$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2BC9/66D37AA6915611ED8D4B773DC4F9AE02/044E6658915A11ED8D2FBE43C4F9AE02.roa File: 044E6658915A11ED8D2FBE43C4F9AE02.roa (raw, json) Hash identifier: 6ViEjGiRPk0ms0lSl5+ohXm8W2evvF29tI66T/l8bLg= Subject key identifier: DB:7C:8A:16:07:B5:43:70:91:A2:BF:F7:A3:2E:1D:B5:4B:B2:2E:10 Certificate issuer: /CN=A91B2BC9/serialNumber=7ECC77A2CCADAADA6342FC0F44691875EA3F9287 Certificate serial: 0253 Authority key identifier: 7E:CC:77:A2:CC:AD:AA:DA:63:42:FC:0F:44:69:18:75:EA:3F:92:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fsx3osytqtpjQvwPRGkYdeo_koc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2BC9/66D37AA6915611ED8D4B773DC4F9AE02/044E6658915A11ED8D2FBE43C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:07:59 +0000 ROA not before: Thu 29 Jan 2026 01:22:27 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 139238 IP address blocks: 103.66.142.0/23 maxlen: 23 103.66.142.0/24 maxlen: 24 103.66.143.0/24 maxlen: 24 2400:d1e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2BC9/66D37AA6915611ED8D4B773DC4F9AE02/fsx3osytqtpjQvwPRGkYdeo_koc.crl rsync://rpki.apnic.net/member_repository/A91B2BC9/66D37AA6915611ED8D4B773DC4F9AE02/fsx3osytqtpjQvwPRGkYdeo_koc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fsx3osytqtpjQvwPRGkYdeo_koc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2BC9, serialNumber=7ECC77A2CCADAADA6342FC0F44691875EA3F9287 Validity Not Before: Jan 29 01:22:27 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a40fff-7091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:53:e0:27:0f:ad:71:63:72:bf:9d:11:04:cc: c7:ce:af:51:21:9f:ab:5a:aa:55:77:6c:d0:10:76: 34:2d:ba:bc:1c:c5:0d:53:33:68:fe:2d:02:d4:e3: 20:d6:aa:1b:e1:9b:92:bf:4f:00:d9:0d:2e:86:81: a7:d0:e9:48:fe:a5:d8:2a:1e:81:7b:81:f4:11:7f: e8:cb:e1:92:a1:ba:62:03:e2:d6:7f:ce:6d:ae:20: fb:ff:1c:b7:be:87:2f:b3:17:36:61:2a:24:f4:f6: b7:24:68:1b:07:1d:20:ce:88:ee:b5:f4:73:a5:2a: db:90:06:16:d5:14:eb:aa:89:db:5e:50:c4:85:2a: f6:3b:c3:96:79:c3:d1:05:bf:f4:7e:ea:a1:b2:2c: 10:28:53:38:1a:4d:f6:5f:6d:ec:0c:67:93:d6:0d: 57:f3:8e:14:58:91:bb:91:04:7c:b7:3a:59:bb:af: ad:68:2e:07:a9:d0:7c:78:a4:4d:16:eb:d4:47:4c: c9:e6:56:cb:e1:10:84:9d:b9:f6:4d:f2:0d:b3:f8: a3:a8:50:2f:e6:1c:6a:da:b6:94:54:d1:ec:0d:ae: 76:40:ee:0e:43:ca:54:d4:33:a6:30:62:56:8e:72: c0:24:12:0c:a2:31:67:60:4e:5b:86:27:8a:2f:13: a1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:7C:8A:16:07:B5:43:70:91:A2:BF:F7:A3:2E:1D:B5:4B:B2:2E:10 X509v3 Authority Key Identifier: