$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/B5018AB0F2F111F08D4F09A1476F56BC.roa File: B5018AB0F2F111F08D4F09A1476F56BC.roa (raw, json) Hash identifier: tpT68E0M3mFJ+XcHkcNvjHUefCfKea/pcyuU4Yj5Ha8= Subject key identifier: 46:59:7A:83:D4:17:03:42:68:DC:21:97:80:2E:73:E3:C5:B9:78:84 Certificate issuer: /CN=A91275FB/serialNumber=26199C5F6189E02EC516853919E15BA601D7C85F Certificate serial: 18A3 Authority key identifier: 26:19:9C:5F:61:89:E0:2E:C5:16:85:39:19:E1:5B:A6:01:D7:C8:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/B5018AB0F2F111F08D4F09A1476F56BC.roa Signing time: Sun 01 Mar 2026 17:39:13 +0000 ROA not before: Fri 16 Jan 2026 15:40:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135636 IP address blocks: 103.77.76.0/23 maxlen: 23 103.77.76.0/24 maxlen: 24 103.77.77.0/24 maxlen: 24 103.77.78.0/24 maxlen: 24 2407:8f80::/32 maxlen: 32 2407:8f80:88::/48 maxlen: 48 2407:8f80:99::/48 maxlen: 48 2407:8f80:12ac::/48 maxlen: 48 2407:8f80:8000::/36 maxlen: 36 2407:8f80:8003::/48 maxlen: 48 2407:8f80:8080::/48 maxlen: 48 2407:8f80:a51a::/48 maxlen: 48 2407:8f80:b003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6307 (0x18a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FB, serialNumber=26199C5F6189E02EC516853919E15BA601D7C85F Validity Not Before: Jan 16 15:40:39 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a479c1-873a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:25:b9:5e:54:ce:2a:4c:8e:10:3b:7d:0a:8e: de:6d:95:86:45:fe:29:72:c2:13:00:d5:a3:06:4b: 26:34:52:ec:cd:02:45:4f:db:af:13:20:e4:4a:fa: 0c:3f:2c:db:3f:19:17:09:b5:9d:6a:d2:0c:58:6a: 3b:e1:b8:b1:33:03:73:fe:2c:ed:ac:2c:47:a1:9a: 53:3e:a5:26:c6:d9:fc:3f:c9:87:05:53:79:7c:0a: d2:a9:d0:a8:5b:a1:8f:3f:f0:c8:7e:16:43:c8:9f: 03:03:18:85:1d:80:b9:14:0b:8f:fa:9f:e8:df:0d: 6f:36:6a:a3:98:60:a0:d1:4b:e4:a3:15:c6:b7:26: b3:7b:c5:27:a1:e7:d2:d4:65:f2:85:c3:88:d2:2e: cd:27:e6:96:d8:c5:ef:a0:98:3b:ae:b7:bf:d0:49: 5e:61:11:58:a3:6c:83:b3:dc:cc:aa:7e:30:08:ca: c8:74:68:ed:b5:8e:41:ce:cd:87:a7:c0:25:e9:79: a8:3b:eb:67:47:da:db:f1:a0:db:c7:c4:af:8e:7f: 69:d0:29:d6:aa:2a:2c:14:99:cb:19:7e:3a:b0:b7: 36:9e:af:a1:22:0c:a5:6c:65:fa:2c:7a:6a:96:06: 7e:36:a7:15:45:e1:b6:9a:c9:cf:7b:87:29:94:79: 96:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:59:7A:83:D4:17:03:42:68:DC:21:97:80:2E:73:E3:C5:B9:78:84 X509v3 Authority Key Identifier: keyid:26:19:9C:5F:61:89:E0:2E:C5:16:85:39:19:E1:5B:A6:01:D7:C8:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhmcX2GJ4C7FFoU5GeFbpgHXyF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FB/FDDB88DCC21011E7920A955DC4F9AE02/B5018AB0F2F111F08D4F09A1476F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.77.76.0-103.77.78.255 