$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa File: 596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa (raw, json) Hash identifier: ZJNhnD1KuiNnZ2YhdNAFUGJ359TyiQ0No8lMRqwYfSw= Subject key identifier: 23:45:B3:D9:F4:E1:05:E6:1D:9F:3D:9B:FC:57:0D:8F:D6:1A:7F:93 Certificate issuer: /CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Certificate serial: 0448 Authority key identifier: DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa Signing time: Fri 03 Apr 2026 00:33:11 +0000 ROA not before: Fri 03 Apr 2026 00:33:11 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135069 IP address blocks: 103.208.140.0/22 maxlen: 22 103.208.140.0/24 maxlen: 24 103.208.141.0/24 maxlen: 24 103.208.142.0/24 maxlen: 24 103.208.143.0/24 maxlen: 24 163.47.109.0/24 maxlen: 24 180.235.104.0/22 maxlen: 22 180.235.104.0/24 maxlen: 24 180.235.105.0/24 maxlen: 24 180.235.106.0/24 maxlen: 24 180.235.107.0/24 maxlen: 24 202.37.108.0/24 maxlen: 24 203.28.247.0/24 maxlen: 24 223.26.24.0/22 maxlen: 22 223.26.24.0/24 maxlen: 24 223.26.25.0/24 maxlen: 24 223.26.26.0/24 maxlen: 24 223.26.27.0/24 maxlen: 24 2404:4880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Validity Not Before: Apr 3 00:33:11 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf0ac7-92a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8c:20:73:73:6a:33:29:89:e2:e5:b9:a2:e7: 25:e0:25:3b:38:34:ba:2d:25:13:06:3f:21:46:14: 02:e9:a8:d5:73:31:8e:a9:13:dc:7f:33:dd:de:a4: 4a:14:3c:29:49:41:2b:f4:db:d7:f4:92:b7:3e:dd: 9d:15:a1:bf:53:5e:e3:2e:98:88:c1:30:62:8f:9f: 24:93:0c:20:52:e0:10:c1:4a:a6:61:37:ce:49:58: 20:94:50:e8:26:26:4c:41:fb:83:cb:5b:26:c5:07: d2:bd:ed:3b:8a:27:65:7d:90:bb:20:bd:8b:31:4e: fe:be:8c:9d:92:cb:a3:47:74:0f:d5:1b:d7:68:af: d3:28:52:66:d2:4f:f6:98:0a:91:e9:09:91:c9:36: 7e:a3:63:4c:76:72:05:55:c7:eb:51:e3:2c:41:37: 5a:a3:22:69:53:73:f7:52:90:81:4c:20:79:d6:b3: 52:49:22:5e:00:af:e8:8b:5e:b5:bf:43:c9:15:55: b1:1b:f0:a3:31:2c:51:e0:1f:7e:54:99:81:65:3b: ee:21:fe:55:c6:ce:03:0e:16:d9:1b:36:f7:41:d7: 51:7d:8e:5d:25:c0:db:7d:ea:f0:bb:15:0e:56:f4: ee:e6:f9:36:7e:72:41:dc:7d:c7:85:75:2e:60:3b: 53:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:45:B3:D9:F4:E1:05:E6:1D:9F:3D:9B:FC:57:0D:8F:D6:1A:7F:93 X509v3 Authority Key Identifier: keyid:DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.208.140.0/22 163.47.109.0/24 180.235.104.0/22 202.37.108.0/24 203.28.247.0/24 223.26.24.0/22 IPv6: 2404:4880::/32 Signature Algorithm: