$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa File: C2D66F8271A911EEAEEE351CC4F9AE02.roa (raw, json) Hash identifier: zB9kpmMH8WDobdsyA5ni46avnvSa15JcHqsSjawBqxo= Subject key identifier: 88:C6:D0:D4:4D:13:2E:7A:3A:8D:54:F8:C8:F6:5A:12:F3:43:99:15 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 01DD Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa Signing time: Fri 03 Apr 2026 03:36:31 +0000 ROA not before: Fri 03 Apr 2026 03:36:31 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132060 IP address blocks: 103.67.76.0/24 maxlen: 24 103.67.77.0/24 maxlen: 24 2001:df3:ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D, serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: Apr 3 03:36:31 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69cf35bf-3855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d0:ab:e4:4a:2e:93:c8:15:da:58:fc:73:1e: 4e:dd:c0:1e:41:39:d8:87:90:21:69:d7:52:04:9e: 24:ff:db:a8:55:90:2d:d7:17:38:19:dc:75:63:94: 1f:5b:2b:66:61:35:39:75:f8:ef:34:bf:36:dc:6b: 2b:bf:d4:d3:ed:7e:8b:fe:16:87:6f:00:e9:b9:80: 77:c1:55:b6:7c:35:2c:ba:8e:6d:d1:2a:a8:30:d6: 65:05:38:19:a0:d0:12:7b:f2:8a:91:1f:cb:8e:21: d3:54:16:42:cd:7d:7e:3a:3a:ca:4d:1f:6a:ad:8f: 6d:ca:ed:46:4e:ce:47:79:2b:3f:d2:5b:67:fe:2c: fe:af:6c:a0:7b:18:bc:9d:07:92:bb:80:bb:b1:10: 98:c3:85:10:de:dd:1f:ab:d8:88:05:3a:e2:9d:ea: 01:36:c3:0e:42:4a:0d:2e:ef:bb:37:0a:cd:a5:55: 46:15:47:ab:ac:53:94:ee:77:d0:41:06:a7:fc:eb: 02:b3:17:db:58:2c:f5:03:4a:b8:29:4d:8e:fd:4c: 7b:c3:34:56:14:96:eb:f3:48:85:63:65:40:04:c9: b5:8f:a8:1e:9d:b2:8a:5c:16:88:83:e3:8b:aa:7a: bd:38:36:0b:12:a4:5d:8b:e2:aa:d4:2b:5e:1b:23: 33:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C6:D0:D4:4D:13:2E:7A:3A:8D:54:F8:C8:F6:5A:12:F3:43:99:15 X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.67.76.0/23 IPv6: 2001:df3:ec0::/48 Signature Algorithm: sha256WithRSAEncryption 55:d4:0f:03:a9:28:0d:b5:a6:77:69:c9:08:de:04:cd:a2:fa: 85:c6:2e:04:e1:1a:dd:14:e8:3c:d7:c8:0c:75:c9:8c:01:09: c8:e9:98:1e:4b:78:af:97:5c:87:b2:02:40:40:a7:ce:fe:cd: c5:0b:3d:38:3e:6e:cd:59:99:21:ab:bb:f5:37:e8:07:ca:40: 4f:d4:15:28:02:27:4e:72:7f:4f:b4:10:40:65:1a:d9:08:7b: 19:f1:95:e7:20:76:1d:8d:05:01:3f:9f:ff:7c:be:f6:b5:50: df:24:c4:ab:60:81:b6:f0:6b:90:4d:64:2a:33:e6:1f:9d:25: 90:1c:9b:09:0b:92:15:f7:fe:05:49:fb:24:45:b3:6d:ed:3d: 03:cd:5b:8f:e8:68:2c:06:2c:03:a1:55:d7:d9:0e:4a:71:3a: 19:90:77:d1:cf:78:16:2b:cf:24:2a:0d:36:49:51:1d:0c:47: bf:cc:be:10:18:d8:31:b8:bb:e4:b6:29:c9:7c:f9:4c:90:bc: 7f:c1:7f:88:5a:f2:e9:27:8c:24:9d:25:aa:69:30:d2:90:18: ae:8a:dd:31:3f:c5:c1:1c:df:89:e7:b8:f9:5b:9c:64:b7:c5: a7:f1:f6:e1:40:37:2e:71:f0:e8:2c:61:f8:0d:8a:e2:70:34: 96:5c:47:f2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY2NkQxMTAvBgNVBAUTKEFBOUEwRENCNTEzMTM5MkQ3MTk2QTg0NDE4QThBODQ2 NDU1MzFGOTcwHhcNMjYwNDAzMDMzNjMxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMzViZi0zODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9Cr5Eouk8gV2lj8cx5O3cAeQTnYh5AhaddSBJ4k/9uoVZAt1xc4Gdx1Y5Qf WytmYTU5dfjvNL823Gsrv9TT7X6L/haHbwDpuYB3wVW2fDUsuo5t0SqoMNZlBTgZ oNASe/KKkR/LjiHTVBZCzX1+OjrKTR9qrY9tyu1GTs5HeSs/0ltn/iz+r2ygexi8 nQeSu4C7sRCYw4UQ3t0fq9iIBTrineoBNsMOQkoNLu+7NwrNpVVGFUerrFOU7nfQ QQan/OsCsxfbWCz1A0q4KU2O/Ux7wzRWFJbr80iFY2VABMm1j6genbKKXBaIg+OL qnq9ODYLEqRdi+Kq1CteGyMzkwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIjG0NRN Ey56Oo1U+Mj2WhLzQ5kVMB8GA1UdIwQYMBaAFKqaDctRMTktcZaoRBioqEZFUx+X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjY2RC81MTFBODkyRTcx QTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9TMXhscWhFR0tpb1JrVlRI NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUY2NkQvNTExQTg5MkU3MUE4MTFFRUI0MzdGMTgxQzRGOUFFMDIvQzJENjZGODI3 MUE5MTFFRUFFRUUzNTFDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ0NMMA8EAgACMAkDBwAgAQ3zDsAwDQYJKoZIhvcNAQELBQADggEB AFXUDwOpKA21pndpyQjeBM2i+oXGLgThGt0U6DzXyAx1yYwBCcjpmB5LeK+XXIey AkBAp87+zcULPTg+bs1ZmSGru/U36AfKQE/UFSgCJ05yf0+0EEBlGtkIexnxlecg dh2NBQE/n/98vva1UN8kxKtggbbwa5BNZCoz5h+dJZAcmwkLkhX3/gVJ+yRFs23t PQPNW4/oaCwGLAOhVdfZDkpxOhmQd9HPeBYrzyQqDTZJUR0MR7/MvhAY2DG4u+S2 Kcl8+UyQvH/Bf4ha8uknjCSdJappMNKQGK6K3TE/xcEc34nnuPlbnGS3xafx9uFA Ny5x8OgsYfgNiuJwNJZcR/I= -----END CERTIFICATE-----Generated at Mon Apr 6 10:24:39 2026 by rpki-client