IPv6: 2407:8f80::/32 Signature Algorithm: sha256WithRSAEncryption 66:46:46:87:9e:8b:a0:7c:92:fb:97:80:e8:28:a0:63:58:0b: 7f:b2:8a:d5:49:69:e6:fe:23:b1:71:d7:be:93:2d:37:41:34: ba:b3:ce:c0:16:da:f1:e5:92:7a:8d:88:1f:99:19:47:fc:10: 59:5f:a9:a1:f0:55:02:44:89:42:e8:dc:31:cb:5b:0e:a4:54: b7:fb:95:50:b5:89:43:71:71:ca:e8:73:6b:1e:a0:23:04:16: ed:51:03:67:ef:a0:3d:b6:06:aa:78:a7:94:1e:1f:14:c0:07: df:ec:71:47:40:a3:a6:a0:99:53:a3:71:d1:ba:04:51:a8:58: 7b:11:d8:0a:19:5a:69:e9:ef:7e:6d:d4:30:46:f4:59:f7:a0: 48:97:e4:50:ac:f0:27:b3:d9:e0:7b:66:e2:6a:56:4e:a7:16: b9:48:36:f4:69:8e:71:1e:9b:87:10:94:dd:21:0f:f2:fd:8e: 1e:ef:84:92:41:1e:4f:f5:a3:02:83:26:72:1c:18:64:75:c6: 8a:28:39:40:9e:ac:1f:31:f5:47:c0:ec:86:a3:7a:4a:1f:92: ab:2b:d5:7e:48:af:19:b7:18:8b:97:bb:a7:0a:aa:56:0d:46: 03:b5:85:0f:73:67:c3:bb:62:46:c6:03:50:1b:be:ae:74:d7: da:32:d9:af -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICGKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkIxMTAvBgNVBAUTKDI2MTk5QzVGNjE4OUUwMkVDNTE2ODUzOTE5RTE1QkE2 MDFEN0M4NUYwHhcNMjYwMTE2MTU0MDM5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzljMS04NzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSW5XlTOKkyOEDt9Co7ebZWGRf4pcsITANWjBksmNFLszQJFT9uvEyDkSvoM PyzbPxkXCbWdatIMWGo74bixMwNz/iztrCxHoZpTPqUmxtn8P8mHBVN5fArSqdCo W6GPP/DIfhZDyJ8DAxiFHYC5FAuP+p/o3w1vNmqjmGCg0UvkoxXGtyaze8UnoefS 1GXyhcOI0i7NJ+aW2MXvoJg7rre/0EleYRFYo2yDs9zMqn4wCMrIdGjttY5Bzs2H p8Al6XmoO+tnR9rb8aDbx8Svjn9p0CnWqiosFJnLGX46sLc2nq+hIgylbGX6LHpq lgZ+NqcVReG2msnPe4cplHmWWQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFEZZeoPU FwNCaNwhl4Auc+PFuXiEMB8GA1UdIwQYMBaAFCYZnF9hieAuxRaFORnhW6YB18hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGQi9GRERCODhEQ0My MTAxMUU3OTIwQTk1NURDNEY5QUUwMi9KaG1jWDJHSjRDN0ZGb1U1R2VGYnBnSFh5 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pobWNYMkdKNEM3RkZvVTVHZUZicGdIWHlGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1RkIvRkREQjg4RENDMjEwMTFFNzkyMEE5NTVEQzRGOUFFMDIvQjUwMThBQjBG MkYxMTFGMDhENEYwOUExNDc2RjU2QkMucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBAJnTUwDBABnTU4wDQQCAAIwBwMFACQHj4AwDQYJKoZIhvcNAQEL BQADggEBAGZGRoeei6B8kvuXgOgooGNYC3+yitVJaeb+I7Fx176TLTdBNLqzzsAW 2vHlknqNiB+ZGUf8EFlfqaHwVQJEiULo3DHLWw6kVLf7lVC1iUNxccroc2seoCME Fu1RA2fvoD22Bqp4p5QeHxTAB9/scUdAo6agmVOjcdG6BFGoWHsR2AoZWmnp735t 1DBG9Fn3oEiX5FCs8Cez2eB7ZuJqVk6nFrlINvRpjnEem4cQlN0hD/L9jh7vhJJB Hk/1owKDJnIcGGR1xoooOUCerB8x9UfA7Iajekofkqsr1X5Irxm3GIuXu6cKqlYN RgO1hQ9zZ8O7YkbGA1Abvq5019oy2a8= -----END CERTIFICATE-----Generated at Mon Mar 2 13:10:14 2026 by rpki-client