$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/75426BC6A8C511EC8F560C42C4F9AE02.roa File: 75426BC6A8C511EC8F560C42C4F9AE02.roa (raw, json) Hash identifier: 7xZPQJy4FlDqQRK4ZNxBOqn11xvYRCTnG5Hl+SBa0kA= Subject key identifier: 90:8C:52:FA:91:84:E6:97:61:A4:A8:E8:64:79:26:46:4E:C4:93:B4 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 052E Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/75426BC6A8C511EC8F560C42C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:05:02 +0000 ROA not before: Sat 27 Sep 2025 00:27:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147054 IP address blocks: 103.173.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF, serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Sep 27 00:27:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a51a7e-8921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d9:0f:fe:09:0f:bd:4f:57:06:1f:2f:0f:fc: 91:cc:c3:1d:a7:18:e5:0c:ba:96:fc:6f:43:e0:b8: 99:f3:c9:e2:ee:f3:ea:30:37:61:12:99:7f:ea:4c: 1c:3c:9b:e6:b9:97:ac:fb:0d:52:75:ef:60:ff:43: 13:8d:a0:24:73:2d:3f:66:4d:38:48:8f:dc:f1:10: eb:4f:0c:74:e9:95:07:e4:39:53:ee:1f:09:35:80: 54:b6:55:87:1b:32:69:3d:f9:1d:b3:bb:ca:bb:ed: cc:01:79:3c:c7:49:ec:45:e7:10:4d:aa:80:c4:7c: ec:35:03:f9:ff:35:e5:94:1d:e0:5a:37:88:b0:f3: 34:14:0b:58:22:a1:8f:97:39:0a:d3:65:87:d0:d2: 22:76:d6:e0:34:da:57:ea:d3:f6:b1:b5:e2:d2:98: e9:a0:fb:82:70:f7:b8:4d:fc:98:08:97:57:fe:ed: 45:c3:f4:b9:36:ca:7c:ad:9f:20:1f:c5:a9:c0:cf: b0:d4:cb:68:37:ad:e8:5d:5f:a2:dc:a7:25:80:92: e9:e3:09:43:24:e2:a0:92:57:53:f4:a6:d1:31:06: 89:f3:74:c2:10:54:f6:28:99:a8:b4:bd:e5:7d:2e: ed:14:da:8d:de:53:32:45:dc:09:14:7b:91:1a:2f: 72:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:8C:52:FA:91:84:E6:97:61:A4:A8:E8:64:79:26:46:4E:C4:93:B4 X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/75426BC6A8C511EC8F560C42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.176.0/24 Signature Algorithm: sha256WithRSAEncryption b5:7a:c0:1c:a3:ec:be:99:de:ed:84:3c:45:28:fd:ec:4e:b4: 34:87:a4:bc:bd:9d:c2:24:17:b2:5e:0a:50:c9:6b:61:42:21: 45:38:38:64:4e:a3:0b:82:8a:76:4a:42:98:81:61:67:de:ed: de:ff:14:18:42:93:2d:3e:a6:50:81:55:d9:85:de:14:c3:4e: ac:91:b2:11:b7:e5:6e:67:a0:1f:98:93:1b:03:4a:cd:44:a9: e4:50:fa:49:cb:d0:70:c0:bd:e9:b3:63:ed:69:55:f9:5c:38: 3b:4e:70:8f:81:c0:fc:93:a4:a0:f4:04:6a:d0:3b:d3:03:54: 10:e4:ea:28:f3:2a:1e:7a:02:28:a3:07:7f:4e:f7:0f:13:84: ba:6d:78:48:6b:f5:a3:42:c1:3a:e0:85:6f:b5:35:19:c8:02: 02:1e:12:45:20:37:c2:ca:f6:08:d0:6f:43:11:cf:59:22:2d: a5:bf:e9:73:10:75:9a:b6:b2:bb:38:b7:08:7e:f3:6e:89:1e: 95:c7:59:7e:36:a9:00:c1:47:32:9d:18:7b:b2:07:b7:45:44: 9f:d6:07:d8:51:78:93:f3:7f:13:5e:62:f1:04:95:a0:2b:ba: d7:42:88:37:84:04:b6:e2:8b:56:70:76:b2:f6:49:ea:a5:c7: b9:36:23:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjUwOTI3MDAyNzM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWE3ZS04OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29kP/gkPvU9XBh8vD/yRzMMdpxjlDLqW/G9D4LiZ88ni7vPqMDdhEpl/6kwc PJvmuZes+w1Sde9g/0MTjaAkcy0/Zk04SI/c8RDrTwx06ZUH5DlT7h8JNYBUtlWH GzJpPfkds7vKu+3MAXk8x0nsRecQTaqAxHzsNQP5/zXllB3gWjeIsPM0FAtYIqGP lzkK02WH0NIidtbgNNpX6tP2sbXi0pjpoPuCcPe4TfyYCJdX/u1Fw/S5Nsp8rZ8g H8WpwM+w1MtoN63oXV+i3KclgJLp4wlDJOKgkldT9KbRMQaJ83TCEFT2KJmotL3l fS7tFNqN3lMyRdwJFHuRGi9yAwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJCMUvqR hOaXYaSo6GR5JkZOxJO0MB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNGRkYvODJBRDM3N0E0REFCMTFFQzkyMTRGNTIxQzRGOUFFMDIvNzU0MjZCQzZB OEM1MTFFQzhGNTYwQzQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ62wMA0GCSqGSIb3DQEBCwUAA4IBAQC1esAco+y+md7thDxFKP3s TrQ0h6S8vZ3CJBeyXgpQyWthQiFFODhkTqMLgop2SkKYgWFn3u3e/xQYQpMtPqZQ gVXZhd4Uw06skbIRt+VuZ6AfmJMbA0rNRKnkUPpJy9BwwL3ps2PtaVX5XDg7TnCP gcD8k6Sg9ARq0DvTA1QQ5Ooo8yoeegIoowd/TvcPE4S6bXhIa/WjQsE64IVvtTUZ yAICHhJFIDfCyvYI0G9DEc9ZIi2lv+lzEHWatrK7OLcIfvNuiR6Vx1l+NqkAwUcy nRh7sge3RUSf1gfYUXiT838TXmLxBJWgK7rXQog3hAS24otWcHay9knqpce5NiNS -----END CERTIFICATE-----Generated at Fri Mar 27 06:16:24 2026 by rpki-client