$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa File: F0326FAE4D0011E8A24EE324C4F9AE02.roa (raw, json) Hash identifier: jueJlQIp/n088nFesAl2o/XwQiao4sKjxZsgZFyb2lM= Subject key identifier: 88:C1:66:5A:CB:55:D0:63:C1:A7:BA:D4:92:8F:33:E0:96:28:2C:C5 Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 15D3 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa Signing time: Fri 22 May 2026 17:20:40 +0000 ROA not before: Fri 22 May 2026 17:20:40 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 137813 IP address blocks: 103.114.176.0/22 maxlen: 24 2402:d140::/32 maxlen: 32 2402:d140::/40 maxlen: 48 2402:d140:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 May 2026 17:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5587 (0x15d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: May 22 17:20:40 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a109068-a1cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e2:2c:f6:9f:85:9a:29:9b:26:b1:fd:b2:f8: 75:ec:ab:5e:e1:54:c6:5a:58:57:4c:2e:ef:e4:77: 47:05:dc:82:99:8b:95:8e:33:f5:0e:fe:1a:0e:1d: e7:bc:07:49:24:a3:05:3e:4e:13:96:93:ec:b2:5a: 9b:a1:6e:2e:7c:e3:84:d7:6b:75:ec:b3:31:06:10: da:fc:d7:c4:21:0c:d7:ec:c2:c4:5d:41:46:f4:a6: fc:c6:10:4e:58:db:cc:6a:45:8c:28:4d:f5:c6:fa: 5e:82:c6:3b:bd:cc:0b:d7:e1:ca:26:cf:b8:e0:0f: 89:7a:cf:5a:45:23:42:f7:6c:48:cb:90:82:e2:b3: ee:70:46:96:9b:f4:25:94:65:ed:b0:2d:95:7b:e5: b8:2d:08:3b:d3:91:43:8b:52:70:ce:27:61:43:ef: 9f:f6:d7:5e:0c:d0:c3:07:32:c7:6f:44:11:03:3f: 69:96:3b:4e:d9:73:fe:53:f9:4e:17:1f:e2:c3:0c: aa:5c:b2:b8:a0:c5:14:74:8f:fc:1a:c9:83:da:73: ad:fb:28:35:b3:f6:a8:6d:8a:ec:26:c9:3d:d5:12: b5:85:c3:8b:59:d5:84:8c:de:ff:71:81:00:14:a6: 9e:7b:58:54:89:f0:c3:0a:c6:8e:19:5f:bc:29:01: 1f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C1:66:5A:CB:55:D0:63:C1:A7:BA:D4:92:8F:33:E0:96:28:2C:C5 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/F0326FAE4D0011E8A24EE324C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.114.176.0/22 IPv6: 2402:d140::/32 Signature Algorithm: sha256WithRSAEncryption 06:e5:5c:70:b0:c5:69:8e:8a:e7:cc:6e:e2:6f:c6:d7:6e:aa: fa:4f:97:9b:27:28:72:ab:fb:b7:aa:10:b4:10:ad:ab:bf:c7: 5a:1c:32:30:e5:d0:f7:c9:1d:15:03:ed:a1:36:24:7b:6c:5d: fc:bf:a6:f2:c8:ff:c1:80:85:54:b9:5a:5e:67:b3:61:18:1e: d2:c1:59:7d:64:9d:af:bf:a7:eb:06:c3:d7:66:89:0e:8e:2d: da:d9:08:6b:b1:d7:9e:95:df:94:99:b5:f8:0a:92:d5:b7:1f: 75:a6:52:ce:d5:7a:79:51:25:ab:b2:07:b1:4e:bf:79:34:ef: 81:7b:67:7c:3b:ef:de:af:af:cc:b7:61:9c:66:a7:b4:8c:32: 84:e9:81:72:ee:3b:c9:48:d2:0c:8c:fd:34:16:3f:52:ce:6e: f1:17:cd:82:6d:c0:8c:64:8d:84:79:75:c4:15:38:e8:87:a5: 3d:59:31:e3:b4:dc:19:b0:26:a2:6a:7a:9d:a6:b7:77:5e:73: c0:2b:16:0d:72:2e:4d:8f:4f:97:a0:f6:f5:08:be:f3:87:fc: f7:d6:f6:1d:da:7a:f1:00:39:5b:61:cc:5e:21:10:13:2c:76: 88:d1:a2:51:5a:52:7b:bd:52:25:44:9a:4d:4f:d2:fe:e4:c4: 41:f5:e2:c5 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICFdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjYwNTIyMTcyMDQwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwOTA2OC1hMWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5OIs9p+FmimbJrH9svh17Kte4VTGWlhXTC7v5HdHBdyCmYuVjjP1Dv4aDh3n vAdJJKMFPk4TlpPsslqboW4ufOOE12t17LMxBhDa/NfEIQzX7MLEXUFG9Kb8xhBO WNvMakWMKE31xvpegsY7vcwL1+HKJs+44A+Jes9aRSNC92xIy5CC4rPucEaWm/Ql lGXtsC2Ve+W4LQg705FDi1JwzidhQ++f9tdeDNDDBzLHb0QRAz9pljtO2XP+U/lO Fx/iwwyqXLK4oMUUdI/8GsmD2nOt+yg1s/aobYrsJsk91RK1hcOLWdWEjN7/cYEA FKaee1hUifDDCsaOGV+8KQEfsQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIjBZlrL VdBjwae61JKPM+CWKCzFMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY1RTQvNzkzOTczMjA0RDAwMTFFOEEwMjZFMTRBQzRGOUFFMDIvRjAzMjZGQUU0 RDAwMTFFOEEyNEVFMzI0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3KwMA0EAgACMAcDBQAkAtFAMA0GCSqGSIb3DQEBCwUAA4IBAQAG 5VxwsMVpjornzG7ib8bXbqr6T5ebJyhyq/u3qhC0EK2rv8daHDIw5dD3yR0VA+2h NiR7bF38v6byyP/BgIVUuVpeZ7NhGB7SwVl9ZJ2vv6frBsPXZokOji3a2Qhrsdee ld+UmbX4CpLVtx91plLO1Xp5USWrsgexTr95NO+Be2d8O+/er6/Mt2GcZqe0jDKE 6YFy7jvJSNIMjP00Fj9Szm7xF82CbcCMZI2EeXXEFTjoh6U9WTHjtNwZsCaianqd prd3XnPAKxYNci5Nj0+XoPb1CL7zh/z31vYd2nrxADlbYcxeIRATLHaI0aJRWlJ7 vVIlRJpNT9L+5MRB9eLF -----END CERTIFICATE-----Generated at Sun May 24 05:20:57 2026 by rpki-client