$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa File: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (raw, json) Hash identifier: ya+5X2X8zd4MO/3KegCTLB9V6NcmJXOYCWI69T9MPig= Subject key identifier: 71:6D:9B:1D:40:60:D9:AF:76:35:88:4D:7E:69:50:CE:09:05:71:86 Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 06EE Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa Signing time: Mon 20 Apr 2026 22:28:57 +0000 ROA not before: Mon 20 Apr 2026 22:28:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142008 IP address blocks: 103.164.158.0/24 maxlen: 24 103.173.38.0/24 maxlen: 24 2001:df6:4c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA, serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Validity Not Before: Apr 20 22:28:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e6a8a9-af2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cf:93:bd:08:2d:1c:b1:9b:e7:34:97:3c:29: d2:ce:a9:45:75:71:68:7e:2a:7b:3f:c8:ae:f4:83: d1:14:25:08:d6:76:2f:6f:de:d5:2a:74:4c:af:c9: 48:d9:5e:8b:55:37:60:52:fc:ce:f1:06:2a:06:50: 08:9a:aa:1d:98:43:33:a6:30:b5:16:96:73:2a:13: 8f:4d:75:9e:b0:0f:6d:51:a6:56:57:63:77:fc:15: 94:dc:26:da:18:1b:b4:76:e9:b4:8b:7a:75:3e:73: 26:63:a1:9a:af:8e:2d:de:e3:f5:63:91:a4:2f:6d: dc:22:ee:62:01:bb:eb:93:90:a5:4a:8b:be:1b:43: 89:32:d7:27:28:e9:57:6a:73:7c:7d:88:ed:a5:1a: 19:67:b8:a7:75:60:bd:7c:75:05:ad:e9:a1:40:01: c8:bb:ea:1e:1b:6d:89:cc:1b:98:4a:e4:e3:0c:f4: 05:56:18:5a:eb:37:90:00:6e:54:71:07:21:cb:da: 38:18:01:3f:d0:e6:ed:c5:5a:60:be:65:ae:80:34: 42:99:d7:e1:de:a4:c6:10:cc:ea:7f:eb:fe:7a:dd: cc:cf:99:11:b4:6c:0b:3b:34:07:08:3c:c3:fa:dd: ed:40:c9:4a:6c:5f:96:06:fc:d6:14:03:6c:c7:1f: 78:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6D:9B:1D:40:60:D9:AF:76:35:88:4D:7E:69:50:CE:09:05:71:86 X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.164.158.0/24 103.173.38.0/24 IPv6: 2001:df6:4c80::/48 Signature Algorithm: sha256WithRSAEncryption 76:97:e5:64:29:7c:41:65:9d:0d:1a:9b:85:7d:0e:43:26:81: 35:36:5c:49:5b:cd:f4:73:a1:70:ca:f5:d0:bd:dd:df:be:19: 92:27:d5:0e:e2:98:d7:82:6c:53:0d:6a:87:3e:1a:e2:09:4f: f6:c4:54:e9:31:65:ad:b9:35:08:66:e4:e0:14:1f:d7:53:a8: 1d:be:11:49:94:c5:d1:e6:83:79:72:e3:54:9a:20:61:ac:30: a8:a8:bf:87:5a:60:52:fc:d8:18:32:f2:c9:15:dd:c8:8e:4a: 4b:b7:44:16:76:44:73:c2:6b:52:05:b5:83:91:9f:b5:9d:ed: f8:31:6b:23:16:28:37:9e:41:a4:e5:9e:fd:22:13:4c:d8:18: 6f:ed:63:ac:fa:a5:20:ef:22:37:2a:bb:7c:cb:0c:21:ff:b7: 70:69:9e:59:f6:2e:6c:ef:91:7a:11:7e:ed:b7:c9:60:18:01: 31:e0:0f:ba:c2:61:83:21:72:4b:5c:7d:42:f5:26:d9:81:c4: eb:a7:f7:f7:a2:2a:17:70:6e:b1:d3:4b:89:0f:c3:d7:1c:fd: 69:b7:7b:92:fd:63:8d:fc:e4:51:d3:aa:ad:12:48:20:5a:d7: fb:58:ba:6b:46:ad:8d:28:cf:03:c8:66:ca:48:b6:d1:db:82: ff:f9:de:74 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjYwNDIwMjIyODU3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2YThhOS1hZjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss+TvQgtHLGb5zSXPCnSzqlFdXFofip7P8iu9IPRFCUI1nYvb97VKnRMr8lI 2V6LVTdgUvzO8QYqBlAImqodmEMzpjC1FpZzKhOPTXWesA9tUaZWV2N3/BWU3Cba GBu0dum0i3p1PnMmY6Gar44t3uP1Y5GkL23cIu5iAbvrk5ClSou+G0OJMtcnKOlX anN8fYjtpRoZZ7indWC9fHUFremhQAHIu+oeG22JzBuYSuTjDPQFVhha6zeQAG5U cQchy9o4GAE/0ObtxVpgvmWugDRCmdfh3qTGEMzqf+v+et3Mz5kRtGwLOzQHCDzD +t3tQMlKbF+WBvzWFANsxx94XQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFHFtmx1A YNmvdjWITX5pUM4JBXGGMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFQkEvODM5NEUyNTA5MUVBMTFFQkFBREJGOTJGQzRGOUFFMDIvQTE0QkRDRTQ5 MUVCMTFFQkFEN0ExNTMwQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ6SeAwQAZ60mMA8EAgACMAkDBwAgAQ32TIAwDQYJKoZIhvcNAQEL BQADggEBAHaX5WQpfEFlnQ0am4V9DkMmgTU2XElbzfRzoXDK9dC93d++GZIn1Q7i mNeCbFMNaoc+GuIJT/bEVOkxZa25NQhm5OAUH9dTqB2+EUmUxdHmg3ly41SaIGGs MKiov4daYFL82Bgy8skV3ciOSku3RBZ2RHPCa1IFtYORn7Wd7fgxayMWKDeeQaTl nv0iE0zYGG/tY6z6pSDvIjcqu3zLDCH/t3Bpnln2LmzvkXoRfu23yWAYATHgD7rC YYMhcktcfUL1JtmBxOun9/eiKhdwbrHTS4kPw9cc/Wm3e5L9Y4385FHTqq0SSCBa 1/tYumtGrY0ozwPIZspIttHbgv/53nQ= -----END CERTIFICATE-----Generated at Thu May 21 11:14:44 2026 by rpki-client