$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/CA7A6F1A157C11E9BB547B7AC4F9AE02.roa File: CA7A6F1A157C11E9BB547B7AC4F9AE02.roa (raw, json) Hash identifier: eh77xy/M1nZdj0GwmtoZv3V9lfazohZ6e7A9i7EqAfo= Subject key identifier: 7B:7D:91:35:77:FF:50:FD:7D:DE:60:04:96:9E:F9:4B:87:AF:16:4B Certificate issuer: /CN=A91B0B65/serialNumber=C057119CA45DD314215C61E09BF871D48ABB5F9B Certificate serial: 11BA Authority key identifier: C0:57:11:9C:A4:5D:D3:14:21:5C:61:E0:9B:F8:71:D4:8A:BB:5F:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/CA7A6F1A157C11E9BB547B7AC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:47:11 +0000 ROA not before: Fri 28 Nov 2025 17:19:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138359 IP address blocks: 103.130.153.0/24 maxlen: 24 103.143.219.0/24 maxlen: 24 2001:df6:e100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.crl rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4538 (0x11ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0B65, serialNumber=C057119CA45DD314215C61E09BF871D48ABB5F9B Validity Not Before: Nov 28 17:19:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4435f-f1ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:3a:22:cd:c5:4b:40:fb:c8:93:89:fe:91: 43:36:98:98:a0:48:ad:cb:46:9c:e2:2a:d5:28:16: 85:61:c5:22:0f:a8:d7:d8:00:0e:02:09:d6:d3:ae: f3:15:63:26:1c:d6:ea:92:f1:45:7d:26:75:ec:7e: be:69:d4:33:0f:c4:15:0c:75:26:c9:41:c4:85:76: f0:83:e5:98:c9:e2:81:c4:35:64:c8:b7:29:ad:63: 8c:ec:73:90:5b:a6:e0:1e:e7:44:e4:ac:29:09:ec: d6:e5:3f:43:19:64:dd:51:d1:3d:62:33:1f:f8:e4: 96:92:b9:50:49:2d:01:71:74:db:18:74:80:a7:93: b5:20:1b:ad:28:c1:40:ef:33:88:11:79:91:fc:2c: 91:24:8e:b0:52:95:6d:99:c4:18:bb:55:9a:3c:97: 9d:9c:0f:af:1e:7c:c2:22:65:f1:d9:b5:23:12:66: 29:1e:e0:ff:57:94:ab:a7:06:03:86:e3:91:f5:c1: 21:1f:3c:da:98:d0:a9:7e:2e:2d:85:f9:43:4b:2b: 66:50:83:0b:12:ac:3e:1c:c2:48:74:ba:b1:67:05: 34:f0:1f:b8:c2:66:5c:65:22:da:bb:ca:5c:c1:95: 67:e6:a9:af:f2:1f:22:78:3e:21:c2:71:e4:d9:f2: f6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7D:91:35:77:FF:50:FD:7D:DE:60:04:96:9E:F9:4B:87:AF:16:4B X509v3 Authority Key Identifier: keyid:C0:57:11:9C:A4:5D:D3:14:21:5C:61:E0:9B:F8:71:D4:8A:BB:5F:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/CA7A6F1A157C11E9BB547B7AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.130.153.0/24 103.143.219.0/24 IPv6: 2001:df6:e100::/48 Signature Algorithm: sha256WithRSAEncryption 68:8e:26:19:c0:fc:86:ce:34:a8:cc:d4:40:b9:bb:ab:c7:77: