$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/E7B472CE2DC811EEBADF8E61C4F9AE02.roa File: E7B472CE2DC811EEBADF8E61C4F9AE02.roa (raw, json) Hash identifier: 8y7hfK3jGDMBr1f4yhw0XCvK5AAMWqEEBB2+0ezh2M4= Subject key identifier: 63:C7:23:E5:8B:AE:63:37:57:4E:A3:F0:81:71:21:43:2C:9B:99:9E Certificate issuer: /CN=A91D5320/serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Certificate serial: 01F4 Authority key identifier: B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/E7B472CE2DC811EEBADF8E61C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:17:23 +0000 ROA not before: Sat 27 Sep 2025 04:01:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150285 IP address blocks: 103.38.8.0/24 maxlen: 24 103.250.76.0/24 maxlen: 24 2400:e160::/32 maxlen: 32 2400:e160::/36 maxlen: 36 2400:e160:1000::/36 maxlen: 36 2400:e160:2000::/36 maxlen: 36 2400:e160:3000::/36 maxlen: 36 2400:e160:4000::/36 maxlen: 36 2400:e160:5000::/36 maxlen: 36 2400:e160:6000::/36 maxlen: 36 2400:e160:7000::/36 maxlen: 36 2400:e160:8000::/36 maxlen: 36 2400:e160:9000::/36 maxlen: 36 2400:e160:a000::/36 maxlen: 36 2400:e160:b000::/36 maxlen: 36 2400:e160:c000::/36 maxlen: 36 2400:e160:d000::/36 maxlen: 36 2400:e160:e000::/36 maxlen: 36 2400:e160:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5320, serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Validity Not Before: Sep 27 04:01:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a41233-5035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:9b:09:0f:ff:23:a2:63:35:45:56:c8:5d:94: 1b:9e:c2:73:ed:10:5a:74:7b:13:3a:88:b0:3b:01: 3b:60:0e:a7:ec:5a:ad:ed:56:64:5f:37:d6:a5:71: 78:d3:80:8a:4c:93:28:0f:dd:33:ad:ad:b6:07:ed: e6:e7:90:3d:ce:44:70:0a:19:fe:64:6c:9b:9e:4e: ab:ad:95:ed:bf:84:82:18:73:f0:63:93:80:da:9a: 46:a2:85:d8:ed:f8:98:e5:64:53:ab:d8:eb:4e:41: f5:91:8d:cd:3b:b3:19:88:39:cb:23:f2:a6:64:c1: 72:51:d5:c4:ad:cc:27:1b:61:10:77:b4:cb:b9:aa: 94:75:0a:11:20:42:c4:7b:f3:59:21:0f:8f:1f:96: d5:00:ca:3a:23:d3:5b:8f:74:e8:2a:40:e0:34:f8: 66:8e:cd:06:1c:5c:f5:09:ae:55:59:a2:89:c7:ab: 8b:95:a7:1f:fe:7a:67:05:2c:b7:5a:25:da:dc:47: d6:75:ff:87:76:3d:36:ce:ef:24:03:d7:95:23:17: 7c:9a:31:e6:c2:01:3a:34:5d:e2:84:99:a6:73:1a: db:c8:13:e3:56:0c:67:77:b1:31:c3:63:75:11:02: cf:5c:d6:0e:78:5c:69:2a:77:ec:e0:61:86:ff:10: 19:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C7:23:E5:8B:AE:63:37:57:4E:A3:F0:81:71:21:43:2C:9B:99:9E X509v3 Authority Key Identifier: keyid:B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/E7B472CE2DC811EEBADF8E61C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.38.8.0/24 