$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa File: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (raw, json) Hash identifier: R5LqOdOqksS9vnhA2t5gWvk4nnnpRsAdMKKtSSAeL3Y= Subject key identifier: FF:B2:EA:1B:8D:5B:35:74:01:8A:B1:77:EB:E0:61:3D:37:F9:BA:D5 Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 1677 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:16:41 +0000 ROA not before: Tue 06 May 2025 16:55:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136530 IP address blocks: 103.90.144.0/22 maxlen: 24 2400:f6c0::/32 maxlen: 32 2400:f6c0::/40 maxlen: 40 2400:f6c0:100::/40 maxlen: 40 2400:f6c0:200::/40 maxlen: 40 2400:f6c0:300::/40 maxlen: 40 2400:f6c0:400::/40 maxlen: 40 2400:f6c0:500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5751 (0x1677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA, serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: May 6 16:55:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a403f9-fdae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:85:fe:7c:9c:c5:21:4a:8a:a9:86:d3:67: 78:2d:7b:dd:23:5b:a9:d7:77:25:92:cd:92:be:0e: 86:3f:91:3e:07:40:7c:4b:19:be:27:df:f2:da:91: d7:f4:e6:ef:19:ab:b9:9d:73:24:b0:b3:2b:98:ba: 00:67:89:99:df:20:d5:94:f1:0d:f5:cd:dc:47:e7: 39:d3:cb:46:ad:a3:6b:54:ed:78:b2:5b:d4:e0:d2: fb:42:ea:89:54:b4:fd:29:09:5e:ff:e9:7a:32:2b: dc:55:6d:7b:cc:c3:0b:47:6a:a0:13:3a:8d:67:52: 2e:9f:f9:70:43:89:95:5d:41:b4:f2:2a:81:7e:26: a3:64:77:39:26:72:7c:9d:a7:9a:4e:c7:de:c8:74: 61:ed:c3:5d:31:92:ed:ff:00:a9:97:d4:a4:80:41: 77:a6:75:9e:93:36:c4:25:b7:19:c4:f5:49:fc:16: 23:a6:86:cd:ad:3e:13:0a:87:93:4e:cd:de:c2:5c: fb:34:58:c5:88:1f:8c:dd:cd:5e:5e:54:29:92:52: b4:a0:f3:ae:45:fc:7d:72:cb:55:5b:6a:52:c2:a4: c2:a5:ae:ab:80:b8:8b:61:a4:fe:79:27:bd:4e:cf: 6c:8a:4b:ea:fd:77:fe:86:2f:c4:e8:0e:33:b6:66: ea:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B2:EA:1B:8D:5B:35:74:01:8A:B1:77:EB:E0:61:3D:37:F9:BA:D5 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.90.144.0/22 IPv6: 2400:f6c0::/32 Signature Algorithm: sha256WithRSAEncryption 89:f3:54:38:f9:ba:40:77:f1:31:2f:6a:4a:ed:b1:23:94:c3: 49:49:04:48:12:09:7e:f7:c6:21:8e:4a:c4:8a:6e:d2:6d:a5: 4e:f3:65:10:25:91:34:e9:58:0d:a6:a8:c9:93:b7:cf:a5:a4: 5b:df:04:2f:56:8b:c5:da:a5:d0:ca:77:31:5c:1e:20:0f:c9: 04:6a:c4:93:23:ad:a6:c3:ea:51:cb:8a:30:b3:dc:48:7d:98: 39:2c:7d:bb:c8:ac:de:ed:f1:6b:12:e4:6c:9a:e9:a1:ea:09: df:04:52:45:dc:f5:51:b0:a6:3c:4e:cc:82:19:6d:2d:f7:a6: 21:cc:f9:b3:ec:6b:eb:4a:d7:78:66:d3:67:44:94:e5:20:96: d7:ba:fb:fd:fd:eb:f8:b0:49:42:c5:49:31:e9:65:80:ce:36: 8d:bd:56:e6:7c:35:1a:e8:2d:3d:88:78:1e:f8:a4:ba:60:92: 05:6c:9c:d6:03:f9:54:3c:5b:b9:08:89:ff:cc:63:4d:41:8a: 86:b0:6d:d1:ca:d0:b0:ff:6d:fc:6f:db:10:8b:6c:0b:4e:2e: f4:e4:26:7d:cf:59:01:9b:9f:46:4f:b3:68:35:30:ab:88:d5: 10:25:1b:dd:9f:23:55:c2:81:43:4b:9a:91:bd:7a:21:96:c4: 9c:63:59:28 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICFncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjUwNTA2MTY1NTIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDNmOS1mZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOSF/nycxSFKiqmG02d4LXvdI1up13clks2Svg6GP5E+B0B8Sxm+J9/y2pHX 9ObvGau5nXMksLMrmLoAZ4mZ3yDVlPEN9c3cR+c508tGraNrVO14slvU4NL7QuqJ VLT9KQle/+l6MivcVW17zMMLR2qgEzqNZ1Iun/lwQ4mVXUG08iqBfiajZHc5JnJ8 naeaTsfeyHRh7cNdMZLt/wCpl9SkgEF3pnWekzbEJbcZxPVJ/BYjpobNrT4TCoeT Ts3ewlz7NFjFiB+M3c1eXlQpklK0oPOuRfx9cstVW2pSwqTCpa6rgLiLYaT+eSe9 Ts9sikvq/Xf+hi/E6A4ztmbq/QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFP+y6huN WzV0AYqxd+vgYT03+brVMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJDREEvRjRFMkJBQjgyNUMzMTFFOEEwNzE0QTM0QzRGOUFFMDIvN0YzRUQ1REU5 QzQ0MTFFQ0JEODVDRTRGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ1qQMA0EAgACMAcDBQAkAPbAMA0GCSqGSIb3DQEBCwUAA4IBAQCJ 81Q4+bpAd/ExL2pK7bEjlMNJSQRIEgl+98YhjkrEim7SbaVO82UQJZE06VgNpqjJ k7fPpaRb3wQvVovF2qXQyncxXB4gD8kEasSTI62mw+pRy4ows9xIfZg5LH27yKze 7fFrEuRsmumh6gnfBFJF3PVRsKY8TsyCGW0t96YhzPmz7GvrStd4ZtNnRJTlIJbX uvv9/ev4sElCxUkx6WWAzjaNvVbmfDUa6C09iHge+KS6YJIFbJzWA/lUPFu5CIn/ zGNNQYqGsG3RytCw/238b9sQi2wLTi705CZ9z1kBm59GT7NoNTCriNUQJRvdnyNV woFDS5qRvXohlsScY1ko -----END CERTIFICATE-----Generated at Mon Mar 2 20:56:44 2026 by rpki-client