$ rpki-client -vvf rpki.apnic.net/member_repository/A916091A/4204057E666D11EDB5565777C4F9AE02/7FFCAA30667111EDB5CCA77DC4F9AE02.roa File: 7FFCAA30667111EDB5CCA77DC4F9AE02.roa (raw, json) Hash identifier: SrQLMleMB4YU3ZEQhfOBgMc2EpS7tNcL9YRSRP+wumw= Subject key identifier: 42:AC:7A:D1:8B:5C:26:6B:E4:3F:96:14:21:DB:3B:8D:8A:C0:2D:59 Certificate issuer: /CN=A916091A/serialNumber=271730913768AF0138BA390324DA9431C409BA44 Certificate serial: 026C Authority key identifier: 27:17:30:91:37:68:AF:01:38:BA:39:03:24:DA:94:31:C4:09:BA:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JxcwkTdorwE4ujkDJNqUMcQJukQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916091A/4204057E666D11EDB5565777C4F9AE02/7FFCAA30667111EDB5CCA77DC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:57:34 +0000 ROA not before: Sat 13 Dec 2025 01:21:12 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 150429 IP address blocks: 103.14.144.0/23 maxlen: 24 2001:df1:8b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916091A/4204057E666D11EDB5565777C4F9AE02/JxcwkTdorwE4ujkDJNqUMcQJukQ.crl rsync://rpki.apnic.net/member_repository/A916091A/4204057E666D11EDB5565777C4F9AE02/JxcwkTdorwE4ujkDJNqUMcQJukQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JxcwkTdorwE4ujkDJNqUMcQJukQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916091A, serialNumber=271730913768AF0138BA390324DA9431C409BA44 Validity Not Before: Dec 13 01:21:12 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41b9e-88b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:46:62:51:71:9a:c5:ab:35:b8:d8:cc:fd:1c: 89:7d:05:9c:1b:cd:4e:4c:60:93:a1:cf:63:20:68: 28:34:2f:c9:6e:d2:57:f4:20:20:75:75:71:9b:c8: 0d:ae:37:1c:46:62:25:9d:2a:b5:6a:13:70:7f:d0: 73:ce:10:72:fa:d4:76:cb:22:0f:87:3f:61:2d:12: fb:c6:07:07:4d:91:b1:72:7f:98:37:90:01:2d:2f: 64:fd:d8:77:95:04:2f:98:eb:9e:dd:03:7c:a5:3f: d2:df:f8:8f:30:74:8b:e2:44:51:26:4d:0b:c7:29: c3:af:fc:bf:63:f1:31:84:e6:cd:9b:92:70:fb:06: db:32:ff:96:05:48:5b:d3:9c:cf:9d:d5:ce:9c:a7: 20:60:55:6a:87:a8:0f:4b:8f:ff:48:08:c5:49:de: 71:84:54:e8:3b:11:7a:0b:cc:0a:8e:4b:1d:01:09: 00:90:84:55:e6:c6:5f:6a:d5:82:97:88:2d:19:a2: 45:0b:ea:31:8a:3c:4a:00:72:f1:66:52:f0:95:c9: 24:f7:76:4c:56:5b:42:e4:13:9b:f9:a5:bc:dd:05: 59:ca:09:2b:ca:68:1f:ff:34:17:a2:18:59:f4:7e: 1b:3e:2d:e0:12:fd:60:26:ec:3e:25:79:82:a2:de: 60:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AC:7A:D1:8B:5C:26:6B:E4:3F:96:14:21:DB:3B:8D:8A:C0:2D:59 X509v3 Authority Key Identifier: keyid:27:17:30:91:37:68:AF:01:38:BA:39:03:24:DA:94:31:C4:09:BA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916091A/4204057E666D11EDB5565777C4F9AE02/JxcwkTdorwE4ujkDJNqUMcQJukQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JxcwkTdorwE4ujkDJNqUMcQJukQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916091A/4204057E666D11EDB5565777C4F9AE02/7FFCAA30667111EDB5CCA77DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.144.0/23 