$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa File: 8D9A6E1246CC11E8B5408617C4F9AE02.roa (raw, json) Hash identifier: Grz4gOWCLKGg3jX8E5Q+Mf/0iBc7ETHKwCc6/Umw4lQ= Subject key identifier: 0E:4D:60:B4:90:BC:3E:CE:8D:12:03:E7:38:9F:FF:9D:6B:C0:D7:32 Certificate issuer: /CN=A91BE8F6/serialNumber=4A388DAD13DF69C2D0E9EA16B98B0C23358FDB03 Certificate serial: 15DA Authority key identifier: 4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa Signing time: Wed 22 Apr 2026 17:21:21 +0000 ROA not before: Wed 22 Apr 2026 17:21:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9541 IP address blocks: 103.213.108.0/22 maxlen: 24 192.140.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.crl rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5594 (0x15da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE8F6, serialNumber=4A388DAD13DF69C2D0E9EA16B98B0C23358FDB03 Validity Not Before: Apr 22 17:21:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e90391-15b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2a:d9:21:01:99:05:56:dd:15:c2:77:0c:0d: 2b:6c:45:cf:f2:63:ff:68:a1:40:80:aa:2d:4b:6b: 08:b5:77:fd:b7:28:54:0e:f2:00:d4:ff:78:08:c2: 2a:35:e1:f6:b1:3e:0f:47:ce:28:3f:58:ef:a3:c1: a5:e1:96:b7:19:66:67:4b:b7:4e:3d:ce:3c:de:ba: de:92:4c:54:6b:70:71:52:42:21:a5:f8:e6:37:03: 57:33:b6:96:ed:b7:7b:8c:10:8a:14:9e:20:b9:38: 27:57:a5:48:d1:eb:b6:f0:9f:80:29:ae:43:12:74: cf:3d:45:9f:b6:17:71:00:7f:ba:4a:42:67:ee:2d: a6:f6:6e:c1:eb:68:57:d4:d7:03:cc:c4:88:f0:91: 22:a6:01:1f:e9:92:9c:7c:db:21:21:b7:ac:f6:11: 15:62:8c:98:1e:f5:f4:c9:69:d1:55:95:5f:6f:c5: 53:6d:c1:fd:a2:cd:33:a9:e7:71:9f:b9:10:2d:78: bb:e6:64:3f:ce:b0:85:12:38:9d:c4:65:45:3d:93: de:f8:64:6c:7f:df:e0:8e:56:59:f3:05:34:5d:f9: fd:ff:2e:48:01:95:dc:3f:c1:f2:9e:c7:5b:9b:03: 74:38:90:8c:45:ba:4f:b2:46:71:bd:ad:97:a1:97: cd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:4D:60:B4:90:BC:3E:CE:8D:12:03:E7:38:9F:FF:9D:6B:C0:D7:32 X509v3 Authority Key Identifier: keyid:4A:38:8D:AD:13:DF:69:C2:D0:E9:EA:16:B9:8B:0C:23:35:8F:DB:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/SjiNrRPfacLQ6eoWuYsMIzWP2wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SjiNrRPfacLQ6eoWuYsMIzWP2wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE8F6/B26E5F2E46CB11E8842B4B16C4F9AE02/8D9A6E1246CC11E8B5408617C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.213.108.0/22 192.140.144.0/22 Signature Algorithm: sha256WithRSAEncryption 