$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa File: D6A658CE01DE11ED8236F073C4F9AE02.roa (raw, json) Hash identifier: Dc8uGSZJ0OICY+fzMjaRcRJaOH5kShz1e2tPYVp7oHc= Subject key identifier: F6:D2:AF:3F:0B:62:E5:A7:01:09:EA:1E:64:B0:83:F5:DF:CD:FB:B2 Certificate issuer: /CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Certificate serial: 033B Authority key identifier: EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa Signing time: Fri 03 Apr 2026 01:32:58 +0000 ROA not before: Fri 03 Apr 2026 01:32:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138902 IP address blocks: 103.136.226.0/23 maxlen: 23 103.136.226.0/24 maxlen: 24 2400:94e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD75B, serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Validity Not Before: Apr 3 01:32:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cf18ca-dbe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:66:6f:3d:10:b4:b1:e4:cd:82:dc:4e:92:07: 2c:25:5d:a8:2f:16:18:ee:be:cf:d5:7e:9f:79:8c: 21:73:a8:5a:5a:56:2c:4a:4d:92:4d:20:28:4a:8f: 7d:b5:58:25:cb:33:5b:1b:8b:c7:95:d4:d9:78:77: 28:80:5d:36:5f:8a:bf:01:08:4c:94:1e:f9:b6:7b: 89:6b:91:a2:48:34:75:df:3b:aa:7a:f4:d5:86:7c: 98:75:e4:4d:ef:1b:93:fc:c8:9e:24:3e:0c:ad:c3: 6f:5e:5d:37:fc:7c:2f:ee:67:06:16:90:aa:13:14: bc:60:72:83:da:69:1b:6e:aa:af:43:9e:7b:a0:38: dc:7c:0c:98:1f:7d:88:f2:e7:fb:6c:95:23:eb:d0: b7:cc:bc:60:1c:c2:27:27:a5:6a:86:9f:95:41:75: 29:a6:29:52:5d:0c:0e:86:f2:6e:bb:95:03:14:d1: 5c:f5:e2:55:7e:df:aa:8b:10:08:09:01:31:39:a7: be:d0:a5:e8:11:4a:39:d4:39:39:52:49:29:18:0f: 97:55:c9:59:6e:95:78:7f:23:7c:56:7e:ee:1a:f2: 7f:3d:3d:80:46:05:9e:1a:88:e2:a7:cb:bd:72:ed: b5:e9:06:8d:50:0c:12:86:ca:41:d4:68:92:be:bb: 4b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D2:AF:3F:0B:62:E5:A7:01:09:EA:1E:64:B0:83:F5:DF:CD:FB:B2 X509v3 Authority Key Identifier: keyid:EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.226.0/23 IPv6: 2400:94e0::/32 Signature Algorithm: sha256WithRSAEncryption 29:c6:59:5d:94:58:41:4e:01:c6:f6:6e:1f:06:e6:e1:63:b0: 52:02:0d:62:1c:36:9e:1b:35:82:b9:84:a5:76:85:5e:53:3c: 6f:07:bf:65:f2:aa:cf:a7:41:67:52:75:5f:58:4a:86:3b:67: 32:ec:03:ad:9b:12:d3:06:d9:a1:58:db:88:74:75:c3:d3:c1: 5b:f0:34:bd:57:8a:40:5b:ee:89:92:59:f9:d5:43:04:af:b4: 43:47:4b:14:4d:2a:6e:d8:0b:04:2c:b8:85:86:03:f2:a5:2d: 26:a4:e3:5f:fd:73:80:2e:75:5b:21:ed:7e:ba:83:be:0c:21: 0c:50:bc:c7:ef:64:e4:d2:de:38:a0:58:b2:83:7f:7a:e7:f6: a9:81:1c:0f:c6:21:16:60:18:bc:3a:d3:24:73:54:89:b5:1e: 47:66:3b:48:dc:61:50:28:7f:b7:c6:da:1a:c8:4f:52:46:ca: 8c:2f:b3:1b:b8:3f:d7:fa:58:bc:c5:af:ea:fd:e7:a2:e4:57: 50:aa:e2:bf:1a:a7:ee:b9:9e:32:97:5a:00:9a:da:00:af:ff: 0b:c5:a1:d1:6d:aa:8f:1d:40:b7:bb:f4:3a:e4:39:56:64:1c: 81:cd:d3:fd:e3:f9:ed:f6:bc:75:21:a9:96:52:04:b7:79:0e: 15:02:d1:7b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3NUIxMTAvBgNVBAUTKEVCODEzRjU5NzYxQzdDNkIxQUUyOEM0NzgxNjdFMjA2 MUFCNUNBQ0YwHhcNMjYwNDAzMDEzMjU4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMThjYS1kYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGZvPRC0seTNgtxOkgcsJV2oLxYY7r7P1X6feYwhc6haWlYsSk2STSAoSo99 tVglyzNbG4vHldTZeHcogF02X4q/AQhMlB75tnuJa5GiSDR13zuqevTVhnyYdeRN 7xuT/MieJD4MrcNvXl03/Hwv7mcGFpCqExS8YHKD2mkbbqqvQ557oDjcfAyYH32I 8uf7bJUj69C3zLxgHMInJ6Vqhp+VQXUppilSXQwOhvJuu5UDFNFc9eJVft+qixAI CQExOae+0KXoEUo51Dk5UkkpGA+XVclZbpV4fyN8Vn7uGvJ/PT2ARgWeGojip8u9 cu216QaNUAwShspB1GiSvrtLHQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPbSrz8L YuWnAQnqHmSwg/XfzfuyMB8GA1UdIwQYMBaAFOuBP1l2HHxrGuKMR4Fn4gYatcrP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc1Qi82NEExREE0ODAx REMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZHc2E0b3hIZ1dmaUJocTF5 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RV9XWFljZkdzYTRveEhnV2ZpQmhxMXlzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ3NUIvNjRBMURBNDgwMURDMTFFRDlFRkUyQTU2QzRGOUFFMDIvRDZBNjU4Q0Uw MURFMTFFRDgyMzZGMDczQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4jiMA0EAgACMAcDBQAkAJTgMA0GCSqGSIb3DQEBCwUAA4IBAQAp xlldlFhBTgHG9m4fBubhY7BSAg1iHDaeGzWCuYSldoVeUzxvB79l8qrPp0FnUnVf WEqGO2cy7AOtmxLTBtmhWNuIdHXD08Fb8DS9V4pAW+6Jkln51UMEr7RDR0sUTSpu 2AsELLiFhgPypS0mpONf/XOALnVbIe1+uoO+DCEMULzH72Tk0t44oFiyg3965/ap gRwPxiEWYBi8OtMkc1SJtR5HZjtI3GFQKH+3xtoayE9SRsqML7MbuD/X+li8xa/q /eei5FdQquK/GqfuuZ4yl1oAmtoAr/8LxaHRbaqPHUC3u/Q65DlWZByBzdP94/nt 9rx1IamWUgS3eQ4VAtF7 -----END CERTIFICATE-----Generated at Mon Apr 6 11:33:21 2026 by rpki-client