$ rpki-client -vvf rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/7DD0E8845A3211EDB637E665C4F9AE02.roa File: 7DD0E8845A3211EDB637E665C4F9AE02.roa (raw, json) Hash identifier: eg3pUwfwQDE+9YQzOG9BMq0Bkyet7crQzC1+mV0wngc= Subject key identifier: 2C:40:30:CA:7C:F6:3F:26:9E:A4:34:3B:B8:F4:F6:F3:FC:D9:90:69 Certificate issuer: /CN=A91314BC/serialNumber=168415C0C13401C0D771571DF86F8CD5F8503B14 Certificate serial: 028A Authority key identifier: 16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/7DD0E8845A3211EDB637E665C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:17:00 +0000 ROA not before: Wed 19 Nov 2025 00:18:02 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150377 IP address blocks: 103.23.252.0/23 maxlen: 23 103.23.252.0/24 maxlen: 24 103.23.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 650 (0x28a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91314BC, serialNumber=168415C0C13401C0D771571DF86F8CD5F8503B14 Validity Not Before: Nov 19 00:18:02 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4586c-df5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:dd:64:6e:71:59:fd:b3:86:ee:bc:d0:cf: 39:d3:68:a3:ad:35:55:60:bf:58:91:75:49:42:fb: b8:02:17:3c:73:4f:ed:55:91:da:ff:cb:5a:ba:c0: 37:78:18:17:d2:32:f0:91:e0:2c:30:1d:ab:78:ee: 23:e8:6e:00:93:99:13:03:2c:f5:8d:6f:29:e9:6e: d3:0e:e0:be:63:63:c1:72:ef:96:19:70:cb:aa:c5: 9b:15:2a:0c:10:f5:87:a1:d7:cc:73:38:b2:b8:ad: 2a:ab:9e:35:de:8f:85:47:f8:ab:cb:20:7f:a2:97: 8f:db:d5:ae:c0:62:f5:10:89:33:e2:bf:0d:6a:3b: e4:55:46:34:c6:c4:22:78:88:11:25:e2:c4:01:4b: 42:5d:33:b6:cf:eb:9b:73:b2:3e:7a:c4:36:17:d5: c7:33:24:c9:6e:e5:f4:ce:d6:de:09:43:d2:8e:04: d0:aa:93:8d:74:4d:d1:77:ea:c1:e1:46:f4:8f:44: 78:8d:d7:43:cb:ed:1e:93:93:53:57:c5:95:5a:66: 03:bb:7a:2e:b8:20:6f:1b:02:52:ab:65:81:df:91: f1:eb:1e:8d:85:fd:d6:a8:d1:c7:cf:28:fa:ab:46: aa:e8:30:df:03:7c:8f:c1:70:31:dd:14:07:11:d0: a8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:40:30:CA:7C:F6:3F:26:9E:A4:34:3B:B8:F4:F6:F3:FC:D9:90:69 X509v3 Authority Key Identifier: keyid:16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/7DD0E8845A3211EDB637E665C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.252.0/23 Signature Algorithm: sha256WithRSAEncryption 04:d2:f4:0c:47:dd:d7:28:9a:cf:9c:d7:78:a1:48:c0:bc:6b: 8e:4c:e1:a3:da:42:39:af:51:64:22:6b:9e:0d:82:4a:9c:be: e6:a5:88:52:21:34:07:d7:db:5d:78:b2:ad:77:07:4d:f8:5e: ec:c6:8e:1b:fb:9c:8d:9c:d1:65:bf:a9:7a:59:5f:87:13:37: 15:b3:b4:11:f9:51:22:0d:8e:cf:9f:09:d5:a7:d5:c7:36:2b: bd:84:db:52:20:5c:c6:3a:32:30:42:04:45:ca:15:2a:3f:7b: 92:32:56:88:be:05:71:1e:c5:a0:dc:80:42:18:b4:79:17:90: f9:4d:84:d0:78:2e:e6:f6:20:d7:3a:1e:62:71:45:0e:84:e1: 28:9a:1b:6b:5c:1a:41:a2:cf:02:01:b0:3c:12:22:50:d4:0d: dc:22:29:fb:87:7b:6e:21:08:bc:02:08:47:9b:28:81:e3:84: 1d:d3:9c:b7:04:28:75:67:98:19:8f:f3:9d:3a:22:55:2f:5a: 14:13:8d:75:46:46:be:74:3b:68:e5:92:bc:bf:7a:24:a7:a9: 87:46:5c:9a:e2:07:e8:ee:18:18:1f:1a:a5:b4:07:82:0f:bd: 94:a1:ff:8f:b7:34:ed:dd:d2:71:b0:e6:71:e9:62:78:3a:07: 22:3e:e2:cb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0QkMxMTAvBgNVBAUTKDE2ODQxNUMwQzEzNDAxQzBENzcxNTcxREY4NkY4Q0Q1 Rjg1MDNCMTQwHhcNMjUxMTE5MDAxODAyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTg2Yy1kZjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9TdZG5xWf2zhu680M8502ijrTVVYL9YkXVJQvu4Ahc8c0/tVZHa/8tausA3 eBgX0jLwkeAsMB2reO4j6G4Ak5kTAyz1jW8p6W7TDuC+Y2PBcu+WGXDLqsWbFSoM EPWHodfMcziyuK0qq5413o+FR/iryyB/opeP29WuwGL1EIkz4r8NajvkVUY0xsQi eIgRJeLEAUtCXTO2z+ubc7I+esQ2F9XHMyTJbuX0ztbeCUPSjgTQqpONdE3Rd+rB 4Ub0j0R4jddDy+0ek5NTV8WVWmYDu3ouuCBvGwJSq2WB35Hx6x6Nhf3WqNHHzyj6 q0aq6DDfA3yPwXAx3RQHEdCopwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCxAMMp8 9j8mnqQ0O7j09vP82ZBpMB8GA1UdIwQYMBaAFBaEFcDBNAHA13FXHfhvjNX4UDsU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTRCQy83RkQwMTY2QzVB MkYxMUVEQTE5RTVFNjFDNEY5QUUwMi9Gb1FWd01FMEFjRFhjVmNkLUctTTFmaFFP eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZvUVZ3TUUwQWNEWGNWY2QtRy1NMWZoUU94US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE0QkMvN0ZEMDE2NkM1QTJGMTFFREExOUU1RTYxQzRGOUFFMDIvN0REMEU4ODQ1 QTMyMTFFREI2MzdFNjY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxf8MA0GCSqGSIb3DQEBCwUAA4IBAQAE0vQMR93XKJrPnNd4oUjA vGuOTOGj2kI5r1FkImueDYJKnL7mpYhSITQH19tdeLKtdwdN+F7sxo4b+5yNnNFl v6l6WV+HEzcVs7QR+VEiDY7PnwnVp9XHNiu9hNtSIFzGOjIwQgRFyhUqP3uSMlaI vgVxHsWg3IBCGLR5F5D5TYTQeC7m9iDXOh5icUUOhOEomhtrXBpBos8CAbA8EiJQ 1A3cIin7h3tuIQi8AghHmyiB44Qd05y3BCh1Z5gZj/OdOiJVL1oUE411Rka+dDto 5ZK8v3okp6mHRlya4gfo7hgYHxqltAeCD72Uof+PtzTt3dJxsOZx6WJ4OgciPuLL -----END CERTIFICATE-----Generated at Mon Mar 2 07:41:04 2026 by rpki-client