$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/4FFFD8D41D7211EFA095B25AC4F9AE02.roa File: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (raw, json) Hash identifier: 0xEtLNXzgQLI5eu4N0PHbVDzi3ImrQGP3QrG+KX9gfw= Subject key identifier: 72:DD:2E:A3:A7:B2:E7:C7:83:7C:F1:E4:9E:14:C7:B4:35:FD:E7:43 Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: 0188 Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/4FFFD8D41D7211EFA095B25AC4F9AE02.roa Signing time: Sat 23 May 2026 05:36:20 +0000 ROA not before: Sat 23 May 2026 05:36:20 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 152730 IP address blocks: 203.14.108.0/24 maxlen: 24 2001:df0:c340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: May 23 05:36:20 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a113cd4-8e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:12:dd:59:a9:a0:33:c5:45:5a:7a:12:54:09: da:69:ff:73:ce:f6:9c:ce:00:92:d5:fc:1f:2f:a6: 00:ee:13:e8:dd:8d:80:30:a0:6d:c5:d0:9e:32:b2: b4:58:4d:1c:68:a6:5d:db:37:d2:a0:67:fe:e0:5a: f1:62:36:55:9d:1d:8c:2f:cf:2a:bf:87:ad:b6:45: 68:7f:87:74:a3:43:7c:c2:76:e6:f5:c3:43:72:3f: c8:d3:31:7b:c6:aa:da:c3:6e:14:44:0c:1f:7c:54: e6:0a:af:e2:84:e5:b0:e3:f5:b9:29:bb:67:0f:1c: c9:2f:65:3b:d2:d7:98:82:ed:24:24:ab:6d:5e:dc: 91:4f:75:c0:ab:23:a9:31:da:1e:d4:4f:2e:27:f6: 3b:0d:50:47:02:b7:0b:fd:6e:59:d5:fd:91:a7:b2: 13:7d:3d:83:89:76:98:63:19:fb:ea:ae:1d:1c:ce: 54:f5:46:d1:b3:43:fc:df:6f:be:a5:0d:40:1e:94: c1:c3:62:03:6c:99:78:f1:8d:7d:70:ec:1b:e3:49: 98:96:b1:a3:37:e1:5a:93:48:b4:1b:9e:05:d6:90: 0c:4e:6b:e4:46:c5:68:06:af:1f:f3:6d:38:db:e9: 29:25:6d:89:09:94:fc:5e:18:76:5c:cb:cd:d4:90: f7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DD:2E:A3:A7:B2:E7:C7:83:7C:F1:E4:9E:14:C7:B4:35:FD:E7:43 X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/4FFFD8D41D7211EFA095B25AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.14.108.0/24 IPv6: 2001:df0:c340::/48 Signature Algorithm: sha256WithRSAEncryption 2c:84:34:38:af:a9:95:64:e5:37:b4:60:2e:e3:d2:32:d9:5e: 0b:2a:be:3b:e9:cf:8a:e5:37:c8:13:9b:1f:ec:af:d5:b2:aa: 59:dc:d4:c4:0c:76:7d:51:53:46:7e:33:32:71:e3:29:d2:7d: bc:c1:d6:29:70:af:52:48:5c:0a:e3:be:e0:ad:b7:e2:38:ef: 42:ce:e4:90:d3:60:26:ff:fb:e9:0e:34:06:99:c9:61:39:78: 35:6a:c8:f7:37:a1:f2:ca:48:70:db:c7:bc:4d:6b:c9:be:ae: ed:97:68:a8:7b:61:ad:c3:f9:e8:9f:32:c4:f0:e7:5b:0e:7f: 25:5f:8c:9c:85:32:15:59:c3:6d:b8:f6:9a:ae:89:bf:5d:59: 9f:f6:fc:55:e4:7c:55:86:32:ca:ad:b2:f6:7d:16:28:4f:cd: 60:c1:55:80:a2:cb:bb:a6:ac:ad:3a:8b:30:70:95:ad:b8:da: 7a:a7:68:4a:9e:d1:0a:e9:37:ad:c4:83:84:ae:45:28:f0:02: ae:ee:f2:ec:00:74:2e:46:40:80:81:9a:b3:30:50:1f:fd:c2: b6:54:bd:96:32:71:39:8b:1c:eb:6e:9a:ba:3d:e8:8a:84:f3: ab:7c:81:83:7f:5b:5b:c0:57:35:5d:cb:1d:fe:cc:4f:f6:48: bd:b2:c1:88 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjYwNTIzMDUzNjIwWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTExM2NkNC04ZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BLdWamgM8VFWnoSVAnaaf9zzvaczgCS1fwfL6YA7hPo3Y2AMKBtxdCeMrK0 WE0caKZd2zfSoGf+4FrxYjZVnR2ML88qv4ettkVof4d0o0N8wnbm9cNDcj/I0zF7 xqraw24URAwffFTmCq/ihOWw4/W5KbtnDxzJL2U70teYgu0kJKttXtyRT3XAqyOp Mdoe1E8uJ/Y7DVBHArcL/W5Z1f2Rp7ITfT2DiXaYYxn76q4dHM5U9UbRs0P832++ pQ1AHpTBw2IDbJl48Y19cOwb40mYlrGjN+Fak0i0G54F1pAMTmvkRsVoBq8f8204 2+kpJW2JCZT8Xhh2XMvN1JD3nwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHLdLqOn sufHg3zx5J4Ux7Q1/edDMB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAzRkMvQzdCMDkzNTYxRDcxMTFFRjk1RTI2ODQwQzRGOUFFMDIvNEZGRkQ4RDQx RDcyMTFFRkEwOTVCMjVBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyw5sMA8EAgACMAkDBwAgAQ3ww0AwDQYJKoZIhvcNAQELBQADggEB ACyENDivqZVk5Te0YC7j0jLZXgsqvjvpz4rlN8gTmx/sr9Wyqlnc1MQMdn1RU0Z+ MzJx4ynSfbzB1ilwr1JIXArjvuCtt+I470LO5JDTYCb/++kONAaZyWE5eDVqyPc3 ofLKSHDbx7xNa8m+ru2XaKh7Ya3D+eifMsTw51sOfyVfjJyFMhVZw2249pquib9d WZ/2/FXkfFWGMsqtsvZ9FihPzWDBVYCiy7umrK06izBwla242nqnaEqe0QrpN63E g4SuRSjwAq7u8uwAdC5GQICBmrMwUB/9wrZUvZYycTmLHOtumro96IqE86t8gYN/ W1vAVzVdyx3+zE/2SL2ywYg= -----END CERTIFICATE-----Generated at Tue Jun 2 22:09:27 2026 by rpki-client