$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/6B6060E445A311F093AEF324C4F9AE02.roa File: 6B6060E445A311F093AEF324C4F9AE02.roa (raw, json) Hash identifier: ajLfJWm+M0SWqjAdHIV+wgpuCeOkmfWSTFz1UgwY96E= Subject key identifier: FA:8F:45:AB:B6:3F:6E:2E:10:14:D3:C5:B9:FC:CD:0B:FE:3F:83:A0 Certificate issuer: /CN=A91EEA4D/serialNumber=D106FB972A71FEB74092E06378D54CD59E59E3A3 Certificate serial: 8F Authority key identifier: D1:06:FB:97:2A:71:FE:B7:40:92:E0:63:78:D5:4C:D5:9E:59:E3:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/6B6060E445A311F093AEF324C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:21:25 +0000 ROA not before: Tue 10 Jun 2025 02:34:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138561 IP address blocks: 103.133.4.0/22 maxlen: 22 103.133.4.0/23 maxlen: 23 103.133.4.0/24 maxlen: 24 103.133.5.0/24 maxlen: 24 103.133.6.0/23 maxlen: 23 103.133.6.0/24 maxlen: 24 103.133.7.0/24 maxlen: 24 2404:44c0::/32 maxlen: 32 2404:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.crl rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEA4D, serialNumber=D106FB972A71FEB74092E06378D54CD59E59E3A3 Validity Not Before: Jun 10 02:34:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a491b5-c77d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0a:9c:c3:b3:58:5c:17:c5:35:bc:df:46:6c: 18:3e:88:7b:ed:4b:b5:4b:70:8a:4e:16:0e:d7:54: 65:91:68:d1:ce:a6:96:7a:d1:72:bf:2d:1d:a1:a2: b6:b0:81:9d:0a:e9:f2:e8:64:90:3e:50:31:6b:e8: 8f:a1:5a:17:e5:e8:39:43:d6:03:2c:2a:3a:0b:fe: 87:83:fc:26:39:04:cb:f3:53:04:4f:d5:c7:4e:07: 0c:45:dc:a1:a7:5a:24:21:f9:7c:c4:0e:d7:b9:a1: 6a:b1:f8:63:3f:f0:75:a7:f6:0a:f7:32:f1:51:23: 70:f2:7c:c0:cc:d4:37:9f:cb:8d:93:e3:28:e7:f3: 93:d3:8c:a5:58:78:f5:65:da:26:18:90:15:bd:8a: 10:84:05:85:4f:b3:eb:54:a5:da:f8:3d:e8:50:01: b9:1f:b8:9b:ed:bf:da:f4:9c:54:f6:ae:bf:18:03: 82:d1:6c:8e:4c:0c:fa:c0:b3:a5:df:ed:37:b1:76: fb:47:8b:74:12:58:fd:29:43:71:67:43:21:cd:4d: f8:2e:b7:5d:2e:d8:9b:2b:62:c5:4b:d7:ba:5d:b8: 5a:63:6e:2e:22:4f:8d:09:ec:c8:1e:cd:79:18:57: a9:81:48:44:f3:8c:f7:a8:76:c7:6e:e8:3d:91:49: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8F:45:AB:B6:3F:6E:2E:10:14:D3:C5:B9:FC:CD:0B:FE:3F:83:A0 X509v3 Authority Key Identifier: keyid:D1:06:FB:97:2A:71:FE:B7:40:92:E0:63:78:D5:4C:D5:9E:59:E3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Qb7lypx_rdAkuBjeNVM1Z5Z46M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/6B6060E445A311F093AEF324C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.133.4.0/22 