$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa File: BBBC061A122711EB952CAB3FC4F9AE02.roa (raw, json) Hash identifier: C0xBTRlD8HLET0RP6eUIhENntX7keWJnMKK0uyPRa78= Subject key identifier: F6:38:6F:D2:C7:EF:B1:3F:A5:EE:FD:0E:5E:42:E2:2F:C1:23:93:AC Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 08C9 Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:03:34 +0000 ROA not before: Tue 16 Dec 2025 21:17:26 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 18250 IP address blocks: 103.157.110.0/23 maxlen: 24 2406:9dc0::/44 maxlen: 48 2406:9dc0:60::/44 maxlen: 48 2406:9dc0:100::/44 maxlen: 48 2406:9dc0:1010::/44 maxlen: 48 2406:9dc0:6661::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2249 (0x8c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F, serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Validity Not Before: Dec 16 21:17:26 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47f76-8cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b3:f2:73:97:18:fd:c2:a2:b6:2c:62:a0:82: 97:63:30:6c:2a:12:7e:f7:6f:34:f4:ac:d2:0f:f6: fc:88:20:ca:b4:07:d2:dd:d9:66:77:c7:35:97:02: 8a:77:a7:f2:82:55:e1:44:23:80:00:b9:8f:74:ae: 0a:3f:ac:c6:13:5b:09:02:35:0b:79:af:b7:39:d7: 97:2e:ed:db:02:8c:7b:d3:e2:33:9c:b3:e1:e3:f3: dc:29:f9:1a:0c:79:00:39:f7:48:68:43:2a:02:fd: 8c:e5:0a:9b:d4:d8:92:ac:ec:6f:93:f1:36:ef:b8: c0:23:45:98:18:e1:35:a0:43:7f:2e:89:b9:2b:30: c7:86:ea:37:31:1f:26:a4:93:2b:0d:3a:7a:0c:d9: 00:59:67:8c:b8:29:77:50:1b:76:29:18:8a:05:9c: d8:0d:4e:05:07:6e:41:dd:c2:f4:5b:ad:b6:f8:45: a0:3e:73:22:0f:09:d6:0f:c0:d1:f8:52:47:a2:a9: e6:f6:63:cc:3e:fb:b7:73:b0:33:20:1a:f2:16:54: bb:8c:a9:4b:b7:3f:91:ee:85:e4:5d:9a:e4:9a:ec: a5:eb:ee:a3:26:ad:0c:4c:aa:61:93:e7:d8:e2:9c: ce:2f:b6:bd:79:60:b0:b2:47:b3:72:0a:3c:0a:6d: f4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:38:6F:D2:C7:EF:B1:3F:A5:EE:FD:0E:5E:42:E2:2F:C1:23:93:AC X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/BBBC061A122711EB952CAB3FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.157.110.0/23 IPv6: 2406:9dc0::/44 2406:9dc0:60::/44 2406:9dc0:100::/44 2406:9dc0:1010::/44 2406:9dc0:6661::/48 Signature Algorithm: sha256WithRSAEncryption 34:4d:86:54:cf:89:29:d7:e1:c8:04:2b:1f:3d:1d:46:b8:72: 22:6f:19:0b:07:e1:5b:08:eb:f4:99:3e:46:0e:eb:4c:bd:d5: 6c:23:0e:00:2c:66:71:6d:fa:1d:fa:2b:51:7f:e0:7f:1a:8c: 8b:01:01:26:89:d7:c5:05:98:13:97:bd:61:a5:5c:3b:23:74: ad:f3:35:d1:d4:ad:41:c5:9c:43:e3:56:16:6c:06:e2:77:12: d4:ba:14:0a:57:37:84:8e:b0:bb:8c:c6:dc:c5:ee:3d:6a:cf: de:dd:b2:07:5c:a2:33:df:2d:c1:9e:d5:68:47:b1:67:0f:bc: 1e:c0:ae:d8:11:e2:ac:31:58:98:eb:20:0f:e5:00:6f:ad:28: a4:c9:f2:81:76:21:59:e7:33:c0:9e:2c:aa:94:e3:5c:80:eb: 60:94:f8:15:eb:37:7c:cd:64:85:a6:a4:4e:8a:10:ab:00:57: 68:48:1c:77:1d:fb:4f:ae:18:68:3c:ac:3a:e1:3d:4e:67:75: c2:4c:fd:0d:a7:0b:d5:c1:54:99:35:d9:25:4b:7a:f4:8e:f6: 0f:6d:96:c0:57:4d:ef:87:68:83:ac:17:87:bb:a1:5c:c4:43: ee:65:d9:95:cf:22:dd:0d:0e:ee:c9:d3:3c:b5:69:e2:10:ce: c1:d8:b9:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjUxMjE2MjExNzI2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Y3Ni04Y2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLPyc5cY/cKitixioIKXYzBsKhJ+92809KzSD/b8iCDKtAfS3dlmd8c1lwKK d6fyglXhRCOAALmPdK4KP6zGE1sJAjULea+3OdeXLu3bAox70+IznLPh4/PcKfka DHkAOfdIaEMqAv2M5Qqb1NiSrOxvk/E277jAI0WYGOE1oEN/Lom5KzDHhuo3MR8m pJMrDTp6DNkAWWeMuCl3UBt2KRiKBZzYDU4FB25B3cL0W622+EWgPnMiDwnWD8DR +FJHoqnm9mPMPvu3c7AzIBryFlS7jKlLtz+R7oXkXZrkmuyl6+6jJq0MTKphk+fY 4pzOL7a9eWCwskezcgo8Cm30ZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPY4b9LH 77E/pe79Dl5C4i/BI5OsMB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvQkJCQzA2MUEx MjI3MTFFQjk1MkNBQjNGQzRGOUFFMDIucm9hMFQGCCsGAQUFBwEHAQH/BEUwQzAM BAIAATAGAwQBZ51uMDMEAgACMC0DBwQkBp3AAAADBwQkBp3AAGADBwQkBp3AAQAD BwQkBp3AEBADBwAkBp3AZmEwDQYJKoZIhvcNAQELBQADggEBADRNhlTPiSnX4cgE Kx89HUa4ciJvGQsH4VsI6/SZPkYO60y91WwjDgAsZnFt+h36K1F/4H8ajIsBASaJ 18UFmBOXvWGlXDsjdK3zNdHUrUHFnEPjVhZsBuJ3EtS6FApXN4SOsLuMxtzF7j1q z97dsgdcojPfLcGe1WhHsWcPvB7ArtgR4qwxWJjrIA/lAG+tKKTJ8oF2IVnnM8Ce LKqU41yA62CU+BXrN3zNZIWmpE6KEKsAV2hIHHcd+0+uGGg8rDrhPU5ndcJM/Q2n C9XBVJk12SVLevSO9g9tlsBXTe+HaIOsF4e7oVzEQ+5l2ZXPIt0NDu7J0zy1aeIQ zsHYub8= -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:19 2026 by rpki-client