$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa File: D29DE1E6C98611ED8D5AE04CC4F9AE02.roa (raw, json) Hash identifier: yKBY5dtVMLpQRhUTcp2VZm6caZpNLzephZvZ/kuQQbU= Subject key identifier: 7C:98:D8:ED:76:AE:21:2D:07:7A:43:F0:14:5E:CD:01:EB:F6:1F:D8 Certificate issuer: /CN=A91C3DC8/serialNumber=A6C9611130C5167455136E85ABF236AAAA937BAD Certificate serial: 0CC7 Authority key identifier: A6:C9:61:11:30:C5:16:74:55:13:6E:85:AB:F2:36:AA:AA:93:7B:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:24:29 +0000 ROA not before: Sun 10 Aug 2025 11:16:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136141 IP address blocks: 103.137.66.0/24 maxlen: 24 103.137.67.0/24 maxlen: 24 2001:df0:1c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.crl rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3271 (0xcc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3DC8, serialNumber=A6C9611130C5167455136E85ABF236AAAA937BAD Validity Not Before: Aug 10 11:16:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a405cd-e16e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:43:04:39:e8:b1:53:7c:48:da:21:30:2c:bd: 6c:21:7a:4f:a8:9d:57:61:25:d6:c2:31:4a:a4:ac: f4:d8:82:0f:7f:b0:85:3b:d2:20:80:08:85:cf:7a: 02:07:22:78:59:7d:f2:03:4e:9d:4f:9e:d0:9d:58: 29:89:f9:5c:31:6a:6b:4e:f3:78:79:41:37:25:a6: 97:6e:33:c0:19:8b:49:b9:42:9e:b1:c7:4f:2c:e7: 3b:52:9b:20:32:68:72:e7:5a:72:4b:5a:1d:d4:95: d0:cf:04:e7:25:9a:46:6a:ad:99:b2:15:38:93:76: fd:e1:c0:76:e0:f8:ee:f8:1f:58:32:03:2e:9f:5d: 6a:fa:d9:85:1c:fa:58:07:f5:1d:9e:e3:fe:65:9b: 0b:8a:90:17:17:c4:f6:9e:56:74:e3:79:28:af:a8: 97:49:eb:b1:1a:5d:b6:50:31:78:3f:b0:0e:47:4e: 11:39:3d:05:8b:71:ef:6c:7f:a7:8d:2b:d7:5f:32: 1e:d6:c6:63:23:2b:40:1c:fe:ad:db:bc:1e:d2:53: 63:fd:74:11:ac:0a:34:04:93:ea:8d:e4:f1:04:73: 20:41:d2:25:4f:8b:23:88:b3:dc:db:4d:a9:9e:52: dc:ce:0b:7e:02:3c:a2:1c:c2:6a:22:29:30:ce:9e: e7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:98:D8:ED:76:AE:21:2D:07:7A:43:F0:14:5E:CD:01:EB:F6:1F:D8 X509v3 Authority Key Identifier: keyid:A6:C9:61:11:30:C5:16:74:55:13:6E:85:AB:F2:36:AA:AA:93:7B:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/pslhETDFFnRVE26Fq_I2qqqTe60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pslhETDFFnRVE26Fq_I2qqqTe60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3DC8/E5CAF93E11D811EAB7167C4FC4F9AE02/D29DE1E6C98611ED8D5AE04CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.66.0/23 IPv6: 2001:df0:1c80::/48 Signature