$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/D76AC8AC2EAB11EF9B369566C4F9AE02.roa File: D76AC8AC2EAB11EF9B369566C4F9AE02.roa (raw, json) Hash identifier: 1cdwgZmzDVOm6wZ+HxKzRuAqKPuSXXkt7scv/pzixXM= Subject key identifier: 60:A1:0C:60:AC:01:6B:67:DA:52:D0:B0:81:74:AA:D6:72:04:27:6E Certificate issuer: /CN=A91B7BDC/serialNumber=D43B44D5F937F65E8BAB9B7F987A3DC9D2104A32 Certificate serial: 04F7 Authority key identifier: D4:3B:44:D5:F9:37:F6:5E:8B:AB:9B:7F:98:7A:3D:C9:D2:10:4A:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DtE1fk39l6Lq5t_mHo9ydIQSjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/D76AC8AC2EAB11EF9B369566C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:53:20 +0000 ROA not before: Fri 25 Apr 2025 00:25:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132139 IP address blocks: 103.149.62.0/23 maxlen: 23 103.149.62.0/24 maxlen: 24 103.149.63.0/24 maxlen: 24 2405:e440::/32 maxlen: 32 2405:e440::/48 maxlen: 48 2405:e440:1::/48 maxlen: 48 2405:e440:2::/48 maxlen: 48 2405:e440:3::/48 maxlen: 48 2405:e440:4::/46 maxlen: 46 2405:e440:4::/48 maxlen: 48 2405:e440:5::/48 maxlen: 48 2405:e440:6::/48 maxlen: 48 2405:e440:7::/48 maxlen: 48 2405:e440:8::/46 maxlen: 46 2405:e440:8::/48 maxlen: 48 2405:e440:9::/48 maxlen: 48 2405:e440:a::/48 maxlen: 48 2405:e440:b::/48 maxlen: 48 2405:e440:c::/46 maxlen: 46 2405:e440:c::/48 maxlen: 48 2405:e440:d::/48 maxlen: 48 2405:e440:e::/48 maxlen: 48 2405:e440:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/1DtE1fk39l6Lq5t_mHo9ydIQSjI.crl rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/1DtE1fk39l6Lq5t_mHo9ydIQSjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DtE1fk39l6Lq5t_mHo9ydIQSjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7BDC, serialNumber=D43B44D5F937F65E8BAB9B7F987A3DC9D2104A32 Validity Not Before: Apr 25 00:25:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fe80-3456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:22:54:cc:6a:f2:9e:11:67:2d:d1:9f:a9:6d: f7:7d:6a:6b:1b:25:9d:21:02:08:7f:9d:7b:ce:f3: ab:04:f0:d8:86:8e:15:b3:52:00:17:66:7a:d0:54: b9:67:ee:44:2d:68:69:0e:cd:02:c9:59:2e:fd:0f: 3b:21:a4:4e:fc:86:db:86:92:75:85:f3:77:15:dc: 38:7b:e0:0a:31:2b:44:df:32:b6:68:b3:e4:a1:25: c8:b5:0c:fe:ef:2c:2d:c9:cb:d6:6a:26:d0:42:40: 0c:a8:45:61:f9:7a:89:8e:1f:cd:e3:dd:37:6f:16: ac:c4:26:db:12:c3:da:d7:5d:cc:d5:8b:40:a9:33: 20:c5:4d:40:c8:2c:e0:9c:44:a6:60:7f:45:3e:8d: 1a:91:55:ea:07:9d:53:cf:2f:8b:e9:cb:37:c4:3a: 02:59:63:32:e1:7e:cd:0b:81:4c:ba:b4:87:5c:9f: 72:5f:29:d3:23:20:f0:33:dc:ec:df:75:35:15:e0: 56:84:26:0c:b4:44:86:09:3f:24:48:aa:2e:d7:dd: 0f:d9:ce:f9:7a:1b:a2:b9:ff:5f:e3:27:e8:a3:ed: ec:b5:90:2b:fc:58:e8:7a:5f:e5:80:f5:c5:f7:2d: e9:15:0f:9c:a5:84:d7:86:1b:c7:b0:91:4a:63:ce: b7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A1:0C:60:AC:01:6B:67:DA:52:D0:B0:81:74:AA:D6:72:04:27:6E X509v3 