$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa File: 722D43AC7A5A11EABD77E486C4F9AE02.roa (raw, json) Hash identifier: 4cAcI5ocqsy1hZe8HsYZTbIwmQxRPKHWv8/zl5w8ZJQ= Subject key identifier: 6F:EF:C4:06:07:26:0D:09:51:D0:40:3E:50:EB:EE:D6:AA:28:62:1F Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A9C Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:02:37 +0000 ROA not before: Tue 08 Jul 2025 20:30:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135642 IP address blocks: 103.140.143.0/24 maxlen: 24 103.178.53.0/24 maxlen: 24 2001:df0:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2716 (0xa9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Jul 8 20:30:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4712d-4343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:38:b2:3d:6f:18:d0:a4:fd:2b:4a:d8:b8:04: a6:b0:8f:c6:0c:5f:6f:d7:04:aa:60:2a:28:df:77: 8c:a1:dc:db:ab:37:69:fc:7a:8a:03:c7:72:62:58: 6a:d5:87:57:da:57:fd:8e:8b:f1:9c:55:68:92:53: 9d:f7:a3:c8:52:42:66:4d:ac:3c:54:e5:5d:3e:83: e8:e3:3e:41:1d:41:2a:c5:eb:d5:fd:b3:16:f0:91: 36:55:45:a5:5f:cc:60:7d:aa:73:bb:ba:64:85:ba: 25:63:c3:2b:84:01:08:16:7e:89:91:6c:e6:c3:ec: 51:7d:a1:31:c9:b3:1b:74:76:3f:88:8c:b9:58:dc: bc:eb:a5:83:50:3d:3a:3e:a0:4e:55:36:db:27:6f: 7a:31:3a:48:c9:b7:11:ff:67:23:e7:65:cc:ed:51: a1:69:a3:e2:34:11:0e:57:b2:c5:fe:73:be:89:57: 23:b2:c8:2f:8f:2d:5a:30:84:3b:7b:57:75:4e:b4: 67:22:b6:c8:1e:a3:57:ed:fd:8e:93:c3:2a:85:d1: f3:bf:61:20:c2:86:dc:dc:2d:5c:03:7c:d8:97:ec: 82:d6:a0:aa:82:d1:a6:48:0d:37:1d:ff:85:2e:04: e3:28:e0:14:4a:26:c1:cc:09:b9:9e:32:95:50:99: 70:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:EF:C4:06:07:26:0D:09:51:D0:40:3E:50:EB:EE:D6:AA:28:62:1F X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.140.143.0/24 103.178.53.0/24 IPv6: 2001:df0:c480::/48 Signature Algorithm: sha256WithRSAEncryption 2d:e1:17:df:b2:86:cb:23:f5:55:b1:12:14:c2:54:f1:91:01: 96:27:20:ec:52:f4:fb:9b:98:23:2d:46:6b:4e:39:d7:dc:e8: dc:18:b1:22:81:55:9b:eb:73:a2:dc:71:7f:64:58:cb:18:66: 20:65:ef:6f:e4:1d:51:41:b4:96:7f:49:76:1f:96:aa:ef:44: cc:81:d1:02:8d:c0:20:f1:75:c1:6c:46:d9:9b:ca:63:93:71: 3f:9d:b1:cd:36:a7:bc:15:1f:88:58:f1:2f:f6:46:79:1e:a1: b7:b7:a4:52:21:d6:34:dd:cf:a2:de:8b:c1:30:35:92:75:63: 4b:c9:67:d7:de:5a:a7:46:5c:49:21:ff:b5:da:e0:93:f9:c8: a3:5e:93:98:24:fa:c5:2f:af:5f:03:1c:5e:b9:49:f7:91:8c: 92:6b:5b:ef:f6:ca:7b:70:93:2d:25:3e:fe:fe:cf:8a:3f:ab: b4:c7:21:5a:99:e3:fc:e5:89:9d:b4:43:1d:80:f6:66:76:59: 9b:d7:a2:cb:3e:45:3a:e1:b0:e1:49:52:05:62:d9:69:8b:52: 68:37:f2:7b:90:1a:a8:2e:6e:1b:e8:04:d0:71:42:f8:58:7c: 35:7f:be:5d:af:b1:2e:b3:4c:30:24:bb:8b:a2:e2:af:ac:e0: d7:f5:d4:05 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUwNzA4MjAzMDAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzEyZC00MzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TiyPW8Y0KT9K0rYuASmsI/GDF9v1wSqYCoo33eModzbqzdp/HqKA8dyYlhq 1YdX2lf9jovxnFVoklOd96PIUkJmTaw8VOVdPoPo4z5BHUEqxevV/bMW8JE2VUWl X8xgfapzu7pkhbolY8MrhAEIFn6JkWzmw+xRfaExybMbdHY/iIy5WNy866WDUD06 PqBOVTbbJ296MTpIybcR/2cj52XM7VGhaaPiNBEOV7LF/nO+iVcjssgvjy1aMIQ7 e1d1TrRnIrbIHqNX7f2Ok8MqhdHzv2Egwobc3C1cA3zYl+yC1qCqgtGmSA03Hf+F LgTjKOAUSibBzAm5njKVUJlw1wIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFG/vxAYH Jg0JUdBAPlDr7taqKGIfMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RDYvOUU2NkY1MTI3QTU1MTFFQUJGQkU5NDdBQzRGOUFFMDIvNzIyRDQzQUM3 QTVBMTFFQUJENzdFNDg2QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ4yPAwQAZ7I1MA8EAgACMAkDBwAgAQ3wxIAwDQYJKoZIhvcNAQEL BQADggEBAC3hF9+yhssj9VWxEhTCVPGRAZYnIOxS9PubmCMtRmtOOdfc6NwYsSKB VZvrc6LccX9kWMsYZiBl72/kHVFBtJZ/SXYflqrvRMyB0QKNwCDxdcFsRtmbymOT cT+dsc02p7wVH4hY8S/2Rnkeobe3pFIh1jTdz6Lei8EwNZJ1Y0vJZ9feWqdGXEkh /7Xa4JP5yKNek5gk+sUvr18DHF65SfeRjJJrW+/2yntwky0lPv7+z4o/q7THIVqZ 4/zliZ20Qx2A9mZ2WZvXoss+RTrhsOFJUgVi2WmLUmg38nuQGqgubhvoBNBxQvhY fDV/vl2vsS6zTDAku4ui4q+s4Nf11AU= -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:00 2026 by rpki-client