$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/7A976A4E0A7011F0AA901820C4F9AE02.roa File: 7A976A4E0A7011F0AA901820C4F9AE02.roa (raw, json) Hash identifier: mbqoxKDJPHiSyhYMIw4gKLEzDKHZNlFJqP6JEMgmZY8= Subject key identifier: 55:0C:C2:F8:47:AA:F4:42:45:C8:5C:92:CD:D3:29:0B:B2:D8:2D:27 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0A9D Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/7A976A4E0A7011F0AA901820C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:48:00 +0000 ROA not before: Wed 26 Mar 2025 18:31:06 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 7489 IP address blocks: 103.207.68.0/22 maxlen: 22 210.16.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2717 (0xa9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Mar 26 18:31:06 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a451a0-1022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:53:ad:1c:a9:ab:d9:6b:87:83:95:df:92: 2e:30:bf:e5:90:b5:45:22:9c:f4:84:d6:db:58:28: ba:3d:00:fb:7e:9e:6e:2e:6b:4e:0e:cd:66:c6:02: 99:7d:02:ec:9f:08:0e:09:94:f9:4f:1b:81:e5:1c: 89:33:b9:a6:aa:ef:f8:4b:05:5b:f9:26:b0:27:35: 38:0d:4d:fd:72:cc:17:f2:f4:27:c7:2c:ad:97:a5: e3:1f:9a:31:93:52:e3:8a:ee:5c:f8:df:ff:38:4d: 9b:03:02:4d:ac:83:93:34:be:5f:89:1e:92:a9:4c: 3b:15:6b:c0:86:d8:2c:66:18:26:96:ed:c5:e2:ae: 55:a0:49:a7:6d:22:82:77:f2:c3:ff:27:1d:5f:2f: 80:1a:28:7a:1e:c3:38:27:0d:bd:d9:06:5d:a0:a1: b1:92:4b:d3:e7:5e:67:3f:d1:cd:e3:ae:c0:f3:b3: db:e6:d4:61:24:86:02:58:32:43:ad:74:dd:c4:2f: f4:26:b3:60:e5:a6:b8:c2:c8:df:83:1f:37:2d:33: 10:15:66:26:41:0c:3c:c0:a1:f3:b8:37:57:da:42: 30:0c:1a:ac:21:ed:eb:86:ff:76:1b:62:89:ee:56: 3f:57:88:be:49:e1:11:9a:03:9f:4e:e5:83:7c:fd: f7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0C:C2:F8:47:AA:F4:42:45:C8:5C:92:CD:D3:29:0B:B2:D8:2D:27 X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/7A976A4E0A7011F0AA901820C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.207.68.0/22 210.16.120.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:a6:aa:1e:9d:87:55:c9:01:e4:70:dd:11:6a:ec:6b:64:71: aa:e2:8e:07:db:f1:fd:55:f3:14:c5:73:23:f2:f7:6b:dc:ca: ff:25:e2:1a:68:13:1f:7f:85:42:96:47:fd:29:9f:96:2f:aa: 0c:97:ff:aa:f5:c7:ef:c9:f2:1b:97:02:07:42:c0:5d:a9:eb: ed:cb:a6:9a:2f:67:f3:09:b7:14:2d:ca:60:8a:db:e2:7c:5c: ee:db:23:76:ee:af:25:2e:8a:c1:77:ad:5e:f2:b6:9c:b5:5c: 8b:ab:83:cd:0d:0c:fa:29:c5:87:83:f1:c3:84:78:1e:89:f8: da:13:2e:57:43:9a:2c:51:f2:82:9b:ec:7e:d4:df:f7:30:46: 24:f6:ab:e6:d6:83:83:45:0c:d9:df:bd:56:4a:c9:ac:ac:43: a5:db:35:6d:af:3e:87:95:c8:b7:31:e9:58:8e:18:89:3e:e2: 20:67:bc:51:84:b6:37:fd:e4:0b:e0:7c:37:68:c6:5e:cb:35: 82:65:b2:0a:a1:4b:2c:c6:f8:26:ed:36:06:ec:0a:fd:c5:93: 25:82:a9:ca:c2:fe:49:d6:fd:c8:7f:ec:0f:60:08:de:d1:56: 04:ce:1e:28:3f:61:63:bc:8a:6d:4d:d7:0d:c0:c0:ba:ad:f0: b5:d4:98:ea -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUwMzI2MTgzMTA2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTFhMC0xMDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMlTrRypq9lrh4OV35IuML/lkLVFIpz0hNbbWCi6PQD7fp5uLmtODs1mxgKZ fQLsnwgOCZT5TxuB5RyJM7mmqu/4SwVb+SawJzU4DU39cswX8vQnxyytl6XjH5ox k1Ljiu5c+N//OE2bAwJNrIOTNL5fiR6SqUw7FWvAhtgsZhgmlu3F4q5VoEmnbSKC d/LD/ycdXy+AGih6HsM4Jw292QZdoKGxkkvT515nP9HN467A87Pb5tRhJIYCWDJD rXTdxC/0JrNg5aa4wsjfgx83LTMQFWYmQQw8wKHzuDdX2kIwDBqsIe3rhv92G2KJ 7lY/V4i+SeERmgOfTuWDfP33uwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFFUMwvhH qvRCRchcks3TKQuy2C0nMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdFNDUvMDZDODU2M0M4M0Q5MTFFQUEzMTI0RjVDQzRGOUFFMDIvN0E5NzZBNEUw QTcwMTFGMEFBOTAxODIwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ89EAwQB0hB4MA0GCSqGSIb3DQEBCwUAA4IBAQB/pqoenYdVyQHk cN0RauxrZHGq4o4H2/H9VfMUxXMj8vdr3Mr/JeIaaBMff4VClkf9KZ+WL6oMl/+q 9cfvyfIblwIHQsBdqevty6aaL2fzCbcULcpgitvifFzu2yN27q8lLorBd61e8rac tVyLq4PNDQz6KcWHg/HDhHgeifjaEy5XQ5osUfKCm+x+1N/3MEYk9qvm1oODRQzZ 371WSsmsrEOl2zVtrz6Hlci3MelYjhiJPuIgZ7xRhLY3/eQL4Hw3aMZeyzWCZbIK oUssxvgm7TYG7Ar9xZMlgqnKwv5J1v3If+wPYAje0VYEzh4oP2FjvIptTdcNwMC6 rfC11Jjq -----END CERTIFICATE-----Generated at Mon Mar 2 06:19:34 2026 by rpki-client