$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa File: CE3C7EF66FEB11EB91967864C4F9AE02.roa (raw, json) Hash identifier: PoMZXZYHdteODhPAtacBWSXCAi/gVbSsN+xQtOQaEQU= Subject key identifier: 2C:0B:03:E5:20:FD:82:8E:03:F0:CC:B2:6F:86:9E:BA:9F:8E:E2:F3 Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0D38 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa Signing time: Thu 28 May 2026 17:21:25 +0000 ROA not before: Thu 28 May 2026 17:21:25 +0000 ROA not after: Sun 31 Oct 2027 00:00:00 +0000 asID: 18053 IP address blocks: 103.137.24.0/22 maxlen: 22 118.107.128.0/20 maxlen: 20 118.107.128.0/24 maxlen: 24 2404:8300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: May 28 17:21:25 2026 GMT Not After : Oct 31 00:00:00 2027 GMT Subject: CN=6a187995-70be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:21:f3:5c:e1:74:e1:de:91:87:8e:4d:86:dd: ed:08:f3:d3:a2:83:29:a0:f8:1a:16:16:40:b7:2b: 39:18:42:0d:88:c8:1d:f2:23:cb:05:57:44:7c:d4: e4:9c:26:8e:0e:9e:e9:3e:a3:c0:71:41:78:db:d1: 37:4f:b7:fd:6d:76:63:c4:d9:b3:b9:9d:db:77:8b: 2e:6a:da:4d:8e:01:df:73:72:03:bd:56:ec:a1:7f: 43:f9:f9:49:c8:be:fe:32:28:65:37:0c:37:cb:88: b8:fc:ef:2c:13:f9:02:a4:eb:9e:12:a6:3d:41:ae: 2a:66:22:51:ea:49:94:bf:fc:fc:9f:c2:c0:a4:9f: a4:34:4f:84:5a:3f:df:8f:41:60:84:0a:09:9e:fc: 5d:de:ae:e0:c0:30:50:8e:1d:a5:11:b5:82:83:43: 18:08:11:66:da:92:d0:b8:f1:b2:b3:ad:60:8c:78: 29:60:f2:f8:8d:f6:b0:64:8b:d2:c9:b5:6e:b5:74: 27:fb:1a:43:0a:64:ba:19:f9:87:f5:61:4c:51:83: 13:d2:d3:22:4c:6f:6f:c0:7e:42:6d:e1:77:d5:b2: a5:27:82:27:20:a4:7d:82:b4:40:f2:b1:fb:91:a7: bc:17:a0:93:13:ca:5b:1b:ca:e8:64:f2:3e:74:2e: 29:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0B:03:E5:20:FD:82:8E:03:F0:CC:B2:6F:86:9E:BA:9F:8E:E2:F3 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.24.0/22 118.107.128.0/20 IPv6: 2404:8300::/32 Signature Algorithm: sha256WithRSAEncryption bf:4f:25:9c:c7:1a:b3:c3:81:67:8b:bb:dc:20:b3:cd:4f:af: e9:95:44:7a:27:f2:8d:d4:44:98:40:f0:f1:0c:f3:91:0c:7a: 71:bc:b5:96:42:2d:5f:bf:19:be:11:85:32:19:fc:ac:66:4b: 27:fc:4f:3f:e0:a9:03:04:d5:f3:5a:fa:7f:51:0a:00:d6:7e: 58:36:d3:fb:0f:9b:e8:2c:b6:dd:3d:48:f4:3b:80:f3:fe:49: 45:df:df:13:aa:ae:28:d8:f5:32:8d:c4:1f:50:c9:9c:10:ad: 3a:7f:f9:35:6b:54:1b:df:b4:92:a3:7b:f8:99:85:6f:3e:75: da:67:b8:85:fc:96:e6:f7:9e:62:47:bf:22:81:34:40:ee:5b: 5a:5d:05:29:eb:81:66:e6:3a:c4:9b:a9:24:1b:2c:df:8f:da: 87:56:eb:ad:3e:fa:67:91:c3:55:d6:94:23:04:b0:f6:48:03: f3:b1:b5:f6:ee:d7:15:29:6b:95:4b:b1:3a:0e:61:92:f5:a4: 74:85:66:f5:91:e6:35:b2:f7:54:56:78:71:f0:8f:12:e0:ce: 7e:b2:30:69:3e:aa:9d:4b:a9:1a:c0:40:0a:60:f4:31:3b:65: 37:42:17:c8:70:d8:2f:80:6c:a0:9f:4a:c7:90:14:09:94:b8: 10:e0:23:03 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjYwNTI4MTcyMTI1WhcNMjcxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE4Nzk5NS03MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSHzXOF04d6Rh45Nht3tCPPTooMpoPgaFhZAtys5GEINiMgd8iPLBVdEfNTk nCaODp7pPqPAcUF429E3T7f9bXZjxNmzuZ3bd4suatpNjgHfc3IDvVbsoX9D+flJ yL7+MihlNww3y4i4/O8sE/kCpOueEqY9Qa4qZiJR6kmUv/z8n8LApJ+kNE+EWj/f j0FghAoJnvxd3q7gwDBQjh2lEbWCg0MYCBFm2pLQuPGys61gjHgpYPL4jfawZIvS ybVutXQn+xpDCmS6GfmH9WFMUYMT0tMiTG9vwH5CbeF31bKlJ4InIKR9grRA8rH7 kae8F6CTE8pbG8roZPI+dC4pRQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFCwLA+Ug /YKOA/DMsm+GnrqfjuLzMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBBRjAvRTM3NjI5NTAwRkZGMTFFOTg4MTVBRTIyQzRGOUFFMDIvQ0UzQzdFRjY2 RkVCMTFFQjkxOTY3ODY0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ4kYAwQEdmuAMA0EAgACMAcDBQAkBIMAMA0GCSqGSIb3DQEBCwUA A4IBAQC/TyWcxxqzw4Fni7vcILPNT6/plUR6J/KN1ESYQPDxDPORDHpxvLWWQi1f vxm+EYUyGfysZksn/E8/4KkDBNXzWvp/UQoA1n5YNtP7D5voLLbdPUj0O4Dz/klF 398Tqq4o2PUyjcQfUMmcEK06f/k1a1Qb37SSo3v4mYVvPnXaZ7iF/Jbm955iR78i gTRA7ltaXQUp64Fm5jrEm6kkGyzfj9qHVuutPvpnkcNV1pQjBLD2SAPzsbX27tcV KWuVS7E6DmGS9aR0hWb1keY1svdUVnhx8I8S4M5+sjBpPqqdS6kawEAKYPQxO2U3 QhfIcNgvgGygn0rHkBQJlLgQ4CMD -----END CERTIFICATE-----Generated at Fri Jun 12 19:00:42 2026 by rpki-client