$ rpki-client -vvf rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa File: E7DBE2945B6A11EE8C05CA59C4F9AE02.roa (raw, json) Hash identifier: lXCrh/WMvkDpc6n4ZnZrvnnwgqcvP31VsrQGLPZjH+Y= Subject key identifier: 9A:DB:A1:E0:D6:B8:F2:24:6C:C6:E2:F0:52:35:EA:DD:35:3F:86:D1 Certificate issuer: /CN=A91374BB/serialNumber=B312C22F3D0B97BAAF3273E5C66B8F140203E2F9 Certificate serial: 01CD Authority key identifier: B3:12:C2:2F:3D:0B:97:BA:AF:32:73:E5:C6:6B:8F:14:02:03:E2:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:39:00 +0000 ROA not before: Mon 03 Mar 2025 06:30:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132170 IP address blocks: 103.6.163.0/24 maxlen: 24 103.26.44.0/24 maxlen: 24 103.26.45.0/24 maxlen: 24 103.26.46.0/24 maxlen: 24 2001:df0:2a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.crl rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91374BB, serialNumber=B312C22F3D0B97BAAF3273E5C66B8F140203E2F9 Validity Not Before: Mar 3 06:30:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3df04-b1f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e6:fb:1c:03:0a:42:51:49:9a:48:98:e3:d2: a3:2c:ba:94:c3:4b:7a:4e:48:0c:4a:1a:79:c3:28: e0:33:72:90:7f:9f:b3:4d:68:96:8f:18:74:6e:10: 8d:06:09:72:54:88:00:c4:38:e1:b4:e5:5f:fc:3b: 85:6d:27:aa:70:75:1f:ab:1b:ea:aa:b6:0a:2e:d1: c1:39:e0:7c:6b:7a:4c:13:82:67:3d:61:0e:82:2d: b5:b1:13:cc:5d:32:9e:e1:df:8c:ab:22:dd:52:e5: b5:1b:48:b9:df:8d:b7:9b:dd:c0:73:0e:c2:f1:05: 84:c3:1b:e4:73:44:56:2c:d2:15:5f:c0:53:df:ed: af:ab:7b:c0:0e:9f:d4:48:7d:3d:21:84:ad:cc:7c: 3a:12:98:8b:3e:42:31:c7:15:4a:4b:0a:f7:ef:3d: 0f:88:a4:a3:de:47:9a:0c:42:67:7e:69:12:86:61: 22:5a:a0:7a:44:41:40:3f:63:af:1b:3f:51:ab:02: 81:4d:96:0a:51:24:0a:dc:42:8d:96:70:38:5b:76: ed:87:f7:7f:a8:73:b3:4b:86:8f:bd:13:f6:f0:7e: 86:80:1a:f9:22:e7:22:8f:f3:b0:a5:72:98:82:cb: 62:91:e5:11:78:c1:48:99:6c:45:74:1a:df:bd:39: 25:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DB:A1:E0:D6:B8:F2:24:6C:C6:E2:F0:52:35:EA:DD:35:3F:86:D1 X509v3 Authority Key Identifier: keyid:B3:12:C2:2F:3D:0B:97:BA:AF:32:73:E5:C6:6B:8F:14:02:03:E2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.6.163.0/24 103.26.44.0-103.26.46.255 IPv6: 2001:df0:2a0::/48 Signature Algorithm: sha256WithRSAEncryption 48:94:51:0d:b4:77:78:13:c8:7a:85:6e:bf:84:24:ee:c0:84: 56:76:06:75:03:44:79:35:67:e4:b4:0e:db:ee:bc:84:b9:93: