$ rpki-client -vvf rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/EC7403A0B20711EFAADEFA2CC4F9AE02.roa File: EC7403A0B20711EFAADEFA2CC4F9AE02.roa (raw, json) Hash identifier: Azg5yZbf5Y5bjwiFAjkue69nJWXBVYpeDFXI1xdKjfg= Subject key identifier: 6C:2C:B7:8A:B0:7D:18:1E:80:3C:98:7B:DB:96:8A:D2:0A:58:E9:65 Certificate issuer: /CN=A9190FEA/serialNumber=627FA9960EA283AA239213CACD37504D2460A104 Certificate serial: 0CDD Authority key identifier: 62:7F:A9:96:0E:A2:83:AA:23:92:13:CA:CD:37:50:4D:24:60:A1:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/EC7403A0B20711EFAADEFA2CC4F9AE02.roa Signing time: Thu 12 Mar 2026 18:24:37 +0000 ROA not before: Thu 12 Mar 2026 18:24:37 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137432 IP address blocks: 103.108.90.0/23 maxlen: 24 2402:68c0::/32 maxlen: 32 2402:68c0::/36 maxlen: 36 2402:68c0:1000::/36 maxlen: 36 2402:68c0:2000::/36 maxlen: 36 2402:68c0:3000::/36 maxlen: 36 2402:68c0:4000::/36 maxlen: 36 2402:68c0:5000::/36 maxlen: 36 2402:68c0:6000::/36 maxlen: 36 2402:68c0:7000::/36 maxlen: 36 2402:68c0:8000::/36 maxlen: 36 2402:68c0:9000::/36 maxlen: 36 2402:68c0:a000::/36 maxlen: 36 2402:68c0:a000::/48 maxlen: 48 2402:68c0:a001::/48 maxlen: 48 2402:68c0:b000::/36 maxlen: 36 2402:68c0:c000::/36 maxlen: 36 2402:68c0:d000::/36 maxlen: 36 2402:68c0:e000::/36 maxlen: 36 2402:68c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.crl rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190FEA, serialNumber=627FA9960EA283AA239213CACD37504D2460A104 Validity Not Before: Mar 12 18:24:37 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b304e5-8a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0d:6d:91:e6:8c:11:10:a7:c9:4d:87:67:c6: a4:7c:8e:19:1d:2f:68:b2:0f:9f:1b:d2:14:bd:f2: d5:99:28:8c:2f:40:0e:e3:60:18:89:e8:95:19:8e: 83:d9:ec:64:57:2b:10:6b:43:b5:fd:ae:cc:d3:90: db:5b:f1:9c:da:8d:b4:33:9f:45:18:a3:a3:e9:c4: e3:40:51:de:49:0d:d4:7c:0b:c2:4c:b6:48:ab:27: e8:52:5f:46:ea:d5:53:29:e8:b4:d1:4a:2f:0a:8a: 38:c0:41:f4:fc:2e:e4:12:ba:e5:f7:d6:ab:b5:aa: a3:05:ca:0b:58:db:6f:c7:a3:0a:93:f6:95:51:a6: 48:b8:f7:d8:2d:b9:33:7d:33:9f:08:0f:96:2d:a3: 01:49:f0:98:67:46:c7:54:e2:c5:23:50:6f:ba:21: 46:21:2d:7e:e6:ca:93:53:82:7a:ea:0f:64:58:ef: 30:b2:03:3b:dd:e9:e6:ba:3e:3a:87:df:52:63:39: 7f:c5:f8:3d:56:8b:e3:cb:12:da:1d:98:e5:1c:0d: e3:e6:b5:f7:1b:cf:89:dc:19:6a:20:21:7c:2a:a8: 6b:42:00:b3:b1:55:42:2a:be:d6:41:75:9e:2b:c5: a8:48:9e:54:ad:c9:86:72:f4:f3:d7:72:7a:20:22: 46:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2C:B7:8A:B0:7D:18:1E:80:3C:98:7B:DB:96:8A:D2:0A:58:E9:65 X509v3 Authority Key Identifier: