$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa File: B65A4FACE18C11ECB1697F55C4F9AE02.roa (raw, json) Hash identifier: vDl44lVEn9bjZ8m5CRKO3O7LYYTN1Ha2YprEKZ3AYuY= Subject key identifier: 7E:FF:B5:B1:55:D4:E1:6C:25:34:7D:99:2D:73:46:28:F9:3B:DB:D4 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 08A3 Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:58:12 +0000 ROA not before: Sun 04 May 2025 19:29:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138912 IP address blocks: 103.137.6.0/24 maxlen: 24 103.137.7.0/24 maxlen: 24 2001:df0:19c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2211 (0x8a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: May 4 19:29:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48c44-822c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:98:30:b1:57:89:3f:b0:42:7f:aa:b9:3f:20: 6e:80:af:53:0a:ea:d1:3d:76:3d:d7:0a:86:83:62: 86:1e:d0:59:bb:89:f7:6a:4d:05:a0:f7:b5:4e:5b: ef:68:2a:dc:20:01:fe:ae:55:3b:92:d5:35:e5:c5: 18:ae:bf:52:fc:de:e5:e9:42:b7:3b:a8:a2:ad:0e: 83:30:57:ae:fb:d8:1b:80:2c:50:c4:55:75:81:6c: 43:82:f0:41:96:3c:b7:2b:7f:94:ad:ef:90:5e:c2: 35:ac:0f:50:eb:82:7e:bc:a7:b8:a6:5b:e3:36:ea: 45:90:3d:31:4f:1b:28:e7:b9:c0:78:7c:38:ea:07: db:4f:36:d1:da:50:b5:25:67:1c:b5:07:08:65:60: 40:28:c1:88:98:97:fb:9f:08:e7:3d:ce:75:46:3e: 94:ba:b9:94:96:dd:e4:2e:98:a7:6e:10:b8:7b:03: 44:65:a9:8b:7e:22:0c:37:bf:9c:bc:d0:89:61:38: 8e:d3:b9:00:6b:6d:89:42:6c:25:b4:e6:fe:b2:65: e8:66:22:e9:29:08:f5:2e:b4:8f:70:30:64:bb:b7: 65:0d:de:2b:02:a4:0a:15:65:de:cf:ac:52:f5:b8: e3:2b:a7:04:c0:22:7b:a6:2e:78:91:d2:94:64:2b: d3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FF:B5:B1:55:D4:E1:6C:25:34:7D:99:2D:73:46:28:F9:3B:DB:D4 X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.6.0/23 IPv6: 2001:df0:19c0::/48 Signature Algorithm: sha256WithRSAEncryption 5f:76:5f:1d:bb:52:ce:73:e3:fe:81:db:5a:0c:d9:fd:cb:48: 24:f8:56:10:d9:a0:cc:c6:6c:a8:0f:c1:a3:c4:9a:44:96:1a: 0c:5f:03:d8:68:fe:f6:d7:c3:ad:b4:44:6d:49:2b:93:57:54: c0:83:a2:8f:14:c5:c4:78:04:54:18:c6:c0:0d:5f:1f:78:1b: eb:8b:5e:6a:6c:b0:af:46:45:e4:43:bf:dc:75:98:f4:3b:dc: 35:02:88:b8:81:82:d8:32:75:03:b6:17:61:17:53:38:a3:eb: dc:5a:50:d2:8b:0b:d8:62:c7:bd:25:2f:04:95:8e:56:58:8c: d5:de:d9:52:40:6b:f8:46:50:33:13:99:fa:62:3b:78:5c:6c: fa:4b:47:18:28:49:19:30:65:4b:25:c0:c6:66:f3:87:6e:39: 6e:77:51:dc:af:2f:9b:47:41:2b:ed:36:df:2d:f4:05:28:81: 60:f6:33:c0:8d:34:c1:e1:b5:21:0f:57:5a:0b:55:30:53:2f: f9:b9:85:40:7f:fc:7a:94:b9:60:bb:55:c4:c2:b9:1a:49:7f: 43:c8:12:ab:52:29:90:fb:d0:a6:ae:75:e6:76:82:dd:54:69: bd:a3:1a:e1:6a:2a:85:5a:13:d3:61:66:9b:d0:53:b6:c1:2b: 25:2f:2c:80 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjUwNTA0MTkyOTE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGM0NC04MjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspgwsVeJP7BCf6q5PyBugK9TCurRPXY91wqGg2KGHtBZu4n3ak0FoPe1Tlvv aCrcIAH+rlU7ktU15cUYrr9S/N7l6UK3O6iirQ6DMFeu+9gbgCxQxFV1gWxDgvBB ljy3K3+Ure+QXsI1rA9Q64J+vKe4plvjNupFkD0xTxso57nAeHw46gfbTzbR2lC1 JWcctQcIZWBAKMGImJf7nwjnPc51Rj6UurmUlt3kLpinbhC4ewNEZamLfiIMN7+c vNCJYTiO07kAa22JQmwltOb+smXoZiLpKQj1LrSPcDBku7dlDd4rAqQKFWXez6xS 9bjjK6cEwCJ7pi54kdKUZCvTjQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFH7/tbFV 1OFsJTR9mS1zRij5O9vUMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgwQTEvOTI1NjBBNkEzNzREMTFFQUEwQTNCRTU1QzRGOUFFMDIvQjY1QTRGQUNF MThDMTFFQ0IxNjk3RjU1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4kGMA8EAgACMAkDBwAgAQ3wGcAwDQYJKoZIhvcNAQELBQADggEB AF92Xx27Us5z4/6B21oM2f3LSCT4VhDZoMzGbKgPwaPEmkSWGgxfA9ho/vbXw620 RG1JK5NXVMCDoo8UxcR4BFQYxsANXx94G+uLXmpssK9GReRDv9x1mPQ73DUCiLiB gtgydQO2F2EXUzij69xaUNKLC9hix70lLwSVjlZYjNXe2VJAa/hGUDMTmfpiO3hc bPpLRxgoSRkwZUslwMZm84duOW53UdyvL5tHQSvtNt8t9AUogWD2M8CNNMHhtSEP V1oLVTBTL/m5hUB//HqUuWC7VcTCuRpJf0PIEqtSKZD70KaudeZ2gt1Uab2jGuFq KoVaE9NhZpvQU7bBKyUvLIA= -----END CERTIFICATE-----Generated at Sat Mar 28 13:42:38 2026 by rpki-client