$ rpki-client -vvf rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/07332486B1D111EBA956F96AC4F9AE02.roa File: 07332486B1D111EBA956F96AC4F9AE02.roa (raw, json) Hash identifier: fipC8fnuwGfyjeMJXsenerqMyqmtrvp5/f9MWaX5s6c= Subject key identifier: 59:9D:9C:74:3A:9B:B2:D9:1C:B2:33:F4:BC:2B:14:0D:1F:93:00:6F Certificate issuer: /CN=A91127A2/serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Certificate serial: 067F Authority key identifier: A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/07332486B1D111EBA956F96AC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:35:51 +0000 ROA not before: Tue 30 Sep 2025 23:25:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136960 IP address blocks: 103.100.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1663 (0x67f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127A2, serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Validity Not Before: Sep 30 23:25:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a432a7-e32d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:99:c1:2b:1d:36:20:fe:75:1f:5b:52:80:fb: 40:3e:fa:4d:41:ee:76:51:de:c8:a9:f5:45:48:ff: db:f2:5c:2c:04:1d:1e:15:30:6b:18:cb:5c:f0:74: e8:bd:fe:8c:7a:18:16:12:b4:7c:4e:56:c9:ed:82: c9:0b:f5:28:b3:39:42:94:05:82:ed:fb:28:10:a3: 37:09:e3:ad:81:37:cc:b0:7b:da:76:ca:76:ba:66: d7:04:f6:85:9f:84:e2:0c:5e:66:80:4e:ca:82:15: fe:3a:ed:67:3b:93:a8:5d:fa:fc:0e:06:c5:dc:b5: 18:e5:99:62:21:17:0b:92:d2:d5:e9:40:bd:36:cc: 4d:3d:9c:c9:bd:14:f1:b2:06:78:02:ed:6e:99:09: 3e:d0:25:4c:f0:be:2a:59:23:d4:8e:b5:14:12:b4: 7d:68:68:9e:ae:f1:56:46:16:82:98:50:ca:48:25: 9e:8d:37:c6:59:7a:45:ff:bb:85:26:c7:9b:17:75: b6:46:0d:66:9b:b5:a6:d6:3a:34:d9:31:30:45:02: a9:90:9f:48:9d:3a:2f:c4:bb:ed:15:c6:e5:54:b3: a0:88:3a:65:9c:f1:a8:c0:2b:9d:f3:9b:3a:f1:f2: 9e:94:ee:12:0b:35:a6:01:9a:2c:e7:46:71:3b:8a: 46:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9D:9C:74:3A:9B:B2:D9:1C:B2:33:F4:BC:2B:14:0D:1F:93:00:6F X509v3 Authority Key Identifier: keyid:A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/07332486B1D111EBA956F96AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.100.86.0/23 Signature Algorithm: sha256WithRSAEncryption 43:76:8c:4a:84:9e:a0:7c:56:00:1a:4f:3f:04:80:5c:af:a9: 46:96:1e:20:6b:32:89:bc:47:eb:1e:f0:a4:d0:45:fb:01:9f: b2:3f:1b:fa:45:e5:3a:69:1b:a5:11:d1:ff:63:eb:30:02:a9: 75:87:4a:c6:b1:50:d5:7f:11:0f:fd:7b:55:78:6f:69:ae:0b: 9c:7c:4f:ca:0a:ce:ae:5d:51:e0:06:5f:da:30:2f:e5:00:6a: f1:75:88:1c:d3:83:1b:3f:a3:c0:70:74:a9:c6:87:53:12:d4: 1c:a4:34:72:33:dd:f0:57:dd:d9:82:50:dc:83:75:0b:51:2f: 75:88:57:4f:7e:ec:b5:59:d2:3c:6b:bc:ae:90:e4:0a:03:9e: 29:7a:19:04:99:51:86:98:a0:c7:ed:42:c4:ae:a8:7d:d6:a0: 99:b3:f0:e8:fe:99:f2:e1:87:ac:bb:93:8a:79:1e:b8:eb:aa: df:73:eb:c6:e1:21:dc:7b:ff:cc:58:26:4f:38:ab:0b:3e:70: 02:2a:6d:1f:39:a2:5a:ce:66:4c:89:b9:14:7f:97:8e:cf:bd: 65:3c:c9:44:8f:4d:4c:7a:71:60:67:04:2e:69:d4:c1:f4:e2: 7d:9d:11:de:e4:6d:06:97:dc:db:5a:da:ab:91:bb:a2:71:fd: a0:cc:eb:4d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QTIxMTAvBgNVBAUTKEE5MjFDRjg4RDhDODlFMEJBQ0Q0RUUxODUzOEMzM0Iy NzhBOTU5MkMwHhcNMjUwOTMwMjMyNTI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzJhNy1lMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJnBKx02IP51H1tSgPtAPvpNQe52Ud7IqfVFSP/b8lwsBB0eFTBrGMtc8HTo vf6MehgWErR8TlbJ7YLJC/UoszlClAWC7fsoEKM3CeOtgTfMsHvadsp2umbXBPaF n4TiDF5mgE7KghX+Ou1nO5OoXfr8DgbF3LUY5ZliIRcLktLV6UC9NsxNPZzJvRTx sgZ4Au1umQk+0CVM8L4qWSPUjrUUErR9aGiervFWRhaCmFDKSCWejTfGWXpF/7uF JsebF3W2Rg1mm7Wm1jo02TEwRQKpkJ9InTovxLvtFcblVLOgiDplnPGowCud85s6 8fKelO4SCzWmAZos50ZxO4pGjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFmdnHQ6 m7LZHLIz9LwrFA0fkwBvMB8GA1UdIwQYMBaAFKkhz4jYyJ4LrNTuGFOMM7J4qVks MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdBMi9EMUNENTQ1OEIx Q0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5ndXMxTzRZVTR3enNuaXBX U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTSFBpTmpJbmd1czFPNFlVNHd6c25pcFdTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3QTIvRDFDRDU0NThCMUNFMTFFQjhGRjFDMDY3QzRGOUFFMDIvMDczMzI0ODZC MUQxMTFFQkE5NTZGOTZBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2RWMA0GCSqGSIb3DQEBCwUAA4IBAQBDdoxKhJ6gfFYAGk8/BIBc r6lGlh4gazKJvEfrHvCk0EX7AZ+yPxv6ReU6aRulEdH/Y+swAql1h0rGsVDVfxEP /XtVeG9prgucfE/KCs6uXVHgBl/aMC/lAGrxdYgc04MbP6PAcHSpxodTEtQcpDRy M93wV93ZglDcg3ULUS91iFdPfuy1WdI8a7yukOQKA54pehkEmVGGmKDH7ULErqh9 1qCZs/Do/pny4Yesu5OKeR6466rfc+vG4SHce//MWCZPOKsLPnACKm0fOaJazmZM ibkUf5eOz71lPMlEj01MenFgZwQuadTB9OJ9nRHe5G0Gl9zbWtqrkbuicf2gzOtN -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:50 2026 by rpki-client