$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/7BBC1DD2040611EF909F6C3EC4F9AE02.roa File: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (raw, json) Hash identifier: +TwMS23E8Rm70aif9FJK4tvKCbQcLkwBDHY6azQ9woU= Subject key identifier: 1E:2D:89:44:69:8D:38:5E:A6:34:02:41:15:A4:8A:AD:4B:86:15:BD Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 0920 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/7BBC1DD2040611EF909F6C3EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:00:35 +0000 ROA not before: Thu 08 May 2025 19:03:39 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137514 IP address blocks: 103.111.90.0/23 maxlen: 23 103.111.90.0/24 maxlen: 24 103.111.91.0/24 maxlen: 24 2402:99c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2336 (0x920) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: May 8 19:03:39 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a589f3-06aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:0a:f6:d4:37:86:21:41:4a:f4:6d:a7:f4:44: 1d:3f:71:6d:42:a2:4e:02:48:23:55:6b:a0:b9:02: 3b:49:06:3e:e1:bb:d1:a0:da:b3:f5:04:ab:d2:58: 64:4b:ba:2c:6a:81:0e:e3:f9:94:42:a0:15:c5:22: 1a:b7:9e:b3:51:9e:52:63:53:2a:38:d0:7a:36:46: 69:40:ef:7a:be:ed:15:1c:86:64:6c:75:a2:28:a0: dd:28:5a:da:e3:62:79:31:ad:7d:ca:8d:56:ec:82: cc:97:98:c9:42:d3:ea:2a:09:e4:fc:d9:28:85:1d: 1b:04:d5:9c:87:ff:24:d1:9f:e3:b4:48:76:d7:8e: 5c:43:b3:76:8f:c9:c4:49:a4:c9:56:18:d5:84:99: 7d:fe:85:6b:fc:be:ea:d4:e1:7c:36:f3:a4:ec:24: be:5b:f3:19:09:8b:4f:ed:92:3d:8d:b1:5c:23:95: b3:55:9d:a6:e9:e3:cf:b9:d2:7c:c5:f0:9b:5b:0b: c4:58:19:2a:7e:e0:b0:5f:ac:b5:88:34:4e:46:3f: 30:d2:f9:cd:67:d6:7a:46:1d:e9:63:45:3a:74:a0: ad:63:85:34:3f:a2:ba:be:b4:23:25:ee:81:ef:04: 6c:f0:80:46:f1:34:f6:d7:fe:cd:6f:e4:b4:89:97: 17:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2D:89:44:69:8D:38:5E:A6:34:02:41:15:A4:8A:AD:4B:86:15:BD X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/7BBC1DD2040611EF909F6C3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.111.90.0/23 IPv6: 2402:99c0::/32 Signature Algorithm: sha256WithRSAEncryption 1f:7d:b9:f5:70:45:e6:0e:83:8d:70:b3:ee:95:10:bc:52:0c: 1b:c6:58:93:00:a8:13:7a:2c:7a:2f:82:85:64:ac:4c:36:9c: a5:ed:ab:13:59:80:31:70:75:df:1e:2d:3d:19:ba:dc:68:2e: 8d:8e:32:37:a1:8a:fd:dd:80:89:9a:1e:8c:52:87:11:8f:34: 7e:e3:95:bf:83:25:a6:70:49:a8:0f:6c:cb:e5:08:82:28:de: 09:a9:46:1c:7a:02:95:a8:f6:72:6e:b8:b6:d8:a4:a8:43:34: 5f:ad:57:4c:23:77:75:86:9b:0a:e0:6a:5e:8c:62:60:38:b0: 5a:60:b8:86:f0:8a:7b:e9:02:28:4d:66:14:19:4c:21:34:17: 80:2e:32:58:b5:49:af:de:54:52:98:0b:25:81:da:01:2d:a7: 47:4a:16:93:89:ea:97:ed:59:da:02:0f:09:5c:00:bd:47:a8: ab:5f:5c:3e:10:a1:e1:fa:a8:2b:99:61:7e:7b:a6:b0:c7:42: 46:1f:ad:77:a1:92:70:f7:d4:23:56:85:d5:20:3b:50:99:03: af:3a:e2:be:1b:9a:86:57:5a:98:fb:d3:ee:bc:45:f8:ff:35: 1c:5c:03:97:ba:88:d8:61:b0:90:47:cc:f8:73:9a:68:59:37: af:41:c3:72 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUwNTA4MTkwMzM5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODlmMy0wNmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjAr21DeGIUFK9G2n9EQdP3FtQqJOAkgjVWuguQI7SQY+4bvRoNqz9QSr0lhk S7osaoEO4/mUQqAVxSIat56zUZ5SY1MqONB6NkZpQO96vu0VHIZkbHWiKKDdKFra 42J5Ma19yo1W7ILMl5jJQtPqKgnk/NkohR0bBNWch/8k0Z/jtEh2145cQ7N2j8nE SaTJVhjVhJl9/oVr/L7q1OF8NvOk7CS+W/MZCYtP7ZI9jbFcI5WzVZ2m6ePPudJ8 xfCbWwvEWBkqfuCwX6y1iDRORj8w0vnNZ9Z6Rh3pY0U6dKCtY4U0P6K6vrQjJe6B 7wRs8IBG8TT21/7Nb+S0iZcXywIDAQABo4ICbzCCAmswHQYDVR0OBBYEFB4tiURp jThepjQCQRWkiq1LhhW9MB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZEMDQvMEFCQkY0NzIwREYyMTFFQThFRTg5MTNCQzRGOUFFMDIvN0JCQzFERDIw NDA2MTFFRjkwOUY2QzNFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ29aMA0EAgACMAcDBQAkApnAMA0GCSqGSIb3DQEBCwUAA4IBAQAf fbn1cEXmDoONcLPulRC8UgwbxliTAKgTeix6L4KFZKxMNpyl7asTWYAxcHXfHi09 GbrcaC6NjjI3oYr93YCJmh6MUocRjzR+45W/gyWmcEmoD2zL5QiCKN4JqUYcegKV qPZybri22KSoQzRfrVdMI3d1hpsK4GpejGJgOLBaYLiG8Ip76QIoTWYUGUwhNBeA LjJYtUmv3lRSmAslgdoBLadHShaTieqX7VnaAg8JXAC9R6irX1w+EKHh+qgrmWF+ e6awx0JGH613oZJw99QjVoXVIDtQmQOvOuK+G5qGV1qY+9PuvEX4/zUcXAOXuojY YbCQR8z4c5poWTevQcNy -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:23 2026 by rpki-client