$ rpki-client -vvf rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/2173FE4EC0A611ECB6A6996CC4F9AE02.roa File: 2173FE4EC0A611ECB6A6996CC4F9AE02.roa (raw, json) Hash identifier: lbvKMon3phKT4kxAzoVpvvRCe8EmYTdmkdcCNNB8PIY= Subject key identifier: B7:CD:EF:47:28:58:76:9F:F6:75:8C:B6:34:ED:51:96:86:41:F2:D7 Certificate issuer: /CN=A91C798A/serialNumber=F634C0B12C1978AF3E890C528FC72C8F747DB980 Certificate serial: 03CD Authority key identifier: F6:34:C0:B1:2C:19:78:AF:3E:89:0C:52:8F:C7:2C:8F:74:7D:B9:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jTAsSwZeK8-iQxSj8csj3R9uYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/2173FE4EC0A611ECB6A6996CC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:20:20 +0000 ROA not before: Sat 03 May 2025 01:37:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139846 IP address blocks: 103.186.144.0/23 maxlen: 23 103.186.144.0/24 maxlen: 24 103.186.145.0/24 maxlen: 24 2400:71e0::/32 maxlen: 32 2400:71e0::/36 maxlen: 36 2400:71e0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/9jTAsSwZeK8-iQxSj8csj3R9uYA.crl rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/9jTAsSwZeK8-iQxSj8csj3R9uYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jTAsSwZeK8-iQxSj8csj3R9uYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 973 (0x3cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C798A, serialNumber=F634C0B12C1978AF3E890C528FC72C8F747DB980 Validity Not Before: May 3 01:37:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e8b4-36c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0f:37:69:25:77:1c:90:57:64:ee:c2:60:eb: d5:56:8a:b9:e1:e4:d4:0a:4a:1b:7b:cf:5e:d2:5c: f0:56:04:91:10:d9:7e:15:06:29:21:76:c0:65:46: 04:e2:42:1a:fb:81:83:84:f9:74:64:b2:99:aa:12: e0:5a:16:cd:5e:8b:dc:d8:0a:19:f8:94:d1:77:5e: 3e:71:9c:d4:a1:d8:99:a9:68:56:fa:50:49:b8:3b: c3:fe:3e:f5:5a:d8:1a:a9:fe:14:d0:95:cb:0e:2e: 69:bb:7e:1d:c9:e1:4c:b3:a0:2f:02:0e:55:77:93: 88:79:34:f8:03:f2:08:36:32:7d:12:f1:29:3c:90: 24:02:79:07:ee:5d:0d:19:cd:3e:08:6f:30:6f:6b: 38:91:e7:ea:3f:45:70:35:e2:61:78:e4:0f:a1:db: ec:3f:5a:e8:32:0c:1f:30:43:66:7e:60:9f:f4:83: 72:a9:97:9c:69:af:30:54:73:11:59:d8:c5:58:da: 83:e5:15:94:54:83:96:0c:5c:b7:c4:a6:3e:44:c0: ec:73:36:37:9f:64:64:ae:d6:cb:e5:35:24:d7:ad: 28:22:92:9d:68:1f:96:55:d1:81:fc:5f:53:fa:b9: 46:5c:9e:17:b6:bd:e0:56:d4:81:ba:87:d7:ce:77: 2a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CD:EF:47:28:58:76:9F:F6:75:8C:B6:34:ED:51:96:86:41:F2:D7 X509v3 Authority Key Identifier: keyid:F6:34:C0:B1:2C:19:78:AF:3E:89:0C:52:8F:C7:2C:8F:74:7D:B9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/9jTAsSwZeK8-iQxSj8csj3R9uYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jTAsSwZeK8-iQxSj8csj3R9uYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/2173FE4EC0A611ECB6A6996CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.144.0/23 