$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/B3C41A60DD1B11EAAC9A0915C4F9AE02.roa File: B3C41A60DD1B11EAAC9A0915C4F9AE02.roa (raw, json) Hash identifier: oD5sf3A4U4md3wLKHjzwPVMM7w2O2dFOwWBo8buNQfY= Subject key identifier: 4A:04:00:67:FD:85:93:64:A2:36:AB:87:93:46:73:E6:32:A5:D9:D6 Certificate issuer: /CN=A91A4543/serialNumber=FBC18144AED8A89D760D5D5E2DED8C38F31E59E0 Certificate serial: 08CD Authority key identifier: FB:C1:81:44:AE:D8:A8:9D:76:0D:5D:5E:2D:ED:8C:38:F3:1E:59:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8GBRK7YqJ12DV1eLe2MOPMeWeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/B3C41A60DD1B11EAAC9A0915C4F9AE02.roa Signing time: Wed 20 May 2026 21:25:00 +0000 ROA not before: Wed 20 May 2026 21:25:00 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 140924 IP address blocks: 103.152.78.0/24 maxlen: 24 2001:df3:ff80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/-8GBRK7YqJ12DV1eLe2MOPMeWeA.crl rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/-8GBRK7YqJ12DV1eLe2MOPMeWeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8GBRK7YqJ12DV1eLe2MOPMeWeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2253 (0x8cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4543, serialNumber=FBC18144AED8A89D760D5D5E2DED8C38F31E59E0 Validity Not Before: May 20 21:25:00 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a0e26ac-ee85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:89:b3:69:b2:fe:e8:16:11:aa:fa:d4:78:56: 22:6d:9d:e7:8c:6d:73:5c:3c:6d:ab:7d:96:cd:47: f3:94:52:79:05:a6:ab:fa:d4:1f:9f:c9:e1:16:2c: 3f:ba:dc:3a:b7:f2:ec:c6:51:75:00:e1:ae:b4:72: 4b:29:67:ba:3f:50:b8:da:fa:60:dd:2c:c8:72:fc: 46:46:66:9b:02:7a:62:3e:a3:0b:6a:c6:58:98:43: 69:be:4e:9b:ed:0c:a0:b1:95:e0:bb:fd:8b:1b:bc: e0:58:c5:ee:d7:fc:8a:b8:a4:d0:3b:d5:86:f2:b8: 29:88:d5:e4:aa:bc:72:a3:17:cf:3d:10:7f:e3:80: ac:46:2b:35:eb:82:ee:b7:6c:de:17:bc:a0:51:10: bd:ee:17:af:9c:02:bb:b4:3e:01:ad:29:ec:79:28: 7f:71:d1:78:84:f8:98:ad:1d:e1:68:30:8e:62:83: 74:cb:51:02:d4:55:67:74:2c:23:ab:80:92:e2:9d: c3:18:e1:9a:5e:35:7e:7d:3c:4d:49:1f:17:d0:aa: 08:e7:90:bb:ed:66:55:e6:85:a6:fb:2a:25:c8:ae: a7:c0:ca:e2:0a:33:97:1f:42:54:38:eb:76:67:cb: ed:42:0c:17:07:36:ba:1a:f1:0f:8f:82:99:aa:1c: 81:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:04:00:67:FD:85:93:64:A2:36:AB:87:93:46:73:E6:32:A5:D9:D6 X509v3 Authority Key Identifier: keyid:FB:C1:81:44:AE:D8:A8:9D:76:0D:5D:5E:2D:ED:8C:38:F3:1E:59:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/-8GBRK7YqJ12DV1eLe2MOPMeWeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8GBRK7YqJ12DV1eLe2MOPMeWeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4543/57EF9F6CDD1A11EA8A439F13C4F9AE02/B3C41A60DD1B11EAAC9A0915C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.78.0/24 