$ rpki-client -vvf rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/7B96F1340C6011F088E6FD2FC4F9AE02.roa File: 7B96F1340C6011F088E6FD2FC4F9AE02.roa (raw, json) Hash identifier: mKkuVSeTZtVuG7BfqaqUZzcHeF9XMKmK1adCEnjlrRM= Subject key identifier: 6C:77:F1:A3:F5:CE:5D:8F:25:C7:AB:E1:2B:F0:30:56:B4:F1:BF:52 Certificate issuer: /CN=A91829E3/serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Certificate serial: 0CB5 Authority key identifier: 23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/7B96F1340C6011F088E6FD2FC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:10:16 +0000 ROA not before: Thu 26 Feb 2026 19:15:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135076 IP address blocks: 43.245.244.0/22 maxlen: 24 103.208.180.0/22 maxlen: 24 103.240.248.0/22 maxlen: 24 137.59.180.0/22 maxlen: 22 137.59.180.0/23 maxlen: 23 137.59.180.0/24 maxlen: 24 137.59.181.0/24 maxlen: 24 137.59.182.0/23 maxlen: 23 137.59.182.0/24 maxlen: 24 137.59.183.0/24 maxlen: 24 221.120.96.0/21 maxlen: 24 2405:9e80::/32 maxlen: 32 2405:9e80::/36 maxlen: 36 2405:9e80:1000::/36 maxlen: 36 2405:9e80:2000::/36 maxlen: 36 2405:9e80:3000::/36 maxlen: 36 2405:9e80:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91829E3, serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Validity Not Before: Feb 26 19:15:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a472f7-9f99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:06:26:bc:62:7c:53:c3:83:c5:e5:33:b3: 7a:cb:ee:81:3c:39:0a:bb:85:39:66:4a:59:e2:8a: 15:d6:f2:23:c8:74:52:2e:f3:a6:02:8d:61:87:0a: ce:7d:34:5b:10:8b:30:f4:1d:a0:20:62:2f:d4:6f: 60:44:51:ca:00:97:07:85:a4:94:fe:4c:75:a3:a9: c9:f0:74:3a:0d:30:87:c3:d0:34:ec:cd:bb:31:a1: 8c:42:76:ba:93:9d:c1:60:a1:bb:3d:eb:c6:78:17: db:65:d6:09:be:01:9d:09:b2:af:0d:14:87:ae:81: d8:91:f3:aa:47:b9:38:9d:be:e4:d9:94:2c:8b:d8: 6b:07:9b:a0:fd:be:f4:2c:44:f9:68:40:98:62:3c: b9:29:7b:78:1a:6f:91:be:41:8e:c3:29:38:e2:c2: 24:5d:46:07:e6:4e:32:9e:de:5a:80:b8:78:9f:a8: 31:71:29:53:bb:a0:95:27:4f:1b:e8:66:6e:f4:12: 04:43:35:43:1d:0f:0d:21:58:05:42:dc:b7:e7:c7: 09:63:d7:e2:c9:4e:07:bc:c6:54:fc:6e:bb:f4:cb: 17:f3:0f:36:ac:02:5e:82:3c:02:03:8d:f1:e9:6f: 86:48:bd:9d:01:85:21:fb:3d:16:ad:02:eb:58:b7: ef:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:77:F1:A3:F5:CE:5D:8F:25:C7:AB:E1:2B:F0:30:56:B4:F1:BF:52 X509v3 Authority Key Identifier: keyid:23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/7B96F1340C6011F088E6FD2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.244.0/22 103.208.180.0/22 103.240.248.0/22 