$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa File: 61663178F88311EDB1DF555DC4F9AE02.roa (raw, json) Hash identifier: PuTCy1j2kY0efiD1YhR+ZjFpX3lOMiTpAMmjoCpbe1o= Subject key identifier: 8A:3F:30:85:86:3A:F8:9D:0E:AC:6B:8F:99:F6:CA:63:99:B5:47:56 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 0274 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa Signing time: Sat 23 May 2026 10:24:49 +0000 ROA not before: Sat 23 May 2026 10:24:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 56309 IP address blocks: 43.229.148.0/22 maxlen: 24 43.249.32.0/23 maxlen: 24 103.13.28.0/22 maxlen: 24 103.40.118.0/23 maxlen: 24 103.99.11.0/24 maxlen: 24 103.107.52.0/22 maxlen: 24 103.114.201.0/24 maxlen: 24 103.114.203.0/24 maxlen: 24 103.117.148.0/22 maxlen: 24 103.224.84.0/22 maxlen: 24 117.18.124.0/22 maxlen: 24 119.10.136.0/21 maxlen: 24 199.21.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:17:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: May 23 10:24:49 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6a118071-e7b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4c:96:dd:9f:f1:d3:82:a2:27:2f:39:57:13: 3b:6c:5e:59:a2:f8:3c:50:8e:aa:06:4f:72:75:50: 16:7d:cf:f5:b4:ff:37:c6:eb:f9:50:2c:0c:d8:90: fc:bf:f7:86:20:e0:60:f5:7d:73:78:46:11:0f:39: ce:4e:5d:99:90:8e:fd:5e:a7:19:fb:36:17:33:9c: be:e7:18:e1:7b:9e:49:cf:6b:eb:7c:01:f6:2c:75: 24:75:f5:80:36:36:90:8f:f9:c3:62:cd:aa:84:83: 84:c2:9d:46:dd:67:70:18:b7:0c:18:d2:67:6a:40: 09:2b:6f:75:75:2c:40:7f:5c:70:31:19:86:9f:06: c8:2c:a8:81:22:21:2e:23:9c:76:d6:4a:ee:8c:49: 20:ac:b4:b7:f0:46:60:60:47:c1:01:19:54:ae:25: d8:26:f0:ab:26:a6:16:8d:0c:bd:05:13:50:01:e7: 9b:6a:9a:1f:d3:31:68:92:9b:ef:d5:a0:95:eb:af: 1e:e8:af:87:88:18:fc:19:db:8a:6b:60:ef:65:21: e5:c6:10:e9:4b:4e:02:60:ba:8d:a5:ca:96:15:92: 8e:4e:9e:38:1f:d1:61:40:40:09:22:ac:32:a8:24: 3c:87:45:36:1f:c3:45:76:3e:ac:47:ba:1d:86:c8: 02:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:3F:30:85:86:3A:F8:9D:0E:AC:6B:8F:99:F6:CA:63:99:B5:47:56 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/61663178F88311EDB1DF555DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.229.148.0/22 43.249.32.0/23 103.13.28.0/22 103.40.118.0/23 103.99.11.0/24 103.107.52.0/22 103.114.201.0/24 103.114.203.0/24 103.117.148.0/22 103.224.84.0/22 117.18.124.0/22 119.10.136.0/21 199.21.172.0/22 Signature Algorithm: sha256WithRSAEncryption 73:04:46:7b:7c:88:c8:04:87:03:82:14:d6:f6:a2:15:cb:b7: 56:14:c2:f0:79:4d:1c:15:71:3c:e1:41:df:b4:6f:e8:5b:12: 70:69:69:7c:b4:ed:b7:f3:71:ab:29:36:e2:83:4d:67:01:6d: 4e:14:25:1c:47:1a:b5:b7:8c:af:b7:14:f6:36:d1:f2:c9:c8: cf:5a:b4:60:70:83:27:4f:da:fd:b0:ca:b4:0b:d6:8e:5f:e8: 8c:c0:db:90:89:99:25:bc:72:5e:80:bb:c9:c9:bb:cd:52:3e: 77:0d:19:59:d0:bc:37:af:3d:95:35:18:c0:a4:93:f3:2a:00: bf:73:66:be:be:ec:38:30:26:52:ee:ca:5b:af:25:71:80:d6: df:45:1c:f9:87:c0:af:e6:f0:10:9e:aa:ee:7c:0d:8a:db:e1: b6:52:fc:d2:39:38:62:9b:de:ee:6e:f7:7d:1d:42:e0:47:e4: e3:21:a6:26:4a:10:86:a3:67:b3:38:cd:10:39:b5:b6:ec:d5: 53:35:9e:db:6b:96:1a:88:32:ed:66:ff:1a:96:f0:bc:d3:69: dd:ad:77:f4:bf:8e:10:f7:20:5b:37:4c:4f:08:43:aa:c9:b4: 89:8a:c1:de:53:0a:7a:a4:71:9d:a0:57:43:f4:75:30:97:f4: 8e:47:23:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjYwNTIzMTAyNDQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTExODA3MS1lN2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkyW3Z/x04KiJy85VxM7bF5Zovg8UI6qBk9ydVAWfc/1tP83xuv5UCwM2JD8 v/eGIOBg9X1zeEYRDznOTl2ZkI79XqcZ+zYXM5y+5xjhe55Jz2vrfAH2LHUkdfWA NjaQj/nDYs2qhIOEwp1G3WdwGLcMGNJnakAJK291dSxAf1xwMRmGnwbILKiBIiEu I5x21krujEkgrLS38EZgYEfBARlUriXYJvCrJqYWjQy9BRNQAeebapof0zFokpvv 1aCV668e6K+HiBj8GduKa2DvZSHlxhDpS04CYLqNpcqWFZKOTp44H9FhQEAJIqwy qCQ8h0U2H8NFdj6sR7odhsgCOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIo/MIWG OvidDqxrj5n2ymOZtUdWMB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBOEUvNjFCQUQ4RTBGODdFMTFFRDkwRDg0NDVDQzRGOUFFMDIvNjE2NjMxNzhG ODgzMTFFREIxREY1NTVEQzRGOUFFMDIucm9hMGcGCCsGAQUFBwEHAQH/BFgwVjBU BAIAATBOAwQCK+WUAwQBK/kgAwQCZw0cAwQBZyh2AwQAZ2MLAwQCZ2s0AwQAZ3LJ AwQAZ3LLAwQCZ3WUAwQCZ+BUAwQCdRJ8AwQDdwqIAwQCxxWsMA0GCSqGSIb3DQEB CwUAA4IBAQBzBEZ7fIjIBIcDghTW9qIVy7dWFMLweU0cFXE84UHftG/oWxJwaWl8 tO2383GrKTbig01nAW1OFCUcRxq1t4yvtxT2NtHyycjPWrRgcIMnT9r9sMq0C9aO X+iMwNuQiZklvHJegLvJybvNUj53DRlZ0Lw3rz2VNRjApJPzKgC/c2a+vuw4MCZS 7spbryVxgNbfRRz5h8Cv5vAQnqrufA2K2+G2UvzSOThim97ubvd9HULgR+TjIaYm ShCGo2ezOM0QObW27NVTNZ7ba5YaiDLtZv8alvC802ndrXf0v44Q9yBbN0xPCEOq ybSJisHeUwp6pHGdoFdD9HUwl/SORyP1 -----END CERTIFICATE-----Generated at Thu Jun 4 11:23:30 2026 by rpki-client