keyid:7E:CC:77:A2:CC:AD:AA:DA:63:42:FC:0F:44:69:18:75:EA:3F:92:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2BC9/66D37AA6915611ED8D4B773DC4F9AE02/fsx3osytqtpjQvwPRGkYdeo_koc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fsx3osytqtpjQvwPRGkYdeo_koc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2BC9/66D37AA6915611ED8D4B773DC4F9AE02/044E6658915A11ED8D2FBE43C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.66.142.0/23 IPv6: 2400:d1e0::/32 Signature Algorithm: sha256WithRSAEncryption 04:7c:85:4b:6d:7b:7a:9e:1c:24:60:b2:16:92:75:db:cd:d7: de:cd:9f:03:e5:fc:53:03:62:c5:ac:9e:b4:e8:d4:8a:c7:61: bb:1c:52:67:0f:30:43:88:6e:22:44:5c:1c:71:90:a9:86:6f: ba:6c:9b:a2:bf:df:32:c8:72:25:29:04:6c:d8:d4:17:fb:6c: 49:52:00:86:ad:c9:33:af:49:21:e6:51:99:3f:d6:04:bc:6f: a2:60:0c:80:05:d0:47:01:62:62:3a:03:b7:1f:26:49:d5:96: 9e:af:7a:3e:3a:38:e3:db:39:0d:6f:56:88:18:e1:f1:39:3e: af:93:3d:1e:b1:da:7f:f8:a1:9b:1e:ca:26:11:6a:4f:55:a8: 5a:9b:83:c5:88:59:0e:59:00:dd:c0:b9:43:a1:6f:74:75:9b: 21:92:82:e4:09:4b:4e:a5:61:80:f6:e6:25:36:45:19:22:f6: f0:72:a1:01:57:0b:d9:32:48:86:1b:58:9e:d9:01:20:b6:58: 93:9e:ea:d9:60:b8:24:88:cb:7c:57:75:30:ec:c8:b6:ae:73: c0:15:4c:60:f4:80:35:56:89:13:23:ec:16:de:c3:7e:ee:c6: 6f:41:ce:9a:ab:d3:f2:02:23:be:c7:6c:b3:b2:03:e5:0f:b0: 64:00:4e:a2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJCQzkxMTAvBgNVBAUTKDdFQ0M3N0EyQ0NBREFBREE2MzQyRkMwRjQ0NjkxODc1 RUEzRjkyODcwHhcNMjYwMTI5MDEyMjI3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGZmZi03MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFPgJw+tcWNyv50RBMzHzq9RIZ+rWqpVd2zQEHY0Lbq8HMUNUzNo/i0C1OMg 1qob4ZuSv08A2Q0uhoGn0OlI/qXYKh6Be4H0EX/oy+GSobpiA+LWf85triD7/xy3 vocvsxc2YSok9Pa3JGgbBx0gzojutfRzpSrbkAYW1RTrqonbXlDEhSr2O8OWecPR Bb/0fuqhsiwQKFM4Gk32X23sDGeT1g1X844UWJG7kQR8tzpZu6+taC4HqdB8eKRN FuvUR0zJ5lbL4RCEnbn2TfINs/ijqFAv5hxq2raUVNHsDa52QO4OQ8pU1DOmMGJW jnLAJBIMojFnYE5bhieKLxOhewIDAQABo4ICbzCCAmswHQYDVR0OBBYEFNt8ihYH tUNwkaK/96MuHbVLsi4QMB8GA1UdIwQYMBaAFH7Md6LMraraY0L8D0RpGHXqP5KH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkJDOS82NkQzN0FBNjkx NTYxMUVEOEQ0Qjc3M0RDNEY5QUUwMi9mc3gzb3N5dHF0cGpRdndQUkdrWWRlb19r b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZzeDNvc3l0cXRwalF2d1BSR2tZZGVvX2tvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJCQzkvNjZEMzdBQTY5MTU2MTFFRDhENEI3NzNEQzRGOUFFMDIvMDQ0RTY2NTg5 MTVBMTFFRDhEMkZCRTQzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ0KOMA0EAgACMAcDBQAkANHgMA0GCSqGSIb3DQEBCwUAA4IBAQAE fIVLbXt6nhwkYLIWknXbzdfezZ8D5fxTA2LFrJ606NSKx2G7HFJnDzBDiG4iRFwc cZCphm+6bJuiv98yyHIlKQRs2NQX+2xJUgCGrckzr0kh5lGZP9YEvG+iYAyABdBH AWJiOgO3HyZJ1Zaer3o+Ojjj2zkNb1aIGOHxOT6vkz0esdp/+KGbHsomEWpPVaha m4PFiFkOWQDdwLlDoW90dZshkoLkCUtOpWGA9uYlNkUZIvbwcqEBVwvZMkiGG1ie 2QEgtliTnurZYLgkiMt8V3Uw7Mi2rnPAFUxg9IA1VokTI+wW3sN+7sZvQc6aq9Py AiO+x2yzsgPlD7BkAE6i -----END CERTIFICATE-----Generated at Mon Mar 2 09:03:36 2026 by rpki-client