$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6DF8/7676F5DCF3CA11E9AABA537FC4F9AE02/07B85890C29D11EBBAF29939C4F9AE02.roa File: 07B85890C29D11EBBAF29939C4F9AE02.roa (raw, json) Hash identifier: Ohcdy58kQP+4fXw4fnYH+zSLsCeQ8xFhQqrxtgGqWp8= Subject key identifier: 46:DF:7B:40:D2:60:9B:30:DB:48:BD:BC:7D:6C:10:D7:97:4A:C2:E7 Certificate issuer: /CN=A91A6DF8/serialNumber=7A506C217A31078E42178160380DD2C83928D92E Certificate serial: 0D3B Authority key identifier: 7A:50:6C:21:7A:31:07:8E:42:17:81:60:38:0D:D2:C8:39:28:D9:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elBsIXoxB45CF4FgOA3SyDko2S4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6DF8/7676F5DCF3CA11E9AABA537FC4F9AE02/07B85890C29D11EBBAF29939C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:28:10 +0000 ROA not before: Tue 30 Dec 2025 18:15:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138212 IP address blocks: 103.122.136.0/22 maxlen: 24 2403:9040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6DF8/7676F5DCF3CA11E9AABA537FC4F9AE02/elBsIXoxB45CF4FgOA3SyDko2S4.crl rsync://rpki.apnic.net/member_repository/A91A6DF8/7676F5DCF3CA11E9AABA537FC4F9AE02/elBsIXoxB45CF4FgOA3SyDko2S4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elBsIXoxB45CF4FgOA3SyDko2S4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3387 (0xd3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6DF8, serialNumber=7A506C217A31078E42178160380DD2C83928D92E Validity Not Before: Dec 30 18:15:12 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4691a-44f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:26:34:05:cf:f1:dc:e8:05:b6:42:6c:9a:79: 1e:9e:19:75:0e:fd:36:66:26:bb:72:73:68:4c:18: b4:f5:1a:01:68:1f:24:fa:bf:5e:61:dc:ea:84:e3: ef:fa:55:95:2b:0b:c1:51:6c:69:93:9c:e7:52:62: 73:02:d2:99:7c:1f:35:27:9e:88:ac:57:ff:bf:a2: 8e:8d:8f:24:ab:f2:8f:84:91:1b:d5:eb:d7:dc:c8: 2d:ac:01:13:b6:b9:b8:fd:66:cf:6d:96:87:81:67: 9f:42:5f:52:c8:c9:78:6d:17:ac:81:25:25:29:ef: 93:a1:c5:02:58:08:5b:ec:b9:5a:a5:a9:f6:e5:e6: ac:65:d0:6d:fc:2e:38:b7:66:ce:c9:06:ea:17:52: 20:f9:33:02:59:d2:28:48:97:36:88:33:c1:20:74: 39:a5:1f:72:6c:a1:49:17:2f:3e:2e:62:20:62:f4: 9c:5f:60:db:80:e8:10:57:8d:f0:aa:05:c6:55:68: d4:45:88:81:99:69:24:16:a6:f5:68:0a:bd:b5:f3: b4:14:19:5f:15:ba:09:ce:3b:9f:c5:6a:1a:05:6c: f3:e7:41:bf:7c:3b:87:0d:e3:5c:7b:7d:26:7f:22: f4:73:96:0e:2e:0d:ea:7e:bb:3c:5f:60:e6:4b:13: dc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DF:7B:40:D2:60:9B:30:DB:48:BD:BC:7D:6C:10:D7:97:4A:C2:E7 X509v3 Authority Key Identifier: