$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa File: A10812CA0CD511EB9433AE69C4F9AE02.roa (raw, json) Hash identifier: RY9RHnG9wjHyR1xu0R68Q4Yq6vJnjZQW1jZtbJsZ41Y= Subject key identifier: 11:AE:03:8C:9C:AA:C4:D4:B6:92:CC:6A:CD:20:9E:18:95:03:65:42 Certificate issuer: /CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Certificate serial: 0867 Authority key identifier: 43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa Signing time: Tue 02 Jun 2026 23:54:33 +0000 ROA not before: Tue 02 Jun 2026 23:54:32 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 9290 IP address blocks: 103.11.144.0/22 maxlen: 22 103.11.144.0/24 maxlen: 24 103.11.145.0/24 maxlen: 24 103.11.146.0/24 maxlen: 24 103.11.147.0/24 maxlen: 24 110.34.52.0/22 maxlen: 22 121.127.35.0/24 maxlen: 24 202.47.95.0/24 maxlen: 24 203.83.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 20:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2151 (0x867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC50, serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Validity Not Before: Jun 2 23:54:32 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a1f6d38-bab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7c:36:36:d3:ac:89:44:84:ca:6c:06:4d:9b: e6:e2:01:76:45:85:58:c6:29:45:50:83:f5:d5:f7: d5:24:66:29:de:67:15:b7:a8:f4:2a:51:09:a8:62: cb:5b:e2:c9:96:85:46:14:8d:7e:f1:22:33:a6:b3: 9a:29:7c:2b:29:bc:b3:fa:e6:3d:b5:b6:1f:9a:81: 3b:12:fb:5a:6d:30:0c:48:fe:36:79:a0:9a:19:d5: 76:a8:83:61:9f:97:9d:b9:c7:19:38:ed:48:09:ba: 01:55:96:72:70:e2:4a:de:eb:df:f7:54:51:a2:60: 64:90:82:03:43:c3:85:a7:46:1c:cf:17:0b:ab:fd: d0:51:96:d1:f7:09:d0:f9:b4:eb:8c:dc:68:6f:7e: 2e:12:c3:8a:f3:d7:47:a8:38:10:0c:64:18:57:a8: 8a:2e:5f:b9:07:9b:f8:63:2c:7e:3f:1d:3d:74:54: 1e:55:92:1d:92:11:ca:46:15:63:a8:7a:aa:1c:b7: 45:1a:3e:af:87:8d:ae:df:79:9a:f9:9d:26:7e:8e: 54:66:e4:ba:a8:c7:62:4b:74:d9:7c:43:a1:c8:70: ee:9e:a7:70:b8:6b:60:76:38:6c:b3:15:97:da:77: 75:31:31:f0:38:e9:1b:f0:4b:65:03:34:38:53:96: c9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AE:03:8C:9C:AA:C4:D4:B6:92:CC:6A:CD:20:9E:18:95:03:65:42 X509v3 Authority Key Identifier: keyid:43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.11.144.0/22 110.34.52.0/22 121.127.35.0/24 202.47.95.0/24 203.83.219.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:d6:fa:c7:ef:17:a6:72:50:2b:a6:7b:7c:f0:fb:f4:4b:97: a4:24:8b:c9:ff:9e:ad:4b:e8:9e:b5:e0:0a:22:d9:12:c5:c0: ad:a6:f6:9c:79:04:5e:99:52:bb:90:42:c4:b5:f9:8a:e6:62: d7:41:16:c4:82:06:c3:d4:1e:55:4c:24:81:eb:8b:25:80:4a: 1b:99:7c:e5:62:c2:2f:19:05:0e:67:de:26:10:d9:f2:c5:27: f4:ba:2c:a3:d0:aa:df:86:e9:fc:2d:cb:4f:bf:9a:26:36:26: 6c:ab:ee:47:06:0a:83:67:a2:20:7b:08:b6:4f:ca:bf:24:f4: 89:be:e8:c6:a6:52:2d:80:56:b5:8f:26:29:59:56:52:21:b4: f3:58:71:ae:47:c9:1c:3f:f2:7c:f0:ce:df:76:80:78:fb:89: 4b:8d:cf:5b:c2:c0:9b:d5:bd:c6:70:74:aa:a5:51:01:c3:61: 51:88:60:f0:2f:a1:82:2a:5b:fe:6c:c8:ea:a5:e8:3b:92:ce: 48:9b:7f:57:6a:2e:b3:5a:c4:db:26:a1:69:6a:75:27:0e:c2: 78:b7:cd:74:60:2a:42:67:12:86:3c:a5:8c:7a:25:b5:5b:3f: 3c:f2:92:31:27:eb:e6:f5:d2:3d:21:29:4b:47:ca:65:64:3b: 81:a9:9b:3b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICCGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNTAxMTAvBgNVBAUTKDQzNTRENUNGQTU2NEVFNzFCMzRFODg3NEVFQjFCOTg2 OEY4ODA3REQwHhcNMjYwNjAyMjM1NDMyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTFmNmQzOC1iYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nw2NtOsiUSEymwGTZvm4gF2RYVYxilFUIP11ffVJGYp3mcVt6j0KlEJqGLL W+LJloVGFI1+8SIzprOaKXwrKbyz+uY9tbYfmoE7EvtabTAMSP42eaCaGdV2qINh n5educcZOO1ICboBVZZycOJK3uvf91RRomBkkIIDQ8OFp0YczxcLq/3QUZbR9wnQ +bTrjNxob34uEsOK89dHqDgQDGQYV6iKLl+5B5v4Yyx+Px09dFQeVZIdkhHKRhVj qHqqHLdFGj6vh42u33ma+Z0mfo5UZuS6qMdiS3TZfEOhyHDunqdwuGtgdjhssxWX 2nd1MTHwOOkb8EtlAzQ4U5bJhQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFBGuA4yc qsTUtpLMas0gnhiVA2VCMB8GA1UdIwQYMBaAFENU1c+lZO5xs06IdO6xuYaPiAfd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM1MC9FNDg1OEFDNDBD RDQxMUVCQkNENzlDNjlDNEY5QUUwMi9RMVRWejZWazduR3pUb2gwN3JHNWhvLUlC OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExVFZ6NlZrN25HelRvaDA3ckc1aG8tSUI5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJDNTAvRTQ4NThBQzQwQ0Q0MTFFQkJDRDc5QzY5QzRGOUFFMDIvQTEwODEyQ0Ew Q0Q1MTFFQjk0MzNBRTY5QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZwuQAwQCbiI0AwQAeX8jAwQAyi9fAwQAy1PbMA0GCSqGSIb3DQEB CwUAA4IBAQB91vrH7xemclArpnt88Pv0S5ekJIvJ/56tS+ieteAKItkSxcCtpvac eQRemVK7kELEtfmK5mLXQRbEggbD1B5VTCSB64slgEobmXzlYsIvGQUOZ94mENny xSf0uiyj0Krfhun8LctPv5omNiZsq+5HBgqDZ6Igewi2T8q/JPSJvujGplItgFa1 jyYpWVZSIbTzWHGuR8kcP/J88M7fdoB4+4lLjc9bwsCb1b3GcHSqpVEBw2FRiGDw L6GCKlv+bMjqpeg7ks5Im39Xai6zWsTbJqFpanUnDsJ4t810YCpCZxKGPKWMeiW1 Wz888pIxJ+vm9dI9ISlLR8plZDuBqZs7 -----END CERTIFICATE-----Generated at Sat Jun 6 15:50:11 2026 by rpki-client