IPv6: 2400:71e0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:98:0d:7a:82:44:7e:4f:5e:3f:fc:00:5a:12:c9:cb:70:26: 43:51:d8:3e:6c:0f:28:43:77:6a:3f:da:19:e8:55:95:66:c0: 71:c5:30:5f:78:07:3a:08:78:4d:8b:d9:32:62:02:18:95:32: 80:39:c7:82:2d:dd:80:6e:74:9a:12:9e:00:1d:9d:b5:67:af: 98:27:df:f6:01:b1:65:8a:8b:c6:3f:9b:bc:24:91:4f:14:b7: da:d6:67:52:95:49:bf:7e:72:d5:df:08:90:5f:a5:52:18:57: 74:65:85:9e:08:2e:f9:e3:9b:bb:f8:d0:12:98:4f:13:e9:fe: 12:d6:35:07:4e:74:35:a1:9e:b0:c8:28:90:b0:c7:4e:e0:ab: e6:b0:c3:0f:19:30:ef:91:ec:eb:7a:d7:dd:cc:41:a8:87:3f: 28:a0:fd:c9:49:35:39:18:6c:74:39:77:11:a5:e6:89:37:12: b8:1d:dd:b2:23:6d:12:0d:6e:9c:82:b6:4a:91:10:08:58:11: f3:86:be:58:57:b6:11:fb:7c:5a:e8:b7:73:fa:7f:f1:a0:c4: 40:fb:33:2d:0b:2a:9c:d5:66:1a:93:8f:0a:33:b7:23:d5:6b: 42:8a:48:77:43:f3:85:e9:d0:0e:34:77:76:94:ee:dd:54:09: b2:c4:8c:df -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICA80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OEExMTAvBgNVBAUTKEY2MzRDMEIxMkMxOTc4QUYzRTg5MEM1MjhGQzcyQzhG NzQ3REI5ODAwHhcNMjUwNTAzMDEzNzE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZThiNC0zNmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwA83aSV3HJBXZO7CYOvVVoq54eTUCkobe89e0lzwVgSRENl+FQYpIXbAZUYE 4kIa+4GDhPl0ZLKZqhLgWhbNXovc2AoZ+JTRd14+cZzUodiZqWhW+lBJuDvD/j71 Wtgaqf4U0JXLDi5pu34dyeFMs6AvAg5Vd5OIeTT4A/IINjJ9EvEpPJAkAnkH7l0N Gc0+CG8wb2s4kefqP0VwNeJheOQPodvsP1roMgwfMENmfmCf9INyqZecaa8wVHMR WdjFWNqD5RWUVIOWDFy3xKY+RMDsczY3n2RkrtbL5TUk160oIpKdaB+WVdGB/F9T +rlGXJ4Xtr3gVtSBuofXzncqrQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLfN70co WHaf9nWMtjTtUZaGQfLXMB8GA1UdIwQYMBaAFPY0wLEsGXivPokMUo/HLI90fbmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk4QS9DRjVGRDZCOEMw QTExMUVDOEFFMjQ1MjhDNEY5QUUwMi85alRBc1N3WmVLOC1pUXhTajhjc2ozUjl1 WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlqVEFzU3daZUs4LWlReFNqOGNzajNSOXVZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc5OEEvQ0Y1RkQ2QjhDMEExMTFFQzhBRTI0NTI4QzRGOUFFMDIvMjE3M0ZFNEVD MEE2MTFFQ0I2QTY5OTZDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7qQMA0EAgACMAcDBQAkAHHgMA0GCSqGSIb3DQEBCwUAA4IBAQBt mA16gkR+T14//ABaEsnLcCZDUdg+bA8oQ3dqP9oZ6FWVZsBxxTBfeAc6CHhNi9ky YgIYlTKAOceCLd2AbnSaEp4AHZ21Z6+YJ9/2AbFliovGP5u8JJFPFLfa1mdSlUm/ fnLV3wiQX6VSGFd0ZYWeCC7545u7+NASmE8T6f4S1jUHTnQ1oZ6wyCiQsMdO4Kvm sMMPGTDvkezretfdzEGohz8ooP3JSTU5GGx0OXcRpeaJNxK4Hd2yI20SDW6cgrZK kRAIWBHzhr5YV7YR+3xa6Ldz+n/xoMRA+zMtCyqc1WYak48KM7cj1WtCikh3Q/OF 6dAONHd2lO7dVAmyxIzf -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:22 2026 by rpki-client