$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/6153EE40A64911EEA2F9C24AC4F9AE02.roa File: 6153EE40A64911EEA2F9C24AC4F9AE02.roa (raw, json) Hash identifier: xxh6NZnNYpflyBEdhUUFw/SOYfLeyMddymrrtghmKYo= Subject key identifier: 16:04:CC:81:5D:CF:C8:D9:27:75:36:E6:F2:39:26:7C:93:99:7D:24 Certificate issuer: /CN=A91FFE9F/serialNumber=0B095236234E6935BAA341E3235A3DB473ACC67F Certificate serial: 0FDF Authority key identifier: 0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/6153EE40A64911EEA2F9C24AC4F9AE02.roa Signing time: Mon 02 Mar 2026 05:10:00 +0000 ROA not before: Thu 20 Nov 2025 17:36:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 140039 IP address blocks: 103.130.156.0/24 maxlen: 24 103.130.157.0/24 maxlen: 24 103.130.158.0/24 maxlen: 24 103.130.159.0/24 maxlen: 24 2403:bd40::/48 maxlen: 48 2403:bd40:1::/48 maxlen: 48 2403:bd40:2::/48 maxlen: 48 2403:bd40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.crl rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 17:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4063 (0xfdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE9F, serialNumber=0B095236234E6935BAA341E3235A3DB473ACC67F Validity Not Before: Nov 20 17:36:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a51ba7-4297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:72:51:96:08:f7:de:77:a4:29:2a:c2:2b: f9:43:13:61:6b:8d:36:70:9c:fa:3e:3a:a9:54:a4: 77:b7:0d:0b:17:5b:e8:c3:5d:66:3a:1f:32:34:3f: 9a:f3:fa:a1:e7:fa:a7:a3:60:e2:19:94:de:a6:2e: 26:22:7a:df:3d:9d:50:5d:78:f5:3d:f7:f2:ac:b3: 10:a6:55:41:34:41:6a:a4:94:e7:c5:1b:43:ad:8a: 10:2d:b3:99:4d:d5:30:6e:8a:37:a1:52:fd:c1:8c: 3f:22:fd:52:be:44:ae:56:8b:9a:39:f9:4d:42:21: 36:fc:1e:06:60:ba:da:a1:f6:4f:0b:25:73:01:55: b4:e9:0f:e9:e6:52:99:69:fd:53:67:d7:de:67:b5: 7e:eb:aa:78:f4:8d:6e:83:e7:31:92:89:d7:5e:02: 28:a8:04:a9:a6:6d:92:50:70:84:45:de:33:43:f0: 59:01:dd:f4:ed:55:15:4a:2c:1d:0f:e0:01:90:cd: 06:8e:31:09:27:6e:7d:ad:60:cf:78:6c:e0:0b:8f: 36:11:8c:11:74:40:b3:5d:85:e9:34:f9:e0:8c:fc: 1c:ee:28:d2:2c:43:f9:9d:7c:27:3c:01:36:8b:77: 17:44:b6:db:87:f2:00:8a:fa:dd:97:ef:63:bf:c4: e9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:04:CC:81:5D:CF:C8:D9:27:75:36:E6:F2:39:26:7C:93:99:7D:24 X509v3 Authority Key Identifier: keyid:0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/6153EE40A64911EEA2F9C24AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.130.156.0/22 IPv6: 2403:bd40::/46 Signature Algorithm: sha256WithRSAEncryption 