$ rpki-client -vvf rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/E0A69DBC2AB311EE9CA5E515C4F9AE02.roa File: E0A69DBC2AB311EE9CA5E515C4F9AE02.roa (raw, json) Hash identifier: yd8nZQYXpuBuXMJow036oPSXKDSenHOrq9DNYBNpxgI= Subject key identifier: 1C:67:49:83:3C:54:C5:2D:FD:9A:0F:DE:40:AE:34:69:6A:BA:B5:9F Certificate issuer: /CN=A91F05B5/serialNumber=095F6C6BB387C6932FDA01C0BFA626F6AAC7BB00 Certificate serial: 0213 Authority key identifier: 09:5F:6C:6B:B3:87:C6:93:2F:DA:01:C0:BF:A6:26:F6:AA:C7:BB:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/E0A69DBC2AB311EE9CA5E515C4F9AE02.roa Signing time: Thu 23 Apr 2026 08:59:02 +0000 ROA not before: Thu 23 Apr 2026 08:59:02 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 131267 IP address blocks: 103.1.28.0/22 maxlen: 24 183.182.96.0/19 maxlen: 24 2407:4280::/32 maxlen: 32 2407:4280::/33 maxlen: 33 2407:4280::/48 maxlen: 48 2407:4280:1::/48 maxlen: 48 2407:4280:2::/48 maxlen: 48 2407:4280:3::/48 maxlen: 48 2407:4280:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.crl rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 02:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F05B5, serialNumber=095F6C6BB387C6932FDA01C0BFA626F6AAC7BB00 Validity Not Before: Apr 23 08:59:02 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69e9df56-7113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cf:80:92:ee:b4:cc:14:29:75:46:75:1c:b3: f7:9b:69:bf:3f:28:9b:1e:de:11:19:92:05:66:c9: 86:ea:56:5a:b0:b2:ce:23:d3:32:34:89:27:ba:3f: a6:c9:b6:27:2d:dd:b3:c0:37:ad:c6:fa:0c:f1:77: 3c:4f:64:2e:54:82:11:e3:af:2f:38:64:4b:65:4e: cb:32:5d:47:ab:fa:b2:02:0a:1f:ca:64:ba:15:e4: 9b:84:1f:be:b0:24:ef:01:bf:41:50:e6:6c:10:05: 53:f5:cf:2b:d0:07:7b:da:e6:80:67:f7:64:d7:ea: c2:08:01:88:fe:22:d0:20:27:15:56:70:b4:63:bd: 54:f7:a1:32:31:03:bf:b9:a5:ee:e6:c2:c5:fd:48: 4f:c2:3f:3e:d2:06:d7:99:19:d5:d2:c0:3a:c7:d8: d9:98:ea:c1:46:1a:a2:f0:c6:87:05:9a:6a:9c:c7: 8e:12:12:33:91:68:fb:8c:46:ce:5f:d5:da:1c:d4: de:fa:8a:37:0e:76:09:06:bc:5d:8b:69:4b:96:26: 40:f9:19:33:8d:56:60:0a:8b:df:b8:58:a8:f4:a8: 50:2d:e7:61:80:26:e6:7c:bf:a1:c9:32:1b:32:3b: cb:f1:5d:b9:b4:bd:d9:97:72:99:c2:76:b2:02:4e: 01:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:67:49:83:3C:54:C5:2D:FD:9A:0F:DE:40:AE:34:69:6A:BA:B5:9F X509v3 Authority Key Identifier: keyid:09:5F:6C:6B:B3:87:C6:93:2F:DA:01:C0:BF:A6:26:F6:AA:C7:BB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CV9sa7OHxpMv2gHAv6Ym9qrHuwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F05B5/475012062AB311EE8FAE7214C4F9AE02/E0A69DBC2AB311EE9CA5E515C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.1.28.0/22 