Algorithm: sha256WithRSAEncryption 75:6f:f2:71:a5:eb:4c:21:2a:70:95:f4:7a:f8:fe:90:9c:35: 0a:74:69:ca:e0:cc:82:75:a7:81:1f:50:c3:00:3e:1b:29:a6: 18:fd:a9:29:a3:12:00:64:11:2d:99:41:b5:9c:eb:ae:13:80: f5:fe:ca:69:2c:b1:96:2a:91:56:84:3e:b7:a6:c5:6d:d7:d3: 42:72:79:10:b4:ca:98:4f:e0:99:3d:7d:c4:a9:31:2d:68:76: de:e8:19:9c:cb:0a:e5:be:47:91:7c:a2:ef:0a:96:2e:9e:94: 03:2a:8a:e6:f1:45:b1:59:dd:a7:66:9f:5c:d1:a6:fd:04:72: d2:10:58:03:17:aa:0c:29:61:3f:2b:21:2f:1d:db:3f:9d:14: 41:aa:30:b2:12:a7:7b:bd:81:bc:20:4c:a7:55:1b:25:4a:5c: 27:c2:c9:54:d6:fb:23:a5:37:48:c9:0b:c0:66:b8:74:81:07: 79:91:7b:0a:09:5e:f3:f9:83:3e:63:62:05:de:a2:07:55:80: b8:8f:39:42:a2:9a:bd:1e:ad:95:97:b4:7e:b0:42:f1:4e:ac: a2:3e:aa:33:dc:d4:6e:df:f5:19:8a:dc:4a:be:45:9c:8e:8c: f6:13:5a:82:f1:97:be:c5:b3:12:5e:35:91:b1:a6:da:ac:9b: ac:2b:e9:5c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNEQzgxMTAvBgNVBAUTKEE2Qzk2MTExMzBDNTE2NzQ1NTEzNkU4NUFCRjIzNkFB QUE5MzdCQUQwHhcNMjUwODEwMTExNjI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDVjZC1lMTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUMEOeixU3xI2iEwLL1sIXpPqJ1XYSXWwjFKpKz02IIPf7CFO9IggAiFz3oC ByJ4WX3yA06dT57QnVgpiflcMWprTvN4eUE3JaaXbjPAGYtJuUKescdPLOc7Upsg Mmhy51pyS1od1JXQzwTnJZpGaq2ZshU4k3b94cB24Pju+B9YMgMun11q+tmFHPpY B/UdnuP+ZZsLipAXF8T2nlZ043kor6iXSeuxGl22UDF4P7AOR04ROT0Fi3HvbH+n jSvXXzIe1sZjIytAHP6t27we0lNj/XQRrAo0BJPqjeTxBHMgQdIlT4sjiLPc202p nlLczgt+AjyiHMJqIikwzp7ntwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHyY2O12 riEtB3pD8BRezQHr9h/YMB8GA1UdIwQYMBaAFKbJYREwxRZ0VRNuhavyNqqqk3ut MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0RDOC9FNUNBRjkzRTEx RDgxMUVBQjcxNjdDNEZDNEY5QUUwMi9wc2xoRVRERkZuUlZFMjZGcV9JMnFxcVRl NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BzbGhFVERGRm5SVkUyNkZxX0kycXFxVGU2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNEQzgvRTVDQUY5M0UxMUQ4MTFFQUI3MTY3QzRGQzRGOUFFMDIvRDI5REUxRTZD OTg2MTFFRDhENUFFMDRDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4lCMA8EAgACMAkDBwAgAQ3wHIAwDQYJKoZIhvcNAQELBQADggEB AHVv8nGl60whKnCV9Hr4/pCcNQp0acrgzIJ1p4EfUMMAPhspphj9qSmjEgBkES2Z QbWc664TgPX+ymkssZYqkVaEPremxW3X00JyeRC0yphP4Jk9fcSpMS1odt7oGZzL CuW+R5F8ou8Kli6elAMqiubxRbFZ3admn1zRpv0EctIQWAMXqgwpYT8rIS8d2z+d FEGqMLISp3u9gbwgTKdVGyVKXCfCyVTW+yOlN0jJC8BmuHSBB3mRewoJXvP5gz5j YgXeogdVgLiPOUKimr0erZWXtH6wQvFOrKI+qjPc1G7f9RmK3Eq+RZyOjPYTWoLx l77FsxJeNZGxptqsm6wr6Vw= -----END CERTIFICATE-----Generated at Mon Mar 2 07:42:11 2026 by rpki-client