$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/50C74740608511F1B54688666E47A888.roa File: 50C74740608511F1B54688666E47A888.roa (raw, json) Hash identifier: IQGnQ5zQbYNcFjoaC/X8FlYzSh99L1UkIksPVrl/4Lc= Subject key identifier: 0E:9C:57:92:11:31:5D:22:F8:34:61:B3:E0:67:FB:63:B2:5A:C0:39 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D83 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/50C74740608511F1B54688666E47A888.roa Signing time: Fri 05 Jun 2026 02:21:53 +0000 ROA not before: Fri 05 Jun 2026 02:21:53 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 216138 IP address blocks: 43.231.189.0/24 maxlen: 24 43.246.129.0/24 maxlen: 24 43.251.185.0/24 maxlen: 24 45.124.61.0/24 maxlen: 24 103.7.209.0/24 maxlen: 24 103.7.210.0/24 maxlen: 24 103.26.164.0/24 maxlen: 24 103.26.165.0/24 maxlen: 24 103.244.211.0/24 maxlen: 24 160.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 02:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3459 (0xd83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jun 5 02:21:53 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a2232c1-87d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:72:81:72:2b:c5:f9:ca:49:10:5e:78:4a:9e: 31:c5:6f:35:07:32:91:5e:7a:95:6e:15:b9:b5:ba: e4:33:e2:e3:70:61:72:56:04:4f:d6:f1:fd:6b:54: bb:5f:ea:f0:6d:0e:be:54:a4:d2:ce:a1:5e:f8:52: 4c:e0:18:3b:4a:07:5f:e6:a3:f4:39:2b:d1:2b:18: 72:ad:65:6f:92:9d:78:34:f4:24:93:77:fb:fe:30: af:3d:9a:d2:84:ed:3c:3f:cc:8e:58:f2:68:88:38: 91:10:44:c5:04:98:27:e8:a2:cd:b2:e9:d2:44:6b: d7:6b:30:43:71:59:08:d1:8e:81:f8:1c:d5:c5:9f: 9b:b7:5b:95:1b:85:dd:d6:ee:0f:a4:a9:46:e9:01: 22:05:20:98:6b:16:c0:b6:1d:07:d2:f3:78:f5:03: 5d:94:38:94:c0:e6:5e:2b:7c:89:13:4f:58:19:b5: ca:b7:b8:1c:9b:23:9c:f5:1e:b2:9d:4b:3e:79:14: 0d:9a:e3:d1:f8:89:2c:0f:a7:9b:e8:38:22:c2:4d: b7:24:bd:b5:a5:75:1e:26:43:8d:d5:06:0e:91:73: 43:6d:28:2f:30:3a:bc:4e:0f:ea:c1:7d:70:a8:a5: 86:50:57:8c:84:31:7f:5e:0a:15:fd:42:78:bd:50: 12:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9C:57:92:11:31:5D:22:F8:34:61:B3:E0:67:FB:63:B2:5A:C0:39 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/50C74740608511F1B54688666E47A888.roa sbgp-ipAddrBlock: critical IPv4: 43.231.189.0/24 43.246.129.0/24 43.251.185.0/24 45.124.61.0/24 103.7.209.0-103.7.210.255 103.26.164.0/23 103.244.211.0/24 160.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption d4:4e:b6:4c:e9:7b:41:a9:2b:8c:23:f8:ec:a0:8c:2c:f6:da: e9:73:9d:31:46:db:a5:5b:bb:51:de:2a:c9:23:8d:b2:b2:85: 80:64:d2:9b:99:44:1b:96:77:13:9a:f9:15:81:11:37:7b:ea: cb:6f:e4:f6:68:ab:23:9d:f4:7f:41:f2:06:6c:be:61:9c:b8: 61:37:1d:44:f8:d9:a7:47:7a:7c:63:8e:4c:fa:69:83:5e:0a: 75:d8:61:65:b7:5d:9c:2e:49:f3:24:ec:39:03:61:eb:dc:18: c6:3d:3a:a7:df:73:60:47:6e:be:aa:00:7c:f2:05:90:1a:ad: 07:16:4c:19:56:a7:57:f5:ca:7f:b1:43:79:9c:c9:a7:dc:91: 7c:4b:eb:bd:74:e6:0e:4f:85:f2:19:23:c1:ed:04:9e:5f:8b: 1b:7b:5b:b1:23:d9:d5:33:5f:82:31:d2:5d:cf:cf:41:ba:11: b2:2f:d8:47:b0:db:8a:b6:d2:85:15:ba:c9:f9:63:d0:32:5c: 91:3c:a2:8a:16:06:90:ab:97:74:83:28:79:6d:72:bb:37:7c: 32:fe:2b:a7:57:82:22:ec:24:18:64:6d:e2:80:76:7d:f0:9f: 8d:b8:7b:b6:90:02:6f:b7:30:09:29:c7:76:c7:fe:ba:db:e6: 59:3d:da:1e -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICDYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwNjA1MDIyMTUzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyMzJjMS04N2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnKBcivF+cpJEF54Sp4xxW81BzKRXnqVbhW5tbrkM+LjcGFyVgRP1vH9a1S7 X+rwbQ6+VKTSzqFe+FJM4Bg7Sgdf5qP0OSvRKxhyrWVvkp14NPQkk3f7/jCvPZrS hO08P8yOWPJoiDiREETFBJgn6KLNsunSRGvXazBDcVkI0Y6B+BzVxZ+bt1uVG4Xd 1u4PpKlG6QEiBSCYaxbAth0H0vN49QNdlDiUwOZeK3yJE09YGbXKt7gcmyOc9R6y nUs+eRQNmuPR+IksD6eb6Dgiwk23JL21pXUeJkON1QYOkXNDbSgvMDq8Tg/qwX1w qKWGUFeMhDF/XgoV/UJ4vVASGwIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFA6cV5IR MV0i+DRhs+Bn+2OyWsA5MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNTBDNzQ3NDA2 MDg1MTFGMUI1NDY4ODY2NkU0N0E4ODgucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQAK+e9AwQAK/aBAwQAK/u5AwQALXw9MAwDBABnB9EDBABnB9IDBAFn GqQDBABn9NMDBACgFC0wDQYJKoZIhvcNAQELBQADggEBANROtkzpe0GpK4wj+Oyg jCz22ulznTFG26Vbu1HeKskjjbKyhYBk0puZRBuWdxOa+RWBETd76stv5PZoqyOd 9H9B8gZsvmGcuGE3HUT42adHenxjjkz6aYNeCnXYYWW3XZwuSfMk7DkDYevcGMY9 Oqffc2BHbr6qAHzyBZAarQcWTBlWp1f1yn+xQ3mcyafckXxL67105g5PhfIZI8Ht BJ5fixt7W7Ej2dUzX4Ix0l3Pz0G6EbIv2Eew24q20oUVusn5Y9AyXJE8oooWBpCr l3SDKHltcrs3fDL+K6dXgiLsJBhkbeKAdn3wn424e7aQAm+3MAkpx3bH/rrb5lk9 2h4= -----END CERTIFICATE-----Generated at Sat Jun 6 14:39:50 2026 by rpki-client