$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/696C3B64601911F199D5DDD08B47A888.roa File: 696C3B64601911F199D5DDD08B47A888.roa (raw, json) Hash identifier: lUoL4TbRFjklgXe87UNU37QHV3PMM+nMTQlfjXJsMsU= Subject key identifier: 8C:D6:06:FB:0D:2E:E8:DD:3B:BB:C7:69:D9:1B:99:08:0B:34:EB:06 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0C62 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/696C3B64601911F199D5DDD08B47A888.roa Signing time: Thu 04 Jun 2026 13:29:28 +0000 ROA not before: Thu 04 Jun 2026 13:29:28 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 216138 IP address blocks: 43.239.104.0/24 maxlen: 24 43.239.105.0/24 maxlen: 24 45.124.204.0/24 maxlen: 24 45.124.205.0/24 maxlen: 24 45.124.206.0/24 maxlen: 24 45.124.207.0/24 maxlen: 24 103.25.100.0/24 maxlen: 24 103.25.101.0/24 maxlen: 24 103.25.102.0/24 maxlen: 24 103.25.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 18:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Jun 4 13:29:28 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6a217db8-cd56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:66:6b:d1:bf:b7:15:68:b0:e1:4f:8f:58:48: d6:e2:c3:fd:f1:dc:52:2f:6c:16:8f:71:c3:08:1c: 18:66:41:9b:7c:90:cb:f4:d4:43:2a:3c:d7:b2:e2: 01:eb:8f:74:bb:4f:06:5d:8a:c7:f5:61:0c:ea:95: 2a:39:e6:fe:99:97:72:dc:21:95:8f:b9:6b:0a:62: 3f:8a:ae:7f:02:15:e4:01:46:3a:06:d7:eb:da:a3: 02:91:5e:92:71:c6:85:86:1e:cb:e4:e3:0e:23:d0: b7:c6:8b:d6:83:98:12:3e:b6:df:86:a8:63:7c:96: 2a:f3:3e:b9:c1:e4:1f:7e:52:b4:b8:ea:fb:ac:ae: 6b:cf:2c:a4:5c:79:d0:52:5c:e9:94:c0:f6:a8:b5: 3a:e1:09:7d:10:2a:62:ed:4f:bc:72:68:3c:0e:a3: a3:86:f5:5f:09:e8:0a:83:ee:7c:f3:00:ba:74:07: a8:ba:9d:78:2a:84:4c:d4:aa:c2:29:ce:0a:37:d3: 21:48:12:46:73:f5:f9:e6:fe:f4:6f:47:f0:20:bc: 93:a4:f1:bc:b7:87:c8:c8:10:bc:dd:97:d7:fc:a1: d1:3d:f7:9c:6c:0e:05:5d:0d:a8:18:18:56:19:b1: 46:9e:d8:e9:ec:dc:17:f0:88:29:35:0e:9e:4d:a9: c5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D6:06:FB:0D:2E:E8:DD:3B:BB:C7:69:D9:1B:99:08:0B:34:EB:06 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/696C3B64601911F199D5DDD08B47A888.roa sbgp-ipAddrBlock: critical IPv4: 43.239.104.0/23 45.124.204.0/22 103.25.100.0/22 Signature Algorithm: sha256WithRSAEncryption 55:21:e9:81:e1:3a:ee:b6:aa:06:ef:d7:a2:0a:d2:01:8d:6e: 25:61:7b:05:5c:9b:22:f3:39:80:59:f6:96:6f:9c:09:a1:aa: e8:2f:1b:ea:7d:04:12:f6:ce:11:fd:19:17:05:8a:3a:23:27: b1:ad:f2:ab:09:0a:da:76:f4:af:9d:f4:11:18:5e:9f:a5:9c: 4f:33:fa:2e:3b:02:41:45:61:91:dd:a4:cc:28:6d:ad:64:e1: 7d:6e:9f:4b:38:a8:50:6d:95:9f:b3:2b:b3:9b:d6:30:f9:2f: 8c:2f:32:5d:47:69:49:6c:97:c3:eb:14:c6:8f:c2:05:c4:05: 5b:ae:82:34:11:93:8e:ac:47:37:71:d0:5a:a3:02:17:2f:07: 46:c8:53:89:d1:db:80:2c:6a:c3:93:c2:a9:60:f4:54:90:38: 2d:7d:58:1d:b8:b4:b5:76:6c:f9:da:4e:f1:10:0b:46:05:50: 94:71:9a:e1:f0:91:8e:2a:9b:9c:90:ba:f8:53:8b:bb:0e:14: e3:01:e3:b3:29:61:17:be:59:c0:e6:47:9e:45:aa:a1:5f:01: cd:89:cf:6d:99:5c:b2:94:ab:88:65:d3:a1:da:66:00:43:a3: 74:ea:8a:15:c6:ad:b6:50:5c:b8:1b:61:5a:e2:76:37:fc:7e: 05:cc:c0:4f -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjYwNjA0MTMyOTI4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxN2RiOC1jZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2Zr0b+3FWiw4U+PWEjW4sP98dxSL2wWj3HDCBwYZkGbfJDL9NRDKjzXsuIB 6490u08GXYrH9WEM6pUqOeb+mZdy3CGVj7lrCmI/iq5/AhXkAUY6Btfr2qMCkV6S ccaFhh7L5OMOI9C3xovWg5gSPrbfhqhjfJYq8z65weQfflK0uOr7rK5rzyykXHnQ UlzplMD2qLU64Ql9ECpi7U+8cmg8DqOjhvVfCegKg+588wC6dAeoup14KoRM1KrC Kc4KN9MhSBJGc/X55v70b0fwILyTpPG8t4fIyBC83ZfX/KHRPfecbA4FXQ2oGBhW GbFGntjp7NwX8IgpNQ6eTanFqwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFIzWBvsN LujdO7vHadkbmQgLNOsGMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvNjk2QzNCNjQ2 MDE5MTFGMTk5RDVEREQwOEI0N0E4ODgucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBK+9oAwQCLXzMAwQCZxlkMA0GCSqGSIb3DQEBCwUAA4IBAQBVIemB 4TrutqoG79eiCtIBjW4lYXsFXJsi8zmAWfaWb5wJoaroLxvqfQQS9s4R/RkXBYo6 IyexrfKrCQradvSvnfQRGF6fpZxPM/ouOwJBRWGR3aTMKG2tZOF9bp9LOKhQbZWf syuzm9Yw+S+MLzJdR2lJbJfD6xTGj8IFxAVbroI0EZOOrEc3cdBaowIXLwdGyFOJ 0duALGrDk8KpYPRUkDgtfVgduLS1dmz52k7xEAtGBVCUcZrh8JGOKpuckLr4U4u7 DhTjAeOzKWEXvlnA5keeRaqhXwHNic9tmVyylKuIZdOh2mYAQ6N06ooVxq22UFy4 G2Fa4nY3/H4FzMBP -----END CERTIFICATE-----Generated at Sat Jun 6 13:33:01 2026 by rpki-client