137.59.180.0/22 221.120.96.0/21 IPv6: 2405:9e80::/32 Signature Algorithm: sha256WithRSAEncryption 27:50:5f:be:52:d9:91:9a:00:65:d7:00:81:0b:38:93:42:11: b8:6a:ed:83:0b:a0:4d:b8:eb:d0:6d:eb:8a:78:76:91:d1:cb: 14:25:05:1e:39:d5:f7:d9:25:6a:9c:dc:18:51:a0:7f:d7:be: a8:94:b5:b4:ea:94:b4:35:e7:a5:d4:87:59:c0:ea:30:c8:22: 08:3d:90:a6:eb:7c:87:4c:4a:b9:a3:58:56:2c:51:4f:a4:e0: 98:95:39:6a:7a:77:26:d5:ce:89:76:63:a7:e7:0d:ca:7f:50: 17:55:d1:d4:3f:b1:a8:3b:94:7b:2a:1d:ca:51:0c:ca:a8:49: c8:0b:1d:ec:75:c0:68:db:51:0a:b0:63:ac:35:22:be:d7:e8: 38:98:ea:94:5d:89:35:e0:b2:26:5c:49:c0:3d:a0:9d:03:33: 07:29:a9:60:d4:64:88:b3:ce:4c:ef:5c:24:31:94:24:69:ce: 5f:ac:ab:24:17:d5:ad:2b:e3:dd:85:7c:ab:00:5b:c2:ae:fe: 02:87:38:70:54:18:f9:98:52:ef:65:94:52:7e:bb:79:29:25: 1f:f2:ca:62:be:69:d7:50:85:8b:12:21:cf:f4:11:2e:e4:d5: 92:67:eb:b9:09:9c:56:cd:69:bc:ad:3f:3f:bc:25:82:6c:4f: 9d:42:d7:7a -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5RTMxMTAvBgNVBAUTKDIzRDIwREEyMDlDODk1QzMwMEVFNkI2NTlCNkIxODI5 OTI1RkJENEYwHhcNMjYwMjI2MTkxNTM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzJmNy05Zjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUoGJrxifFPDg8XlM7N6y+6BPDkKu4U5ZkpZ4ooV1vIjyHRSLvOmAo1hhwrO fTRbEIsw9B2gIGIv1G9gRFHKAJcHhaSU/kx1o6nJ8HQ6DTCHw9A07M27MaGMQna6 k53BYKG7PevGeBfbZdYJvgGdCbKvDRSHroHYkfOqR7k4nb7k2ZQsi9hrB5ug/b70 LET5aECYYjy5KXt4Gm+RvkGOwyk44sIkXUYH5k4ynt5agLh4n6gxcSlTu6CVJ08b 6GZu9BIEQzVDHQ8NIVgFQty358cJY9fiyU4HvMZU/G679MsX8w82rAJegjwCA43x 6W+GSL2dAYUh+z0WrQLrWLfvzQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFGx38aP1 zl2PJcer4SvwMFa08b9SMB8GA1UdIwQYMBaAFCPSDaIJyJXDAO5rZZtrGCmSX71P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjlFMy9DNDVGNjBEQTE0 MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxjTUE3bXRsbTJzWUtaSmZ2 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5SU5vZ25JbGNNQTdtdGxtMnNZS1pKZnZVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI5RTMvQzQ1RjYwREExNDM3MTFFQUFDRjlGQTMzQzRGOUFFMDIvN0I5NkYxMzQw QzYwMTFGMDg4RTZGRDJGQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCK/X0AwQCZ9C0AwQCZ/D4AwQCiTu0AwQD3XhgMA0EAgACMAcDBQAk BZ6AMA0GCSqGSIb3DQEBCwUAA4IBAQAnUF++UtmRmgBl1wCBCziTQhG4au2DC6BN uOvQbeuKeHaR0csUJQUeOdX32SVqnNwYUaB/176olLW06pS0Neel1IdZwOowyCII PZCm63yHTEq5o1hWLFFPpOCYlTlqencm1c6JdmOn5w3Kf1AXVdHUP7GoO5R7Kh3K UQzKqEnICx3sdcBo21EKsGOsNSK+1+g4mOqUXYk14LImXEnAPaCdAzMHKalg1GSI s85M71wkMZQkac5frKskF9WtK+PdhXyrAFvCrv4ChzhwVBj5mFLvZZRSfrt5KSUf 8spivmnXUIWLEiHP9BEu5NWSZ+u5CZxWzWm8rT8/vCWCbE+dQtd6 -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:51 2026 by rpki-client