$ rpki-client -vvf rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa File: A7D265605BB411EAB5B9A73BC4F9AE02.roa (raw, json) Hash identifier: ZWPcFrTL/W8/hSHPoCLkwWIX68mMSRrbQ6m2PomlMlQ= Subject key identifier: 01:75:DF:67:5D:D1:B5:87:D0:E5:89:F3:1C:C4:6E:84:A8:72:A6:52 Certificate issuer: /CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Certificate serial: 0B1D Authority key identifier: EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:45:56 +0000 ROA not before: Tue 30 Dec 2025 19:15:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138470 IP address blocks: 103.126.76.0/24 maxlen: 24 103.126.77.0/24 maxlen: 24 103.126.78.0/24 maxlen: 24 103.126.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B04E3, serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Validity Not Before: Dec 30 19:15:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45124-bd00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a9:a5:89:55:6a:bb:6d:59:f3:0e:7c:2b:49: c5:03:8b:ac:e4:aa:c5:b4:82:8c:aa:6c:6f:a3:8c: 7f:2b:5b:3e:77:7e:46:ad:f1:24:80:7b:92:59:07: 58:25:2d:06:6e:31:14:c9:3d:69:29:e0:ed:32:f8: 35:53:b8:9b:c5:d6:d8:05:71:d8:df:29:f4:56:5e: 6e:83:67:06:9d:94:c9:c9:b0:04:69:2b:1d:55:e0: 2a:8f:5a:eb:ef:64:75:e0:4c:f0:8f:28:df:d3:01: eb:8d:8b:bd:65:78:e7:ce:30:f5:26:71:89:99:5d: a0:96:dc:7c:a5:18:89:6e:df:ab:92:59:be:6d:57: f7:35:b3:4e:19:ce:4c:6a:1d:13:55:fe:a1:1b:1a: 4f:67:97:73:40:ee:00:f8:b9:f9:f1:59:c7:4c:e8: 17:cf:a1:3e:c9:5e:1e:57:a0:d6:13:c7:ba:a4:0a: 54:e5:56:b1:3b:88:74:ce:01:75:f3:7b:61:5d:92: 76:ec:b1:91:65:22:90:0d:f4:7e:4d:7c:0c:95:c0: a6:e0:01:46:c5:a5:0b:77:66:cd:9f:43:7a:72:36: 5b:8d:90:1f:d7:54:aa:b0:d5:7f:1d:c0:e8:4e:c5: a9:91:67:9c:cd:e7:4b:2e:05:cc:57:38:5b:73:24: 14:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:75:DF:67:5D:D1:B5:87:D0:E5:89:F3:1C:C4:6E:84:A8:72:A6:52 X509v3 Authority Key Identifier: keyid:EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.126.76.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:ab:a2:d0:06:07:34:94:09:f2:e7:3c:a5:79:7a:b8:f7:99: 55:59:eb:3d:d0:c1:9b:18:db:69:3b:26:9f:c2:78:cc:95:e5: 8a:77:cc:81:ab:17:d9:8d:21:56:64:db:96:2f:ab:bb:b3:ae: 10:79:71:e5:f3:ad:7b:61:4c:e7:d0:08:b6:52:70:50:a4:e9: 69:0e:3d:f6:a6:4d:16:aa:3c:9a:93:bc:33:d5:76:1c:a2:4e: a4:a0:6a:9b:da:a7:7d:5d:ab:c3:4d:0e:81:3f:bf:1b:a6:fd: fe:30:4c:34:ec:4e:a4:47:2f:a4:f1:91:3a:17:ea:d9:c9:fa: 3c:a1:99:ea:90:bd:99:f1:8c:5e:37:08:81:6e:5c:02:88:e6: a3:cd:c8:ef:05:ba:41:cd:c6:5e:5c:b4:4e:17:ac:17:6a:68: 51:5b:0f:06:c3:b7:42:08:e3:77:1b:23:ec:39:e1:a1:08:06: 02:24:0a:88:91:ab:fd:25:b2:5f:ea:24:c6:64:ba:61:8a:72: 22:e8:98:5e:8c:76:e3:5a:a0:74:d8:fb:cf:6e:b1:e8:12:8b: 3b:f1:38:52:29:e6:e8:99:e2:ac:7f:8e:68:c7:89:1e:74:38: c5:8d:0d:99:30:89:44:10:4a:0e:34:7d:65:77:d8:c1:0d:da: 58:55:db:77 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA0RTMxMTAvBgNVBAUTKEVDNThCNDM3OEZDQkZGNENCMTI0MUY4MkYzQkNDMEU4 NzJFNEIzOTYwHhcNMjUxMjMwMTkxNTUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTEyNC1iZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqmliVVqu21Z8w58K0nFA4us5KrFtIKMqmxvo4x/K1s+d35GrfEkgHuSWQdY JS0GbjEUyT1pKeDtMvg1U7ibxdbYBXHY3yn0Vl5ug2cGnZTJybAEaSsdVeAqj1rr 72R14Ezwjyjf0wHrjYu9ZXjnzjD1JnGJmV2gltx8pRiJbt+rklm+bVf3NbNOGc5M ah0TVf6hGxpPZ5dzQO4A+Ln58VnHTOgXz6E+yV4eV6DWE8e6pApU5VaxO4h0zgF1 83thXZJ27LGRZSKQDfR+TXwMlcCm4AFGxaULd2bNn0N6cjZbjZAf11SqsNV/HcDo TsWpkWeczedLLgXMVzhbcyQUEQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAF132dd 0bWH0OWJ8xzEboSocqZSMB8GA1UdIwQYMBaAFOxYtDePy/9MsSQfgvO8wOhy5LOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDRFMy8xNDgzQkQzNjVC QjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8weXhKQi1DODd6QTZITGtz NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGaTBONF9MXzB5eEpCLUM4N3pBNkhMa3M1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA0RTMvMTQ4M0JEMzY1QkI0MTFFQTg4RDU2NzNCQzRGOUFFMDIvQTdEMjY1NjA1 QkI0MTFFQUI1QjlBNzNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ35MMA0GCSqGSIb3DQEBCwUAA4IBAQBOq6LQBgc0lAny5zyleXq4 95lVWes90MGbGNtpOyafwnjMleWKd8yBqxfZjSFWZNuWL6u7s64QeXHl8617YUzn 0Ai2UnBQpOlpDj32pk0Wqjyak7wz1XYcok6koGqb2qd9XavDTQ6BP78bpv3+MEw0 7E6kRy+k8ZE6F+rZyfo8oZnqkL2Z8YxeNwiBblwCiOajzcjvBbpBzcZeXLROF6wX amhRWw8Gw7dCCON3GyPsOeGhCAYCJAqIkav9JbJf6iTGZLphinIi6JhejHbjWqB0 2PvPbrHoEos78ThSKebomeKsf45ox4kedDjFjQ2ZMIlEEEoONH1ld9jBDdpYVdt3 -----END CERTIFICATE-----Generated at Mon Mar 2 19:32:17 2026 by rpki-client