$ rpki-client -vvf rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/0452EB4853FC11F1A50C3A68CD833773.roa File: 0452EB4853FC11F1A50C3A68CD833773.roa (raw, json) Hash identifier: Dwbq6wOkLhWt6mifV43tjYsX+dptJ/PFCJBmbhW6+7M= Subject key identifier: CD:78:CF:F7:A5:E5:86:02:31:77:6F:98:D9:B5:0B:5B:78:59:32:4D Certificate issuer: /CN=A91E427F/serialNumber=9560BCA9AB6C68BD909F304C5B22BA63639CF01C Certificate serial: 4A Authority key identifier: 95:60:BC:A9:AB:6C:68:BD:90:9F:30:4C:5B:22:BA:63:63:9C:F0:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/0452EB4853FC11F1A50C3A68CD833773.roa Signing time: Wed 20 May 2026 03:28:50 +0000 ROA not before: Wed 20 May 2026 03:28:49 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38868 IP address blocks: 103.133.192.0/23 maxlen: 23 103.133.192.0/24 maxlen: 24 103.133.193.0/24 maxlen: 24 103.133.194.0/24 maxlen: 24 103.133.195.0/24 maxlen: 24 119.40.112.0/20 maxlen: 20 119.40.112.0/22 maxlen: 22 119.40.112.0/24 maxlen: 24 119.40.113.0/24 maxlen: 24 119.40.114.0/24 maxlen: 24 119.40.115.0/24 maxlen: 24 119.40.116.0/22 maxlen: 22 119.40.116.0/24 maxlen: 24 119.40.117.0/24 maxlen: 24 119.40.118.0/24 maxlen: 24 119.40.119.0/24 maxlen: 24 119.40.120.0/22 maxlen: 22 119.40.120.0/24 maxlen: 24 119.40.121.0/24 maxlen: 24 119.40.122.0/24 maxlen: 24 119.40.123.0/24 maxlen: 24 119.40.124.0/22 maxlen: 22 119.40.124.0/24 maxlen: 24 119.40.125.0/24 maxlen: 24 119.40.126.0/24 maxlen: 24 119.40.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.crl rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 03:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E427F, serialNumber=9560BCA9AB6C68BD909F304C5B22BA63639CF01C Validity Not Before: May 20 03:28:49 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6a0d2a71-c6ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:49:13:81:1a:81:c0:c3:4d:da:b3:f2:48:52: bb:ac:c8:a0:de:5b:b7:64:60:25:14:25:2b:d1:39: 0d:56:9d:90:f2:d1:cd:8e:00:51:ec:6f:00:b1:5b: 07:5b:00:7f:9e:78:ee:02:59:be:b0:aa:44:4c:ae: 6e:da:97:93:ad:33:d2:f7:15:1c:1f:4c:68:d9:ec: 0f:78:8e:be:5c:65:a9:31:d9:05:e2:19:6b:0f:ff: b0:04:17:d8:eb:40:57:34:75:87:04:d2:ab:ae:06: 5b:13:ac:e2:a0:e3:ba:32:43:fc:c6:54:4a:73:92: c2:c7:83:1b:73:18:9c:f4:3e:50:7e:38:90:dc:0f: 86:10:8a:56:ac:dd:48:71:38:1c:5d:7f:5d:69:cb: 75:ca:25:ff:60:37:81:d3:74:0c:41:2c:cd:1a:52: 2c:2f:65:70:cf:dc:95:87:30:6a:9b:4a:02:2f:7e: 8e:4b:fa:6e:a8:82:f1:b9:07:7e:34:08:d8:2c:6a: 9e:d0:f1:0b:b8:1b:51:ab:a3:de:be:a4:0c:9d:7e: 07:19:eb:f1:79:53:3e:aa:7e:47:16:6e:b8:06:6e: 09:d5:25:a9:bc:d7:3d:71:53:bf:cc:92:5d:10:d0: 62:07:f1:25:8b:39:6c:91:29:06:3f:22:ac:41:3f: 30:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:78:CF:F7:A5:E5:86:02:31:77:6F:98:D9:B5:0B:5B:78:59:32:4D