IPv6: 2001:df1:8b40::/48 Signature Algorithm: sha256WithRSAEncryption 52:d5:32:5a:97:77:c0:45:3d:7a:e1:5c:84:41:2f:fe:18:16: 61:e6:f1:79:16:88:4f:9f:cb:c1:dd:50:e2:c4:2d:32:71:d5: 7b:4d:e9:63:c8:70:c7:ba:d7:9d:82:e7:d3:9d:9c:ab:46:f4: 0c:9e:34:8b:96:94:19:3d:a7:8d:a3:4f:4d:ba:b9:60:9b:65: d0:9a:64:cc:ae:85:87:6d:7b:14:81:2a:6d:54:fb:52:c6:69: 39:fc:36:16:82:8a:7d:d9:ef:e8:dc:cf:f3:82:87:a2:ee:5a: f3:76:4b:07:0c:cc:30:a8:a0:eb:7f:69:aa:06:c5:0b:94:ff: 51:31:de:44:36:e2:d2:d4:56:f8:1d:a0:ef:ff:34:54:22:a5: a3:66:19:ac:2e:29:cd:ec:a4:5c:40:ba:92:2a:72:e7:ad:51: d3:d9:6e:c1:86:fb:04:33:24:ee:2d:7c:1d:c8:5b:82:c8:bc: e1:46:18:ba:ec:71:66:dd:89:32:72:cb:dc:25:df:a0:a7:00: 7d:41:8e:f3:70:03:32:ee:23:63:20:a6:85:a3:a1:32:59:4a: b0:43:35:ed:f5:72:d8:97:96:30:b7:05:08:4f:a8:ce:ff:7c: 17:29:6c:dd:da:be:b9:77:22:d3:b3:fe:0a:80:e4:8f:bc:d8: 68:b8:60:36 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA5MUExMTAvBgNVBAUTKDI3MTczMDkxMzc2OEFGMDEzOEJBMzkwMzI0REE5NDMx QzQwOUJBNDQwHhcNMjUxMjEzMDEyMTEyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWI5ZS04OGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhUZiUXGaxas1uNjM/RyJfQWcG81OTGCToc9jIGgoNC/JbtJX9CAgdXVxm8gN rjccRmIlnSq1ahNwf9BzzhBy+tR2yyIPhz9hLRL7xgcHTZGxcn+YN5ABLS9k/dh3 lQQvmOue3QN8pT/S3/iPMHSL4kRRJk0LxynDr/y/Y/ExhObNm5Jw+wbbMv+WBUhb 05zPndXOnKcgYFVqh6gPS4//SAjFSd5xhFToOxF6C8wKjksdAQkAkIRV5sZfatWC l4gtGaJFC+oxijxKAHLxZlLwlckk93ZMVltC5BOb+aW83QVZygkrymgf/zQXohhZ 9H4bPi3gEv1gJuw+JXmCot5gswIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEKsetGL XCZr5D+WFCHbO42KwC1ZMB8GA1UdIwQYMBaAFCcXMJE3aK8BOLo5AyTalDHECbpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDkxQS80MjA0MDU3RTY2 NkQxMUVEQjU1NjU3NzdDNEY5QUUwMi9KeGN3a1Rkb3J3RTR1amtESk5xVU1jUUp1 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p4Y3drVGRvcndFNHVqa0RKTnFVTWNRSnVrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA5MUEvNDIwNDA1N0U2NjZEMTFFREI1NTY1Nzc3QzRGOUFFMDIvN0ZGQ0FBMzA2 NjcxMTFFREI1Q0NBNzdEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZw6QMA8EAgACMAkDBwAgAQ3xi0AwDQYJKoZIhvcNAQELBQADggEB AFLVMlqXd8BFPXrhXIRBL/4YFmHm8XkWiE+fy8HdUOLELTJx1XtN6WPIcMe6152C 59OdnKtG9AyeNIuWlBk9p42jT026uWCbZdCaZMyuhYdtexSBKm1U+1LGaTn8NhaC in3Z7+jcz/OCh6LuWvN2SwcMzDCooOt/aaoGxQuU/1Ex3kQ24tLUVvgdoO//NFQi paNmGawuKc3spFxAupIqcuetUdPZbsGG+wQzJO4tfB3IW4LIvOFGGLrscWbdiTJy y9wl36CnAH1BjvNwAzLuI2MgpoWjoTJZSrBDNe31ctiXljC3BQhPqM7/fBcpbN3a vrl3ItOz/gqA5I+82Gi4YDY= -----END CERTIFICATE-----Generated at Mon Mar 2 21:14:04 2026 by rpki-client