183.182.96.0/19 IPv6: 2407:4280::/32 Signature Algorithm: sha256WithRSAEncryption 5b:86:ce:39:6f:c9:8a:0e:fa:1d:b5:8c:4d:5b:64:3c:8f:dd: de:cb:36:22:80:cd:78:7a:86:ed:47:84:53:4a:82:3a:72:75: d6:2f:f4:20:de:bd:d8:13:7a:b6:85:d5:c2:3f:3f:e5:46:ab: 81:6f:b9:1a:d9:75:5d:19:31:b6:79:38:8b:9e:d1:f8:2b:78: a9:19:c4:fc:cd:f8:f8:f6:9d:bc:b5:87:7b:a5:75:83:c9:da: ff:46:59:95:76:86:18:43:e7:ee:f4:30:6a:f3:01:81:71:4d: 4a:58:fb:7c:6f:db:38:96:cb:93:c7:a1:a5:cf:c2:09:2a:b9: 05:c5:f8:8f:7c:33:23:8c:28:ba:24:74:3d:06:ac:20:31:52: cf:b1:31:3e:e1:f4:cf:38:12:16:b4:1d:c5:63:56:72:9d:3d: f4:46:4e:c6:8d:49:5f:0c:ba:f1:45:6d:a7:88:3a:6a:ea:03: 82:ac:ba:96:c0:ca:a1:6f:f2:72:01:89:c0:0f:e3:16:38:f3: e1:be:30:ce:03:b4:f3:57:7a:1b:7a:c2:98:0a:32:03:51:b8: f3:74:e6:ef:fb:b0:ed:b8:5f:b1:95:56:76:4a:3d:0b:33:94: 95:b9:80:4d:ed:bf:5c:8c:80:12:eb:fc:1b:4b:61:74:02:21: de:86:8c:81 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1QjUxMTAvBgNVBAUTKDA5NUY2QzZCQjM4N0M2OTMyRkRBMDFDMEJGQTYyNkY2 QUFDN0JCMDAwHhcNMjYwNDIzMDg1OTAyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU5ZGY1Ni03MTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1M+Aku60zBQpdUZ1HLP3m2m/PyibHt4RGZIFZsmG6lZasLLOI9MyNIknuj+m ybYnLd2zwDetxvoM8Xc8T2QuVIIR468vOGRLZU7LMl1Hq/qyAgofymS6FeSbhB++ sCTvAb9BUOZsEAVT9c8r0Ad72uaAZ/dk1+rCCAGI/iLQICcVVnC0Y71U96EyMQO/ uaXu5sLF/UhPwj8+0gbXmRnV0sA6x9jZmOrBRhqi8MaHBZpqnMeOEhIzkWj7jEbO X9XaHNTe+oo3DnYJBrxdi2lLliZA+RkzjVZgCovfuFio9KhQLedhgCbmfL+hyTIb MjvL8V25tL3Zl3KZwnayAk4BhQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFBxnSYM8 VMUt/ZoP3kCuNGlqurWfMB8GA1UdIwQYMBaAFAlfbGuzh8aTL9oBwL+mJvaqx7sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDVCNS80NzUwMTIwNjJB QjMxMUVFOEZBRTcyMTRDNEY5QUUwMi9DVjlzYTdPSHhwTXYyZ0hBdjZZbTlxckh1 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWOXNhN09IeHBNdjJnSEF2NlltOXFySHV3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA1QjUvNDc1MDEyMDYyQUIzMTFFRThGQUU3MjE0QzRGOUFFMDIvRTBBNjlEQkMy QUIzMTFFRTlDQTVFNTE1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZwEcAwQFt7ZgMA0EAgACMAcDBQAkB0KAMA0GCSqGSIb3DQEBCwUA A4IBAQBbhs45b8mKDvodtYxNW2Q8j93eyzYigM14eobtR4RTSoI6cnXWL/Qg3r3Y E3q2hdXCPz/lRquBb7ka2XVdGTG2eTiLntH4K3ipGcT8zfj49p28tYd7pXWDydr/ RlmVdoYYQ+fu9DBq8wGBcU1KWPt8b9s4lsuTx6Glz8IJKrkFxfiPfDMjjCi6JHQ9 BqwgMVLPsTE+4fTPOBIWtB3FY1ZynT30Rk7GjUlfDLrxRW2niDpq6gOCrLqWwMqh b/JyAYnAD+MWOPPhvjDOA7TzV3obesKYCjIDUbjzdObv+7DtuF+xlVZ2Sj0LM5SV uYBN7b9cjIAS6/wbS2F0AiHehoyB -----END CERTIFICATE-----Generated at Tue Apr 28 23:10:33 2026 by rpki-client