b9:ac:1e:22:ab:b7:c2:81:60:8f:fc:97:ea:0b:00:51:0b:e9: cc:a6:b4:c6:2d:c4:30:4c:c1:77:e0:cd:c4:9d:fb:a5:5f:d4: 87:c3:e4:e6:4c:77:5d:ff:7d:4a:ee:5e:8e:c9:cf:04:61:f4: 7a:67:1a:bc:b7:8f:36:c9:c1:3c:90:a0:35:00:e3:c1:e0:d0: d5:6b:03:c9:73:37:3f:9d:86:20:3d:c2:aa:aa:59:fb:c9:1a: 11:12:b8:f6:94:b0:b1:43:aa:dd:ad:37:60:a1:70:a2:85:c4: 46:a1:b4:20:4e:9f:c2:70:e0:9b:5e:45:52:79:81:d3:12:3d: 82:17:dc:ea:06:cc:90:58:7a:b9:2e:10:71:c4:f2:ab:8d:d6: 3c:ae:a4:c4:40:ca:59:7d:08:7e:d4:2c:d6:3f:97:87:ae:28: a7:70:0e:88:f0:1d:ab:a9:cd:ac:94:46:82:41:3a:7d:12:b1: 73:e8:e7:a2:b4:28:d0:cc:82:62:ba:12:d2:81:99:e9:4c:30: 52:86:ac:b6:53:cf:30:60:4b:58:4e:88:60:96:ed:f3:cd:17: 82:bf:4f:64 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc0QkIxMTAvBgNVBAUTKEIzMTJDMjJGM0QwQjk3QkFBRjMyNzNFNUM2NkI4RjE0 MDIwM0UyRjkwHhcNMjUwMzAzMDYzMDIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGYwNC1iMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeb7HAMKQlFJmkiY49KjLLqUw0t6TkgMShp5wyjgM3KQf5+zTWiWjxh0bhCN BglyVIgAxDjhtOVf/DuFbSeqcHUfqxvqqrYKLtHBOeB8a3pME4JnPWEOgi21sRPM XTKe4d+MqyLdUuW1G0i53423m93Acw7C8QWEwxvkc0RWLNIVX8BT3+2vq3vADp/U SH09IYStzHw6EpiLPkIxxxVKSwr37z0PiKSj3keaDEJnfmkShmEiWqB6REFAP2Ov Gz9RqwKBTZYKUSQK3EKNlnA4W3bth/d/qHOzS4aPvRP28H6GgBr5Iucij/OwpXKY gstikeUReMFImWxFdBrfvTklowIDAQABo4ICfzCCAnswHQYDVR0OBBYEFJrboeDW uPIkbMbi8FI16t01P4bRMB8GA1UdIwQYMBaAFLMSwi89C5e6rzJz5cZrjxQCA+L5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzRCQi82NDg1NDJDODVC NkExMUVFODBEMzZCNTRDNEY5QUUwMi9zeExDTHowTGw3cXZNblBseG11UEZBSUQ0 dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N4TENMejBMbDdxdk1uUGx4bXVQRkFJRDR2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc0QkIvNjQ4NTQyQzg1QjZBMTFFRTgwRDM2QjU0QzRGOUFFMDIvRTdEQkUyOTQ1 QjZBMTFFRThDMDVDQTU5QzRGOUFFMDIucm9hMD4GCCsGAQUFBwEHAQH/BC8wLTAa BAIAATAUAwQAZwajMAwDBAJnGiwDBABnGi4wDwQCAAIwCQMHACABDfACoDANBgkq hkiG9w0BAQsFAAOCAQEASJRRDbR3eBPIeoVuv4Qk7sCEVnYGdQNEeTVn5LQO2+68 hLmTuaweIqu3woFgj/yX6gsAUQvpzKa0xi3EMEzBd+DNxJ37pV/Uh8Pk5kx3Xf99 Su5ejsnPBGH0emcavLePNsnBPJCgNQDjweDQ1WsDyXM3P52GID3CqqpZ+8kaERK4 9pSwsUOq3a03YKFwooXERqG0IE6fwnDgm15FUnmB0xI9ghfc6gbMkFh6uS4QccTy q43WPK6kxEDKWX0IftQs1j+Xh64op3AOiPAdq6nNrJRGgkE6fRKxc+jnorQo0MyC YroS0oGZ6UwwUoastlPPMGBLWE6IYJbt880Xgr9PZA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:10:01 2026 by rpki-client