$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/488DBEDE508011F1A55F3568A4833773.roa File: 488DBEDE508011F1A55F3568A4833773.roa (raw, json) Hash identifier: 0IdhV/KCNA/ojcwThaYzEeluJBUJZFZ2dd7XnSYNWPA= Subject key identifier: FC:82:EB:D2:51:62:1C:31:50:FF:9A:E4:92:06:8C:5D:79:97:5F:5D Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 04B9 Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/488DBEDE508011F1A55F3568A4833773.roa Signing time: Mon 18 May 2026 07:48:25 +0000 ROA not before: Mon 18 May 2026 07:48:25 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 149513 IP address blocks: 103.181.164.0/23 maxlen: 23 103.181.164.0/24 maxlen: 24 103.181.165.0/24 maxlen: 24 2400:5a60::/32 maxlen: 32 2400:5a60::/48 maxlen: 48 2400:5a60:3::/48 maxlen: 48 2400:5a60:4::/48 maxlen: 48 2400:5a60:5::/48 maxlen: 48 2400:5a60:6::/48 maxlen: 48 2400:5a60:7::/48 maxlen: 48 2400:5a60:8::/48 maxlen: 48 2400:5a60:9::/48 maxlen: 48 2400:5a60:ff::/48 maxlen: 48 2400:5a60:8000::/48 maxlen: 48 2400:5a60:fe00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 23:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: May 18 07:48:25 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a0ac449-16e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c0:49:f3:73:ed:3b:09:96:c1:be:1d:16:30: 56:5a:37:6a:7d:33:14:35:13:4c:d2:23:1c:f1:03: 6a:51:35:77:9e:0b:f2:0a:a3:05:06:1e:bc:87:72: da:ae:59:2e:b2:4c:c7:3f:93:8a:f7:20:93:6d:ce: 0c:a3:89:ac:7b:a3:6f:38:7d:79:b2:19:06:f1:78: 04:54:07:da:58:43:94:08:7b:b6:21:ce:e6:8f:46: 1d:98:80:8a:3e:3f:e3:7d:cb:61:dd:a5:f8:77:73: 1a:18:ab:6e:1b:77:5d:4e:07:be:0e:29:37:ec:bb: 34:b2:c7:06:18:cd:ef:44:62:3e:48:4b:c3:6a:bf: 0a:02:b2:95:3d:f9:77:5c:5f:6b:af:c2:92:cb:76: 6a:21:c4:65:26:fe:ef:de:96:ed:65:b5:97:75:7d: 69:db:88:6e:f0:4a:b9:8e:ae:89:1b:dd:98:4d:8a: 19:e4:48:61:f5:c9:85:6d:9b:44:c0:37:71:b9:4b: 6a:f1:71:4e:28:ec:c3:8f:30:93:d8:2b:a4:e7:0d: 46:43:50:80:e6:b2:e5:29:32:fb:c1:84:e7:bd:a0: 18:f5:f9:a8:8c:81:02:f3:6b:71:9b:8c:22:1b:a4: a1:80:e4:58:87:f6:d8:db:39:66:94:10:99:ff:64: ea:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:82:EB:D2:51:62:1C:31:50:FF:9A:E4:92:06:8C:5D:79:97:5F:5D X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/488DBEDE508011F1A55F3568A4833773.roa sbgp-ipAddrBlock: critical IPv4: 103.181.164.0/23 IPv6: 2400:5a60::/32 Signature Algorithm: sha256WithRSAEncryption 90:72:c5:4f:d4:53:3e:a5:5e:19:f1:62:95:e6:0e:bb:fb:90: 94:12:ab:e0:a4:88:99:d9:6a:b1:cd:83:8c:b9:cd:bf:19:1f: af:c9:b6:59:40:a3:39:c0:3f:3e:dc:fc:52:c8:67:db:65:bd: 61:8d:a9:26:c4:09:5b:de:45:52:99:07:46:77:25:7d:94:7f: 20:79:86:9a:16:e3:56:e8:fb:c0:85:e8:2a:5e:20:30:b4:fc: 71:db:29:d1:3c:2e:b2:ef:87:75:03:86:21:03:dd:d5:3e:ac: 5e:38:b4:dd:29:36:30:e9:2d:a5:a9:e2:09:b4:a0:30:67:21: b8:eb:63:cd:cb:1a:68:da:f9:70:97:36:51:ee:44:8b:90:ce: ad:d7:d1:84:6b:59:55:81:9b:52:62:04:e7:7d:f1:58:d2:19: 7c:15:6e:99:06:94:ce:2e:17:4a:62:ea:0b:9f:6e:2d:5b:a8: 61:75:8c:55:9f:d2:b8:3f:b7:c3:f7:5c:a6:04:87:04:55:cd: e2:12:21:4c:5f:d8:36:84:05:3c:f6:06:fd:f3:76:20:6e:40: d2:53:28:94:71:67:87:ed:d0:aa:76:eb:3f:35:a0:ee:e9:f6: 3c:c5:ff:2d:c5:19:19:e8:53:b7:cd:03:a2:f5:35:58:2d:51: 9c:bb:51:77 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjYwNTE4MDc0ODI1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTBhYzQ0OS0xNmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MBJ83PtOwmWwb4dFjBWWjdqfTMUNRNM0iMc8QNqUTV3ngvyCqMFBh68h3La rlkuskzHP5OK9yCTbc4Mo4mse6NvOH15shkG8XgEVAfaWEOUCHu2Ic7mj0YdmICK Pj/jfcth3aX4d3MaGKtuG3ddTge+Dik37Ls0sscGGM3vRGI+SEvDar8KArKVPfl3 XF9rr8KSy3ZqIcRlJv7v3pbtZbWXdX1p24hu8Eq5jq6JG92YTYoZ5Ehh9cmFbZtE wDdxuUtq8XFOKOzDjzCT2Cuk5w1GQ1CA5rLlKTL7wYTnvaAY9fmojIEC82txm4wi G6ShgORYh/bY2zlmlBCZ/2TqhQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPyC69JR YhwxUP+a5JIGjF15l19dMB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEwMTgvODgzNkZBNjA4RDRDMTFFQzk4OEFFODVEQzRGOUFFMDIvNDg4REJFREU1 MDgwMTFGMUE1NUYzNTY4QTQ4MzM3NzMucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7WkMA0EAgACMAcDBQAkAFpgMA0GCSqGSIb3DQEBCwUAA4IBAQCQ csVP1FM+pV4Z8WKV5g67+5CUEqvgpIiZ2WqxzYOMuc2/GR+vybZZQKM5wD8+3PxS yGfbZb1hjakmxAlb3kVSmQdGdyV9lH8geYaaFuNW6PvAhegqXiAwtPxx2ynRPC6y 74d1A4YhA93VPqxeOLTdKTYw6S2lqeIJtKAwZyG462PNyxpo2vlwlzZR7kSLkM6t 19GEa1lVgZtSYgTnffFY0hl8FW6ZBpTOLhdKYuoLn24tW6hhdYxVn9K4P7fD91ym BIcEVc3iEiFMX9g2hAU89gb983YgbkDSUyiUcWeH7dCqdus/NaDu6fY8xf8txRkZ 6FO3zQOi9TVYLVGcu1F3 -----END CERTIFICATE-----Generated at Tue May 19 09:28:04 2026 by rpki-client