keyid:62:7F:A9:96:0E:A2:83:AA:23:92:13:CA:CD:37:50:4D:24:60:A1:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/EC7403A0B20711EFAADEFA2CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.108.90.0/23 IPv6: 2402:68c0::/32 Signature Algorithm: sha256WithRSAEncryption 75:fa:e2:10:8d:f0:c1:64:21:1d:b2:02:ef:0e:67:1f:26:63: bf:63:1b:d0:b8:e6:08:44:a2:bb:1d:92:6a:f9:e9:b6:a0:32: af:46:35:f7:1e:57:f1:31:85:b3:c8:ba:bc:7c:6d:ab:91:a0: 47:4d:9b:84:fb:ef:1b:35:f6:76:08:40:c6:4c:5a:c5:a1:da: 93:32:b4:58:83:fc:a0:87:b5:51:44:91:af:85:0f:31:21:ce: f5:b0:d2:10:27:f4:e7:b4:ef:a1:73:08:b9:de:07:f9:6e:ab: 5a:b9:ba:42:fd:33:9f:bd:66:e1:f3:07:f0:0c:27:e2:b6:16: 9c:48:7a:b6:e1:2d:cf:90:ac:d3:a2:64:ec:d2:3e:ae:50:44: 25:91:29:05:6e:2c:25:96:18:b9:bc:00:ac:03:8b:ca:a2:fd: ed:db:e6:42:4d:f1:e4:91:1c:95:cb:06:6e:a4:6a:24:72:d5: 2e:44:63:7c:0a:3f:3d:ff:fa:66:6e:fe:f3:70:ae:d0:0f:3c: 5e:f9:95:c5:c5:3a:a4:ba:d0:a5:74:e6:fd:e4:f3:c0:c2:6b: a4:db:a5:f7:be:a5:d1:42:c4:67:e6:47:57:52:b4:2e:0b:72: 3f:e6:cb:82:5d:73:d3:c7:61:f5:ef:bd:12:e6:01:9d:79:3f: e0:56:ea:55 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBGRUExMTAvBgNVBAUTKDYyN0ZBOTk2MEVBMjgzQUEyMzkyMTNDQUNEMzc1MDRE MjQ2MEExMDQwHhcNMjYwMzEyMTgyNDM3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzMDRlNS04YThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw1tkeaMERCnyU2HZ8akfI4ZHS9osg+fG9IUvfLVmSiML0AO42AYieiVGY6D 2exkVysQa0O1/a7M05DbW/Gc2o20M59FGKOj6cTjQFHeSQ3UfAvCTLZIqyfoUl9G 6tVTKei00UovCoo4wEH0/C7kErrl99artaqjBcoLWNtvx6MKk/aVUaZIuPfYLbkz fTOfCA+WLaMBSfCYZ0bHVOLFI1BvuiFGIS1+5sqTU4J66g9kWO8wsgM73enmuj46 h99SYzl/xfg9VovjyxLaHZjlHA3j5rX3G8+J3BlqICF8KqhrQgCzsVVCKr7WQXWe K8WoSJ5UrcmGcvTz13J6ICJGQQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGwst4qw fRgegDyYe9uWitIKWOllMB8GA1UdIwQYMBaAFGJ/qZYOooOqI5ITys03UE0kYKEE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEZFQS8yNDBEQUNFQTBC NzIxMUVBQUNGQjY5MTZDNEY5QUUwMi9Zbi1wbGc2aWc2b2praFBLelRkUVRTUmdv UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1luLXBsZzZpZzZvamtoUEt6VGRRVFNSZ29RUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBGRUEvMjQwREFDRUEwQjcyMTFFQUFDRkI2OTE2QzRGOUFFMDIvRUM3NDAzQTBC MjA3MTFFRkFBREVGQTJDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ2xaMA0EAgACMAcDBQAkAmjAMA0GCSqGSIb3DQEBCwUAA4IBAQB1 +uIQjfDBZCEdsgLvDmcfJmO/YxvQuOYIRKK7HZJq+em2oDKvRjX3HlfxMYWzyLq8 fG2rkaBHTZuE++8bNfZ2CEDGTFrFodqTMrRYg/ygh7VRRJGvhQ8xIc71sNIQJ/Tn tO+hcwi53gf5bqtaubpC/TOfvWbh8wfwDCfithacSHq24S3PkKzTomTs0j6uUEQl kSkFbiwllhi5vACsA4vKov3t2+ZCTfHkkRyVywZupGokctUuRGN8Cj89//pmbv7z cK7QDzxe+ZXFxTqkutCldOb95PPAwmuk26X3vqXRQsRn5kdXUrQuC3I/5suCXXPT x2H1770S5gGdeT/gVupV -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:21 2026 by rpki-client