$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/67C9F14233E711F181C0AE9FB8833773.roa File: 67C9F14233E711F181C0AE9FB8833773.roa (raw, json) Hash identifier: zILE8027ieGIonPU8rgts1kI8TAERWrLFiTqKHa6P0g= Subject key identifier: 24:45:BC:43:32:EC:EE:6D:BB:62:73:EB:CA:94:96:51:63:6D:47:53 Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0D0B Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/67C9F14233E711F181C0AE9FB8833773.roa Signing time: Thu 09 Apr 2026 07:40:40 +0000 ROA not before: Thu 09 Apr 2026 07:40:40 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 17471 IP address blocks: 103.7.112.0/22 maxlen: 24 122.99.96.0/21 maxlen: 24 202.125.64.0/20 maxlen: 22 202.125.65.0/24 maxlen: 24 202.125.68.0/22 maxlen: 24 202.125.72.0/21 maxlen: 23 202.125.72.0/22 maxlen: 24 202.125.76.0/23 maxlen: 24 202.125.78.0/24 maxlen: 24 203.83.160.0/19 maxlen: 24 203.191.32.0/23 maxlen: 24 2407:f040::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Apr 9 07:40:40 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69d757f8-526c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:39:b0:c0:83:1d:fc:92:b6:35:96:84:b4:aa: d0:5e:12:1e:55:f6:ef:7e:3c:fc:f3:61:b7:e3:3d: 8c:00:06:29:da:ec:4f:d6:ff:66:34:5c:66:8d:06: bf:c5:1c:63:7a:35:1b:3a:d2:69:83:c6:cd:b1:04: b0:db:a6:ac:e0:63:b7:c4:46:6d:14:53:62:f6:5e: ea:8d:39:e4:c2:75:6a:96:61:36:0c:fa:3b:48:64: 1b:42:f7:5e:eb:2a:97:cb:5f:3b:c6:1a:d2:23:ad: ce:48:ec:3e:f2:26:3b:2b:14:ad:e8:01:c0:62:a5: c6:9c:c2:c4:56:81:50:4f:e3:71:5c:7f:26:52:f0: 0d:81:0f:38:d5:c3:e8:90:aa:90:32:a8:2c:54:b7: f6:a2:b5:c3:05:47:75:b2:a0:e6:a5:ef:b1:77:8d: 44:28:31:00:af:29:c9:dd:0f:fb:c2:61:1c:41:42: 50:b0:66:f6:47:4e:10:5a:92:4d:47:54:6f:37:4d: 83:c9:a7:bb:95:05:26:9b:6b:e9:dc:5e:f1:00:b0: 4d:3d:f6:78:dd:aa:4f:81:66:9f:fc:78:4b:4e:5c: 08:b9:b3:db:87:2f:da:61:44:e8:b8:ff:d8:51:ad: 07:bb:4a:4d:e1:a3:a6:13:29:9d:c3:60:ab:25:59: 44:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:45:BC:43:32:EC:EE:6D:BB:62:73:EB:CA:94:96:51:63:6D:47:53 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/67C9F14233E711F181C0AE9FB8833773.roa sbgp-ipAddrBlock: critical IPv4: 103.7.112.0/22 122.99.96.0/21 202.125.64.0/20 203.83.160.0/19 203.191.32.0/23 IPv6: 2407:f040::/32 Signature Algorithm: sha256WithRSAEncryption 18:6e:8e:9a:e1:5c:83:4f:c1:f0:a2:2d:a7:0f:c3:b0:77:13: 47:a9:4f:ff:df:40:dc:22:ec:54:65:b8:f4:fd:21:22:65:15: 37:04:c4:8d:52:80:3e:e6:67:8f:83:4c:3a:a7:53:b1:3e:2b: cf:51:05:ca:ae:8b:f9:27:3e:d7:2f:31:fd:b0:01:a1:a8:99: 1f:8c:ec:b1:b7:41:de:d9:86:30:a6:a7:15:d6:04:d6:6f:8b: b2:7e:be:16:7b:0c:4f:68:6e:8b:12:46:e3:49:e9:89:64:86: 73:41:bd:1e:3e:82:d6:5e:5c:4a:7d:14:02:24:25:07:7c:05: 46:25:ef:f9:e5:1b:b3:ca:2b:c3:51:9f:b3:66:57:00:75:7a: 00:7e:bc:6e:5b:09:1b:3c:ed:01:2a:c1:f6:3f:5a:77:b3:80: c1:09:e4:ce:a9:98:e7:7b:cb:3a:03:4f:c4:ca:4d:4c:51:3d: c7:3f:17:2f:5b:8b:ce:05:58:1d:71:84:4d:a8:7f:75:d5:97: d7:9e:ce:20:f3:c9:fb:7f:16:f9:e1:7e:ae:4e:4a:2f:1f:28: 6c:73:5a:9c:56:0d:35:ab:92:07:f6:01:fb:e7:41:4b:e4:75: cb:30:00:df:84:e0:c8:3c:e2:b9:f4:fe:94:5c:05:de:8b:59: 60:6c:27:62 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICDQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjYwNDA5MDc0MDQwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3NTdmOC01MjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzmwwIMd/JK2NZaEtKrQXhIeVfbvfjz882G34z2MAAYp2uxP1v9mNFxmjQa/ xRxjejUbOtJpg8bNsQSw26as4GO3xEZtFFNi9l7qjTnkwnVqlmE2DPo7SGQbQvde 6yqXy187xhrSI63OSOw+8iY7KxSt6AHAYqXGnMLEVoFQT+NxXH8mUvANgQ841cPo kKqQMqgsVLf2orXDBUd1sqDmpe+xd41EKDEArynJ3Q/7wmEcQUJQsGb2R04QWpJN R1RvN02Dyae7lQUmm2vp3F7xALBNPfZ43apPgWaf/HhLTlwIubPbhy/aYUTouP/Y Ua0Hu0pN4aOmEymdw2CrJVlEAQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFCRFvEMy 7O5tu2Jz68qUllFjbUdTMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQzNDUvRUM3OENEREEwNTM4MTFFQUI1ODk3NjY4QzRGOUFFMDIvNjdDOUYxNDIz M0U3MTFGMTgxQzBBRTlGQjg4MzM3NzMucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCZwdwAwQDemNgAwQEyn1AAwQFy1OgAwQBy78gMA0EAgACMAcDBQAk B/BAMA0GCSqGSIb3DQEBCwUAA4IBAQAYbo6a4VyDT8Hwoi2nD8OwdxNHqU//30Dc IuxUZbj0/SEiZRU3BMSNUoA+5mePg0w6p1OxPivPUQXKrov5Jz7XLzH9sAGhqJkf jOyxt0He2YYwpqcV1gTWb4uyfr4WewxPaG6LEkbjSemJZIZzQb0ePoLWXlxKfRQC JCUHfAVGJe/55RuzyivDUZ+zZlcAdXoAfrxuWwkbPO0BKsH2P1p3s4DBCeTOqZjn e8s6A0/Eyk1MUT3HPxcvW4vOBVgdcYRNqH911ZfXns4g88n7fxb54X6uTkovHyhs c1qcVg01q5IH9gH750FL5HXLMADfhODIPOK59P6UXAXei1lgbCdi -----END CERTIFICATE-----Generated at Fri Apr 17 18:49:21 2026 by rpki-client