$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/C7C9E3B6125111F1B8BE3F1A2A3D8C67.roa File: C7C9E3B6125111F1B8BE3F1A2A3D8C67.roa (raw, json) Hash identifier: XjNUxvWdrN/f8UvJCjdCzDeTUbQlad9gZAT9Co3kYbc= Subject key identifier: BA:B0:A9:AF:F8:8B:5E:F8:B4:D1:B8:8E:C5:12:D1:40:19:3C:D3:E4 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 06DD Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/C7C9E3B6125111F1B8BE3F1A2A3D8C67.roa Signing time: Sun 01 Mar 2026 12:34:00 +0000 ROA not before: Wed 25 Feb 2026 13:56:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 214432 IP address blocks: 103.106.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1757 (0x6dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897, serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Feb 25 13:56:28 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a43238-f676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b6:d3:7a:db:7d:50:16:82:f6:f5:98:2f:e4: 95:09:66:07:71:e7:ce:2f:c8:50:21:21:17:38:22: 06:8b:cb:69:7f:92:fc:24:dc:57:e9:09:88:f3:63: 7e:a6:cf:71:9c:1e:7d:93:5b:39:39:32:61:0c:be: a3:4b:dc:de:e4:ed:33:af:43:e4:97:1a:4a:55:26: fd:a4:ec:48:35:b2:34:4b:f9:40:50:5c:2e:00:f3: 88:c7:71:8d:9f:8b:d0:e4:8e:1f:8d:a1:64:77:81: db:0b:f7:96:fd:76:b9:9e:55:85:92:70:d3:ee:71: 1e:a7:ec:68:ae:1d:b3:b0:5f:76:93:27:8d:ab:5b: cb:4a:eb:30:73:8c:77:b8:1f:d3:c7:75:74:1f:0f: 95:ff:4a:db:c0:17:66:56:18:b7:36:6f:8b:c7:17: 4b:20:e7:85:d8:db:25:53:97:a1:a9:b9:d6:a4:a7: 59:18:fb:32:b1:97:96:ce:10:50:49:10:25:e7:02: 06:39:21:f1:93:d7:07:08:e6:98:d9:9f:1e:06:2d: 82:48:f2:58:79:9e:18:5e:58:b7:6d:5a:f2:55:b5: 60:67:af:e5:b0:5c:69:c6:29:42:38:2e:45:43:77: 56:a2:67:00:44:0b:36:07:0f:31:03:c4:22:0d:60: 44:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B0:A9:AF:F8:8B:5E:F8:B4:D1:B8:8E:C5:12:D1:40:19:3C:D3:E4 X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/C7C9E3B6125111F1B8BE3F1A2A3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.106.202.0/24 Signature Algorithm: sha256WithRSAEncryption 46:18:7b:06:6a:a6:f1:ce:67:3e:29:48:cd:1a:4c:41:0a:4e: fd:81:95:db:28:b5:d3:82:62:62:83:a3:33:1d:2a:2b:50:b3: c4:c8:70:3f:93:31:69:fd:29:b3:4d:64:6b:e7:bd:d6:76:3a: cf:58:2b:34:b1:31:45:fe:be:1c:b7:48:87:c2:ec:96:f9:12: d0:f9:ee:98:f1:18:85:3c:10:18:8c:66:4f:00:61:78:7f:93: d1:37:0a:31:d7:18:0b:2f:09:6b:24:2b:ae:39:7f:9c:54:70: d2:65:a7:d8:a3:cb:b6:73:25:61:d9:84:4f:6e:fc:19:41:72: fe:6c:b0:be:7d:1a:5b:4b:5c:cd:e5:f0:42:9c:2c:5a:5d:2f: 5c:c3:4e:8d:79:f7:f2:55:8a:7c:a1:52:46:9d:fe:0f:9d:8a: 32:6b:40:1f:fe:2b:e7:2e:5e:16:ff:1e:ad:12:17:37:db:07: 5d:57:b0:6a:04:7c:59:ef:f7:e2:bd:80:12:c6:56:d8:13:30: 3b:b6:63:20:04:d9:90:a9:f6:47:93:45:ca:1b:e2:02:07:b3: 6c:7f:23:98:75:e5:f6:84:af:5f:c7:24:2d:c7:1c:14:23:09: 02:ab:bf:86:fa:fe:3c:1b:82:cf:a9:82:61:35:82:90:8c:b0: 13:6b:25:3a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjYwMjI1MTM1NjI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzIzOC1mNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7bTett9UBaC9vWYL+SVCWYHcefOL8hQISEXOCIGi8tpf5L8JNxX6QmI82N+ ps9xnB59k1s5OTJhDL6jS9ze5O0zr0PklxpKVSb9pOxINbI0S/lAUFwuAPOIx3GN n4vQ5I4fjaFkd4HbC/eW/Xa5nlWFknDT7nEep+xorh2zsF92kyeNq1vLSuswc4x3 uB/Tx3V0Hw+V/0rbwBdmVhi3Nm+LxxdLIOeF2NslU5ehqbnWpKdZGPsysZeWzhBQ SRAl5wIGOSHxk9cHCOaY2Z8eBi2CSPJYeZ4YXli3bVryVbVgZ6/lsFxpxilCOC5F Q3dWomcARAs2Bw8xA8QiDWBEfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLqwqa/4 i174tNG4jsUS0UAZPNPkMB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE4OTcvRTFEMTE3NzA5NUJBMTFFQkIyODEyMzcxQzRGOUFFMDIvQzdDOUUzQjYx MjUxMTFGMUI4QkUzRjFBMkEzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2rKMA0GCSqGSIb3DQEBCwUAA4IBAQBGGHsGaqbxzmc+KUjNGkxB Ck79gZXbKLXTgmJig6MzHSorULPEyHA/kzFp/SmzTWRr573WdjrPWCs0sTFF/r4c t0iHwuyW+RLQ+e6Y8RiFPBAYjGZPAGF4f5PRNwox1xgLLwlrJCuuOX+cVHDSZafY o8u2cyVh2YRPbvwZQXL+bLC+fRpbS1zN5fBCnCxaXS9cw06NeffyVYp8oVJGnf4P nYoya0Af/ivnLl4W/x6tEhc32wddV7BqBHxZ7/fivYASxlbYEzA7tmMgBNmQqfZH k0XKG+ICB7NsfyOYdeX2hK9fxyQtxxwUIwkCq7+G+v48G4LPqYJhNYKQjLATayU6 -----END CERTIFICATE-----Generated at Mon Mar 2 21:07:53 2026 by rpki-client