$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1CEF944C1AEC11F1BECB19E5043D8C67.roa File: 1CEF944C1AEC11F1BECB19E5043D8C67.roa (raw, json) Hash identifier: bK4wK4ZW2AeyeEa2VWf/EBV02KYa6Sd38Fy+vGgwV2Q= Subject key identifier: E3:AC:7D:7F:48:A4:E8:03:55:67:68:19:57:73:98:CD:32:54:B2:9A Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0C05 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1CEF944C1AEC11F1BECB19E5043D8C67.roa Signing time: Tue 02 Jun 2026 19:22:47 +0000 ROA not before: Tue 02 Jun 2026 19:22:47 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 202736 IP address blocks: 103.231.38.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Jun 2026 18:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3077 (0xc05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Jun 2 19:22:47 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a1f2d87-9794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e1:5e:85:aa:21:37:8c:83:66:26:c7:9e:6a: e1:40:75:db:c2:5c:20:9d:c5:6c:90:54:09:d0:66: 94:8c:00:01:d8:23:ee:6f:cc:d5:a9:31:9c:5d:f2: dc:35:33:24:80:95:27:02:6a:c4:6d:4e:21:f7:cb: ca:e8:74:13:1c:81:ed:21:3c:e2:96:e0:16:8b:f6: c0:50:56:58:28:0f:70:98:2d:3c:43:16:c2:83:24: 78:fd:4c:81:6e:f8:9e:4f:39:dd:2c:47:ab:19:1b: 49:9e:b2:fe:74:0d:3a:65:cf:d4:6a:00:36:3e:bf: 5b:3d:86:8c:0c:b0:41:b9:58:f5:ee:d2:89:e1:a5: d8:36:f6:00:cd:66:ee:d7:8c:82:85:22:6b:57:dd: 0b:49:05:94:d9:dd:84:20:ac:c9:ad:d4:80:4b:63: 84:ab:dd:c7:69:37:d0:aa:8f:99:fc:5d:d2:01:02: 76:26:14:62:16:b4:f1:8a:33:c1:86:69:35:37:35: 43:77:73:60:6a:41:0c:8f:6e:a8:36:ab:56:4e:b8: 16:be:5b:73:fe:11:dd:bb:92:7e:1c:0c:df:fa:77: f9:ee:11:d6:ad:32:6a:45:09:bb:da:22:85:4e:16: 1f:6d:e4:23:29:4b:47:80:ae:3f:67:de:54:3a:6c: 5b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AC:7D:7F:48:A4:E8:03:55:67:68:19:57:73:98:CD:32:54:B2:9A X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1CEF944C1AEC11F1BECB19E5043D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.231.38.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:05:cf:17:99:4b:72:6e:66:fb:d8:5a:a8:4c:c3:8c:2e:96: 6f:a6:e3:23:02:ae:15:43:f2:48:13:af:c6:c4:0f:9e:62:71: ca:c8:a6:ee:b9:36:96:5b:c3:26:33:04:23:b8:ed:10:bc:8e: 44:f4:2f:2c:49:f6:6c:89:c5:8c:d2:ce:f9:4f:70:4a:67:87: 61:7e:cc:e6:d3:cd:af:c1:19:ab:e0:ea:31:3a:f2:c8:48:82: 5f:18:2b:ff:d7:8a:ec:82:79:9a:b3:17:af:ac:8f:2a:6b:1e: 53:a0:64:3a:64:0b:fe:8b:3a:da:76:a0:1b:e9:f3:ac:5d:fb: 8d:65:8d:2c:a9:78:14:30:46:56:74:96:59:21:af:81:67:ec: 78:f7:09:45:36:c6:ba:e9:6a:e0:3b:e1:41:93:bd:c2:7c:06: ef:65:3b:54:89:0c:18:13:e3:98:ce:8c:dc:ab:37:5c:a7:75: fb:68:70:e0:5c:1b:ab:0c:b8:6c:63:d7:a5:8f:b0:83:f3:f7: e7:97:ce:b2:32:bd:3c:08:28:76:e1:8e:30:52:53:69:ab:5d: 60:3d:26:d4:7b:49:8c:07:44:78:a6:ab:b4:a0:63:12:22:cf: db:64:be:3a:7b:f2:4e:dc:fe:63:4a:71:11:95:14:bc:96:68: 50:8a:28:91 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjYwNjAyMTkyMjQ3WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFmMmQ4Ny05Nzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eFehaohN4yDZibHnmrhQHXbwlwgncVskFQJ0GaUjAAB2CPub8zVqTGcXfLc NTMkgJUnAmrEbU4h98vK6HQTHIHtITziluAWi/bAUFZYKA9wmC08QxbCgyR4/UyB bvieTzndLEerGRtJnrL+dA06Zc/UagA2Pr9bPYaMDLBBuVj17tKJ4aXYNvYAzWbu 14yChSJrV90LSQWU2d2EIKzJrdSAS2OEq93HaTfQqo+Z/F3SAQJ2JhRiFrTxijPB hmk1NzVDd3NgakEMj26oNqtWTrgWvltz/hHdu5J+HAzf+nf57hHWrTJqRQm72iKF ThYfbeQjKUtHgK4/Z95UOmxbaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOOsfX9I pOgDVWdoGVdzmM0yVLKaMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvMUNFRjk0NEMx QUVDMTFGMUJFQ0IxOUU1MDQzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ+cmMA0GCSqGSIb3DQEBCwUAA4IBAQA9Bc8XmUtybmb72FqoTMOM LpZvpuMjAq4VQ/JIE6/GxA+eYnHKyKbuuTaWW8MmMwQjuO0QvI5E9C8sSfZsicWM 0s75T3BKZ4dhfszm082vwRmr4OoxOvLISIJfGCv/14rsgnmasxevrI8qax5ToGQ6 ZAv+izradqAb6fOsXfuNZY0sqXgUMEZWdJZZIa+BZ+x49wlFNsa66WrgO+FBk73C fAbvZTtUiQwYE+OYzozcqzdcp3X7aHDgXBurDLhsY9elj7CD8/fnl86yMr08CCh2 4Y4wUlNpq11gPSbUe0mMB0R4pqu0oGMSIs/bZL46e/JO3P5jSnERlRS8lmhQiiiR -----END CERTIFICATE-----Generated at Tue Jun 9 10:44:52 2026 by rpki-client