$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa File: EE7FBFECF5DA11EAA1976953C4F9AE02.roa (raw, json) Hash identifier: 6IDJIxETkW9T1xEUvedDilTlctXLZWVYD7O0ZlRkXbk= Subject key identifier: BA:D2:A9:43:C8:63:EC:6C:6B:77:71:14:EA:C8:A2:47:D1:D7:CF:38 Certificate issuer: /CN=A91E82C4/serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Certificate serial: 08A4 Authority key identifier: 4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa Signing time: Sun 31 May 2026 21:24:57 +0000 ROA not before: Sun 31 May 2026 21:24:57 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 136442 IP address blocks: 103.88.48.0/22 maxlen: 22 103.88.48.0/24 maxlen: 24 103.88.49.0/24 maxlen: 24 103.88.50.0/24 maxlen: 24 103.88.51.0/24 maxlen: 24 203.96.240.0/22 maxlen: 22 203.96.240.0/24 maxlen: 24 203.96.241.0/24 maxlen: 24 203.96.242.0/24 maxlen: 24 203.96.243.0/24 maxlen: 24 2400:de40::/32 maxlen: 32 2400:de40::/48 maxlen: 48 2400:de40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 21:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82C4, serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Validity Not Before: May 31 21:24:57 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1ca729-07d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3a:97:be:43:4f:d9:e8:d7:0a:2d:75:08:2b: 40:b9:77:66:3c:9f:6f:ad:4a:58:49:e2:14:af:50: eb:48:94:e4:ee:4c:d1:68:f9:9e:77:bf:88:e7:58: b9:aa:7d:4b:09:49:de:62:b0:7b:7a:8d:f8:b7:b8: c2:b5:5d:b4:ac:58:48:2a:2b:7c:80:d4:3e:49:dd: f1:ae:62:e1:ff:d6:1c:53:42:fd:5d:26:4e:b5:a9: 72:ac:be:ce:0a:b1:82:fc:3c:1a:8d:2c:f0:b4:08: b3:23:15:cd:83:96:58:1d:7d:49:fa:4d:d2:4b:46: 3c:f7:71:68:db:f5:20:df:b0:ab:72:d7:61:5d:83: 87:0e:78:2d:1e:46:e4:fa:81:30:90:d1:95:37:fe: 8f:4c:4e:0f:a3:bf:63:8a:f1:df:90:1b:93:10:59: 5e:f6:1f:5c:fc:36:18:65:f0:4f:3f:03:e3:e6:23: 35:6b:50:86:fe:85:a0:ae:92:e4:d5:8d:e3:66:66: f3:35:01:0f:f0:6c:10:0f:f1:88:74:d1:f3:e0:fb: 41:85:82:80:c7:58:54:ae:c6:76:46:f8:10:d5:d5: 6c:ea:72:90:1d:cf:84:ee:93:5c:7b:aa:b8:a6:72: 54:19:a3:b1:53:7e:5b:3c:d5:90:43:7e:b9:ee:27: 2e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D2:A9:43:C8:63:EC:6C:6B:77:71:14:EA:C8:A2:47:D1:D7:CF:38 X509v3 Authority Key Identifier: keyid:4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.48.0/22 203.96.240.0/22 IPv6: 2400:de40::/32 Signature Algorithm: sha256WithRSAEncryption 56:d9:3b:66:bd:28:c1:2d:a4:a0:b2:c7:89:ab:58:0f:86:aa: 