keyid:7A:50:6C:21:7A:31:07:8E:42:17:81:60:38:0D:D2:C8:39:28:D9:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6DF8/7676F5DCF3CA11E9AABA537FC4F9AE02/elBsIXoxB45CF4FgOA3SyDko2S4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elBsIXoxB45CF4FgOA3SyDko2S4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6DF8/7676F5DCF3CA11E9AABA537FC4F9AE02/07B85890C29D11EBBAF29939C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.136.0/22 IPv6: 2403:9040::/32 Signature Algorithm: sha256WithRSAEncryption a8:8e:3a:e3:96:23:3c:c2:3b:ab:ad:50:b4:15:d4:c9:9b:49: 72:6d:1d:d4:58:fc:6d:09:4c:fd:37:0b:7f:13:62:f6:09:5c: c8:82:fd:e8:26:b3:e4:c3:c3:41:a8:0f:70:70:7f:61:4d:6a: af:5b:1c:df:8a:7f:79:aa:24:dc:6d:e0:68:3b:3e:2f:a7:91: 4f:7b:d8:ef:9f:07:d9:ec:23:79:4e:e5:cf:44:85:38:0a:4b: 78:74:c5:ea:0b:45:79:38:cd:36:27:7d:ec:9b:06:fb:52:46: fc:00:bb:0e:1f:c4:16:1c:ae:f0:08:5b:e0:29:b2:cd:ad:de: e0:be:c7:ea:5a:b0:3d:f8:47:9f:fe:70:4b:ac:12:a2:1c:1f: 19:d3:af:47:d8:00:47:a0:62:9b:63:98:5f:d6:1e:b3:80:1a: 89:2a:c3:49:85:ba:07:a5:0f:7b:e0:7e:41:cd:82:e7:93:52: 1a:45:40:eb:64:54:90:73:99:7f:21:2d:a6:d0:c9:a3:e1:21: 01:1c:95:28:78:3c:fc:fd:c5:a8:e8:52:39:00:20:65:33:db: fe:51:69:92:64:14:1d:4f:d8:91:79:69:29:f5:bd:f2:57:f5: 71:3c:74:25:39:5e:20:d6:57:98:ac:77:bc:c4:24:d0:1a:18: ae:fe:92:a1 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZERjgxMTAvBgNVBAUTKDdBNTA2QzIxN0EzMTA3OEU0MjE3ODE2MDM4MEREMkM4 MzkyOEQ5MkUwHhcNMjUxMjMwMTgxNTEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjkxYS00NGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAniY0Bc/x3OgFtkJsmnkenhl1Dv02Zia7cnNoTBi09RoBaB8k+r9eYdzqhOPv +lWVKwvBUWxpk5znUmJzAtKZfB81J56IrFf/v6KOjY8kq/KPhJEb1evX3MgtrAET trm4/WbPbZaHgWefQl9SyMl4bResgSUlKe+TocUCWAhb7Llapan25easZdBt/C44 t2bOyQbqF1Ig+TMCWdIoSJc2iDPBIHQ5pR9ybKFJFy8+LmIgYvScX2DbgOgQV43w qgXGVWjURYiBmWkkFqb1aAq9tfO0FBlfFboJzjufxWoaBWzz50G/fDuHDeNce30m fyL0c5YOLg3qfrs8X2DmSxPcjQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEbfe0DS YJsw20i9vH1sENeXSsLnMB8GA1UdIwQYMBaAFHpQbCF6MQeOQheBYDgN0sg5KNku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkRGOC83Njc2RjVEQ0Yz Q0ExMUU5QUFCQTUzN0ZDNEY5QUUwMi9lbEJzSVhveEI0NUNGNEZnT0EzU3lEa28y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VsQnNJWG94QjQ1Q0Y0RmdPQTNTeURrbzJTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZERjgvNzY3NkY1RENGM0NBMTFFOUFBQkE1MzdGQzRGOUFFMDIvMDdCODU4OTBD MjlEMTFFQkJBRjI5OTM5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3qIMA0EAgACMAcDBQAkA5BAMA0GCSqGSIb3DQEBCwUAA4IBAQCo jjrjliM8wjurrVC0FdTJm0lybR3UWPxtCUz9Nwt/E2L2CVzIgv3oJrPkw8NBqA9w cH9hTWqvWxzfin95qiTcbeBoOz4vp5FPe9jvnwfZ7CN5TuXPRIU4Ckt4dMXqC0V5 OM02J33smwb7Ukb8ALsOH8QWHK7wCFvgKbLNrd7gvsfqWrA9+Eef/nBLrBKiHB8Z 069H2ABHoGKbY5hf1h6zgBqJKsNJhboHpQ974H5BzYLnk1IaRUDrZFSQc5l/IS2m 0Mmj4SEBHJUoeDz8/cWo6FI5ACBlM9v+UWmSZBQdT9iReWkp9b3yV/VxPHQlOV4g 1leYrHe8xCTQGhiu/pKh -----END CERTIFICATE-----Generated at Mon Mar 2 07:22:25 2026 by rpki-client