Authority Key Identifier: keyid:D4:3B:44:D5:F9:37:F6:5E:8B:AB:9B:7F:98:7A:3D:C9:D2:10:4A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/1DtE1fk39l6Lq5t_mHo9ydIQSjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DtE1fk39l6Lq5t_mHo9ydIQSjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/D76AC8AC2EAB11EF9B369566C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.62.0/23 IPv6: 2405:e440::/32 Signature Algorithm: sha256WithRSAEncryption 20:5b:05:6d:a4:b3:dc:9c:e1:83:14:39:48:17:9d:ab:50:62: 94:d8:5c:13:84:02:6b:a3:b8:d6:fc:27:18:03:bb:0e:52:9b: 80:2b:36:5b:5a:c5:df:1f:e7:7e:69:4e:47:f1:e3:e6:8b:c2: 56:46:30:59:a7:b2:de:c0:e4:91:97:ff:f4:c8:eb:17:a8:86: 63:5a:9f:6b:1e:93:b4:02:f6:8d:80:12:a9:4a:26:e8:ce:4d: 2c:d9:90:8e:17:ea:a5:23:82:4c:74:2d:28:42:56:3f:66:e4: 02:cf:fb:32:75:d6:b0:48:ad:22:58:d3:c0:d0:a3:24:74:b4: e0:07:b0:5b:2d:a1:da:f1:dc:39:c6:2c:c2:60:2b:4a:1f:70: 07:c2:8b:b9:58:79:12:f8:ad:30:b8:1f:ab:df:2d:a5:46:35: bb:29:56:3f:7a:f6:22:86:1c:4b:29:c8:02:20:64:1c:df:3b: ed:a6:b9:9e:57:b6:b3:16:d4:cc:47:b9:9c:36:4d:77:b9:d8: 8e:5d:e6:53:d7:29:f9:8b:7a:b7:45:c2:95:be:89:fd:51:f7: d0:c2:d2:12:d4:58:ba:3b:ce:90:14:ed:9d:4e:ea:92:05:62: 40:98:3e:ec:f1:86:5d:f1:1e:cd:a1:16:b1:94:20:8e:08:90: b6:a2:53:4d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCREMxMTAvBgNVBAUTKEQ0M0I0NEQ1RjkzN0Y2NUU4QkFCOUI3Rjk4N0EzREM5 RDIxMDRBMzIwHhcNMjUwNDI1MDAyNTQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmU4MC0zNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCJUzGrynhFnLdGfqW33fWprGyWdIQIIf517zvOrBPDYho4Vs1IAF2Z60FS5 Z+5ELWhpDs0CyVku/Q87IaRO/IbbhpJ1hfN3Fdw4e+AKMStE3zK2aLPkoSXItQz+ 7ywtycvWaibQQkAMqEVh+XqJjh/N4903bxasxCbbEsPa113M1YtAqTMgxU1AyCzg nESmYH9FPo0akVXqB51Tzy+L6cs3xDoCWWMy4X7NC4FMurSHXJ9yXynTIyDwM9zs 33U1FeBWhCYMtESGCT8kSKou190P2c75ehuiuf9f4yfoo+3stZAr/Fjoel/lgPXF 9y3pFQ+cpYTXhhvHsJFKY863CwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGChDGCs AWtn2lLQsIF0qtZyBCduMB8GA1UdIwQYMBaAFNQ7RNX5N/Zei6ubf5h6PcnSEEoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0JEQy82ODFDOEY0NjU4 QkUxMUVDOEFFRDVGMkNDNEY5QUUwMi8xRHRFMWZrMzlsNkxxNXRfbUhvOXlkSVFT akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFEdEUxZmszOWw2THE1dF9tSG85eWRJUVNqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdCREMvNjgxQzhGNDY1OEJFMTFFQzhBRUQ1RjJDQzRGOUFFMDIvRDc2QUM4QUMy RUFCMTFFRjlCMzY5NTY2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5U+MA0EAgACMAcDBQAkBeRAMA0GCSqGSIb3DQEBCwUAA4IBAQAg WwVtpLPcnOGDFDlIF52rUGKU2FwThAJro7jW/CcYA7sOUpuAKzZbWsXfH+d+aU5H 8ePmi8JWRjBZp7LewOSRl//0yOsXqIZjWp9rHpO0AvaNgBKpSibozk0s2ZCOF+ql I4JMdC0oQlY/ZuQCz/syddawSK0iWNPA0KMkdLTgB7BbLaHa8dw5xizCYCtKH3AH wou5WHkS+K0wuB+r3y2lRjW7KVY/evYihhxLKcgCIGQc3zvtprmeV7azFtTMR7mc Nk13udiOXeZT1yn5i3q3RcKVvon9UffQwtIS1Fi6O86QFO2dTuqSBWJAmD7s8YZd 8R7NoRaxlCCOCJC2olNN -----END CERTIFICATE-----Generated at Mon Mar 2 16:07:48 2026 by rpki-client