$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/970B3004280411F19C40334AB5833773.roa File: 970B3004280411F19C40334AB5833773.roa (raw, json) Hash identifier: GfuXiwKrnEAKVjRnFf9ddwCSI3pJKi/XVhcD9IX84XU= Subject key identifier: 7E:89:77:CD:41:29:8D:C0:AB:81:57:41:B8:CF:10:46:64:3F:4A:E3 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 6C38 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/970B3004280411F19C40334AB5833773.roa Signing time: Mon 06 Apr 2026 08:49:12 +0000 ROA not before: Mon 06 Apr 2026 08:49:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154552 IP address blocks: 103.199.10.0/24 maxlen: 24 103.199.11.0/24 maxlen: 24 103.216.125.0/24 maxlen: 24 103.216.126.0/24 maxlen: 24 103.216.127.0/24 maxlen: 24 163.128.60.0/23 maxlen: 23 163.128.60.0/24 maxlen: 24 163.128.61.0/24 maxlen: 24 2001:df6:d440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27704 (0x6c38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Apr 6 08:49:12 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69d37388-55bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4e:cb:da:0f:56:d8:ec:a5:6c:b0:57:12:cf: 62:79:d6:f2:8d:8e:2c:ed:74:d4:26:26:06:4b:40: 61:cf:6a:55:e0:2a:cb:cd:87:6d:0f:0d:9e:cc:c1: 1b:14:d9:5d:ee:de:b7:83:35:37:bf:51:e8:0e:01: 33:87:25:e5:f3:44:9a:f9:71:99:2f:a3:a3:81:78: c9:15:27:92:4d:8b:c5:1e:a6:e6:12:cc:bf:08:73: 23:6d:72:24:b6:dd:6b:ad:9b:5f:14:96:59:c4:e8: 23:7f:3b:e3:e2:60:bc:1a:d6:7d:03:df:b7:f0:f6: 6d:71:42:0a:70:9c:ca:61:d4:99:8d:fe:1a:94:fb: 0f:2d:5b:bf:70:b1:1e:f1:c3:99:71:dd:cd:89:c7: 0a:43:e3:5d:14:46:d7:46:b3:f9:1a:31:fb:19:d6: 64:0a:5f:51:94:54:b2:24:a1:f8:18:d6:e0:ad:7f: 6d:45:67:ee:8e:7c:d4:99:1a:22:13:22:14:34:eb: 80:5f:65:03:1f:2b:4a:d5:62:8c:73:88:53:80:16: 39:3b:9f:b5:97:27:1f:ad:5b:27:fc:34:1d:bb:3c: 20:05:fb:44:58:d0:b5:6a:f5:20:d5:72:55:e4:10: 58:88:d1:96:97:d8:33:14:57:6d:2e:fb:75:ea:78: df:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:89:77:CD:41:29:8D:C0:AB:81:57:41:B8:CF:10:46:64:3F:4A:E3 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/970B3004280411F19C40334AB5833773.roa sbgp-ipAddrBlock: critical IPv4: 103.199.10.0/23 103.216.125.0-103.216.127.255 163.128.60.0/23 IPv6: 2001:df6:d440::/48 Signature Algorithm: sha256WithRSAEncryption 4a:57:73:39:f2:dc:b3:81:7d:f5:09:e2:3e:45:90:88:55:6b: 26:60:f9:c0:f9:c6:b2:d5:61:6f:d9:47:54:56:91:10:0b:a2: f3:be:71:d0:44:c9:d0:0e:30:07:38:9d:f9:f6:33:a2:36:f7: 7f:6d:d2:f2:b6:e2:ed:7a:fb:b1:a9:96:70:04:a7:e3:c7:38: 45:4a:a4:0e:57:2e:70:7a:68:fa:98:b5:fb:8a:f9:8f:35:aa: 73:3b:e2:f3:85:4a:1b:be:00:37:b8:f5:71:c0:b3:b2:d5:33: 7e:62:b3:67:38:78:8e:81:ef:aa:0c:23:8c:3b:21:f8:12:b1: 36:6f:4f:77:ca:17:9c:37:b4:32:7d:ab:b8:26:b1:a2:e4:91: c4:ab:63:26:9e:36:77:a5:d7:82:b5:03:e7:77:c2:94:61:87: 00:35:e3:4e:7a:2b:7b:80:43:d2:ef:4b:f5:80:24:cd:ce:b0: 8d:89:05:a4:3e:c0:43:0f:18:52:4a:7d:fc:49:bc:db:58:dc: dd:23:65:59:70:06:d6:0c:1a:70:f6:5b:29:75:4c:f0:a2:f5: 43:d0:d6:74:0a:da:17:d0:8d:22:ea:8c:03:10:07:cf:fe:5b: b7:ad:f0:01:c9:aa:71:12:f3:b3:0f:a9:ec:a4:18:7a:0a:9a: a3:9a:00:ba -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgICbDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjYwNDA2MDg0OTEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQzNzM4OC01NWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU7L2g9W2OylbLBXEs9iedbyjY4s7XTUJiYGS0Bhz2pV4CrLzYdtDw2ezMEb FNld7t63gzU3v1HoDgEzhyXl80Sa+XGZL6OjgXjJFSeSTYvFHqbmEsy/CHMjbXIk tt1rrZtfFJZZxOgjfzvj4mC8GtZ9A9+38PZtcUIKcJzKYdSZjf4alPsPLVu/cLEe 8cOZcd3NiccKQ+NdFEbXRrP5GjH7GdZkCl9RlFSyJKH4GNbgrX9tRWfujnzUmRoi EyIUNOuAX2UDHytK1WKMc4hTgBY5O5+1lycfrVsn/DQduzwgBftEWNC1avUg1XJV 5BBYiNGWl9gzFFdtLvt16njfYwIDAQABo4IChTCCAoEwHQYDVR0OBBYEFH6Jd81B KY3Aq4FXQbjPEEZkP0rjMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTcwQjMwMDQy ODA0MTFGMTlDNDAzMzRBQjU4MzM3NzMucm9hMEQGCCsGAQUFBwEHAQH/BDUwMzAg BAIAATAaAwQBZ8cKMAwDBABn2H0DBAdn2AADBAGjgDwwDwQCAAIwCQMHACABDfbU QDANBgkqhkiG9w0BAQsFAAOCAQEASldzOfLcs4F99QniPkWQiFVrJmD5wPnGstVh b9lHVFaREAui875x0ETJ0A4wBzid+fYzojb3f23S8rbi7Xr7samWcASn48c4RUqk DlcucHpo+pi1+4r5jzWqczvi84VKG74AN7j1ccCzstUzfmKzZzh4joHvqgwjjDsh +BKxNm9Pd8oXnDe0Mn2ruCaxouSRxKtjJp42d6XXgrUD53fClGGHADXjTnore4BD 0u9L9YAkzc6wjYkFpD7AQw8YUkp9/Em821jc3SNlWXAG1gwacPZbKXVM8KL1Q9DW dAraF9CNIuqMAxAHz/5bt63wAcmqcRLzsw+p7KQYegqao5oAug== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:11 2026 by rpki-client