$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/F77C1438964111EDAAB8E74AC4F9AE02.roa File: F77C1438964111EDAAB8E74AC4F9AE02.roa (raw, json) Hash identifier: +vVLk4sB4I8wB31GUWlvFKxjQFLdu3FFGENTE3piOYQ= Subject key identifier: FA:1D:BC:25:8B:43:02:B4:95:B7:B2:48:50:6B:D5:73:58:2D:9B:17 Certificate issuer: /CN=A91CCCDD/serialNumber=3A8A6A2EE5DC09FCAA82FF018F09C1AF84B41196 Certificate serial: 0250 Authority key identifier: 3A:8A:6A:2E:E5:DC:09:FC:AA:82:FF:01:8F:09:C1:AF:84:B4:11:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OopqLuXcCfyqgv8BjwnBr4S0EZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/F77C1438964111EDAAB8E74AC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:26:19 +0000 ROA not before: Mon 11 Aug 2025 03:10:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149777 IP address blocks: 103.186.50.0/23 maxlen: 23 103.186.50.0/24 maxlen: 24 103.186.51.0/24 maxlen: 24 2400:6e20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/OopqLuXcCfyqgv8BjwnBr4S0EZY.crl rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/OopqLuXcCfyqgv8BjwnBr4S0EZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OopqLuXcCfyqgv8BjwnBr4S0EZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCCDD, serialNumber=3A8A6A2EE5DC09FCAA82FF018F09C1AF84B41196 Validity Not Before: Aug 11 03:10:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3ea1b-211a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:da:65:56:be:33:26:d9:e4:34:7a:49:3c:01: 41:7d:08:8e:dd:4d:cf:33:30:3c:10:d5:c4:64:7a: 77:fc:c1:64:79:e2:8b:86:c8:db:01:9b:49:c4:bc: 97:cf:91:0a:ce:8d:f1:0d:5a:be:f1:0a:59:cf:90: 2b:31:8f:7b:45:c8:21:c6:f3:88:12:2d:f1:d4:a3: e7:9e:d7:97:9c:65:6e:a7:f0:3e:62:dd:cf:1d:d8: cb:61:ff:ac:1c:49:45:24:e2:73:a8:64:53:f5:ab: 6c:ad:ea:32:12:ed:82:a3:ce:3e:b8:86:42:7e:79: af:7e:dd:b0:b5:1c:50:57:42:40:e4:85:93:6a:a3: 5f:f2:f9:18:17:d3:6d:66:95:7d:ee:05:79:73:12: e3:1b:43:7c:39:3b:ed:f1:48:ff:32:bd:9e:12:2f: 4a:97:db:e8:9c:41:d4:17:ee:96:34:e0:a3:c1:c2: 4c:b6:69:11:19:d7:4a:cc:3b:66:49:bb:db:78:68: 26:e9:68:dc:17:63:1c:4d:a2:cc:02:59:3e:71:df: c0:39:9c:f8:6c:a3:02:26:c0:23:6c:a4:8d:ca:8b: 53:43:8b:12:17:4f:5c:8c:62:7c:76:bb:77:0a:0d: 32:6f:47:dc:34:fd:0d:94:79:ee:c3:1e:df:f5:bd: db:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1D:BC:25:8B:43:02:B4:95:B7:B2:48:50:6B:D5:73:58:2D:9B:17 X509v3 Authority Key Identifier: keyid:3A:8A:6A:2E:E5:DC:09:FC:AA:82:FF:01:8F:09:C1:AF:84:B4:11:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/OopqLuXcCfyqgv8BjwnBr4S0EZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OopqLuXcCfyqgv8BjwnBr4S0EZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCCDD/F3BBE76E963D11EDBE3FD01AC4F9AE02/F77C1438964111EDAAB8E74AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.50.0/23 