$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa File: EE7FBFECF5DA11EAA1976953C4F9AE02.roa (raw, json) Hash identifier: KJIhws5MhlJ1P7rXiJfyDIpbNBCN3SjT17UCG4+StEc= Subject key identifier: 87:52:EC:62:C3:05:39:8E:AF:39:53:0D:4C:11:3D:81:85:9E:2E:4B Certificate issuer: /CN=A91E82C4/serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Certificate serial: 086D Authority key identifier: 4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa Signing time: Fri 27 Feb 2026 06:03:58 +0000 ROA not before: Tue 08 Apr 2025 21:01:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136442 IP address blocks: 103.88.48.0/22 maxlen: 22 103.88.48.0/24 maxlen: 24 103.88.49.0/24 maxlen: 24 103.88.50.0/24 maxlen: 24 103.88.51.0/24 maxlen: 24 203.96.240.0/22 maxlen: 22 203.96.240.0/24 maxlen: 24 203.96.241.0/24 maxlen: 24 203.96.242.0/24 maxlen: 24 203.96.243.0/24 maxlen: 24 2400:de40::/32 maxlen: 32 2400:de40::/48 maxlen: 48 2400:de40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82C4, serialNumber=4EABD6E05CA0E4A6A815F9B64694B3CF892AF8F4 Validity Not Before: Apr 8 21:01:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a133cd-c889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:62:db:b9:82:f3:9d:6c:5f:4a:22:1c:cd:e6: b9:6e:b0:67:ab:1c:a3:08:29:e1:10:02:35:5b:87: d9:fa:53:5f:c3:86:e3:8a:94:5c:fb:d0:42:cd:a8: be:00:49:78:f4:5d:bd:b1:fe:6c:70:02:9e:4c:b5: 0a:6f:f0:97:e1:24:10:4d:35:d4:f0:ed:75:a9:ff: 19:ad:40:c4:55:42:bc:52:87:11:05:5f:b6:c1:89: a0:fe:07:db:2e:c2:e4:a0:45:30:70:d4:1d:3a:48: 11:2d:e3:31:f9:10:7e:a2:e9:7a:04:e8:40:c7:3c: 36:1c:9e:ed:56:be:ac:cb:35:ae:c0:87:1e:db:98: 7b:7f:f6:1e:1e:09:27:05:83:e2:52:e0:b6:1a:c6: 3f:28:d4:12:80:77:97:27:3c:cd:e1:ee:1f:5a:90: 4b:3c:cf:ec:bb:b7:a0:ac:0d:0a:82:81:b2:ef:e5: d0:00:a8:88:27:38:f3:b0:72:5c:d5:b7:0b:06:0d: 1a:bb:75:8e:22:16:26:be:07:49:f7:9c:e0:8f:99: 43:99:a6:62:f6:2a:17:fc:99:a5:95:38:9a:d4:00: a2:a1:d0:fc:c0:b0:76:ae:e5:8e:9d:4e:d0:3e:3f: 7a:9d:8b:41:04:93:d1:b2:f8:c1:b9:c3:0e:45:a7: d9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:52:EC:62:C3:05:39:8E:AF:39:53:0D:4C:11:3D:81:85:9E:2E:4B X509v3 Authority Key Identifier: keyid:4E:AB:D6:E0:5C:A0:E4:A6:A8:15:F9:B6:46:94:B3:CF:89:2A:F8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TqvW4Fyg5KaoFfm2RpSzz4kq-PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82C4/81F0D54CF5D911EAAEF69D51C4F9AE02/EE7FBFECF5DA11EAA1976953C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.48.0/22 203.96.240.0/22 IPv6: 