$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/1E7B7BB4996C11EDA107E666C4F9AE02.roa File: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (raw, json) Hash identifier: 0zxYrdPrMBfjgPj6RJV7ZvcXItqtU0NYSlHoSwv7daw= Subject key identifier: 60:44:58:BD:D7:B2:0C:27:B6:33:E3:2A:6B:F6:70:AB:34:00:D4:B6 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0252 Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/1E7B7BB4996C11EDA107E666C4F9AE02.roa Signing time: Tue 17 Mar 2026 01:36:00 +0000 ROA not before: Tue 17 Mar 2026 01:36:00 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 133112 IP address blocks: 103.72.136.0/24 maxlen: 24 103.72.137.0/24 maxlen: 24 2001:df1:d8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:42:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Mar 17 01:36:00 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b8b000-7b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d6:f0:38:45:65:95:6e:d0:d1:39:9f:0c:9b: 92:11:49:9c:28:f7:10:c8:39:73:57:84:13:bc:c0: e5:cf:9b:d9:54:96:a2:5b:80:38:79:9e:37:83:48: 25:07:48:09:df:23:28:39:98:2c:9d:41:13:dc:c4: 99:f7:6b:e0:c9:ce:b4:c9:9b:11:ba:34:a1:f8:dd: d4:ca:17:3b:e8:5a:a7:11:a4:13:9a:76:3a:8c:85: 01:e5:84:74:25:ef:73:e0:eb:46:f9:38:59:54:08: cc:71:1a:b9:43:1f:96:59:da:a6:90:cb:09:d8:57: 47:a2:e3:b1:dc:53:a1:3a:0c:8b:c0:ee:75:68:02: c0:d7:f7:f3:ed:7f:bc:8b:24:33:4e:64:93:66:bb: ca:e3:43:cd:45:37:8d:3d:86:e2:58:94:80:2c:15: 0a:5d:c7:b4:be:79:9a:61:10:4a:a1:5d:70:3c:8c: 56:af:22:63:aa:99:37:c7:2c:f5:80:85:d9:59:15: cd:01:77:36:b0:f4:3e:d2:20:a2:26:1f:81:65:de: bd:d3:7d:10:34:7b:bc:35:ec:4f:94:ed:12:98:16: 08:a1:82:04:e3:43:b5:8d:5d:bb:c0:42:6a:e5:70: 6f:1b:fa:60:14:53:d1:b4:47:e8:51:e0:7b:ef:d9: 15:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:44:58:BD:D7:B2:0C:27:B6:33:E3:2A:6B:F6:70:AB:34:00:D4:B6 X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/1E7B7BB4996C11EDA107E666C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.136.0/23 IPv6: 2001:df1:d8c0::/48 Signature Algorithm: sha256WithRSAEncryption 9b:90:40:6a:9b:4a:d0:d7:e4:32:35:b3:f0:4f:54:d4:45:b5: 9a:9e:19:af:22:4f:cf:ed:1c:8d:f8:a2:ac:0e:21:19:3c:4e: 53:a5:ac:63:db:27:88:98:0d:95:f1:55:6c:3e:f4:cb:b3:c3: ac:3c:c0:5a:c9:75:9e:b1:a6:6f:b0:e4:1b:c7:71:80:fa:4f: 04:13:b2:ed:b6:6c:0e:ca:97:c6:18:40:9c:0b:39:c4:cf:ba: cf:e9:7c:6e:69:21:8a:4c:fd:df:24:c1:df:f8:d1:9c:d7:92: a7:e1:b8:f1:55:ee:3e:ff:71:e9:60:5f:19:c6:90:a3:35:c5: e9:62:f2:89:92:46:2e:58:08:42:48:3b:c2:6b:51:89:d3:fe: 21:60:5e:b1:4b:fc:95:41:a8:24:d7:a6:f6:03:ad:4f:29:38: 26:51:9b:ba:6f:f2:22:7b:f4:4c:c1:42:9a:61:8a:a4:45:86: a8:16:e4:5c:ab:a7:ca:d3:0f:8e:92:72:1c:b3:0f:52:c7:0d: 81:7b:f5:30:a3:f4:f1:c8:48:02:48:b4:fe:b3:2d:76:64:fc: e0:43:3d:f2:1f:09:29:11:23:60:2f:78:0d:82:61:9c:31:ab: bb:49:0a:4d:6e:76:a9:b7:47:dd:b6:6b:0a:5b:56:14:5f:20: fc:83:5a:3c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjYwMzE3MDEzNjAwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4YjAwMC03YjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29bwOEVllW7Q0TmfDJuSEUmcKPcQyDlzV4QTvMDlz5vZVJaiW4A4eZ43g0gl B0gJ3yMoOZgsnUET3MSZ92vgyc60yZsRujSh+N3Uyhc76FqnEaQTmnY6jIUB5YR0 Je9z4OtG+ThZVAjMcRq5Qx+WWdqmkMsJ2FdHouOx3FOhOgyLwO51aALA1/fz7X+8 iyQzTmSTZrvK40PNRTeNPYbiWJSALBUKXce0vnmaYRBKoV1wPIxWryJjqpk3xyz1 gIXZWRXNAXc2sPQ+0iCiJh+BZd69030QNHu8NexPlO0SmBYIoYIE40O1jV27wEJq 5XBvG/pgFFPRtEfoUeB779kVowIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGBEWL3X sgwntjPjKmv2cKs0ANS2MB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIzRTMvQTk0NjI0QjQ5OTY4MTFFREIxNjJGODYxQzRGOUFFMDIvMUU3QjdCQjQ5 OTZDMTFFREExMDdFNjY2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ0iIMA8EAgACMAkDBwAgAQ3x2MAwDQYJKoZIhvcNAQELBQADggEB AJuQQGqbStDX5DI1s/BPVNRFtZqeGa8iT8/tHI34oqwOIRk8TlOlrGPbJ4iYDZXx VWw+9Muzw6w8wFrJdZ6xpm+w5BvHcYD6TwQTsu22bA7Kl8YYQJwLOcTPus/pfG5p IYpM/d8kwd/40ZzXkqfhuPFV7j7/celgXxnGkKM1xeli8omSRi5YCEJIO8JrUYnT /iFgXrFL/JVBqCTXpvYDrU8pOCZRm7pv8iJ79EzBQpphiqRFhqgW5Fyrp8rTD46S chyzD1LHDYF79TCj9PHISAJItP6zLXZk/OBDPfIfCSkRI2AveA2CYZwxq7tJCk1u dqm3R922awpbVhRfIPyDWjw= -----END CERTIFICATE-----Generated at Thu Mar 26 22:31:51 2026 by rpki-client