$ rpki-client -vvf rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa File: EA903484DBE011EF8B7B8868C4F9AE02.roa (raw, json) Hash identifier: Js9Xf/lTcrawT2dX8Q0Cfk/++xiRQdkyCZUT92zAOmA= Subject key identifier: 74:41:29:76:24:97:D8:C7:1A:FB:F9:69:D0:48:54:B6:DD:E8:38:03 Certificate issuer: /CN=A91E72AB/serialNumber=31D09E24D5DB8C58F414EEA3EF0EEDFB355DABF4 Certificate serial: 0CEC Authority key identifier: 31:D0:9E:24:D5:DB:8C:58:F4:14:EE:A3:EF:0E:ED:FB:35:5D:AB:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa Signing time: Mon 18 May 2026 18:22:29 +0000 ROA not before: Mon 18 May 2026 18:22:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138953 IP address blocks: 103.137.160.0/24 maxlen: 24 2001:df0:2480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.crl rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3308 (0xcec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E72AB, serialNumber=31D09E24D5DB8C58F414EEA3EF0EEDFB355DABF4 Validity Not Before: May 18 18:22:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a0b58e4-cde3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:99:31:ae:a3:ee:20:b6:67:11:a9:f9:77:35: 3c:62:c1:5d:86:ba:24:57:70:80:07:49:15:40:78: 3f:e8:7a:23:77:8c:ad:10:d0:ba:5b:4c:76:2c:ca: e3:89:08:14:ec:69:8f:b9:7d:7b:14:cc:64:5d:a0: c7:2c:1b:c6:2a:28:d4:44:21:94:bd:85:40:4c:d4: 24:f7:64:e2:0f:e5:8f:55:e6:6c:38:9a:82:24:28: 33:60:0b:87:76:dc:41:c2:63:d8:79:66:f2:86:01: c9:33:6b:10:64:b4:e5:13:4d:3d:d8:fc:7f:40:50: 6b:15:ce:92:1f:23:b1:5c:19:99:ac:f5:1e:15:21: 74:d4:d9:8a:a3:79:1b:e3:43:74:55:b0:7c:98:e2: bf:41:2f:04:e1:64:d6:1c:fe:a2:0e:69:51:ba:ec: 1e:9f:fc:54:5f:8f:08:d4:ef:ef:ce:99:c9:7c:90: eb:cf:5a:26:91:8f:04:fd:0f:56:53:99:59:0b:84: f4:b5:6f:1d:56:66:b1:a3:4f:31:d2:f5:37:b3:17: ef:84:5b:e4:fd:a0:3e:2d:6c:cf:c7:cb:3b:b7:51: e7:6d:39:8b:47:33:d0:ee:c9:02:b9:2b:6c:78:9e: 26:f2:04:c5:8b:dd:0c:3b:94:0f:09:45:73:38:5e: 10:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:41:29:76:24:97:D8:C7:1A:FB:F9:69:D0:48:54:B6:DD:E8:38:03 X509v3 Authority Key Identifier: keyid:31:D0:9E:24:D5:DB:8C:58:F4:14:EE:A3:EF:0E:ED:FB:35:5D:AB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.160.0/24 IPv6: 2001:df0:2480::/48 Signature Algorithm: sha256WithRSAEncryption 38:c5:21:77:37:09:cb:ff:70:01:0c:d3:bb:6b:b3:0d:25:de: 26:a0:20:7b:f7:57:95:50:85:c9:b8:75:a8:b9:9e:e1:48:a6: