$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/E6F73E22B99E11EEBF189021C4F9AE02.roa File: E6F73E22B99E11EEBF189021C4F9AE02.roa (raw, json) Hash identifier: usfpiMLWoGDExv0ZzDkffe8BVX1FZLRCU+Dn0/pmF+g= Subject key identifier: EC:15:CF:BB:1F:65:28:FA:69:DB:E2:14:D6:E3:20:5B:1E:BC:FF:65 Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 35D7 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/E6F73E22B99E11EEBF189021C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:26:41 +0000 ROA not before: Thu 10 Apr 2025 15:20:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24192 IP address blocks: 103.7.168.0/22 maxlen: 24 103.253.192.0/24 maxlen: 24 103.253.194.0/23 maxlen: 24 202.174.81.0/24 maxlen: 24 202.174.82.0/23 maxlen: 24 202.174.84.0/22 maxlen: 24 202.174.112.0/21 maxlen: 21 2406:1200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:13:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13783 (0x35d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Apr 10 15:20:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45ab1-4518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6b:0c:09:76:82:01:1d:2e:72:03:40:50:69: 3c:22:b5:ca:1f:ec:7f:d0:5c:a7:2e:9e:32:df:d5: a2:f7:eb:74:52:95:9f:37:8f:ad:32:53:d6:9f:96: ae:43:a5:48:4a:ce:c9:ad:40:f3:71:33:24:d3:cc: 61:64:ed:9c:d3:67:8f:77:45:46:a3:55:aa:e7:fd: 79:1c:22:09:a7:8c:97:46:54:d8:cc:d8:d0:c1:ec: e0:9d:51:7e:65:bf:16:1f:36:52:74:15:67:f0:ff: 2a:f9:c6:42:35:77:6c:1f:61:34:53:de:fc:c8:25: 16:d0:db:1e:5e:65:85:52:c8:27:8e:39:33:de:1c: 87:c9:e7:9f:bf:aa:4d:32:0b:38:60:7f:33:00:6a: a3:95:d5:ef:75:ec:56:e7:c1:0f:7a:ff:0c:1c:2d: 6e:44:4e:53:47:1b:0d:b0:b8:b1:18:69:7c:1b:7d: 09:23:e8:5e:0b:03:24:5a:ce:53:c1:ef:8c:e6:25: 42:7f:2b:93:60:c3:e5:4e:02:8b:69:37:a6:09:1a: 9d:63:e8:dc:b9:bc:8a:b1:55:b3:62:f1:69:90:12: df:34:29:ed:b2:d9:92:4a:24:08:21:83:20:bd:d2: 38:b3:1b:9c:6a:8d:71:bb:09:6e:b5:ec:7e:86:de: 92:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:15:CF:BB:1F:65:28:FA:69:DB:E2:14:D6:E3:20:5B:1E:BC:FF:65 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/E6F73E22B99E11EEBF189021C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.7.168.0/22 103.253.192.0/24 103.253.194.0/23 202.174.81.0-202.174.87.255 202.174.112.0/21 IPv6: 2406:1200::/32 Signature Algorithm: sha256WithRSAEncryption 0c:38:20:73:2f:62:bf:b7:12:b1:30:46:ae:c6:a1:e3:7f:11: 6a:e0:cb:9b:1f:84:37:b7:9e:57:5b:df:e4:ab:f1:9e:52:38: 3f:7a:1f:31:1e:8b:1f:37:4c:ab:a3:63:0a:79:b9:50:29:f5: 99:7e:f2:99:9b:14:fd:eb:ec:cc:40:95:6c:8a:5a:ed:40:fa: 9c:fc:a5:b2:d1:c7:b9:29:3f:3d:a7:1e:0a:c9:64:47:f7:5c: 3f:c3:e7:94:aa:13:c0:33:f9:76:63:b0:11:0f:b9:d7:f8:fb: 5b:37:0d:b2:90:27:bf:53:1a:86:fe:f8:04:a3:2e:b6:70:20: 66:f3:e3:f6:e8:be:6c:82:d9:61:78:31:4b:93:ba:ae:89:ed: c9:38:22:2e:2d:29:28:8c:70:22:cf:36:3f:d5:a2:4f:30:2c: af:ab:fa:8f:1d:92:17:91:15:ed:6a:23:8e:2f:90:25:72:a9: 3d:92:c6:d5:1b:b1:4b:d1:e8:bb:aa:97:1e:e3:49:d8:99:3b: 2d:b2:a4:81:3b:6d:7c:4d:54:10:d2:df:58:7c:76:29:37:1f: 6c:60:fd:da:98:b3:31:1c:28:4b:1d:2b:d5:7f:63:96:3b:f8: fb:87:a5:a6:ed:26:b6:4d:f2:4c:41:ee:14:5e:e0:06:47:39: 22:98:84:c3 -----BEGIN CERTIFICATE----- MIIFazCCBFOgAwIBAgICNdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUwNDEwMTUyMDUzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWFiMS00NTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmsMCXaCAR0ucgNAUGk8IrXKH+x/0FynLp4y39Wi9+t0UpWfN4+tMlPWn5au Q6VISs7JrUDzcTMk08xhZO2c02ePd0VGo1Wq5/15HCIJp4yXRlTYzNjQwezgnVF+ Zb8WHzZSdBVn8P8q+cZCNXdsH2E0U978yCUW0NseXmWFUsgnjjkz3hyHyeefv6pN Mgs4YH8zAGqjldXvdexW58EPev8MHC1uRE5TRxsNsLixGGl8G30JI+heCwMkWs5T we+M5iVCfyuTYMPlTgKLaTemCRqdY+jcubyKsVWzYvFpkBLfNCntstmSSiQIIYMg vdI4sxucao1xuwlutex+ht6SHwIDAQABo4ICjzCCAoswHQYDVR0OBBYEFOwVz7sf ZSj6adviFNbjIFsevP9lMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5NzgvMzIyM0YzNUUxRDk4MTFFMjhBOEMyRTgyMDhCMDJDRDIvRTZGNzNFMjJC OTlFMTFFRUJGMTg5MDIxQzRGOUFFMDIucm9hME4GCCsGAQUFBwEHAQH/BD8wPTAs BAIAATAmAwQCZweoAwQAZ/3AAwQBZ/3CMAwDBADKrlEDBAPKrlADBAPKrnAwDQQC AAIwBwMFACQGEgAwDQYJKoZIhvcNAQELBQADggEBAAw4IHMvYr+3ErEwRq7GoeN/ EWrgy5sfhDe3nldb3+Sr8Z5SOD96HzEeix83TKujYwp5uVAp9Zl+8pmbFP3r7MxA lWyKWu1A+pz8pbLRx7kpPz2nHgrJZEf3XD/D55SqE8Az+XZjsBEPudf4+1s3DbKQ J79TGob++ASjLrZwIGbz4/bovmyC2WF4MUuTuq6J7ck4Ii4tKSiMcCLPNj/Vok8w LK+r+o8dkheRFe1qI44vkCVyqT2SxtUbsUvR6Luqlx7jSdiZOy2ypIE7bXxNVBDS 31h8dik3H2xg/dqYszEcKEsdK9V/Y5Y7+PuHpabtJrZN8kxB7hRe4AZHOSKYhMM= -----END CERTIFICATE-----Generated at Mon Mar 2 05:54:47 2026 by rpki-client