$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa File: D6A658CE01DE11ED8236F073C4F9AE02.roa (raw, json) Hash identifier: ewnoiF/dfX6x7mfoGJMxrXmr8HakeEhZ2uxwn+RYxj8= Subject key identifier: 3B:9B:B0:A8:0A:6D:FD:17:3C:DF:9E:E7:AE:D3:D9:4F:CD:87:9A:B7 Certificate issuer: /CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Certificate serial: 0326 Authority key identifier: EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:22:50 +0000 ROA not before: Thu 03 Apr 2025 01:57:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138902 IP address blocks: 103.136.226.0/23 maxlen: 23 103.136.226.0/24 maxlen: 24 2400:94e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 806 (0x326) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD75B, serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Validity Not Before: Apr 3 01:57:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e94a-0c80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:34:00:8a:5f:e7:97:c6:fd:d5:89:c2:8d:ef: 3f:18:1e:c2:56:62:92:1e:40:17:60:63:9e:bb:5c: ca:d2:33:27:3e:e4:b3:55:04:4e:01:3e:ed:af:f2: 22:fc:3e:78:ad:a1:c2:9d:2c:85:25:8d:90:fe:ba: 19:d7:7b:0f:da:fa:a3:87:01:47:ad:07:3d:25:56: a3:18:bd:5a:9f:3f:fd:3d:66:11:6c:fe:0d:a7:49: 2f:2c:54:be:ad:d8:29:1c:1a:a5:92:e2:56:06:1a: b7:66:98:ed:4e:82:85:2b:99:4b:c2:32:fd:8b:bb: b5:49:7c:48:65:31:42:3d:02:77:44:13:9a:33:7f: 66:e1:1d:47:e8:1d:ae:12:2a:d8:6e:51:6d:60:5e: ac:74:7c:93:08:08:93:de:fb:f7:0c:d5:5b:cf:71: 3f:cb:dd:54:c4:44:a7:f0:b9:2a:b1:93:f9:a1:b3: 16:9b:2f:43:15:6e:7c:c0:13:10:bf:31:e5:ce:aa: 39:d0:74:8e:4b:bc:28:fb:85:5e:fd:43:85:31:ff: 96:b4:19:3f:0d:68:1c:96:86:4a:3b:bb:7c:6c:2f: 9c:64:49:4c:ed:dc:43:49:f1:40:b0:fe:fe:22:42: 07:31:1d:65:08:8a:d5:60:5c:b7:5f:89:f7:3f:47: d8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9B:B0:A8:0A:6D:FD:17:3C:DF:9E:E7:AE:D3:D9:4F:CD:87:9A:B7 X509v3 Authority Key Identifier: keyid:EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.226.0/23 IPv6: 2400:94e0::/32 Signature Algorithm: sha256WithRSAEncryption 05:14:ef:08:f1:09:aa:f7:c8:bc:21:22:71:56:2f:34:00:68: a6:02:93:6e:3e:0c:1e:90:eb:d3:bc:b8:ba:a3:cf:37:4e:d2: 2b:3e:0a:2c:86:67:3f:75:ef:f9:1f:03:71:70:ef:ae:2f:03: 61:08:ca:6e:2c:c7:da:82:04:d7:a8:1b:dc:c1:33:d8:ee:95: cd:55:78:b9:d8:89:3a:7e:1a:f1:2a:cc:b3:90:d5:ed:db:c7: 1a:38:29:74:cf:5f:0d:b3:12:94:b6:01:b7:b8:10:ea:c6:ce: c2:9c:4b:b9:40:6d:b4:84:ff:f6:5e:b3:c1:f1:50:05:fa:c1: e6:27:0e:94:69:b7:34:8b:db:5f:14:2e:9b:8b:31:eb:3b:cb: 68:52:69:81:94:60:fb:9c:31:3b:39:05:c3:a3:17:9b:ee:0f: d1:ef:80:15:d3:47:9d:a5:e6:75:09:fb:30:26:b2:3b:07:74: d0:ec:ea:85:ac:f1:9e:52:e0:ff:07:d9:4c:5a:f5:c5:86:7b: 72:ff:bf:c7:95:a6:6b:53:dc:f6:e2:68:b4:d1:ca:fc:34:46: de:9f:87:50:79:34:c9:ce:d9:18:f6:7e:0d:cc:16:16:16:e7: 58:bd:5c:76:09:dc:76:2d:b4:25:ac:a3:a1:80:eb:2f:1c:4b: 1e:49:71:9e -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3NUIxMTAvBgNVBAUTKEVCODEzRjU5NzYxQzdDNkIxQUUyOEM0NzgxNjdFMjA2 MUFCNUNBQ0YwHhcNMjUwNDAzMDE1NzA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTk0YS0wYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDQAil/nl8b91YnCje8/GB7CVmKSHkAXYGOeu1zK0jMnPuSzVQROAT7tr/Ii /D54raHCnSyFJY2Q/roZ13sP2vqjhwFHrQc9JVajGL1anz/9PWYRbP4Np0kvLFS+ rdgpHBqlkuJWBhq3ZpjtToKFK5lLwjL9i7u1SXxIZTFCPQJ3RBOaM39m4R1H6B2u EirYblFtYF6sdHyTCAiT3vv3DNVbz3E/y91UxESn8LkqsZP5obMWmy9DFW58wBMQ vzHlzqo50HSOS7wo+4Ve/UOFMf+WtBk/DWgcloZKO7t8bC+cZElM7dxDSfFAsP7+ IkIHMR1lCIrVYFy3X4n3P0fYxQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDubsKgK bf0XPN+e567T2U/Nh5q3MB8GA1UdIwQYMBaAFOuBP1l2HHxrGuKMR4Fn4gYatcrP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc1Qi82NEExREE0ODAx REMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZHc2E0b3hIZ1dmaUJocTF5 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RV9XWFljZkdzYTRveEhnV2ZpQmhxMXlzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ3NUIvNjRBMURBNDgwMURDMTFFRDlFRkUyQTU2QzRGOUFFMDIvRDZBNjU4Q0Uw MURFMTFFRDgyMzZGMDczQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4jiMA0EAgACMAcDBQAkAJTgMA0GCSqGSIb3DQEBCwUAA4IBAQAF FO8I8Qmq98i8ISJxVi80AGimApNuPgwekOvTvLi6o883TtIrPgoshmc/de/5HwNx cO+uLwNhCMpuLMfaggTXqBvcwTPY7pXNVXi52Ik6fhrxKsyzkNXt28caOCl0z18N sxKUtgG3uBDqxs7CnEu5QG20hP/2XrPB8VAF+sHmJw6Uabc0i9tfFC6bizHrO8to UmmBlGD7nDE7OQXDoxeb7g/R74AV00edpeZ1CfswJrI7B3TQ7OqFrPGeUuD/B9lM WvXFhnty/7/HlaZrU9z24mi00cr8NEben4dQeTTJztkY9n4NzBYWFudYvVx2Cdx2 LbQlrKOhgOsvHEseSXGe -----END CERTIFICATE-----Generated at Mon Mar 2 23:23:54 2026 by rpki-client