$ rpki-client -vvf rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa File: 6FFF14F0695E11EFAF2AF785C4F9AE02.roa (raw, json) Hash identifier: TKxcs+BXUFiyDLVeeKpTCfJIMBeNCNlPXKLFC4ZDecY= Subject key identifier: 1E:44:4D:95:7F:67:A0:FA:DD:F8:49:99:F6:D9:F2:0A:68:B2:42:5F Certificate issuer: /CN=A91834AD/serialNumber=4D76F793E2B129F46F8FC90E21F9D0FEAF10D040 Certificate serial: 0CDF Authority key identifier: 4D:76:F7:93:E2:B1:29:F4:6F:8F:C9:0E:21:F9:D0:FE:AF:10:D0:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:43:56 +0000 ROA not before: Fri 31 Oct 2025 10:43:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136425 IP address blocks: 103.87.137.0/24 maxlen: 24 103.87.138.0/24 maxlen: 24 103.87.139.0/24 maxlen: 24 2400:d4c0::/32 maxlen: 32 2400:d4c0::/48 maxlen: 48 2400:d4c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.crl rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3295 (0xcdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91834AD, serialNumber=4D76F793E2B129F46F8FC90E21F9D0FEAF10D040 Validity Not Before: Oct 31 10:43:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a46ccc-4c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d7:73:1a:68:15:6a:1f:c7:18:5c:da:98:42: ed:04:93:0e:48:e0:5c:60:2c:f2:11:c4:cb:be:b5: df:4d:03:d3:b4:53:43:7d:5b:47:13:1f:5a:af:d9: 4a:1c:84:ab:24:c9:d1:2b:ca:dc:a7:9b:64:97:9d: ba:3f:eb:f4:6a:ba:81:5a:ea:ab:3c:6f:bc:4d:cf: 39:a5:0f:61:ee:17:d1:d8:f4:ed:35:bc:77:50:43: fc:a8:15:78:f7:4c:4a:29:94:0a:4b:a0:9d:0f:e0: e7:86:4e:1e:4e:5d:14:4d:2f:92:82:29:2f:9a:a7: 3b:5a:6b:5b:99:99:27:1a:c9:c9:fe:81:cc:71:27: 85:95:42:d3:16:13:c3:e1:a5:a4:e0:b0:3c:06:58: d8:f6:f2:55:d1:aa:1e:d8:0a:01:37:32:b6:21:c9: 4f:7d:ef:03:4f:87:1a:7e:4d:81:1d:9f:88:f4:bf: c5:35:4c:01:50:8a:b4:5e:ba:da:2f:b6:76:f8:51: 25:41:5f:43:97:42:34:3a:f7:31:58:e3:c1:22:39: 4b:f8:48:13:69:e2:f4:b6:35:f8:8e:af:b4:92:0d: 68:17:42:8e:29:c0:38:3f:6a:15:05:59:2f:97:5c: 3e:00:16:33:87:be:b0:9b:19:34:6f:05:3d:6f:f4: ce:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:44:4D:95:7F:67:A0:FA:DD:F8:49:99:F6:D9:F2:0A:68:B2:42:5F X509v3 Authority Key Identifier: keyid:4D:76:F7:93:E2:B1:29:F4:6F:8F:C9:0E:21:F9:D0:FE:AF:10:D0:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.87.137.0-103.87.139.255 IPv6: 2400:d4c0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:d1:85:f1:d2:2b:f5:eb:f1:16:a2:98:9f:b6:ff:91:f5:8b: c2:4d:79:3b:6a:54:96:b7:0b:38:97:ee:4e:49:0c:1a:ca:ab: 24:44:64:ca:49:71:03:99:62:a9:3d:53:ce:ef:45:ca:0c:8e: f9:f5:eb:00:39:fa:72:b4:a3:6c:c5:3a:50:60:f1:2d:ae:da: cd:7d:32:fc:01:13:7c:45:7a:7c:5c:97:1e:12:e1:6c:71:bc: de:ee:c3:cc:95:59:74:97:0c:d2:d2:1e:0a:b2:fc:c7:02:72: 46:d2:fc:7e:4a:47:7e:78:a3:5b:6d:f5:0a:46:96:4b:16:b1: 35:ae:09:e4:4b:25:38:34:03:13:e4:5b:99:bd:09:b5:fd:4b: 6b:43:bd:82:68:27:fb:0f:e9:6e:81:20:05:bf:1c:d1:2a:2a: 38:e7:3b:8d:05:fa:67:fc:64:01:e3:06:44:40:3f:61:d1:c7: 37:49:a5:fc:76:46:61:3d:2f:3a:94:f4:55:98:ca:ec:d9:3b: fa:d8:74:ee:22:25:a4:60:3e:79:3d:5f:1e:f9:83:60:fd:cb: 89:10:81:70:72:a4:62:89:0b:85:36:92:dd:0d:3a:2e:ff:58: 14:cd:2c:70:55:5d:39:c8:52:2b:7a:25:62:5d:e4:26:0f:a7: a5:ff:be:84 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICDN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM0QUQxMTAvBgNVBAUTKDRENzZGNzkzRTJCMTI5RjQ2RjhGQzkwRTIxRjlEMEZF QUYxMEQwNDAwHhcNMjUxMDMxMTA0MzAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmNjYy00YzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NdzGmgVah/HGFzamELtBJMOSOBcYCzyEcTLvrXfTQPTtFNDfVtHEx9ar9lK HISrJMnRK8rcp5tkl526P+v0arqBWuqrPG+8Tc85pQ9h7hfR2PTtNbx3UEP8qBV4 90xKKZQKS6CdD+Dnhk4eTl0UTS+Sgikvmqc7WmtbmZknGsnJ/oHMcSeFlULTFhPD 4aWk4LA8BljY9vJV0aoe2AoBNzK2IclPfe8DT4cafk2BHZ+I9L/FNUwBUIq0Xrra L7Z2+FElQV9Dl0I0OvcxWOPBIjlL+EgTaeL0tjX4jq+0kg1oF0KOKcA4P2oVBVkv l1w+ABYzh76wmxk0bwU9b/TOGQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFB5ETZV/ Z6D63fhJmfbZ8gposkJfMB8GA1UdIwQYMBaAFE1295PisSn0b4/JDiH50P6vENBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzRBRC8wREU0QUQwNDA4 RkUxMUVBOTgzM0M1NzhDNEY5QUUwMi9UWGIzay1LeEtmUnZqOGtPSWZuUV9xOFEw RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYYjNrLUt4S2ZSdmo4a09JZm5RX3E4UTBFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM0QUQvMERFNEFEMDQwOEZFMTFFQTk4MzNDNTc4QzRGOUFFMDIvNkZGRjE0RjA2 OTVFMTFFRkFGMkFGNzg1QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBABnV4kDBAJnV4gwDQQCAAIwBwMFACQA1MAwDQYJKoZIhvcNAQEL BQADggEBAB7RhfHSK/Xr8RaimJ+2/5H1i8JNeTtqVJa3CziX7k5JDBrKqyREZMpJ cQOZYqk9U87vRcoMjvn16wA5+nK0o2zFOlBg8S2u2s19MvwBE3xFenxclx4S4Wxx vN7uw8yVWXSXDNLSHgqy/McCckbS/H5KR354o1tt9QpGlksWsTWuCeRLJTg0AxPk W5m9CbX9S2tDvYJoJ/sP6W6BIAW/HNEqKjjnO40F+mf8ZAHjBkRAP2HRxzdJpfx2 RmE9LzqU9FWYyuzZO/rYdO4iJaRgPnk9Xx75g2D9y4kQgXBypGKJC4U2kt0NOi7/ WBTNLHBVXTnIUit6JWJd5CYPp6X/voQ= -----END CERTIFICATE-----Generated at Mon Mar 2 18:07:50 2026 by rpki-client