$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/10E6D9CAB55C11ECA9565039C4F9AE02.roa File: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (raw, json) Hash identifier: Mbeqhn0nwVwYj6n3QxyZJchv3U45HkN1dEI8Jb5EHr0= Subject key identifier: 32:AC:92:39:02:C4:8D:BE:89:2E:FE:A2:2A:18:3F:05:79:34:27:1A Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0EB4 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/10E6D9CAB55C11ECA9565039C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:49:37 +0000 ROA not before: Thu 20 Mar 2025 17:56:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132459 IP address blocks: 103.137.220.0/23 maxlen: 24 2404:b940::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3764 (0xeb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Mar 20 17:56:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a443f1-a13d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:31:e7:62:42:de:72:10:13:0d:64:d1:c7: 3c:b9:de:90:f2:c1:62:ae:a9:ac:8b:6a:46:65:09: d2:cd:f2:17:55:d8:1d:ba:c0:05:a3:89:8a:d2:54: 8b:12:99:d1:69:de:87:30:da:36:06:82:24:40:84: 62:9f:a0:05:61:5a:ea:88:03:ff:87:de:e2:0f:1e: 49:e2:ca:3b:58:a8:e3:ff:3b:c1:91:8e:88:68:f4: 4c:92:96:73:06:d1:90:13:0b:f3:94:e2:37:df:94: d8:c2:79:06:a6:b2:e0:a5:a6:b4:4c:4b:32:21:42: 1e:7b:ae:04:1c:68:a7:29:ee:32:1f:c0:61:87:91: 65:ee:ed:ed:33:79:81:03:74:3a:a2:a2:cf:c0:44: 9c:05:8f:bc:68:37:be:5f:1d:5b:56:be:3b:7d:4f: a5:c0:c1:fc:bd:68:7f:b6:f3:e5:93:79:bc:02:4b: 7b:bf:24:2f:be:3d:02:8b:78:82:95:66:fe:28:4e: a3:a4:90:3e:d2:00:36:41:33:f9:bf:ec:05:cc:0a: 24:42:5c:cb:62:a8:df:e3:24:e0:b4:fb:d1:f9:0f: e8:09:c4:1b:dc:3a:62:b7:c5:63:de:ec:ea:0f:4e: 88:bb:33:d4:ff:43:56:38:9a:26:a4:8f:9e:f5:57: 17:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AC:92:39:02:C4:8D:BE:89:2E:FE:A2:2A:18:3F:05:79:34:27:1A X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/10E6D9CAB55C11ECA9565039C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.220.0/23 IPv6: 2404:b940::/32 Signature Algorithm: sha256WithRSAEncryption 26:1e:a8:18:53:c8:92:1d:38:d3:e8:da:ac:ea:6d:ac:ba:0e: 85:42:2b:ec:4f:8d:90:ac:a0:62:7a:6b:45:e5:61:30:7e:73: d1:4a:55:8c:77:87:76:c1:f9:33:7a:49:ed:36:b4:86:8a:df: bf:ad:96:b4:f7:b5:f6:75:6b:5e:38:8b:cd:8c:59:09:37:2c: 8e:b1:83:75:2a:65:69:56:f0:5c:b2:be:a0:4c:33:dc:3e:b7: 82:06:18:30:cb:18:e9:3f:cc:35:cc:ed:f3:fc:2a:3a:f2:86: dd:6f:76:b0:a8:0e:8f:0d:43:78:e7:98:d7:29:f8:c3:36:2e: 7a:f7:73:0b:a6:96:69:ab:95:0b:07:a0:36:3a:b3:ba:3a:c5: 74:ae:ef:b6:49:a8:a6:61:66:ce:12:87:57:b8:08:ac:06:1e: 04:8d:60:1b:61:d4:97:52:a5:99:c7:66:7c:b8:2b:b9:af:ef: 51:fb:3e:6f:27:a8:de:6b:29:a6:7b:be:78:44:87:79:00:38: cc:d8:b9:76:35:14:2f:87:ab:3b:56:da:fb:46:40:e1:3b:bf: f6:33:48:fa:a0:fb:99:d3:26:de:f0:51:93:9f:79:89:37:47: 08:a7:ea:53:c6:41:a7:9e:e0:bb:8d:c6:dc:07:8a:07:3c:58: c0:9a:f0:1d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUwMzIwMTc1NjMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDNmMS1hMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxYx52JC3nIQEw1k0cc8ud6Q8sFirqmsi2pGZQnSzfIXVdgdusAFo4mK0lSL EpnRad6HMNo2BoIkQIRin6AFYVrqiAP/h97iDx5J4so7WKjj/zvBkY6IaPRMkpZz BtGQEwvzlOI335TYwnkGprLgpaa0TEsyIUIee64EHGinKe4yH8Bhh5Fl7u3tM3mB A3Q6oqLPwEScBY+8aDe+Xx1bVr47fU+lwMH8vWh/tvPlk3m8Akt7vyQvvj0Ci3iC lWb+KE6jpJA+0gA2QTP5v+wFzAokQlzLYqjf4yTgtPvR+Q/oCcQb3Dpit8Vj3uzq D06IuzPU/0NWOJompI+e9VcXtwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDKskjkC xI2+iS7+oioYPwV5NCcaMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNEMDQvN0ExN0ZFOEVBREQ5MTFFOUI3NDA5QTcyQzRGOUFFMDIvMTBFNkQ5Q0FC NTVDMTFFQ0E5NTY1MDM5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4ncMA0EAgACMAcDBQAkBLlAMA0GCSqGSIb3DQEBCwUAA4IBAQAm HqgYU8iSHTjT6Nqs6m2sug6FQivsT42QrKBiemtF5WEwfnPRSlWMd4d2wfkzeknt NrSGit+/rZa097X2dWteOIvNjFkJNyyOsYN1KmVpVvBcsr6gTDPcPreCBhgwyxjp P8w1zO3z/Co68obdb3awqA6PDUN455jXKfjDNi5693MLppZpq5ULB6A2OrO6OsV0 ru+2SaimYWbOEodXuAisBh4EjWAbYdSXUqWZx2Z8uCu5r+9R+z5vJ6jeaymme754 RId5ADjM2Ll2NRQvh6s7Vtr7RkDhO7/2M0j6oPuZ0ybe8FGTn3mJN0cIp+pTxkGn nuC7jcbcB4oHPFjAmvAd -----END CERTIFICATE-----Generated at Mon Mar 2 04:41:21 2026 by rpki-client