sha256WithRSAEncryption 63:d1:8f:66:38:54:6a:98:2c:dd:8b:c2:4b:bf:39:b8:f5:d2: 0c:06:1d:56:46:ef:43:24:83:0a:3e:da:85:35:05:3e:fe:54: ab:0b:47:05:7a:7c:df:d8:d7:d8:9c:b1:25:9e:a0:af:2f:9f: 07:b2:5c:5d:7d:69:ec:b9:d0:8d:60:ed:df:87:52:03:95:8f: ba:48:03:97:86:68:8a:a6:ae:c7:50:5a:8c:44:32:63:85:c6: 65:44:e0:e0:d9:16:b1:ed:b9:00:e3:9a:d0:99:43:67:12:86: c3:44:7e:54:2d:cb:55:07:74:91:a0:cb:62:ff:ad:e2:3b:e6: c1:97:05:29:2a:dd:d9:7d:f5:ba:fb:98:60:47:f4:a2:5d:99: 38:e2:16:1f:9b:de:2d:74:56:f0:72:a4:68:aa:1e:5b:42:44: 4e:2d:58:be:12:e5:a5:31:e1:32:25:c6:7f:cb:ac:f8:12:fd: 19:ab:4b:32:49:b0:05:40:8e:b0:de:0e:8d:30:2e:72:43:ae: 20:68:01:73:3b:d3:34:28:ba:97:8b:ab:fc:8e:42:85:e3:b5: c2:5f:42:1d:c9:11:6c:09:10:89:69:83:ef:aa:c0:f6:09:3d: 55:82:83:f9:c5:90:55:2d:18:bf:df:06:54:5a:1b:66:72:36: c5:2f:ac:0a -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKEREOEEyQjg4NjU0QzMzNjZGRkU3RkNGNjU1NkE5Nzg2 MDAyQUE2NUIwHhcNMjYwNDAzMDAzMzExWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGFjNy05MmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4wgc3NqMymJ4uW5oucl4CU7ODS6LSUTBj8hRhQC6ajVczGOqRPcfzPd3qRK FDwpSUEr9NvX9JK3Pt2dFaG/U17jLpiIwTBij58kkwwgUuAQwUqmYTfOSVgglFDo JiZMQfuDy1smxQfSve07iidlfZC7IL2LMU7+voydksujR3QP1RvXaK/TKFJm0k/2 mAqR6QmRyTZ+o2NMdnIFVcfrUeMsQTdaoyJpU3P3UpCBTCB51rNSSSJeAK/oi161 v0PJFVWxG/CjMSxR4B9+VJmBZTvuIf5Vxs4DDhbZGzb3QddRfY5dJcDbferwuxUO VvTu5vk2fnJB3H3HhXUuYDtTyQIDAQABo4ICjTCCAokwHQYDVR0OBBYEFCNFs9n0 4QXmHZ89m/xXDY/WGn+TMB8GA1UdIwQYMBaAFN2KK4hlTDNm/+f89lVql4YAKqZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS9FODUzMzgyQzlG MTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0yYl81X3oyVldxWGhnQXFw bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZb3JpR1ZNTTJiXzVfejJWV3FYaGdBcXBscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBQjkvRTg1MzM4MkM5RjEzMTFFQzlFNDVENTcyQzRGOUFFMDIvNTk2Q0NDNEU5 RjE5MTFFQzhGREZFQTdEQzRGOUFFMDIucm9hMEwGCCsGAQUFBwEHAQH/BD0wOzAq BAIAATAkAwQCZ9CMAwQAoy9tAwQCtOtoAwQAyiVsAwQAyxz3AwQC3xoYMA0EAgAC MAcDBQAkBEiAMA0GCSqGSIb3DQEBCwUAA4IBAQBj0Y9mOFRqmCzdi8JLvzm49dIM Bh1WRu9DJIMKPtqFNQU+/lSrC0cFenzf2NfYnLElnqCvL58HslxdfWnsudCNYO3f h1IDlY+6SAOXhmiKpq7HUFqMRDJjhcZlRODg2Rax7bkA45rQmUNnEobDRH5ULctV B3SRoMti/63iO+bBlwUpKt3ZffW6+5hgR/SiXZk44hYfm94tdFbwcqRoqh5bQkRO LVi+EuWlMeEyJcZ/y6z4Ev0Zq0sySbAFQI6w3g6NMC5yQ64gaAFzO9M0KLqXi6v8 jkKF47XCX0IdyRFsCRCJaYPvqsD2CT1VgoP5xZBVLRi/3wZUWhtmcjbFL6wK -----END CERTIFICATE-----Generated at Mon Apr 6 09:52:20 2026 by rpki-client