$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa File: B65A4FACE18C11ECB1697F55C4F9AE02.roa (raw, json) Hash identifier: 7SjiEMKEii5J7AK6KpNBCAsdIWuvfwniTFwyHMu1gHw= Subject key identifier: 2D:A5:55:3F:9A:87:0C:E2:A5:56:81:43:6E:31:EA:EC:96:57:16:47 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 08BF Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa Signing time: Thu 16 Apr 2026 19:27:21 +0000 ROA not before: Thu 16 Apr 2026 19:27:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138912 IP address blocks: 103.137.6.0/24 maxlen: 24 103.137.7.0/24 maxlen: 24 2001:df0:19c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 18:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2239 (0x8bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Apr 16 19:27:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e13819-ad02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:30:b5:76:6c:ed:c3:3d:af:7b:4d:1a:68:ec: 28:e8:62:54:6b:01:84:01:14:7e:a7:45:16:b2:19: 7e:82:a0:e3:15:cd:99:5b:b5:4e:a8:09:c7:c1:19: 97:22:b7:92:94:f7:29:28:53:3f:bd:ee:91:20:7f: 36:1e:f7:8e:7f:eb:61:df:5e:cd:47:11:16:69:f5: ce:27:32:02:5b:dc:3e:7e:1e:49:94:bf:50:6e:99: 5f:ab:d6:47:08:b1:d9:69:9f:46:bd:c5:30:8c:b9: 37:a4:1a:b9:a6:10:b1:70:6e:f1:cc:59:bf:6c:1d: 60:2b:dc:49:e6:db:b4:ec:b0:ce:9a:c7:82:cc:5e: bd:80:d0:e2:5a:38:4c:3d:17:02:81:21:47:88:6c: ac:8f:22:72:7b:b2:94:29:08:5d:4c:f2:de:45:10: 72:15:49:a4:b5:ae:f2:72:8d:5e:3f:2d:97:dc:43: 31:60:21:09:72:27:af:77:ce:eb:31:60:b9:12:1c: a7:8f:83:cc:41:77:02:37:95:38:c2:07:8e:fd:1c: 23:50:dc:7f:5d:6b:09:f8:5c:53:79:0e:b2:1b:6a: 56:bc:99:2f:71:81:79:04:f8:7a:6e:20:8d:c7:32: 52:69:a0:a5:be:c8:41:9c:d9:57:96:09:c5:6f:93: cd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A5:55:3F:9A:87:0C:E2:A5:56:81:43:6E:31:EA:EC:96:57:16:47 X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.6.0/23 IPv6: 2001:df0:19c0::/48 Signature Algorithm: sha256WithRSAEncryption 39:33:95:63:e8:e1:89:75:c9:b0:43:6d:ed:ce:1e:2d:f1:17: 1f:37:9e:b2:95:16:d5:c9:0a:cb:8c:28:98:b3:40:9b:78:59: ec:7e:ed:2b:a3:27:e1:4f:71:32:94:b5:76:70:50:40:b7:ca: 68:60:42:94:3c:4d:b7:9f:99:f7:43:67:69:d2:b8:22:ba:7d: 9d:09:8f:92:f0:23:37:70:97:90:cb:b0:1c:66:5c:a4:13:4c: b9:78:e3:b9:1c:3a:43:dc:e3:08:d1:59:7f:b8:9f:27:8b:d5: 3a:57:f8:7c:8b:38:76:78:e7:4b:2a:81:26:da:db:b6:65:62: 04:57:40:88:be:cd:c7:0f:26:6d:be:fe:3d:cf:59:31:08:da: 41:38:3d:c8:2c:eb:34:34:4b:b9:f6:26:5c:48:2a:bc:4f:7d: 65:bd:a9:b2:2a:e2:62:44:83:78:56:54:33:70:97:37:5e:66: 50:ff:24:b3:77:39:4e:83:61:94:37:46:b0:6b:23:a1:75:2c: 08:4c:61:89:48:c6:91:44:4c:09:af:cd:e7:93:8b:d3:4a:34: de:40:9f:bf:4d:3f:de:7a:64:88:85:fd:94:1b:7a:51:0d:9b: 08:24:f9:95:97:ea:3c:ef:ee:1d:fd:1d:08:fa:85:a2:ec:a3: 5d:47:86:e5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjYwNDE2MTkyNzIxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxMzgxOS1hZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+jC1dmztwz2ve00aaOwo6GJUawGEARR+p0UWshl+gqDjFc2ZW7VOqAnHwRmX IreSlPcpKFM/ve6RIH82HveOf+th317NRxEWafXOJzICW9w+fh5JlL9Qbplfq9ZH CLHZaZ9GvcUwjLk3pBq5phCxcG7xzFm/bB1gK9xJ5tu07LDOmseCzF69gNDiWjhM PRcCgSFHiGysjyJye7KUKQhdTPLeRRByFUmkta7yco1ePy2X3EMxYCEJcievd87r MWC5Ehynj4PMQXcCN5U4wgeO/RwjUNx/XWsJ+FxTeQ6yG2pWvJkvcYF5BPh6biCN xzJSaaClvshBnNlXlgnFb5PN+QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFC2lVT+a hwzipVaBQ24x6uyWVxZHMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgwQTEvOTI1NjBBNkEzNzREMTFFQUEwQTNCRTU1QzRGOUFFMDIvQjY1QTRGQUNF MThDMTFFQ0IxNjk3RjU1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4kGMA8EAgACMAkDBwAgAQ3wGcAwDQYJKoZIhvcNAQELBQADggEB ADkzlWPo4Yl1ybBDbe3OHi3xFx83nrKVFtXJCsuMKJizQJt4Wex+7SujJ+FPcTKU tXZwUEC3ymhgQpQ8TbefmfdDZ2nSuCK6fZ0Jj5LwIzdwl5DLsBxmXKQTTLl447kc OkPc4wjRWX+4nyeL1TpX+HyLOHZ450sqgSba27ZlYgRXQIi+zccPJm2+/j3PWTEI 2kE4Pcgs6zQ0S7n2JlxIKrxPfWW9qbIq4mJEg3hWVDNwlzdeZlD/JLN3OU6DYZQ3 RrBrI6F1LAhMYYlIxpFETAmvzeeTi9NKNN5An79NP956ZIiF/ZQbelENmwgk+ZWX 6jzv7h39HQj6haLso11HhuU= -----END CERTIFICATE-----Generated at Sun Apr 19 11:42:48 2026 by rpki-client