$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa File: EFB54FEC42D211EE9D8A0832C4F9AE02.roa (raw, json) Hash identifier: aOgdwHx4RJqFv06ROzYFXUkAb7MKRRzbQI1IYFIaGUs= Subject key identifier: C4:B9:86:56:57:5A:3C:92:90:D1:DD:C9:D6:1D:66:AB:EA:4A:E9:CA Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 01E0 Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:18:35 +0000 ROA not before: Mon 09 Jun 2025 03:42:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4768 IP address blocks: 203.99.66.0/24 maxlen: 24 203.99.67.0/24 maxlen: 24 203.99.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103, serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Jun 9 03:42:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4127b-0595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:13:53:4c:70:9b:20:c6:63:20:1f:09:52:9b: 3a:bb:30:c4:c2:71:dc:45:d0:7c:3f:81:65:c0:ce: c9:86:49:9a:55:32:56:85:ab:3e:ed:c0:ed:f7:c6: c8:a9:ab:61:77:c5:be:a9:42:c2:27:d2:45:f8:38: 2f:05:24:4b:ef:40:22:90:ee:f7:56:81:95:36:62: 9e:24:9f:63:a2:76:35:57:76:94:3c:6d:d1:bb:22: 71:97:54:f0:e8:50:95:42:45:53:25:52:6b:f8:cd: b6:d1:f4:70:bd:0c:bb:9a:8b:22:5c:ec:02:48:83: 25:e5:12:e9:d6:50:2b:06:26:2f:46:df:bd:c2:f4: 9e:21:ee:01:6e:05:88:9f:00:2a:16:74:0d:0f:4b: 83:75:e6:52:d7:c0:95:fc:66:f5:33:5d:28:1c:21: da:a9:19:95:88:5d:08:ff:23:9d:ff:5c:7c:f4:4c: b2:49:f5:0d:59:83:af:85:ea:b9:da:65:e7:b6:02: 25:5e:c6:bb:95:7d:bd:7f:76:2c:38:d0:1c:45:5f: 7a:3b:df:cd:ad:52:4b:bc:e1:d5:28:eb:0f:d5:d0: ba:44:09:40:f0:cf:fe:ae:b2:3a:7d:71:a1:b4:ce: 58:9a:9f:3e:5f:84:9a:80:6d:c6:fb:1d:f5:4f:ba: 5c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B9:86:56:57:5A:3C:92:90:D1:DD:C9:D6:1D:66:AB:EA:4A:E9:CA X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.99.66.0/23 203.99.69.0/24 Signature Algorithm: sha256WithRSAEncryption 02:c1:82:3c:be:42:b6:d6:23:65:6b:4f:11:08:a2:15:c1:43: 34:36:d1:54:6d:47:3c:28:fb:3f:74:ea:b1:32:61:e9:07:f4: a9:4b:5b:1d:90:0f:60:0b:6b:42:05:64:cd:7e:42:be:c5:2a: e3:9d:e5:74:97:88:0a:82:f5:a0:14:c4:80:a6:9b:74:e2:03: e4:d7:3d:99:21:5e:df:b6:ab:df:9f:c6:8a:db:b7:ed:c5:86: 28:07:bf:23:da:cb:e9:d3:19:19:74:81:25:1d:55:66:bc:3a: eb:08:96:89:ce:2d:c1:a8:fd:ca:7a:17:1c:84:3d:f4:ba:ee: 88:b0:9d:48:a5:ae:10:83:12:a7:1f:d4:dc:15:27:f7:46:30: 36:3c:cb:7d:e4:d0:f2:90:cb:55:37:b6:b3:e4:a0:1e:03:3d: 68:4e:03:1a:8e:46:ef:ca:f4:79:3a:a7:0b:a7:e7:62:c4:7f: d2:c8:fd:39:58:f9:0c:00:91:6b:87:5b:be:98:96:f9:d5:2d: 0b:db:92:6b:fe:bf:e4:c9:70:68:f3:00:d0:6f:a7:34:18:bd: fe:b3:4b:54:01:45:bf:51:b8:96:a8:f1:d6:39:e4:dc:d0:ba: d1:d6:4b:23:18:60:ba:04:0b:77:f9:30:0d:fe:41:3b:81:01: 2e:81:de:18 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxMDMxMTAvBgNVBAUTKEFEQTdCM0U2NDI4NDQwRTUyNERBMDY4Mzg2QTFFREYz MjFGODgxMUUwHhcNMjUwNjA5MDM0MjEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTI3Yi0wNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xNTTHCbIMZjIB8JUps6uzDEwnHcRdB8P4FlwM7JhkmaVTJWhas+7cDt98bI qathd8W+qULCJ9JF+DgvBSRL70AikO73VoGVNmKeJJ9jonY1V3aUPG3RuyJxl1Tw 6FCVQkVTJVJr+M220fRwvQy7mosiXOwCSIMl5RLp1lArBiYvRt+9wvSeIe4BbgWI nwAqFnQND0uDdeZS18CV/Gb1M10oHCHaqRmViF0I/yOd/1x89EyySfUNWYOvheq5 2mXntgIlXsa7lX29f3YsONAcRV96O9/NrVJLvOHVKOsP1dC6RAlA8M/+rrI6fXGh tM5Ymp8+X4SagG3G+x31T7pc3QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMS5hlZX WjySkNHdydYdZqvqSunKMB8GA1UdIwQYMBaAFK2ns+ZChEDlJNoGg4ah7fMh+IEe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzEwMy83QUI4MTEyQTQy RDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9yYWV6NWtLRVFPVWsyZ2FEaHFIdDh5SDRn UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDcxMDMvN0FCODExMkE0MkQyMTFFRUI3QzREMDFFQzRGOUFFMDIvRUZCNTRGRUM0 MkQyMTFFRTlEOEEwODMyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBy2NCAwQAy2NFMA0GCSqGSIb3DQEBCwUAA4IBAQACwYI8vkK21iNl a08RCKIVwUM0NtFUbUc8KPs/dOqxMmHpB/SpS1sdkA9gC2tCBWTNfkK+xSrjneV0 l4gKgvWgFMSAppt04gPk1z2ZIV7ftqvfn8aK27ftxYYoB78j2svp0xkZdIElHVVm vDrrCJaJzi3BqP3KehcchD30uu6IsJ1Ipa4QgxKnH9TcFSf3RjA2PMt95NDykMtV N7az5KAeAz1oTgMajkbvyvR5OqcLp+dixH/SyP05WPkMAJFrh1u+mJb51S0L25Jr /r/kyXBo8wDQb6c0GL3+s0tUAUW/UbiWqPHWOeTc0LrR1ksjGGC6BAt3+TAN/kE7 gQEugd4Y -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:17 2026 by rpki-client