IPv6: 2001:df3:ff80::/48 Signature Algorithm: sha256WithRSAEncryption 0d:5d:fa:f4:2e:d6:9d:ac:e3:bf:02:3d:29:99:21:45:fb:81: aa:4e:40:98:fd:bd:78:2d:bf:1f:ed:85:84:d5:86:13:00:a8: d3:d1:6a:ff:d2:01:6c:09:e6:af:08:4e:9b:3f:af:2d:2c:bf: 99:4b:e4:ea:6d:66:9d:4f:83:f3:6b:7f:d7:dd:fc:de:dc:c0: 01:04:21:eb:05:ec:89:27:66:cd:d9:07:ea:d5:19:8d:4f:5a: 06:51:f9:24:08:b4:4c:62:cd:51:56:2b:5c:87:9f:ce:de:0e: 6d:8f:61:32:aa:c6:1e:0c:d9:12:ab:fa:ca:35:5e:50:73:a1: 16:f1:c0:81:37:10:a4:f3:6f:7b:26:68:2e:b3:7c:23:5b:7c: 85:7f:a9:51:b7:54:32:70:13:a4:6c:fb:94:ce:cf:a2:5a:41: 86:70:11:98:6a:68:a2:43:55:e9:58:f9:df:8a:28:49:8b:d9: dc:1d:c6:bc:2d:f6:f0:cc:56:bb:c8:52:7e:77:6c:d4:7e:ec: 44:40:f1:31:1a:c6:11:f6:e1:be:ef:60:41:58:77:6f:11:dc: f6:37:73:41:3f:cc:7e:b2:c7:ab:ae:bd:94:40:5c:72:ca:dd: 14:4e:af:a4:7b:99:09:6b:6d:88:6c:9e:78:bb:91:34:8b:49: b5:9c:77:87 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1NDMxMTAvBgNVBAUTKEZCQzE4MTQ0QUVEOEE4OUQ3NjBENUQ1RTJERUQ4QzM4 RjMxRTU5RTAwHhcNMjYwNTIwMjEyNTAwWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlMjZhYy1lZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYmzabL+6BYRqvrUeFYibZ3njG1zXDxtq32WzUfzlFJ5Baar+tQfn8nhFiw/ utw6t/LsxlF1AOGutHJLKWe6P1C42vpg3SzIcvxGRmabAnpiPqMLasZYmENpvk6b 7QygsZXgu/2LG7zgWMXu1/yKuKTQO9WG8rgpiNXkqrxyoxfPPRB/44CsRis164Lu t2zeF7ygURC97hevnAK7tD4BrSnseSh/cdF4hPiYrR3haDCOYoN0y1EC1FVndCwj q4CS4p3DGOGaXjV+fTxNSR8X0KoI55C77WZV5oWm+yolyK6nwMriCjOXH0JUOOt2 Z8vtQgwXBza6GvEPj4KZqhyB5QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEoEAGf9 hZNkojarh5NGc+YypdnWMB8GA1UdIwQYMBaAFPvBgUSu2Kiddg1dXi3tjDjzHlng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU0My81N0VGOUY2Q0RE MUExMUVBOEE0MzlGMTNDNEY5QUUwMi8tOEdCUks3WXFKMTJEVjFlTGUyTU9QTWVX ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy04R0JSSzdZcUoxMkRWMWVMZTJNT1BNZVdlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1NDMvNTdFRjlGNkNERDFBMTFFQThBNDM5RjEzQzRGOUFFMDIvQjNDNDFBNjBE RDFCMTFFQUFDOUEwOTE1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5hOMA8EAgACMAkDBwAgAQ3z/4AwDQYJKoZIhvcNAQELBQADggEB AA1d+vQu1p2s478CPSmZIUX7gapOQJj9vXgtvx/thYTVhhMAqNPRav/SAWwJ5q8I Tps/ry0sv5lL5OptZp1Pg/Nrf9fd/N7cwAEEIesF7IknZs3ZB+rVGY1PWgZR+SQI tExizVFWK1yHn87eDm2PYTKqxh4M2RKr+so1XlBzoRbxwIE3EKTzb3smaC6zfCNb fIV/qVG3VDJwE6Rs+5TOz6JaQYZwEZhqaKJDVelY+d+KKEmL2dwdxrwt9vDMVrvI Un53bNR+7ERA8TEaxhH24b7vYEFYd28R3PY3c0E/zH6yx6uuvZRAXHLK3RROr6R7 mQlrbYhsnni7kTSLSbWcd4c= -----END CERTIFICATE-----Generated at Thu May 21 10:22:55 2026 by rpki-client