$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa File: F0223A56C8F711EFB2542D5FC4F9AE02.roa (raw, json) Hash identifier: x729WOa3T8qxHTeXY3IB1oaDUAtd3GUuYxUEzKIlZlE= Subject key identifier: 93:29:77:BE:F7:7D:55:7E:70:6E:BE:82:AB:6E:F5:5C:4E:25:7E:22 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 049E Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa Signing time: Thu 11 Jun 2026 02:29:36 +0000 ROA not before: Thu 11 Jun 2026 02:29:36 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 149058 IP address blocks: 103.138.146.0/24 maxlen: 24 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40::/36 maxlen: 36 2407:3b40:1000::/36 maxlen: 36 2407:3b40:1000::/48 maxlen: 48 2407:3b40:1001::/48 maxlen: 48 2407:3b40:2000::/36 maxlen: 36 2407:3b40:3000::/36 maxlen: 36 2407:3b40:4000::/36 maxlen: 36 2407:3b40:5000::/36 maxlen: 36 2407:3b40:6000::/36 maxlen: 36 2407:3b40:7000::/36 maxlen: 36 2407:3b40:9000::/36 maxlen: 36 2407:3b40:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720, serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: Jun 11 02:29:36 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2a1d90-27c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d1:f8:7c:77:7f:f0:ca:9c:f1:56:f9:bb:23: 43:5d:26:57:14:a7:a4:84:b0:17:51:18:00:db:08: 9c:4f:d0:f3:87:76:b7:8e:1b:9a:69:ee:cb:44:34: 50:eb:50:a3:f5:5e:98:e2:ab:18:d7:15:84:0a:63: 19:fe:f2:1a:11:1d:5d:86:92:65:44:c0:29:6b:1b: 5d:96:c7:ff:bc:5f:67:e5:ef:d6:5d:f1:ed:97:19: d0:2c:07:93:15:e7:7f:56:93:c9:a3:fd:61:e6:94: 01:86:23:9e:ef:74:26:23:10:9e:1e:a4:3d:ae:97: d5:73:1c:d1:1c:a9:06:18:01:99:80:1f:67:ac:79: 51:8f:98:bb:2b:7c:23:cb:2a:28:3c:f3:a7:90:d5: 28:38:13:47:57:34:05:18:a8:19:fc:53:5d:4a:45: ee:d0:6d:1b:e4:0e:b6:fc:5c:de:40:5d:e0:72:f9: 75:00:5d:6e:d4:8b:17:c6:f3:5f:ce:e4:04:e5:33: 87:37:de:0e:4f:b1:43:50:a6:49:2f:a1:ba:d8:aa: 2f:4a:8f:e4:95:ed:79:bb:b6:50:b2:30:7c:6b:8e: 63:99:a4:2d:1b:35:72:02:0a:1d:31:3c:a5:c3:e2: 83:c1:8d:75:24:da:3c:18:2a:d4:c4:bf:44:2a:b7: 6d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:29:77:BE:F7:7D:55:7E:70:6E:BE:82:AB:6E:F5:5C:4E:25:7E:22 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.146.0/23 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 22:38:ad:7f:60:d9:c5:42:aa:f5:1a:61:19:b2:07:29:dd:f5: 3b:97:33:a5:fe:7b:a9:72:be:8b:be:a0:66:77:6e:93:64:58: 5f:54:05:76:bb:89:7b:b1:dc:2c:99:e5:a0:cd:d8:7d:56:1e: 4e:34:a0:e0:81:51:f9:1b:d2:29:bc:b8:9d:5c:b1:96:37:87: 17:e1:02:6f:f8:1e:17:6a:04:f5:b9:d9:9d:db:f7:0d:4e:bc: 44:2f:a3:c1:97:a9:a3:9b:76:34:cb:10:fe:1d:ac:b0:e9:a9: 8e:ab:ec:2f:64:2f:1a:d7:ea:56:1b:15:a5:ec:30:e9:a8:f9: 3b:d1:a2:6e:85:0b:8b:24:e7:ef:d3:f8:f6:60:c8:96:78:d7: d6:f2:0f:ec:ca:e4:f0:27:1b:b2:96:5b:3c:af:24:43:b8:e2: 18:e7:87:62:d1:7c:fb:99:91:0e:0f:78:24:19:a8:5d:e5:73: be:41:0a:f2:3b:ac:96:9f:3c:0b:02:53:0f:2d:46:94:76:91: c3:b6:05:e5:af:91:dd:ce:b3:c2:ee:92:a1:b0:c6:b6:ab:d0: 9e:93:e2:b9:4e:05:d4:d4:7e:58:a5:58:24:2a:0c:b5:37:f9: 79:35:cf:2b:a6:91:c1:eb:70:71:f9:be:ef:6b:cd:84:97:58: 38:55:0a:cb -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjYwNjExMDIyOTM2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJhMWQ5MC0yN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNH4fHd/8Mqc8Vb5uyNDXSZXFKekhLAXURgA2wicT9Dzh3a3jhuaae7LRDRQ 61Cj9V6Y4qsY1xWECmMZ/vIaER1dhpJlRMApaxtdlsf/vF9n5e/WXfHtlxnQLAeT Fed/VpPJo/1h5pQBhiOe73QmIxCeHqQ9rpfVcxzRHKkGGAGZgB9nrHlRj5i7K3wj yyooPPOnkNUoOBNHVzQFGKgZ/FNdSkXu0G0b5A62/FzeQF3gcvl1AF1u1IsXxvNf zuQE5TOHN94OT7FDUKZJL6G62KovSo/kle15u7ZQsjB8a45jmaQtGzVyAgodMTyl w+KDwY11JNo8GCrUxL9EKrdtCQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJMpd773 fVV+cG6+gqtu9VxOJX4iMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvRjAyMjNBNTZD OEY3MTFFRkIyNTQyRDVGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4qSMA0EAgACMAcDBQAkBztAMA0GCSqGSIb3DQEBCwUAA4IBAQAi OK1/YNnFQqr1GmEZsgcp3fU7lzOl/nupcr6LvqBmd26TZFhfVAV2u4l7sdwsmeWg zdh9Vh5ONKDggVH5G9IpvLidXLGWN4cX4QJv+B4XagT1udmd2/cNTrxEL6PBl6mj m3Y0yxD+Hayw6amOq+wvZC8a1+pWGxWl7DDpqPk70aJuhQuLJOfv0/j2YMiWeNfW 8g/syuTwJxuylls8ryRDuOIY54di0Xz7mZEOD3gkGahd5XO+QQryO6yWnzwLAlMP LUaUdpHDtgXlr5HdzrPC7pKhsMa2q9Cek+K5TgXU1H5YpVgkKgy1N/l5Nc8rppHB 63Bx+b7va82El1g4VQrL -----END CERTIFICATE-----Generated at Sat Jun 13 20:37:16 2026 by rpki-client