$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa File: 7A7A6AC6234311EA90D15227C4F9AE02.roa (raw, json) Hash identifier: pgOaSDniRvQmBVulS2WqyGBmj9oXKtXqCtMZCWFAkoY= Subject key identifier: 46:FC:C9:F9:DE:0E:C2:52:0C:07:33:CF:CB:0C:5A:ED:33:3A:4C:3D Certificate issuer: /CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Certificate serial: 176F Authority key identifier: 9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:16:05 +0000 ROA not before: Sat 08 Feb 2025 16:54:16 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136168 IP address blocks: 103.82.232.0/24 maxlen: 24 103.96.230.0/23 maxlen: 24 103.96.232.0/24 maxlen: 24 123.253.228.0/22 maxlen: 24 2401:8340::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5999 (0x176f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B3A, serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Validity Not Before: Feb 8 16:54:16 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=69a403d5-afd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:13:5c:1e:87:06:f9:0f:52:88:b8:91:97:d3: 4f:f0:79:a7:0c:4f:8f:6f:05:6d:12:49:0c:57:97: 6b:3d:8f:ee:e6:76:29:a9:32:9f:93:f2:d6:3f:b9: 09:41:78:a4:45:47:46:fd:91:57:66:21:42:a9:f1: 4e:26:d5:f3:aa:8d:2c:31:c2:15:f3:61:95:f3:76: 39:83:6c:e5:53:41:bd:bc:54:21:b7:79:3f:0a:64: c3:73:d5:76:a2:b3:2f:e0:87:17:65:dc:ea:4e:d3: fd:dc:7d:f3:3f:94:02:40:57:00:56:dc:66:c0:88: 8b:32:00:16:d7:b1:0d:76:77:72:0d:96:2a:8f:6d: 66:74:cd:a3:61:3d:e7:77:dd:71:5d:10:44:5c:d9: 86:73:fc:6c:25:47:76:42:92:04:54:67:34:85:12: 6f:cb:eb:eb:ca:ee:50:9b:ab:a0:a7:05:52:06:5e: da:71:08:3a:f3:b7:6c:ea:92:a2:30:f2:d8:26:b2: 9b:b4:8a:d5:c5:a7:58:2b:55:2a:0e:bf:85:4f:03: 99:aa:d6:2c:7a:ab:18:61:61:fc:bd:7c:2f:17:1a: 3d:e1:63:40:de:4b:e7:6e:93:3d:06:78:59:34:85: e0:cf:7b:0e:c7:c9:10:ac:9e:9d:04:9c:49:fc:e9: c6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:FC:C9:F9:DE:0E:C2:52:0C:07:33:CF:CB:0C:5A:ED:33:3A:4C:3D X509v3 Authority Key Identifier: keyid:9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.82.232.0/24 103.96.230.0-103.96.232.255 123.253.228.0/22 IPv6: 2401:8340::/32 Signature Algorithm: sha256WithRSAEncryption 21:b9:b8:c0:14:8e:f9:47:41:01:6f:fc:56:55:5b:2a:23:de: 77:45:97:a2:1c:22:30:3d:f9:c6:8f:91:1a:60:75:7f:2e:ff: 3b:87:b3:4a:0c:05:58:50:66:23:d4:85:61:70:b6:f3:90:54: a6:ca:f5:56:b5:c9:56:65:31:b8:c9:f2:38:c4:31:24:b8:7c: e4:6b:a4:99:2f:80:f1:62:c0:64:4c:d6:7c:ef:95:0f:ef:c9: 39:f1:66:ea:7c:c6:dd:a7:50:02:e5:7b:1c:ae:02:76:50:39: bf:c8:29:fe:5a:54:64:a5:22:65:88:82:35:5a:4a:f5:70:2e: 9e:4e:24:30:2a:a0:62:40:ac:e5:37:16:15:36:b4:b9:c0:ca: 3c:be:e6:80:1d:1c:68:89:f9:53:1d:db:6b:20:da:e9:f2:96: ec:ca:7e:60:f6:69:d5:e1:5f:54:83:6a:b7:ed:47:d4:2d:44: bd:ef:c9:35:ba:90:24:8d:dd:e4:37:5e:be:23:18:f9:38:94: fe:e8:44:30:9e:48:ef:80:73:3a:7b:d6:64:6e:51:72:c4:5f: f3:9a:67:92:7e:27:02:10:65:e1:47:26:33:c8:aa:36:3e:63: df:09:17:e3:d5:f9:54:2b:e6:93:e9:9e:46:1c:38:dd:b3:08: 3c:4e:26:3e -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICF28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCM0ExMTAvBgNVBAUTKDlFMTVCQ0I5RTMzQUVERURBQzY4MEFDOEM5ODE2RTEx NTkwNUNBMkMwHhcNMjUwMjA4MTY1NDE2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDNkNS1hZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxNcHocG+Q9SiLiRl9NP8HmnDE+PbwVtEkkMV5drPY/u5nYpqTKfk/LWP7kJ QXikRUdG/ZFXZiFCqfFOJtXzqo0sMcIV82GV83Y5g2zlU0G9vFQht3k/CmTDc9V2 orMv4IcXZdzqTtP93H3zP5QCQFcAVtxmwIiLMgAW17ENdndyDZYqj21mdM2jYT3n d91xXRBEXNmGc/xsJUd2QpIEVGc0hRJvy+vryu5Qm6ugpwVSBl7acQg687ds6pKi MPLYJrKbtIrVxadYK1UqDr+FTwOZqtYseqsYYWH8vXwvFxo94WNA3kvnbpM9BnhZ NIXgz3sOx8kQrJ6dBJxJ/OnGDQIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFEb8yfne DsJSDAczz8sMWu0zOkw9MB8GA1UdIwQYMBaAFJ4VvLnjOu3trGgKyMmBbhFZBcos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUIzQS83REVBRTczNEYz QTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdlMnNhQXJJeVlGdUVWa0Z5 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25oVzh1ZU02N2Uyc2FBckl5WUZ1RVZrRnlpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlCM0EvN0RFQUU3MzRGM0EzMTFFN0I1RDA5QzcxQzRGOUFFMDIvN0E3QTZBQzYy MzQzMTFFQTkwRDE1MjI3QzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAg BAIAATAaAwQAZ1LoMAwDBAFnYOYDBABnYOgDBAJ7/eQwDQQCAAIwBwMFACQBg0Aw DQYJKoZIhvcNAQELBQADggEBACG5uMAUjvlHQQFv/FZVWyoj3ndFl6IcIjA9+caP kRpgdX8u/zuHs0oMBVhQZiPUhWFwtvOQVKbK9Va1yVZlMbjJ8jjEMSS4fORrpJkv gPFiwGRM1nzvlQ/vyTnxZup8xt2nUALlexyuAnZQOb/IKf5aVGSlImWIgjVaSvVw Lp5OJDAqoGJArOU3FhU2tLnAyjy+5oAdHGiJ+VMd22sg2unyluzKfmD2adXhX1SD arftR9QtRL3vyTW6kCSN3eQ3Xr4jGPk4lP7oRDCeSO+Aczp71mRuUXLEX/OaZ5J+ JwIQZeFHJjPIqjY+Y98JF+PV+VQr5pPpnkYcON2zCDxOJj4= -----END CERTIFICATE-----Generated at Mon Mar 2 18:25:13 2026 by rpki-client