IPv6: 2404:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 6b:ef:22:45:46:9c:ae:5b:d3:3c:6a:4a:a6:26:71:03:e8:84: 43:eb:d1:54:81:6e:6e:aa:2c:a8:6b:c5:b1:4a:26:b7:9c:2e: 41:4b:e8:fc:88:f1:43:10:7f:b6:2b:29:a7:50:12:aa:75:64: dd:d4:a4:bb:ef:d3:da:32:67:86:a6:36:d9:7b:c4:9e:a8:b8: 00:28:2e:a1:cb:4a:42:7a:99:20:11:96:f5:c6:80:cd:30:08: b6:7d:29:5a:ca:43:8a:ec:f6:22:9a:cb:99:11:fa:74:fe:4d: 5a:83:6f:ac:ef:91:67:a7:24:ca:61:3e:77:97:4c:51:15:68: c9:b7:96:96:9b:fc:98:dc:86:f3:bc:6e:33:78:df:49:51:53: b4:06:30:93:c6:b8:f9:01:12:03:f2:f8:1c:76:ed:17:29:4f: ac:ca:83:b7:96:ee:63:e0:56:cc:7d:de:b4:78:42:22:9f:fe: d5:f8:d0:3c:e4:08:55:ca:25:24:e3:79:9c:54:c0:b3:fb:59: d1:08:13:83:db:7b:77:a9:52:81:bf:60:16:a7:91:41:eb:1c: 25:25:59:95:9a:ff:71:94:9f:c4:ed:c7:03:b5:36:87:2e:6a: 91:29:86:58:45:e8:a7:20:3a:b8:af:53:26:19:82:d5:a5:8f: 28:6b:60:a1 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVBNEQxMTAvBgNVBAUTKEQxMDZGQjk3MkE3MUZFQjc0MDkyRTA2Mzc4RDU0Q0Q1 OUU1OUUzQTMwHhcNMjUwNjEwMDIzNDIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTFiNS1jNzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgqcw7NYXBfFNbzfRmwYPoh77Uu1S3CKThYO11RlkWjRzqaWetFyvy0doaK2 sIGdCuny6GSQPlAxa+iPoVoX5eg5Q9YDLCo6C/6Hg/wmOQTL81MET9XHTgcMRdyh p1okIfl8xA7XuaFqsfhjP/B1p/YK9zLxUSNw8nzAzNQ3n8uNk+Mo5/OT04ylWHj1 ZdomGJAVvYoQhAWFT7PrVKXa+D3oUAG5H7ib7b/a9JxU9q6/GAOC0WyOTAz6wLOl 3+03sXb7R4t0Elj9KUNxZ0MhzU34LrddLtibK2LFS9e6XbhaY24uIk+NCezIHs15 GFepgUhE84z3qHbHbug9kUn9hQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPqPRau2 P24uEBTTxbn8zQv+P4OgMB8GA1UdIwQYMBaAFNEG+5cqcf63QJLgY3jVTNWeWeOj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUE0RC82NjFGNzNFQzQ3 MzcxMUVBQUIxNkJCNTBDNEY5QUUwMi8wUWI3bHlweF9yZEFrdUJqZU5WTTFaNVo0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRYjdseXB4X3JkQWt1QmplTlZNMVo1WjQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVBNEQvNjYxRjczRUM0NzM3MTFFQUFCMTZCQjUwQzRGOUFFMDIvNkI2MDYwRTQ0 NUEzMTFGMDkzQUVGMzI0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4UEMA0EAgACMAcDBQAkBETAMA0GCSqGSIb3DQEBCwUAA4IBAQBr 7yJFRpyuW9M8akqmJnED6IRD69FUgW5uqiyoa8WxSia3nC5BS+j8iPFDEH+2Kymn UBKqdWTd1KS779PaMmeGpjbZe8SeqLgAKC6hy0pCepkgEZb1xoDNMAi2fSlaykOK 7PYimsuZEfp0/k1ag2+s75FnpyTKYT53l0xRFWjJt5aWm/yY3IbzvG4zeN9JUVO0 BjCTxrj5ARID8vgcdu0XKU+syoO3lu5j4FbMfd60eEIin/7V+NA85AhVyiUk43mc VMCz+1nRCBOD23t3qVKBv2AWp5FB6xwlJVmVmv9xlJ/E7ccDtTaHLmqRKYZYRein IDq4r1MmGYLVpY8oa2Ch -----END CERTIFICATE-----Generated at Mon Mar 2 05:58:40 2026 by rpki-client