$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa File: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (raw, json) Hash identifier: R/iJ4c5PH31y7CSM0LznhAJ3uqMaJ3657UNaVBCq6Pk= Subject key identifier: 4E:F1:01:17:42:AC:8B:70:84:86:41:5C:F8:A2:F2:06:6D:6C:D3:A1 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E7D Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa Signing time: Mon 18 May 2026 05:20:53 +0000 ROA not before: Mon 18 May 2026 05:20:53 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 19551 IP address blocks: 203.121.47.0/24 maxlen: 24 210.19.93.0/24 maxlen: 24 210.19.124.0/24 maxlen: 24 210.19.153.0/24 maxlen: 24 210.19.176.0/24 maxlen: 24 211.24.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 17:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3709 (0xe7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: May 18 05:20:53 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6a0aa1b5-d9cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:84:ec:99:01:52:10:e8:51:ae:32:ea:87:b1: ba:2e:76:0b:9e:31:e6:43:2a:73:ae:15:49:fd:85: 86:aa:a6:8f:e1:99:13:65:d1:aa:9e:59:47:5c:a9: 23:24:9f:d3:27:d6:cb:52:17:40:c1:9e:17:a2:74: 62:3a:38:1b:8c:51:5f:ca:05:cb:27:95:df:27:11: 5b:fb:1a:f0:23:c4:33:4b:72:1b:c0:df:58:92:33: 1c:c7:9d:bc:7b:0f:38:cd:10:b5:07:f7:b1:8c:33: 9c:b6:26:92:45:be:57:fa:e0:f4:96:0d:cd:6a:d3: f9:ba:25:f5:21:8c:d3:0a:76:22:5e:3f:b1:b2:1a: 7e:1a:f0:6d:d7:42:0f:fe:46:77:58:bb:df:c5:30: df:cc:77:53:34:55:4a:8f:dc:76:d2:5d:40:16:3b: 4f:10:2a:25:ae:0f:5f:fd:5c:54:55:d3:36:91:e3: e2:85:a3:ac:71:8e:a2:4b:7d:d6:5f:d5:e3:58:75: 6d:81:16:13:bb:f3:98:17:8f:13:0f:40:d2:55:e5: df:f5:1e:ed:29:87:8f:a1:9a:e4:d7:32:a0:88:48: 49:7a:52:d4:31:c5:98:6e:05:3e:52:bc:34:b1:cf: 5c:13:43:93:42:8b:64:c9:ad:f0:55:dc:7f:6f:be: 69:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F1:01:17:42:AC:8B:70:84:86:41:5C:F8:A2:F2:06:6D:6C:D3:A1 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.121.47.0/24 210.19.93.0/24 210.19.124.0/24 210.19.153.0/24 210.19.176.0/24 211.24.174.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:cd:d4:43:83:22:73:fe:47:92:68:b4:ae:c5:e0:7c:f6:12: 42:01:d9:7d:12:b4:1d:a0:09:60:b0:87:32:f9:35:8e:dd:fb: b7:75:fc:62:49:3b:9c:46:f4:73:c5:c5:bf:fa:bc:8c:d1:0b: af:44:e2:c4:28:01:b2:52:bb:d6:68:28:e5:c8:11:86:4d:35: ee:5b:61:b4:38:71:c5:72:dc:b4:b9:7c:01:95:a4:10:6b:31: cb:ba:73:a5:e9:84:27:c5:91:fe:cf:fe:ea:35:58:16:33:9d: 2a:67:7b:0e:36:a4:3b:25:45:3c:09:e5:bd:2c:c8:51:5e:83: 49:a5:0b:66:c3:da:63:3d:c6:a9:12:c6:f4:38:76:bb:8e:7d: 25:51:68:76:0c:b8:bb:2e:36:4f:2c:41:11:a6:47:53:f7:86: 6d:1b:e1:7c:af:0d:4c:0e:2c:fc:1c:2a:fd:34:5b:4b:ce:3f: c0:43:ab:d7:0c:25:a7:32:c6:18:09:30:b5:6c:ba:6e:6e:90: cf:13:b3:a4:95:13:f4:fa:9e:7b:15:94:85:df:b9:b5:99:7a: 16:3f:2e:84:cb:9f:65:a5:a1:36:a1:7b:5e:9a:a9:ad:1e:e0: 7f:f8:1b:19:79:a1:02:bb:a4:9d:66:74:4e:14:a5:06:0a:ce: e2:f7:66:6c -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICDn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwNTE4MDUyMDUzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBhYTFiNS1kOWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oTsmQFSEOhRrjLqh7G6LnYLnjHmQypzrhVJ/YWGqqaP4ZkTZdGqnllHXKkj JJ/TJ9bLUhdAwZ4XonRiOjgbjFFfygXLJ5XfJxFb+xrwI8QzS3IbwN9YkjMcx528 ew84zRC1B/exjDOctiaSRb5X+uD0lg3NatP5uiX1IYzTCnYiXj+xshp+GvBt10IP /kZ3WLvfxTDfzHdTNFVKj9x20l1AFjtPEColrg9f/VxUVdM2kePihaOscY6iS33W X9XjWHVtgRYTu/OYF48TD0DSVeXf9R7tKYePoZrk1zKgiEhJelLUMcWYbgU+Urw0 sc9cE0OTQotkya3wVdx/b75pqwIDAQABo4ICfjCCAnowHQYDVR0OBBYEFE7xARdC rItwhIZBXPii8gZtbNOhMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdCQzQvMkQxQTU5NUFENTBEMTFFOUJBRDZDMjI2QzRGOUFFMDIvQ0UzRkNFMzRB RjE2MTFGMEI1MEJGRjdBQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQAy3kvAwQA0hNdAwQA0hN8AwQA0hOZAwQA0hOwAwQA0xiuMA0GCSqG SIb3DQEBCwUAA4IBAQBdzdRDgyJz/keSaLSuxeB89hJCAdl9ErQdoAlgsIcy+TWO 3fu3dfxiSTucRvRzxcW/+ryM0QuvROLEKAGyUrvWaCjlyBGGTTXuW2G0OHHFcty0 uXwBlaQQazHLunOl6YQnxZH+z/7qNVgWM50qZ3sONqQ7JUU8CeW9LMhRXoNJpQtm w9pjPcapEsb0OHa7jn0lUWh2DLi7LjZPLEERpkdT94ZtG+F8rw1MDiz8HCr9NFtL zj/AQ6vXDCWnMsYYCTC1bLpubpDPE7OklRP0+p57FZSF37m1mXoWPy6Ey59lpaE2 oXtemqmtHuB/+BsZeaECu6SdZnROFKUGCs7i92Zs -----END CERTIFICATE-----Generated at Sat Jun 6 12:11:44 2026 by rpki-client