$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa File: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (raw, json) Hash identifier: JuznK0Navb/TYRQG52xqAUxKffqGcodmGZgqr5yACw4= Subject key identifier: A9:AE:74:64:70:4E:74:ED:8B:24:E7:E5:88:8A:0C:64:20:57:4B:AD Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 0691 Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:05:20 +0000 ROA not before: Thu 25 Sep 2025 04:34:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134143 IP address blocks: 14.102.164.0/22 maxlen: 24 45.248.196.0/22 maxlen: 24 103.4.55.0/24 maxlen: 24 103.55.92.0/24 maxlen: 24 103.55.93.0/24 maxlen: 24 103.55.94.0/24 maxlen: 24 103.55.95.0/24 maxlen: 24 103.133.52.0/22 maxlen: 24 103.217.164.0/22 maxlen: 24 103.228.104.0/22 maxlen: 24 2405:e180::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:51:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578, serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: Sep 25 04:34:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a471d0-8ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e4:8e:e1:c4:e2:33:c0:7c:17:fe:6b:3b:b9: cc:db:f0:25:e6:db:9a:23:d1:00:4b:d4:b1:d0:13: e6:46:0d:c6:99:c7:4c:b8:52:39:f7:9a:ea:e2:92: 64:8d:35:9e:8d:7b:05:cd:97:48:2d:7d:ff:50:3f: 09:f6:da:53:cf:2b:64:27:85:c6:80:b8:61:ab:1f: cd:f9:29:2c:bc:30:47:86:f1:91:2c:fc:51:c3:1d: 24:19:4d:bc:f5:59:d1:d1:2e:bc:a0:e4:89:45:6f: ee:9b:2e:14:8d:77:0f:26:78:75:c5:f4:61:86:4a: 48:ff:49:01:ca:d7:9e:6d:4a:f2:8a:92:10:44:71: 52:90:9c:e9:23:1a:ab:6b:b6:3c:2d:27:30:93:00: ff:c2:3a:ab:c5:57:96:8e:80:f0:07:f3:88:cf:fb: 4b:e4:7f:14:5f:b2:05:12:07:d7:c2:43:04:c1:7c: 3b:90:3e:cc:4e:aa:1b:5b:fd:8f:3b:2e:ce:8b:b6: b6:cb:b6:bc:82:40:74:f9:cc:74:40:98:22:91:80: 8e:4d:9c:15:bb:2c:1b:22:27:2e:fb:67:a0:b9:83: 98:2d:c0:8b:a1:01:2b:a2:9d:af:3b:ba:b6:0d:71: 7c:0b:4c:9f:42:d2:5d:e4:ae:3d:b3:e1:54:0c:d0: 3e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:AE:74:64:70:4E:74:ED:8B:24:E7:E5:88:8A:0C:64:20:57:4B:AD X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/E8542DEA6B8811ECAC731B4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.102.164.0/22 45.248.196.0/22 103.4.55.0/24 103.55.92.0/22 103.133.52.0/22 103.217.164.0/22 103.228.104.0/22 IPv6: 2405:e180::/32 Signature Algorithm: sha256WithRSAEncryption 8b:1c:c6:89:65:14:01:5d:0f:60:8c:33:cf:77:32:b2:e7:49: 52:7c:0e:f9:f8:2f:a2:69:11:19:33:ea:5f:d0:ab:e3:2b:3f: d7:df:9a:8c:19:73:f8:48:b0:22:21:4e:6a:bd:fb:b0:ee:0b: cc:ae:31:d9:86:f2:f7:62:5c:bc:e1:ec:98:89:0a:46:f9:81: 90:7c:6b:d2:9a:e3:cc:e2:8e:6b:72:3e:a3:fe:d7:ef:4e:e0: 94:b3:f9:3f:68:a5:4c:b9:26:78:9b:32:3b:21:41:0c:f0:5b: a1:07:f6:48:f3:6f:03:44:1e:ac:6b:17:65:e7:91:37:15:04: cb:d9:b2:49:d3:09:83:57:71:88:e6:45:73:0f:72:0d:a2:b8: b9:31:3c:f4:83:7f:35:7b:0e:c5:c3:54:fc:f4:7e:a5:e6:a0: d4:1c:59:46:09:87:d2:db:9e:d2:2e:b0:40:fb:b9:38:a4:14: e3:70:21:73:98:ac:40:ff:a6:98:36:6f:81:3e:01:03:c0:3c: c6:0f:53:84:af:9e:76:a3:6a:f0:35:fb:f1:30:e5:01:df:03: 92:3b:ac:9c:b4:c9:ed:7d:15:e2:07:c4:15:58:fe:1d:5d:fa: ba:c6:ad:51:d7:e0:54:9b:4a:5d:5d:54:0b:6e:17:b7:b3:aa: 6b:69:6e:ee -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjUwOTI1MDQzNDQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzFkMC04ZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eSO4cTiM8B8F/5rO7nM2/Al5tuaI9EAS9Sx0BPmRg3GmcdMuFI595rq4pJk jTWejXsFzZdILX3/UD8J9tpTzytkJ4XGgLhhqx/N+SksvDBHhvGRLPxRwx0kGU28 9VnR0S68oOSJRW/umy4UjXcPJnh1xfRhhkpI/0kByteebUryipIQRHFSkJzpIxqr a7Y8LScwkwD/wjqrxVeWjoDwB/OIz/tL5H8UX7IFEgfXwkMEwXw7kD7MTqobW/2P Oy7Oi7a2y7a8gkB0+cx0QJgikYCOTZwVuywbIicu+2eguYOYLcCLoQErop2vO7q2 DXF8C0yfQtJd5K49s+FUDNA+kQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFKmudGRw TnTtiyTn5YiKDGQgV0utMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc1NzgvRDNDMDE5MENCQjlEMTFFQjg0RjczQjNBQzRGOUFFMDIvRTg1NDJERUE2 Qjg4MTFFQ0FDNzMxQjRFQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAw BAIAATAqAwQCDmakAwQCLfjEAwQAZwQ3AwQCZzdcAwQCZ4U0AwQCZ9mkAwQCZ+Ro MA0EAgACMAcDBQAkBeGAMA0GCSqGSIb3DQEBCwUAA4IBAQCLHMaJZRQBXQ9gjDPP dzKy50lSfA75+C+iaREZM+pf0KvjKz/X35qMGXP4SLAiIU5qvfuw7gvMrjHZhvL3 Yly84eyYiQpG+YGQfGvSmuPM4o5rcj6j/tfvTuCUs/k/aKVMuSZ4mzI7IUEM8Fuh B/ZI828DRB6saxdl55E3FQTL2bJJ0wmDV3GI5kVzD3INori5MTz0g381ew7Fw1T8 9H6l5qDUHFlGCYfS257SLrBA+7k4pBTjcCFzmKxA/6aYNm+BPgEDwDzGD1OEr552 o2rwNfvxMOUB3wOSO6yctMntfRXiB8QVWP4dXfq6xq1R1+BUm0pdXVQLbhe3s6pr aW7u -----END CERTIFICATE-----Generated at Mon Mar 2 06:20:15 2026 by rpki-client