59:27:e1:50:47:1e:24:7d:1f:55:ec:26:cb:8f:1f:95:90:6f: 6c:cb:01:e2:b1:41:df:77:6c:3d:9e:f1:94:00:a6:fe:da:7e: 7a:73:f4:18:61:8f:d1:fc:95:70:2a:bc:07:46:8f:98:77:a1: ee:1b:e8:c5:38:81:3b:01:4c:25:7a:99:84:e4:97:8d:f3:d3: d1:69:f8:60:58:5e:e3:92:d0:00:37:a8:11:4a:20:4b:78:43: b9:7a:4c:3d:33:d4:2f:85:a8:64:5e:b0:ce:97:8b:b6:44:4d: c1:a0:2b:d4:d3:98:82:f4:9b:34:6d:da:88:88:55:82:f5:b6: 0b:16:8b:d2:bd:5e:be:89:38:4c:0c:13:60:da:e3:6e:11:9c: 71:ec:8c:db:bf:f1:76:1d:5f:ed:00:9c:aa:a6:af:05:ff:fe: 1b:ff:78:fa:7f:80:bc:f4:dc:29:a7:35:9c:97:8f:6a:9a:3e: 9e:c2:d9:55:24:b5:5b:76:2b:1d:18:b2:fb:d5:4f:10:71:96: 89:ee:e5:0b:e6:96:a1:ab:43:9c:6e:2e:58:66:4b:33:42:2c: b2:0e:a2:2b:57:0c:97:2f:a3:d5:94:5c:53:09:7b:8f:7a:5d: ef:aa:3c:46:cc:bc:17:79:3c:f4:86:34:76:c8:9e:c9:62:de: 87:aa:fd:59 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICFdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU4RjYxMTAvBgNVBAUTKDRBMzg4REFEMTNERjY5QzJEMEU5RUExNkI5OEIwQzIz MzU4RkRCMDMwHhcNMjYwNDIyMTcyMTIxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU5MDM5MS0xNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyrZIQGZBVbdFcJ3DA0rbEXP8mP/aKFAgKotS2sItXf9tyhUDvIA1P94CMIq NeH2sT4PR84oP1jvo8Gl4Za3GWZnS7dOPc483rrekkxUa3BxUkIhpfjmNwNXM7aW 7bd7jBCKFJ4guTgnV6VI0eu28J+AKa5DEnTPPUWfthdxAH+6SkJn7i2m9m7B62hX 1NcDzMSI8JEipgEf6ZKcfNshIbes9hEVYoyYHvX0yWnRVZVfb8VTbcH9os0zqedx n7kQLXi75mQ/zrCFEjidxGVFPZPe+GRsf9/gjlZZ8wU0Xfn9/y5IAZXcP8Hynsdb mwN0OJCMRbpPskZxva2XoZfNzwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFA5NYLSQ vD7OjRID5zif/51rwNcyMB8GA1UdIwQYMBaAFEo4ja0T32nC0OnqFrmLDCM1j9sD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRThGNi9CMjZFNUYyRTQ2 Q0IxMUU4ODQyQjRCMTZDNEY5QUUwMi9TamlOclJQZmFjTFE2ZW9XdVlzTUl6V1Ay d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NqaU5yUlBmYWNMUTZlb1d1WXNNSXpXUDJ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkU4RjYvQjI2RTVGMkU0NkNCMTFFODg0MkI0QjE2QzRGOUFFMDIvOEQ5QTZFMTI0 NkNDMTFFOEI1NDA4NjE3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9VsAwQCwIyQMA0GCSqGSIb3DQEBCwUAA4IBAQBZJ+FQRx4kfR9V 7CbLjx+VkG9sywHisUHfd2w9nvGUAKb+2n56c/QYYY/R/JVwKrwHRo+Yd6HuG+jF OIE7AUwlepmE5JeN89PRafhgWF7jktAAN6gRSiBLeEO5ekw9M9QvhahkXrDOl4u2 RE3BoCvU05iC9Js0bdqIiFWC9bYLFovSvV6+iThMDBNg2uNuEZxx7Izbv/F2HV/t AJyqpq8F//4b/3j6f4C89NwppzWcl49qmj6ewtlVJLVbdisdGLL71U8QcZaJ7uUL 5pahq0Ocbi5YZkszQiyyDqIrVwyXL6PVlFxTCXuPel3vqjxGzLwXeTz0hjR2yJ7J Yt6Hqv1Z -----END CERTIFICATE-----Generated at Tue May 5 04:56:17 2026 by rpki-client