$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa File: D6A69CF45AD711EF8665FF81C4F9AE02.roa (raw, json) Hash identifier: 1bLjvUFKAie+LhFsglKp4ujOu6m4XQrp7oBF2mMsatU= Subject key identifier: D2:0F:7D:79:B4:94:4C:BA:FE:40:A2:91:81:39:13:41:CE:12:AD:F6 Certificate issuer: /CN=A91A6D8B/serialNumber=9AB686E3C299AA7E4455493495B46BA5A744099D Certificate serial: 01CD Authority key identifier: 9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:22:28 +0000 ROA not before: Wed 03 Sep 2025 04:52:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137996 IP address blocks: 103.120.4.0/24 maxlen: 24 103.120.5.0/24 maxlen: 24 2407:b140:1379::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.crl rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6D8B, serialNumber=9AB686E3C299AA7E4455493495B46BA5A744099D Validity Not Before: Sep 3 04:52:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a41364-dac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:95:7a:31:1c:69:99:b1:d8:25:a2:cc:16:75: ad:57:84:fd:02:6f:4b:dc:1a:23:d6:fb:7a:fe:9a: 77:69:69:fa:4f:b0:db:d2:09:6c:f8:9f:84:e2:af: b0:e5:4b:40:b8:c1:72:f1:7e:c1:4c:55:e8:8c:a8: 91:74:9f:19:8e:07:a1:31:48:e1:db:2d:a3:26:e3: 46:67:91:be:38:4d:3b:4c:12:da:cb:d1:0f:7c:42: b2:f5:e4:23:09:be:a4:55:2f:82:85:44:ee:2a:8b: 56:9a:cc:07:fc:b7:2e:34:25:5f:16:89:cf:df:40: 9b:34:23:e8:15:70:8b:cc:e3:6a:f4:1d:8e:9c:47: cf:97:62:ce:c7:f1:ad:e7:d8:99:87:33:e3:df:4c: de:4d:21:97:10:89:5a:0a:ce:8d:23:1e:4f:bc:4c: d0:6b:99:ae:c3:7d:03:3b:48:db:90:ae:f3:e2:5d: 14:54:ce:01:5d:41:28:ed:4a:fc:d2:14:d0:c3:1e: 26:b6:9e:a5:7c:ef:3d:bb:b2:85:49:3a:49:fc:38: 03:04:48:bb:19:bc:35:fe:48:f0:40:7f:72:1d:0d: 21:b3:36:73:35:56:e1:6c:8d:68:36:f5:97:cc:9b: c2:b7:4f:bc:13:0c:7c:92:1f:e2:b0:4d:3d:c0:eb: a4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0F:7D:79:B4:94:4C:BA:FE:40:A2:91:81:39:13:41:CE:12:AD:F6 X509v3 Authority Key Identifier: keyid:9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.120.4.0/23 IPv6: 2407:b140:1379::/48 Signature Algorithm: sha256WithRSAEncryption 47:40:f6:5f:88:cf:f5:19:c7:87:5e:fe:91:6f:b0:75:c1:d4: bf:8d:1b:a8:b4:0b:67:7e:0a:a9:83:d3:e8:86:3d:94:4c:80: 8f:fe:62:c6:13:83:3e:a2:09:82:8c:c7:d0:67:11:53:7a:2f: f7:d2:9f:65:24:8e:00:eb:8e:26:0b:b3:06:09:66:12:df:b1: 44:0c:44:40:d0:87:6b:19:d5:67:d1:06:bf:90:35:b5:f3:c6: 58:97:57:62:87:fa:ce:8c:b1:16:29:97:e4:e9:61:cb:12:10: aa:79:5f:63:a6:f0:ff:9f:90:dc:20:d1:7e:43:14:d4:c9:4c: ad:1b:3f:3d:b2:02:a6:9f:f7:10:6e:e5:7e:b9:b0:06:b6:3d: a5:b3:72:a8:d9:c9:ff:fe:d0:70:10:37:6b:b2:ef:6a:64:f8: d8:be:09:11:fd:9f:03:4a:96:0d:f9:53:17:63:12:41:f1:e9: 51:ec:9f:84:d3:07:c7:76:d7:4e:d7:69:d2:ad:a9:e5:f0:0e: 68:00:a3:5f:18:f6:f5:83:22:72:d5:fc:8d:47:dc:14:32:bc: 3e:08:08:c1:f7:b8:5d:30:2a:46:81:8f:eb:91:a3:25:ed:f3: 49:fe:a2:41:3a:f7:d2:06:d5:b8:fe:a7:83:f5:66:59:2e:6a: df:04:72:d3 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZEOEIxMTAvBgNVBAUTKDlBQjY4NkUzQzI5OUFBN0U0NDU1NDkzNDk1QjQ2QkE1 QTc0NDA5OUQwHhcNMjUwOTAzMDQ1MjA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTM2NC1kYWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpV6MRxpmbHYJaLMFnWtV4T9Am9L3Boj1vt6/pp3aWn6T7Db0gls+J+E4q+w 5UtAuMFy8X7BTFXojKiRdJ8ZjgehMUjh2y2jJuNGZ5G+OE07TBLay9EPfEKy9eQj Cb6kVS+ChUTuKotWmswH/LcuNCVfFonP30CbNCPoFXCLzONq9B2OnEfPl2LOx/Gt 59iZhzPj30zeTSGXEIlaCs6NIx5PvEzQa5muw30DO0jbkK7z4l0UVM4BXUEo7Ur8 0hTQwx4mtp6lfO89u7KFSTpJ/DgDBEi7Gbw1/kjwQH9yHQ0hszZzNVbhbI1oNvWX zJvCt0+8Ewx8kh/isE09wOukDwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNIPfXm0 lEy6/kCikYE5E0HOEq32MB8GA1UdIwQYMBaAFJq2huPCmap+RFVJNJW0a6WnRAmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkQ4Qi9CMkYyMzVCMjY3 MjAxMUVFQTE0NkMyMkRDNEY5QUUwMi9tcmFHNDhLWnFuNUVWVWswbGJScnBhZEVD WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21yYUc0OEtacW41RVZVazBsYlJycGFkRUNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZEOEIvQjJGMjM1QjI2NzIwMTFFRUExNDZDMjJEQzRGOUFFMDIvRDZBNjlDRjQ1 QUQ3MTFFRjg2NjVGRjgxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ3gEMA8EAgACMAkDBwAkB7FAE3kwDQYJKoZIhvcNAQELBQADggEB AEdA9l+Iz/UZx4de/pFvsHXB1L+NG6i0C2d+CqmD0+iGPZRMgI/+YsYTgz6iCYKM x9BnEVN6L/fSn2UkjgDrjiYLswYJZhLfsUQMREDQh2sZ1WfRBr+QNbXzxliXV2KH +s6MsRYpl+TpYcsSEKp5X2Om8P+fkNwg0X5DFNTJTK0bPz2yAqaf9xBu5X65sAa2 PaWzcqjZyf/+0HAQN2uy72pk+Ni+CRH9nwNKlg35UxdjEkHx6VHsn4TTB8d2107X adKtqeXwDmgAo18Y9vWDInLV/I1H3BQyvD4ICMH3uF0wKkaBj+uRoyXt80n+okE6 99IG1bj+p4P1Zlkuat8EctM= -----END CERTIFICATE-----Generated at Mon Mar 2 10:54:10 2026 by rpki-client