b8:72:4a:92:f1:bb:49:07:b9:13:33:0e:17:b2:9f:fa:ad:ce: 55:d6:69:f4:85:de:1d:de:0c:44:94:e5:30:30:6e:b8:4c:96: c6:95:c1:cc:0f:78:c4:a6:28:f2:23:43:d4:64:49:f8:da:3e: 9f:8f:a9:92:15:71:6d:d1:ff:7a:6b:3a:5e:67:99:d9:c0:a9: 00:9c:3e:43:86:3e:e4:28:07:2b:43:78:1a:07:21:79:b7:af: f6:21:12:15:fe:9d:67:65:d1:2c:a8:e3:fc:7b:fa:4f:52:d7: 9d:7c:96:3a:fb:14:1f:d1:95:bf:9b:96:a6:a3:c7:5f:b7:9d: de:12:65:3d:2f:87:40:50:9a:d1:db:63:37:a2:b4:40:6c:27: 02:41:dc:78:c7:7e:09:ad:08:ad:14:96:0a:8d:2b:d2:cb:de: 4e:43:1f:71:e3:01:1d:71:8c:8e:00:2c:08:46:90:94:8a:04: 9f:7b:e3:67:dd:88:12:26:54:e9:4f:77:e9:b7:61:0b:00:1d: 8d:dc:57:1f:1d:8d:b4:fb:39:01:e8:71:a5:3d:f3:a1:b3:e0: 50:ab:6a:33:da:5b:be:14:9a:44:a5:c0:27:dc:0f:3b:2f:f7: 9e:fb:6a:41 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICEbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBCNjUxMTAvBgNVBAUTKEMwNTcxMTlDQTQ1REQzMTQyMTVDNjFFMDlCRjg3MUQ0 OEFCQjVGOUIwHhcNMjUxMTI4MTcxOTM5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDM1Zi1mMWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl86Is3FS0D7yJOJ/pFDNpiYoEity0ac4irVKBaFYcUiD6jX2AAOAgnW067z FWMmHNbqkvFFfSZ17H6+adQzD8QVDHUmyUHEhXbwg+WYyeKBxDVkyLcprWOM7HOQ W6bgHudE5KwpCezW5T9DGWTdUdE9YjMf+OSWkrlQSS0BcXTbGHSAp5O1IButKMFA 7zOIEXmR/CyRJI6wUpVtmcQYu1WaPJednA+vHnzCImXx2bUjEmYpHuD/V5SrpwYD huOR9cEhHzzamNCpfi4thflDSytmUIMLEqw+HMJIdLqxZwU08B+4wmZcZSLau8pc wZVn5qmv8h8ieD4hwnHk2fL2rwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFHt9kTV3 /1D9fd5gBJae+UuHrxZLMB8GA1UdIwQYMBaAFMBXEZykXdMUIVxh4Jv4cdSKu1+b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEI2NS9FNkU0MjJBNjE1 NjExMUU5OTM0QjFCMzZDNEY5QUUwMi93RmNSbktSZDB4UWhYR0hnbV9oeDFJcTdY NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dGY1JuS1JkMHhRaFhHSGdtX2h4MUlxN1g1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBCNjUvRTZFNDIyQTYxNTYxMTFFOTkzNEIxQjM2QzRGOUFFMDIvQ0E3QTZGMUEx NTdDMTFFOUJCNTQ3QjdBQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ4KZAwQAZ4/bMA8EAgACMAkDBwAgAQ324QAwDQYJKoZIhvcNAQEL BQADggEBAGiOJhnA/IbONKjM1EC5u6vHd7hySpLxu0kHuRMzDheyn/qtzlXWafSF 3h3eDESU5TAwbrhMlsaVwcwPeMSmKPIjQ9RkSfjaPp+PqZIVcW3R/3prOl5nmdnA qQCcPkOGPuQoBytDeBoHIXm3r/YhEhX+nWdl0Syo4/x7+k9S1518ljr7FB/Rlb+b lqajx1+3nd4SZT0vh0BQmtHbYzeitEBsJwJB3HjHfgmtCK0UlgqNK9LL3k5DH3Hj AR1xjI4ALAhGkJSKBJ9742fdiBImVOlPd+m3YQsAHY3cVx8djbT7OQHocaU986Gz 4FCrajPaW74UmkSlwCfcDzsv9577akE= -----END CERTIFICATE-----Generated at Mon Mar 2 14:28:42 2026 by rpki-client