48:e0:91:7a:d9:97:a7:01:09:48:99:b1:e2:4e:8a:f5:da:93: 60:bd:ef:f1:aa:2e:95:3b:8f:cc:ee:fc:f8:d7:63:f5:0e:8c: 2b:87:d1:86:10:25:37:e1:72:2e:d8:62:a5:8d:fe:20:ba:8b: 26:cf:3a:c3:b5:1c:15:60:c3:b6:23:f7:5b:2e:13:ef:d5:83: 32:6b:d9:e3:80:4e:91:63:0e:44:c1:04:e5:e2:6f:c2:53:a5: 70:8e:58:62:df:15:7e:00:e3:8c:24:b6:88:ad:56:34:79:bb: a8:f8:19:b4:ec:02:2b:46:4e:e1:04:54:98:f5:ad:21:ff:ea: f2:e0:63:d8:c8:78:01:c1:a6:f4:53:6c:f8:66:e4:f1:d8:a1: 27:4d:57:80:cb:3b:c1:2e:01:86:d8:87:f9:60:a7:ce:c2:1b: be:f7:c7:55:df:03:fc:a6:33:8b:d1:ab:dd:36:1b:04:63:63: 5c:a8:bc:bc:c9:ce:5d:85:e6:69:68:4f:98:2e:83:29:b7:72: 58:5a:32:15:52:a9:c9:e5:75:6c:2b:bc:db:90:7a:ce:1c:ec: 7d:ed:45:1b:3c:fb:0c:42:62:9b:a9:cb:7d:8c:47:9a:c8:69: d7:62:c6:9b:63:e9:86:d7:f2:04:4f:8b:f8:c5:bb:6f:5a:19: 52:b2:aa:c5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICD98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFOUYxMTAvBgNVBAUTKDBCMDk1MjM2MjM0RTY5MzVCQUEzNDFFMzIzNUEzREI0 NzNBQ0M2N0YwHhcNMjUxMTIwMTczNjUzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWJhNy00Mjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9hyUZYI9953pCkqwiv5QxNha402cJz6PjqpVKR3tw0LF1vow11mOh8yND+a 8/qh5/qno2DiGZTepi4mInrfPZ1QXXj1PffyrLMQplVBNEFqpJTnxRtDrYoQLbOZ TdUwboo3oVL9wYw/Iv1SvkSuVouaOflNQiE2/B4GYLraofZPCyVzAVW06Q/p5lKZ af1TZ9feZ7V+66p49I1ug+cxkonXXgIoqASppm2SUHCERd4zQ/BZAd307VUVSiwd D+ABkM0GjjEJJ259rWDPeGzgC482EYwRdECzXYXpNPngjPwc7ijSLEP5nXwnPAE2 i3cXRLbbh/IAivrdl+9jv8Tp5QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFBYEzIFd z8jZJ3U25vI5JnyTmX0kMB8GA1UdIwQYMBaAFAsJUjYjTmk1uqNB4yNaPbRzrMZ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkU5Ri84QkUwNjNFMDdC MTYxMUU5OTk0OUFDNTFDNEY5QUUwMi9Dd2xTTmlOT2FUVzZvMEhqSTFvOXRIT3N4 bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N3bFNOaU5PYVRXNm8wSGpJMW85dEhPc3huOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZFOUYvOEJFMDYzRTA3QjE2MTFFOTk5NDlBQzUxQzRGOUFFMDIvNjE1M0VFNDBB NjQ5MTFFRUEyRjlDMjRBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ4KcMA8EAgACMAkDBwIkA71AAAAwDQYJKoZIhvcNAQELBQADggEB AEjgkXrZl6cBCUiZseJOivXak2C97/GqLpU7j8zu/PjXY/UOjCuH0YYQJTfhci7Y YqWN/iC6iybPOsO1HBVgw7Yj91suE+/VgzJr2eOATpFjDkTBBOXib8JTpXCOWGLf FX4A44wktoitVjR5u6j4GbTsAitGTuEEVJj1rSH/6vLgY9jIeAHBpvRTbPhm5PHY oSdNV4DLO8EuAYbYh/lgp87CG773x1XfA/ymM4vRq902GwRjY1yovLzJzl2F5mlo T5gugym3clhaMhVSqcnldWwrvNuQes4c7H3tRRs8+wxCYpupy32MR5rIaddixptj 6YbX8gRPi/jFu29aGVKyqsU= -----END CERTIFICATE-----Generated at Tue Mar 3 00:41:05 2026 by rpki-client