2400:de40::/32 Signature Algorithm: sha256WithRSAEncryption 57:c2:f2:79:d1:0e:8f:df:e4:41:e9:ec:c9:b1:59:03:a4:94: 17:f7:c7:d4:46:40:6c:47:f5:be:73:bd:9a:e5:6e:90:35:ab: 6a:de:5b:25:13:6f:98:b4:3a:c6:2e:e9:a2:d0:dd:83:c3:f5: 53:4b:4b:e6:39:d8:dd:4d:44:ac:db:9d:c2:5d:90:be:5c:81: 6d:32:e6:d2:7e:51:99:78:65:74:37:f3:3b:cb:c9:b8:2d:b6: fe:aa:3f:4b:d3:7a:8a:3b:85:24:7e:ac:ae:57:22:c3:a8:9e: 36:08:8d:ff:e9:e6:88:3b:b9:ca:fd:06:84:f4:cd:84:da:5d: e3:d5:f0:13:a5:8a:44:6a:08:ff:14:af:bd:7f:9f:75:33:bd: 80:71:d3:c7:2b:53:e4:d5:21:02:2c:ba:5c:97:fe:c0:5f:92: 8f:ca:00:63:e4:48:5b:68:19:5a:20:57:f5:d9:17:1d:a0:03: b8:d1:a3:83:b5:05:55:33:72:24:d8:35:49:f5:2f:ee:a9:e1: d1:51:41:7f:b6:6a:f7:54:0d:4f:45:5b:fc:fa:91:cb:41:23: 9a:b9:4e:fe:4c:ee:d2:cd:c4:62:18:27:ca:19:fa:b3:4b:17: 35:c7:5c:1c:89:f5:1d:de:65:22:46:1e:19:c2:11:45:e4:6f: 1e:77:94:f6 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgyQzQxMTAvBgNVBAUTKDRFQUJENkUwNUNBMEU0QTZBODE1RjlCNjQ2OTRCM0NG ODkyQUY4RjQwHhcNMjUwNDA4MjEwMTE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OWExMzNjZC1jODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmLbuYLznWxfSiIczea5brBnqxyjCCnhEAI1W4fZ+lNfw4bjipRc+9BCzai+ AEl49F29sf5scAKeTLUKb/CX4SQQTTXU8O11qf8ZrUDEVUK8UocRBV+2wYmg/gfb LsLkoEUwcNQdOkgRLeMx+RB+oul6BOhAxzw2HJ7tVr6syzWuwIce25h7f/YeHgkn BYPiUuC2GsY/KNQSgHeXJzzN4e4fWpBLPM/su7egrA0KgoGy7+XQAKiIJzjzsHJc 1bcLBg0au3WOIhYmvgdJ95zgj5lDmaZi9ioX/JmllTia1ACiodD8wLB2ruWOnU7Q Pj96nYtBBJPRsvjBucMORafZRQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFIdS7GLD BTmOrzlTDUwRPYGFni5LMB8GA1UdIwQYMBaAFE6r1uBcoOSmqBX5tkaUs8+JKvj0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODJDNC84MUYwRDU0Q0Y1 RDkxMUVBQUVGNjlENTFDNEY5QUUwMi9UcXZXNEZ5ZzVLYW9GZm0yUnBTeno0a3Et UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rxdlc0RnlnNUthb0ZmbTJScFN6ejRrcS1QUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgyQzQvODFGMEQ1NENGNUQ5MTFFQUFFRjY5RDUxQzRGOUFFMDIvRUU3RkJGRUNG NURBMTFFQUExOTc2OTUzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1gwAwQCy2DwMA0EAgACMAcDBQAkAN5AMA0GCSqGSIb3DQEBCwUA A4IBAQBXwvJ50Q6P3+RB6ezJsVkDpJQX98fURkBsR/W+c72a5W6QNatq3lslE2+Y tDrGLumi0N2Dw/VTS0vmOdjdTUSs253CXZC+XIFtMubSflGZeGV0N/M7y8m4Lbb+ qj9L03qKO4UkfqyuVyLDqJ42CI3/6eaIO7nK/QaE9M2E2l3j1fATpYpEagj/FK+9 f591M72AcdPHK1Pk1SECLLpcl/7AX5KPygBj5EhbaBlaIFf12RcdoAO40aODtQVV M3Ik2DVJ9S/uqeHRUUF/tmr3VA1PRVv8+pHLQSOauU7+TO7SzcRiGCfKGfqzSxc1 x1wcifUd3mUiRh4ZwhFF5G8ed5T2 -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:06 2026 by rpki-client