$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/551FA6B620DE11EC8CA3EC74C4F9AE02.roa File: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (raw, json) Hash identifier: iLxN7LT1IEtQtAY80tP96cs82/jh9f03RNlgXMxxJP4= Subject key identifier: 94:3C:42:23:4A:35:70:D8:06:B9:AB:06:57:E5:36:45:20:D3:F9:AF Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 0567 Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/551FA6B620DE11EC8CA3EC74C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:42:37 +0000 ROA not before: Tue 02 Dec 2025 22:26:26 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135607 IP address blocks: 103.131.204.0/22 maxlen: 22 103.131.204.0/24 maxlen: 24 103.131.205.0/24 maxlen: 24 103.131.206.0/24 maxlen: 24 103.131.207.0/24 maxlen: 24 2403:ebc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: Dec 2 22:26:26 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4343d-f842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d0:45:fe:c4:12:ed:1c:c0:b0:ca:f0:0f:15: 0e:99:37:51:37:22:4a:0f:09:12:3d:43:10:b3:c7: da:6f:9f:bb:33:37:4c:00:86:06:64:2d:9e:0b:40: 63:c4:3f:69:f5:3d:85:e4:7b:68:d3:94:f8:9e:9e: 25:8f:0c:61:f6:90:3c:5a:97:7a:ab:86:cb:13:53: 74:e0:6e:e4:36:d3:51:f8:6b:20:f5:36:57:2a:c6: 8a:ed:d2:c7:89:2c:d9:20:32:4e:85:ec:99:40:b5: cf:7e:c0:1b:ff:8b:83:27:76:18:44:70:84:bd:1b: 67:3f:4d:64:c5:61:c3:35:26:97:bc:ba:2b:fb:03: 25:53:c8:3e:b0:42:93:f5:55:8f:48:88:d0:9e:e1: cc:00:21:2f:20:cc:ae:88:7f:72:8f:f3:b9:75:b1: d1:59:3d:ec:86:e3:2f:0a:0a:21:03:4b:3e:a6:ad: 59:f0:09:6e:27:89:31:00:9f:96:00:aa:46:ce:19: ed:43:7b:c2:88:9f:09:d4:82:6c:93:7e:e1:ca:02: 5b:44:4b:a6:c4:a7:43:3f:e2:67:41:4e:6e:04:78: a1:07:22:c5:b4:f7:cf:9b:b4:b9:41:dd:05:bf:ed: 28:3b:e8:94:9a:51:ce:58:c8:bc:d3:57:0d:03:fb: 46:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3C:42:23:4A:35:70:D8:06:B9:AB:06:57:E5:36:45:20:D3:F9:AF X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/551FA6B620DE11EC8CA3EC74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.131.204.0/22 IPv6: 2403:ebc0::/32 Signature Algorithm: sha256WithRSAEncryption 70:86:b7:a3:15:e1:f8:1c:48:14:71:65:df:da:48:13:ed:0a: b8:6e:9e:e8:77:73:37:ec:ad:0c:5f:40:d5:3b:89:22:06:41: b0:8c:40:96:38:32:7c:c6:d9:af:eb:d1:5c:a7:b3:79:96:a7: d1:93:22:b3:30:2c:b3:b4:6f:4b:0a:34:d4:7e:d5:db:c7:83: 93:73:2b:4b:90:5e:be:7e:f7:90:05:2c:f0:46:8b:2b:12:7d: 9d:49:38:3e:9d:c8:86:ee:e3:57:f5:dd:65:c5:dc:61:97:e1: 3e:a5:3b:de:72:8f:59:bd:bd:a2:42:f6:90:c5:db:23:6e:a9: 85:b5:ad:b2:0d:e8:93:2a:17:93:09:78:2a:c7:e0:a0:3c:14: d4:78:a2:5b:ce:ca:18:12:38:22:a9:3e:c3:4d:f2:bd:2d:69: 3e:99:24:0e:42:11:1a:4d:a2:4a:dc:57:2e:98:ee:1b:67:30: 8e:db:78:02:19:a9:13:eb:40:e3:97:58:eb:8f:99:9b:6f:2c: c9:e3:dc:99:4c:50:37:63:11:7f:ff:ef:c5:3f:46:2d:c9:0a: 04:57:9e:b0:66:76:37:4d:47:39:f2:f5:ff:e8:5a:22:e3:81: 45:c3:04:06:a3:d3:db:2e:f0:96:f6:b8:5c:3c:1b:5e:ca:6b: 9f:81:f8:01 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUxMjAyMjIyNjI2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzQzZC1mODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NBF/sQS7RzAsMrwDxUOmTdRNyJKDwkSPUMQs8fab5+7MzdMAIYGZC2eC0Bj xD9p9T2F5Hto05T4np4ljwxh9pA8Wpd6q4bLE1N04G7kNtNR+Gsg9TZXKsaK7dLH iSzZIDJOheyZQLXPfsAb/4uDJ3YYRHCEvRtnP01kxWHDNSaXvLor+wMlU8g+sEKT 9VWPSIjQnuHMACEvIMyuiH9yj/O5dbHRWT3shuMvCgohA0s+pq1Z8AluJ4kxAJ+W AKpGzhntQ3vCiJ8J1IJsk37hygJbREumxKdDP+JnQU5uBHihByLFtPfPm7S5Qd0F v+0oO+iUmlHOWMi801cNA/tGswIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJQ8QiNK NXDYBrmrBlflNkUg0/mvMB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIyQzEvMkVBNTFENTYyMERDMTFFQzlCM0NFOTczQzRGOUFFMDIvNTUxRkE2QjYy MERFMTFFQzhDQTNFQzc0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4PMMA0EAgACMAcDBQAkA+vAMA0GCSqGSIb3DQEBCwUAA4IBAQBw hrejFeH4HEgUcWXf2kgT7Qq4bp7od3M37K0MX0DVO4kiBkGwjECWODJ8xtmv69Fc p7N5lqfRkyKzMCyztG9LCjTUftXbx4OTcytLkF6+fveQBSzwRosrEn2dSTg+nciG 7uNX9d1lxdxhl+E+pTveco9Zvb2iQvaQxdsjbqmFta2yDeiTKheTCXgqx+CgPBTU eKJbzsoYEjgiqT7DTfK9LWk+mSQOQhEaTaJK3FcumO4bZzCO23gCGakT60Djl1jr j5mbbyzJ49yZTFA3YxF//+/FP0YtyQoEV56wZnY3TUc58vX/6Foi44FFwwQGo9Pb LvCW9rhcPBteymufgfgB -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:38 2026 by rpki-client