fe:7e:e9:6a:ec:91:85:80:1b:8e:66:9e:48:54:e3:e6:81:f2: c0:80:27:2e:05:55:c1:1b:bf:4e:dc:38:be:59:7a:7a:da:4a: 18:bc:73:e4:e8:5e:c0:25:53:4a:f2:bb:55:c1:79:75:9a:c2: a4:c9:f8:85:f4:63:29:c6:99:24:33:21:fc:04:3d:67:61:e6: 5d:0d:7d:5b:9a:e2:19:95:ac:52:50:a1:13:9a:24:4f:a0:1f: 60:f2:96:c6:b3:6e:b4:04:18:65:95:6e:c3:0a:07:73:f5:95: 9e:66:c8:99:1e:12:f7:a3:b6:af:e8:a1:d2:e6:57:b4:81:c5: 92:d2:42:95:49:d2:67:b7:ff:60:bd:f0:55:08:d0:e4:30:70: ae:86:54:26:e4:10:fc:f7:ab:46:b4:a7:f6:9c:6f:e3:17:0e: 54:5f:91:b7:72:12:a6:fb:b3:c2:72:2e:10:97:83:9d:5a:f7: 09:69:15:99:d7:9b:8d:62:bb:87:74:8b:c4:c2:c6:cd:f1:fe: 19:9b:b0:15:cc:1f:25:7b:85:ff:5a:2d:9e:c0:16:b0:59:99: d3:f7:a0:ee -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcyQUIxMTAvBgNVBAUTKDMxRDA5RTI0RDVEQjhDNThGNDE0RUVBM0VGMEVFREZC MzU1REFCRjQwHhcNMjYwNTE4MTgyMjI5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBiNThlNC1jZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJkxrqPuILZnEan5dzU8YsFdhrokV3CAB0kVQHg/6Hojd4ytENC6W0x2LMrj iQgU7GmPuX17FMxkXaDHLBvGKijURCGUvYVATNQk92TiD+WPVeZsOJqCJCgzYAuH dtxBwmPYeWbyhgHJM2sQZLTlE0092Px/QFBrFc6SHyOxXBmZrPUeFSF01NmKo3kb 40N0VbB8mOK/QS8E4WTWHP6iDmlRuuwen/xUX48I1O/vzpnJfJDrz1omkY8E/Q9W U5lZC4T0tW8dVmaxo08x0vU3sxfvhFvk/aA+LWzPx8s7t1HnbTmLRzPQ7skCuSts eJ4m8gTFi90MO5QPCUVzOF4QLQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHRBKXYk l9jHGvv5adBIVLbd6DgDMB8GA1UdIwQYMBaAFDHQniTV24xY9BTuo+8O7fs1Xav0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzJBQi9ENzE3MzRGRTBD QTQxMUVBODQ4NDFCM0VDNEY5QUUwMi9NZENlSk5YYmpGajBGTzZqN3c3dC16VmRx X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01kQ2VKTlhiakZqMEZPNmo3dzd0LXpWZHFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcyQUIvRDcxNzM0RkUwQ0E0MTFFQTg0ODQxQjNFQzRGOUFFMDIvRUE5MDM0ODRE QkUwMTFFRjhCN0I4ODY4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ4mgMA8EAgACMAkDBwAgAQ3wJIAwDQYJKoZIhvcNAQELBQADggEB ADjFIXc3Ccv/cAEM07trsw0l3iagIHv3V5VQhcm4dai5nuFIpv5+6WrskYWAG45m nkhU4+aB8sCAJy4FVcEbv07cOL5ZenraShi8c+ToXsAlU0ryu1XBeXWawqTJ+IX0 YynGmSQzIfwEPWdh5l0NfVua4hmVrFJQoROaJE+gH2DylsazbrQEGGWVbsMKB3P1 lZ5myJkeEvejtq/oodLmV7SBxZLSQpVJ0me3/2C98FUI0OQwcK6GVCbkEPz3q0a0 p/acb+MXDlRfkbdyEqb7s8JyLhCXg51a9wlpFZnXm41iu4d0i8TCxs3x/hmbsBXM HyV7hf9aLZ7AFrBZmdP3oO4= -----END CERTIFICATE-----Generated at Thu May 21 12:36:01 2026 by rpki-client