$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa File: 37D4A3DE20BA11EF9B035D1FC4F9AE02.roa (raw, json) Hash identifier: 58RBvPli9ah74/loscUZOCI8P+BRuK4NwEuZslUtewI= Subject key identifier: 56:3F:1A:F8:31:55:E5:02:AF:F5:27:D6:D3:25:C1:50:BE:28:04:22 Certificate issuer: /CN=A91D3D89/serialNumber=48F96009BCD4CE06CD60D125F0A91B23FEC30360 Certificate serial: 017B Authority key identifier: 48:F9:60:09:BC:D4:CE:06:CD:60:D1:25:F0:A9:1B:23:FE:C3:03:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa Signing time: Thu 21 May 2026 05:36:43 +0000 ROA not before: Thu 21 May 2026 05:36:43 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 152856 IP address blocks: 103.159.210.0/23 maxlen: 24 2001:df3:d140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.crl rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D89, serialNumber=48F96009BCD4CE06CD60D125F0A91B23FEC30360 Validity Not Before: May 21 05:36:43 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a0e99eb-3686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ba:7f:2e:1d:34:06:d9:b2:0d:b8:9a:6a:6d: 21:21:63:4d:32:12:65:05:ed:52:70:d6:b9:08:d3: 6c:13:b8:af:ad:47:b1:a3:bf:16:a8:f9:09:2c:6d: 93:ae:c9:10:de:76:02:01:db:68:8c:5a:5d:fb:c2: d1:c4:f0:ba:67:5b:12:aa:09:0b:87:cf:f3:a3:3b: d2:81:82:e1:93:ee:a1:93:5f:35:0e:97:52:4e:c9: 46:f0:ac:4c:4b:ca:ca:72:d5:e6:df:4a:b7:c7:f6: 19:1d:01:9c:f8:2a:08:0e:5c:10:50:0a:bc:27:0a: c9:01:78:ac:ba:a4:f4:0f:00:7f:cd:c9:9d:e6:70: 5b:bc:cb:b9:0a:80:12:26:67:63:f8:be:8a:ce:40: c8:4b:e5:d9:07:d4:a9:09:a5:3a:8d:f1:cb:27:16: a4:e8:6e:69:52:fc:73:1d:ef:09:bb:56:7e:ca:a6: 5c:0b:04:6a:53:df:9f:80:60:b7:cd:0a:bb:91:62: 98:e6:bd:ce:8c:7c:3c:e3:6b:01:7a:6f:30:06:6a: b4:e5:05:0e:76:cd:d0:29:e1:d2:fd:61:47:8c:f8: 72:a2:9e:dc:95:5e:97:47:4f:fe:93:b2:47:64:41: a6:73:6d:42:74:f2:64:c4:20:0e:6a:45:30:b6:5b: dc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:3F:1A:F8:31:55:E5:02:AF:F5:27:D6:D3:25:C1:50:BE:28:04:22 X509v3 Authority Key Identifier: keyid:48:F9:60:09:BC:D4:CE:06:CD:60:D1:25:F0:A9:1B:23:FE:C3:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.210.0/23 IPv6: 2001:df3:d140::/48 Signature Algorithm: sha256WithRSAEncryption 5c:cb:64:cd:86:c1:cb:74:e8:76:d9:b3:dd:b9:86:8f:ee:a7: d0:fa:df:97:03:b9:25:70:cc:d8:a4:11:ac:6e:c1:ad:e8:77: 45:86:56:7c:e7:44:30:74:5f:0f:b0:05:a1:ea:38:2c:9b:9f: 36:cd:7f:ef:80:c4:db:76:4d:23:18:92:08:1e:4b:2b:29:a5: fe:3c:9c:d6:f2:98:b5:76:6f:02:74:cf:12:0a:d9:30:be:28: de:32:16:26:e2:20:79:a2:27:17:a8:80:93:09:fe:7f:14:c8: c6:ee:49:1c:0a:bd:a8:3a:71:50:a7:e8:5e:1b:3e:f0:04:81: 8c:ba:e2:00:b9:0a:39:4f:3b:08:d8:92:91:7a:85:4e:6f:fd: 64:78:55:7c:d2:ac:fd:ec:ee:97:22:7f:02:d2:6f:b4:a2:60: 8a:13:03:55:31:bf:92:39:25:34:48:43:68:37:bc:fe:ba:bc: 1b:77:09:bf:0d:ce:12:10:e6:e2:08:c1:fa:85:ed:1a:c0:5e: de:f1:24:75:d5:dd:a6:f2:4a:45:77:33:d8:12:c4:e8:ec:c2: b1:ea:c6:ad:39:a1:ad:2e:f5:7d:0e:dd:e9:d1:c1:37:88:92: 4d:de:ab:1c:1c:02:19:2b:70:8b:b0:d6:d6:a8:59:b1:2b:15: ad:d2:38:15 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEODkxMTAvBgNVBAUTKDQ4Rjk2MDA5QkNENENFMDZDRDYwRDEyNUYwQTkxQjIz RkVDMzAzNjAwHhcNMjYwNTIxMDUzNjQzWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlOTllYi0zNjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurp/Lh00BtmyDbiaam0hIWNNMhJlBe1ScNa5CNNsE7ivrUexo78WqPkJLG2T rskQ3nYCAdtojFpd+8LRxPC6Z1sSqgkLh8/zozvSgYLhk+6hk181DpdSTslG8KxM S8rKctXm30q3x/YZHQGc+CoIDlwQUAq8JwrJAXisuqT0DwB/zcmd5nBbvMu5CoAS Jmdj+L6KzkDIS+XZB9SpCaU6jfHLJxak6G5pUvxzHe8Ju1Z+yqZcCwRqU9+fgGC3 zQq7kWKY5r3OjHw842sBem8wBmq05QUOds3QKeHS/WFHjPhyop7clV6XR0/+k7JH ZEGmc21CdPJkxCAOakUwtlvcPwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFY/Gvgx VeUCr/Un1tMlwVC+KAQiMB8GA1UdIwQYMBaAFEj5YAm81M4GzWDRJfCpGyP+wwNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q4OS9EM0VENTg1ODIw QjgxMUVGQkUxQzI4MTVDNEY5QUUwMi9TUGxnQ2J6VXpnYk5ZTkVsOEtrYklfN0RB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQbGdDYnpVemdiTllORWw4S2tiSV83REEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNEODkvRDNFRDU4NTgyMEI4MTFFRkJFMUMyODE1QzRGOUFFMDIvMzdENEEzREUy MEJBMTFFRjlCMDM1RDFGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5/SMA8EAgACMAkDBwAgAQ3z0UAwDQYJKoZIhvcNAQELBQADggEB AFzLZM2Gwct06HbZs925ho/up9D635cDuSVwzNikEaxuwa3od0WGVnznRDB0Xw+w BaHqOCybnzbNf++AxNt2TSMYkggeSysppf48nNbymLV2bwJ0zxIK2TC+KN4yFibi IHmiJxeogJMJ/n8UyMbuSRwKvag6cVCn6F4bPvAEgYy64gC5CjlPOwjYkpF6hU5v /WR4VXzSrP3s7pcifwLSb7SiYIoTA1Uxv5I5JTRIQ2g3vP66vBt3Cb8NzhIQ5uII wfqF7RrAXt7xJHXV3abySkV3M9gSxOjswrHqxq05oa0u9X0O3enRwTeIkk3eqxwc AhkrcIuw1taoWbErFa3SOBU= -----END CERTIFICATE-----Generated at Thu May 21 11:57:56 2026 by rpki-client