X509v3 Authority Key Identifier: keyid:95:60:BC:A9:AB:6C:68:BD:90:9F:30:4C:5B:22:BA:63:63:9C:F0:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/0452EB4853FC11F1A50C3A68CD833773.roa sbgp-ipAddrBlock: critical IPv4: 103.133.192.0/22 119.40.112.0/20 Signature Algorithm: sha256WithRSAEncryption 62:76:b8:8a:12:32:44:79:95:ac:27:8a:53:0e:02:59:23:33: e1:2f:46:b3:1d:13:50:99:a0:6c:ee:61:64:85:28:1f:b8:96: 51:33:bd:42:c4:11:56:99:8d:74:30:5a:61:a1:33:10:58:12: 64:0c:f6:6c:f5:a3:4c:34:aa:09:57:2c:60:8d:22:5e:82:8c: 60:60:3a:20:af:4e:df:1d:0f:10:99:19:81:7b:4d:77:e8:79: b2:c9:2f:71:b3:ce:e3:3a:39:b2:93:6e:94:9e:03:68:35:10: 1d:e9:d5:7e:08:47:71:9c:aa:5a:4c:84:15:56:b9:b9:42:31: c5:04:56:ed:00:fe:fa:92:29:d8:76:ed:0e:ad:20:ac:4c:08: f8:6c:61:94:da:54:8e:6d:e8:fc:7b:5a:dc:26:21:0a:a4:87: 9f:91:49:0b:a4:35:79:af:d9:5a:a1:4a:8d:48:f8:ba:08:b4: 7d:48:6e:a4:83:da:c8:db:e4:71:46:b6:cf:8d:67:d7:1b:00: 9c:14:d8:a2:cb:eb:73:67:48:d4:31:81:02:68:93:e9:22:d2: 52:ee:43:ca:84:49:40:fa:98:56:73:03:36:ea:b1:20:6f:28: 7d:b1:df:8e:d3:31:38:07:7d:cf:e3:3f:67:15:4c:14:f0:cc: de:82:ef:a9 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDI3RjExMC8GA1UEBRMoOTU2MEJDQTlBQjZDNjhCRDkwOUYzMDRDNUIyMkJBNjM2 MzlDRjAxQzAeFw0yNjA1MjAwMzI4NDlaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMGQyYTcxLWM2ZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClSROBGoHAw03as/JIUrusyKDeW7dkYCUUJSvROQ1WnZDy0c2OAFHsbwCxWwdb AH+eeO4CWb6wqkRMrm7al5OtM9L3FRwfTGjZ7A94jr5cZakx2QXiGWsP/7AEF9jr QFc0dYcE0quuBlsTrOKg47oyQ/zGVEpzksLHgxtzGJz0PlB+OJDcD4YQilas3Uhx OBxdf11py3XKJf9gN4HTdAxBLM0aUiwvZXDP3JWHMGqbSgIvfo5L+m6ogvG5B340 CNgsap7Q8Qu4G1Gro96+pAydfgcZ6/F5Uz6qfkcWbrgGbgnVJam81z1xU7/Mkl0Q 0GIH8SWLOWyRKQY/IqxBPzAXAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUzXjP96Xl hgIxd2+Y2bULW3hZMk0wHwYDVR0jBBgwFoAUlWC8qatsaL2QnzBMWyK6Y2Oc8Bww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0MjdGLzNCQkRBQ0UyRkMw NjExRjBBQTFCQ0UwNTc0NkY1NkJDL2xXQzhxYXRzYUwyUW56Qk1XeUs2WTJPYzhC dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFdDOHFhdHNhTDJRbnpCTVd5SzZZMk9jOEJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDI3Ri8zQkJEQUNFMkZDMDYxMUYwQUExQkNFMDU3NDZGNTZCQy8wNDUyRUI0ODUz RkMxMUYxQTUwQzNBNjhDRDgzMzc3My5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAJnhcADBAR3KHAwDQYJKoZIhvcNAQELBQADggEBAGJ2uIoSMkR5lawn ilMOAlkjM+EvRrMdE1CZoGzuYWSFKB+4llEzvULEEVaZjXQwWmGhMxBYEmQM9mz1 o0w0qglXLGCNIl6CjGBgOiCvTt8dDxCZGYF7TXfoebLJL3GzzuM6ObKTbpSeA2g1 EB3p1X4IR3GcqlpMhBVWublCMcUEVu0A/vqSKdh27Q6tIKxMCPhsYZTaVI5t6Px7 WtwmIQqkh5+RSQukNXmv2VqhSo1I+LoItH1IbqSD2sjb5HFGts+NZ9cbAJwU2KLL 63NnSNQxgQJok+ki0lLuQ8qESUD6mFZzAzbqsSBvKH2x347TMTgHfc/jP2cVTBTw zN6C76k= -----END CERTIFICATE-----Generated at Thu May 21 10:35:50 2026 by rpki-client