$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa File: A8A44B84F13511ECB096F867C4F9AE02.roa (raw, json) Hash identifier: wno/Zpmf7krAlEHHQVbLBHpNiXys3vvcREcGQsemRTU= Subject key identifier: 0C:1B:18:29:4C:9F:5F:E2:02:D0:C5:E5:7C:68:A8:60:7B:31:43:C7 Certificate issuer: /CN=A91CDF83/serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Certificate serial: 0388 Authority key identifier: 2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa Signing time: Fri 29 May 2026 01:30:59 +0000 ROA not before: Fri 29 May 2026 01:30:59 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 133012 IP address blocks: 103.187.10.0/24 maxlen: 24 103.187.11.0/24 maxlen: 24 2400:7860:100::/40 maxlen: 40 2400:7860:200::/40 maxlen: 40 2400:7860:200::/48 maxlen: 48 2400:7860:200:1::/64 maxlen: 64 2400:7860:300::/40 maxlen: 40 2400:7860:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 01:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 904 (0x388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDF83, serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Validity Not Before: May 29 01:30:59 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a18ec53-81da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fa:ee:1c:15:2a:85:b1:36:74:c9:39:d8:fb: a9:62:29:07:f1:27:81:76:c6:68:89:bc:85:02:b6: 18:e3:94:e0:4d:9d:84:aa:d8:8d:eb:8b:43:39:4b: 0f:21:cc:7f:04:24:d4:da:89:00:84:17:b5:03:ef: 6f:38:8e:49:2c:3e:73:8c:0e:29:d6:9c:f0:e4:2a: e8:58:e3:6f:27:7c:8f:c3:51:84:c4:e7:c3:15:f0: 33:40:bd:28:ac:1c:ca:23:1c:6e:1f:16:ab:3f:8e: 82:26:38:aa:a0:e2:57:4d:3f:53:ad:57:ee:81:41: 88:72:b4:81:25:08:26:53:47:c9:78:85:e4:68:17: b9:dc:74:95:15:2c:56:8f:2e:ed:b1:7c:7e:3f:d0: d0:51:a4:3f:59:f6:09:09:8d:30:cb:ef:bb:00:52: a6:db:33:55:2f:8f:ed:80:9d:3f:fc:9d:08:1e:90: 52:12:4b:31:c6:e5:08:87:db:cf:10:c9:58:85:80: 1d:95:00:db:0f:a9:74:e5:bc:5a:0e:43:2a:c4:f8: 84:32:9e:80:2f:15:63:b7:0e:29:00:97:56:7c:9f: 71:38:a6:36:5b:85:65:9e:ab:e1:7e:43:d9:22:76: 9e:37:87:0b:18:ad:3d:d0:66:7f:7b:b1:03:d9:fa: 2a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1B:18:29:4C:9F:5F:E2:02:D0:C5:E5:7C:68:A8:60:7B:31:43:C7 X509v3 Authority Key Identifier: keyid:2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.187.10.0/23 IPv6: 2400:7860:100::-2400:7860:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption d7:ec:b9:e5:0b:74:36:34:83:cc:85:53:6c:34:25:f9:e6:33: 8b:52:2c:50:5e:bf:a6:47:27:16:ec:fa:93:8f:ed:a5:e9:c2: ce:2b:9e:77:0f:01:e4:eb:23:2a:3a:b4:ca:0a:4a:79:67:3d: 0e:c9:65:e7:b3:88:41:15:a9:07:1a:c2:1b:c8:15:2a:89:e1: ca:8a:6c:73:99:0e:62:23:2a:53:a1:f3:dc:87:f1:e6:b2:d2: b4:ff:ac:fa:27:83:ec:26:c5:b9:83:6b:b8:25:83:fb:98:7b: 3c:b1:26:6d:a4:d9:ae:cf:d4:99:96:bd:ce:0d:11:be:28:02: 74:28:23:f4:1f:e3:59:af:50:80:06:af:54:fd:a6:c8:5a:70: 2f:78:0a:ff:7b:b3:51:48:9e:9c:83:11:d2:21:c0:66:69:68: 0c:1c:73:a3:c1:b3:d6:dd:7d:e6:a8:3d:b4:40:c0:fd:21:4a: 06:f7:52:88:96:e5:04:9a:04:92:98:45:0c:9d:07:a3:17:6d: e8:70:03:c3:1b:40:43:7a:4f:d6:5c:d1:21:16:00:79:06:33: c7:d6:87:06:e3:13:f9:de:aa:cb:ff:e1:b9:06:04:c8:6f:00: 80:a4:00:f9:7f:fc:06:a3:2c:0f:2b:fa:ea:4c:2a:a2:23:50: 49:ca:6a:6f -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGODMxMTAvBgNVBAUTKDJFRjg3NkE2NjRFNUQ4QjZDREUwMUNGMDg0MTBEQkFE OTZCQzQ5OTgwHhcNMjYwNTI5MDEzMDU5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE4ZWM1My04MWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvruHBUqhbE2dMk52PupYikH8SeBdsZoibyFArYY45TgTZ2EqtiN64tDOUsP Icx/BCTU2okAhBe1A+9vOI5JLD5zjA4p1pzw5CroWONvJ3yPw1GExOfDFfAzQL0o rBzKIxxuHxarP46CJjiqoOJXTT9TrVfugUGIcrSBJQgmU0fJeIXkaBe53HSVFSxW jy7tsXx+P9DQUaQ/WfYJCY0wy++7AFKm2zNVL4/tgJ0//J0IHpBSEksxxuUIh9vP EMlYhYAdlQDbD6l05bxaDkMqxPiEMp6ALxVjtw4pAJdWfJ9xOKY2W4VlnqvhfkPZ InaeN4cLGK090GZ/e7ED2foqSQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFAwbGClM n1/iAtDF5XxoqGB7MUPHMB8GA1UdIwQYMBaAFC74dqZk5di2zeAc8IQQ262WvEmY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREY4My9FMkFFM0IwQUYx MzAxMUVDODZERTdENjNDNEY5QUUwMi9MdmgycG1UbDJMYk40Qnp3aEJEYnJaYThT WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x2aDJwbVRsMkxiTjRCendoQkRiclphOFNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RGODMvRTJBRTNCMEFGMTMwMTFFQzg2REU3RDYzQzRGOUFFMDIvQThBNDRCODRG MTM1MTFFQ0IwOTZGODY3QzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQBZ7sKMBgEAgACMBIwEAMGACQAeGABAwYAJAB4YAQwDQYJKoZIhvcN AQELBQADggEBANfsueULdDY0g8yFU2w0JfnmM4tSLFBev6ZHJxbs+pOP7aXpws4r nncPAeTrIyo6tMoKSnlnPQ7JZeeziEEVqQcawhvIFSqJ4cqKbHOZDmIjKlOh89yH 8eay0rT/rPong+wmxbmDa7glg/uYezyxJm2k2a7P1JmWvc4NEb4oAnQoI/Qf41mv UIAGr1T9pshacC94Cv97s1FInpyDEdIhwGZpaAwcc6PBs9bdfeaoPbRAwP0hSgb3 UoiW5QSaBJKYRQydB6MXbehwA8MbQEN6T9Zc0SEWAHkGM8fWhwbjE/neqsv/4bkG BMhvAICkAPl//AajLA8r+upMKqIjUEnKam8= -----END CERTIFICATE-----Generated at Tue Jun 2 21:29:56 2026 by rpki-client