQMyF5rgpOn3550JAKa//i6o/pHBSeieb1h401pg282ZWyXHRfXSaDNvDFf8 -----END CERTIFICATE-----Generated at Fri Jun 12 20:46:50 2026 by rpki-client