IPv6: 2400:6e20::/32 Signature Algorithm: sha256WithRSAEncryption 5e:4c:3e:a5:a5:1b:46:c0:9b:70:e8:79:c4:42:78:c6:19:1b: 7d:06:0c:38:7c:89:61:b9:45:b9:71:d3:a3:11:6c:b4:31:cb: ec:6e:de:e6:5a:3e:ff:67:ba:64:21:09:d2:b7:e1:cf:4e:1c: a9:92:a9:2f:0e:05:b3:20:b3:07:ea:a3:74:f2:04:56:46:f8: 9f:08:5d:99:2e:ff:e1:b4:62:15:83:6c:07:f4:87:11:bd:70: 65:12:2c:78:3a:82:ec:22:7a:69:c0:0c:06:5d:a9:f8:9d:88: a0:43:d5:c7:71:3f:03:d1:f7:e1:e9:51:11:18:9c:87:aa:52: 8b:af:1f:2a:ad:2a:4a:f2:ea:11:42:08:46:33:86:81:36:62: cb:62:bd:5c:1d:46:30:59:82:17:54:4f:ca:72:f9:2c:f7:1c: 8b:41:de:4b:62:91:b9:d6:58:40:3f:bc:33:7d:34:ca:4f:b6: d8:03:d1:2a:49:2f:0e:36:cb:b8:a0:73:2e:5b:60:77:2d:a1: aa:86:33:88:88:7c:30:77:c1:c3:84:65:8e:79:fe:0a:e3:21: b1:1f:a4:5a:18:53:23:5f:13:88:0a:83:df:c6:4c:83:3c:a2: 67:8f:03:e0:57:db:52:cb:36:a7:79:3b:6c:57:c8:fb:5f:91: de:bb:2a:46 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NDREQxMTAvBgNVBAUTKDNBOEE2QTJFRTVEQzA5RkNBQTgyRkYwMThGMDlDMUFG ODRCNDExOTYwHhcNMjUwODExMDMxMDQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWExYi0yMTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9plVr4zJtnkNHpJPAFBfQiO3U3PMzA8ENXEZHp3/MFkeeKLhsjbAZtJxLyX z5EKzo3xDVq+8QpZz5ArMY97RcghxvOIEi3x1KPnnteXnGVup/A+Yt3PHdjLYf+s HElFJOJzqGRT9atsreoyEu2Co84+uIZCfnmvft2wtRxQV0JA5IWTaqNf8vkYF9Nt ZpV97gV5cxLjG0N8OTvt8Uj/Mr2eEi9Kl9vonEHUF+6WNOCjwcJMtmkRGddKzDtm SbvbeGgm6WjcF2McTaLMAlk+cd/AOZz4bKMCJsAjbKSNyotTQ4sSF09cjGJ8drt3 Cg0yb0fcNP0NlHnuwx7f9b3b1wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPodvCWL QwK0lbeySFBr1XNYLZsXMB8GA1UdIwQYMBaAFDqKai7l3An8qoL/AY8Jwa+EtBGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0NERC9GM0JCRTc2RTk2 M0QxMUVEQkUzRkQwMUFDNEY5QUUwMi9Pb3BxTHVYY0NmeXFndjhCanduQnI0UzBF WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09vcHFMdVhjQ2Z5cWd2OEJqd25CcjRTMEVaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NDREQvRjNCQkU3NkU5NjNEMTFFREJFM0ZEMDFBQzRGOUFFMDIvRjc3QzE0Mzg5 NjQxMTFFREFBQjhFNzRBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7oyMA0EAgACMAcDBQAkAG4gMA0GCSqGSIb3DQEBCwUAA4IBAQBe TD6lpRtGwJtw6HnEQnjGGRt9Bgw4fIlhuUW5cdOjEWy0Mcvsbt7mWj7/Z7pkIQnS t+HPThypkqkvDgWzILMH6qN08gRWRvifCF2ZLv/htGIVg2wH9IcRvXBlEix4OoLs InppwAwGXan4nYigQ9XHcT8D0ffh6VERGJyHqlKLrx8qrSpK8uoRQghGM4aBNmLL Yr1cHUYwWYIXVE/Kcvks9xyLQd5LYpG51lhAP7wzfTTKT7bYA9EqSS8ONsu4oHMu W2B3LaGqhjOIiHwwd8HDhGWOef4K4yGxH6RaGFMjXxOICoPfxkyDPKJnjwPgV9tS yzaneTtsV8j7X5HeuypG -----END CERTIFICATE-----Generated at Tue Mar 3 00:58:27 2026 by rpki-client