65:b7:f4:65:81:ab:a8:4e:4f:72:25:bd:a6:aa:61:ef:01:b3: a2:53:b2:29:c6:27:df:9f:31:2a:30:7f:b0:47:28:d5:16:59: fe:23:6f:79:08:f8:01:c1:4c:1c:f5:09:9d:25:89:b8:b1:6e: 82:3a:7c:1d:4b:91:a5:00:6b:1f:e2:78:96:b9:96:43:a7:e9: 7c:be:5c:66:bb:86:6e:64:5a:4b:3e:51:03:ed:7f:fa:84:89: 31:06:18:39:ed:ec:97:33:22:ce:ba:0a:70:29:d7:9a:9c:84: 11:fb:89:37:18:18:df:51:d2:72:fc:e8:c7:a7:d7:63:73:50: 9e:76:f5:b7:67:2a:92:28:24:ad:8f:25:57:73:11:38:a6:1a: 76:e7:90:03:91:f9:a5:11:ac:58:89:35:7f:6d:5a:fb:b0:d7: 80:72:44:d2:41:f2:d5:fc:82:03:c0:d4:92:6a:aa:19:27:17: 6b:41:e0:51:2b:7e:c9:c7:a4:2b:b3:f1:57:39:a8:c0:7a:dc: cb:bb:9f:75:73:b6:df:f3:59:80:a0:21:8f:cb:aa:4e:d7:fd: 2c:b6:c4:08:26:04:e6:10:8c:26:16:b0:cf:3a:84:c2:50:70: 51:c2:b4:56 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgyQzQxMTAvBgNVBAUTKDRFQUJENkUwNUNBMEU0QTZBODE1RjlCNjQ2OTRCM0NG ODkyQUY4RjQwHhcNMjYwNTMxMjEyNDU3WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjYTcyOS0wN2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDqXvkNP2ejXCi11CCtAuXdmPJ9vrUpYSeIUr1DrSJTk7kzRaPmed7+I51i5 qn1LCUneYrB7eo34t7jCtV20rFhIKit8gNQ+Sd3xrmLh/9YcU0L9XSZOtalyrL7O CrGC/DwajSzwtAizIxXNg5ZYHX1J+k3SS0Y893Fo2/Ug37CrctdhXYOHDngtHkbk +oEwkNGVN/6PTE4Po79jivHfkBuTEFle9h9c/DYYZfBPPwPj5iM1a1CG/oWgrpLk 1Y3jZmbzNQEP8GwQD/GIdNHz4PtBhYKAx1hUrsZ2RvgQ1dVs6nKQHc+E7pNce6q4 pnJUGaOxU35bPNWQQ3657icuRwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFLrSqUPI Y+xsa3dxFOrIokfR1884MB8GA1UdIwQYMBaAFE6r1uBcoOSmqBX5tkaUs8+JKvj0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODJDNC84MUYwRDU0Q0Y1 RDkxMUVBQUVGNjlENTFDNEY5QUUwMi9UcXZXNEZ5ZzVLYW9GZm0yUnBTeno0a3Et UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rxdlc0RnlnNUthb0ZmbTJScFN6ejRrcS1QUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgyQzQvODFGMEQ1NENGNUQ5MTFFQUFFRjY5RDUxQzRGOUFFMDIvRUU3RkJGRUNG NURBMTFFQUExOTc2OTUzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1gwAwQCy2DwMA0EAgACMAcDBQAkAN5AMA0GCSqGSIb3DQEBCwUA A4IBAQBW2TtmvSjBLaSgsseJq1gPhqplt/RlgauoTk9yJb2mqmHvAbOiU7Ipxiff nzEqMH+wRyjVFln+I295CPgBwUwc9QmdJYm4sW6COnwdS5GlAGsf4niWuZZDp+l8 vlxmu4ZuZFpLPlED7X/6hIkxBhg57eyXMyLOugpwKdeanIQR+4k3GBjfUdJy/OjH p9djc1CedvW3ZyqSKCStjyVXcxE4php255ADkfmlEaxYiTV/bVr7sNeAckTSQfLV /IIDwNSSaqoZJxdrQeBRK37Jx6Qrs/FXOajAetzLu591c7bf81mAoCGPy6pO1/0s tsQIJgTmEIwmFrDPOoTCUHBRwrRW -----END CERTIFICATE-----Generated at Tue Jun 2 21:30:12 2026 by rpki-client