103.250.76.0/24 IPv6: 2400:e160::/32 Signature Algorithm: sha256WithRSAEncryption 2a:4f:11:ba:46:b7:38:7b:c6:6f:79:6d:3c:4e:66:98:65:f4: 98:84:c3:61:df:5e:0a:5a:4c:9a:57:4e:79:1d:d4:73:da:74: 0a:fd:20:e9:c1:0b:07:25:0f:b0:63:4e:16:2a:87:0f:47:68: b6:69:08:5b:e3:b9:06:1b:ef:9d:25:20:3b:55:c2:b6:42:af: 34:05:b7:df:e8:ba:54:8f:7c:51:ec:6b:21:1b:06:8f:ad:61: 8d:14:26:38:c9:2c:37:da:71:e3:d7:e7:71:31:c0:11:6e:74: bd:38:21:0c:3e:d2:26:58:c1:9d:e4:bd:5f:ac:db:7f:ec:14: 11:29:69:4d:d6:b6:1a:c3:e2:4c:94:d2:96:a9:e9:6d:99:5c: d2:44:95:ec:74:c8:16:b7:cd:dc:98:47:57:70:b0:a3:a3:0f: 29:19:48:d0:a4:9f:1b:b2:2a:51:64:73:cb:ee:58:2e:12:99: b8:31:1a:a2:dd:c6:1e:4e:e6:67:14:39:ce:ce:09:95:2d:bb: bf:24:62:bc:28:fc:51:2c:06:66:5e:cd:18:64:09:f9:04:2d: a7:6b:11:7c:95:dc:b2:89:2b:78:5a:6c:96:98:54:cb:cb:e3: d0:ef:bc:11:ba:b7:ff:06:1d:b5:ea:9a:7e:d5:d2:08:0d:69: da:9a:bc:88 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzMjAxMTAvBgNVBAUTKEIxOTFBRTIwNjgxNDZGOUM3MzlCRUE2Q0Q1OUU3OTJD NEY4OTdCNzYwHhcNMjUwOTI3MDQwMTUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTIzMy01MDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZsJD/8jomM1RVbIXZQbnsJz7RBadHsTOoiwOwE7YA6n7Fqt7VZkXzfWpXF4 04CKTJMoD90zra22B+3m55A9zkRwChn+ZGybnk6rrZXtv4SCGHPwY5OA2ppGooXY 7fiY5WRTq9jrTkH1kY3NO7MZiDnLI/KmZMFyUdXErcwnG2EQd7TLuaqUdQoRIELE e/NZIQ+PH5bVAMo6I9Nbj3ToKkDgNPhmjs0GHFz1Ca5VWaKJx6uLlacf/npnBSy3 WiXa3EfWdf+Hdj02zu8kA9eVIxd8mjHmwgE6NF3ihJmmcxrbyBPjVgxnd7Exw2N1 EQLPXNYOeFxpKnfs4GGG/xAZdQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGPHI+WL rmM3V06j8IFxIUMsm5meMB8GA1UdIwQYMBaAFLGRriBoFG+cc5vqbNWeeSxPiXt2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTMyMC83OENDRkU0RTJE QzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1eHptLXBzMVo1NUxFLUpl M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NaR3VJR2dVYjV4em0tcHMxWjU1TEUtSmUzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUzMjAvNzhDQ0ZFNEUyREM4MTFFRTkzNzBEMzQ4QzRGOUFFMDIvRTdCNDcyQ0Uy REM4MTFFRUJBREY4RTYxQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAZyYIAwQAZ/pMMA0EAgACMAcDBQAkAOFgMA0GCSqGSIb3DQEBCwUA A4IBAQAqTxG6Rrc4e8ZveW08TmaYZfSYhMNh314KWkyaV055HdRz2nQK/SDpwQsH JQ+wY04WKocPR2i2aQhb47kGG++dJSA7VcK2Qq80Bbff6LpUj3xR7GshGwaPrWGN FCY4ySw32nHj1+dxMcARbnS9OCEMPtImWMGd5L1frNt/7BQRKWlN1rYaw+JMlNKW qeltmVzSRJXsdMgWt83cmEdXcLCjow8pGUjQpJ8bsipRZHPL7lguEpm4MRqi3cYe TuZnFDnOzgmVLbu/JGK8KPxRLAZmXs0YZAn5BC2naxF8ldyyiSt4WmyWmFTLy+PQ 77wRurf/Bh216pp+1dIIDWnamryI -----END CERTIFICATE-----Generated at Mon Mar 2 07:23:28 2026 by rpki-client