$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/47E37F2AAB1A11F096B0EC5FC4F9AE02.roa File: 47E37F2AAB1A11F096B0EC5FC4F9AE02.roa (raw, json) Hash identifier: Ps4zTjFyLHJz+OVkfNbIpcjmNwEHH47lDT8mzreZ++U= Subject key identifier: 86:1C:B6:D5:E8:2A:43:E0:4D:1C:44:99:3A:BD:31:F1:B6:E5:07:F8 Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: 0175 Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/47E37F2AAB1A11F096B0EC5FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:09:08 +0000 ROA not before: Fri 17 Oct 2025 05:29:42 +0000 ROA not after: Thu 30 Dec 2027 00:00:00 +0000 asID: 132384 IP address blocks: 103.76.232.0/22 maxlen: 24 116.206.144.0/23 maxlen: 24 116.206.146.0/23 maxlen: 24 2407:7a80::/42 maxlen: 42 2407:7a80:10::/45 maxlen: 45 2407:7a80:10::/46 maxlen: 46 2407:7a80:10::/47 maxlen: 47 2407:7a80:12::/48 maxlen: 48 2407:7a80:13::/48 maxlen: 48 2407:7a80:14::/48 maxlen: 48 2407:7a80:15::/48 maxlen: 48 2407:7a80:20::/44 maxlen: 44 2407:7a80:20::/45 maxlen: 45 2407:7a80:20::/48 maxlen: 48 2407:7a80:21::/48 maxlen: 48 2407:7a80:22::/48 maxlen: 48 2407:7a80:23::/48 maxlen: 48 2407:7a80:24::/46 maxlen: 46 2407:7a80:28::/48 maxlen: 48 2407:7a80:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Oct 17 05:29:42 2025 GMT Not After : Dec 30 00:00:00 2027 GMT Subject: CN=69a59a04-a0ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e5:c1:90:b2:db:8f:95:f7:19:1d:ae:5e:67: e7:0d:f1:97:3b:f3:96:e9:c7:f4:e2:19:0b:5f:a9: 6e:f2:70:c8:5f:16:cf:c4:46:89:69:c2:26:86:25: bd:68:a9:70:90:8e:a7:7e:62:68:f6:d5:3c:09:77: 4d:8d:5f:c6:e4:4d:07:97:17:a0:58:d0:63:e6:d1: e1:3e:4c:ef:3a:bf:28:c2:a0:89:fa:b0:c3:68:9c: 20:80:f4:a1:f5:26:ec:01:4a:8f:e2:50:e7:72:6d: 72:05:83:10:d3:89:a2:0b:02:8e:62:b7:f3:98:bb: 9b:d8:1b:81:34:c6:1f:a3:08:87:4f:39:4f:ee:40: 69:ba:2f:35:64:29:5e:42:13:23:87:7e:eb:4e:c2: 56:4b:e8:88:8e:a1:88:05:6f:f5:32:a0:b7:ac:c3: d0:9e:8c:34:47:37:4c:20:a1:94:76:f5:03:8a:4e: 50:aa:67:1c:bd:2c:d6:f2:fe:c8:1d:c3:68:68:df: 81:46:50:b6:d6:48:69:f7:ad:e2:77:12:b3:93:73: 6a:34:30:84:32:28:83:68:22:60:4b:db:a8:f4:2c: f5:9e:a0:1a:6f:1d:6d:99:28:a6:90:1c:a4:d7:e1: 39:a0:aa:4d:23:d8:05:03:69:b0:a1:83:ac:80:9d: 71:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:1C:B6:D5:E8:2A:43:E0:4D:1C:44:99:3A:BD:31:F1:B6:E5:07:F8 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/47E37F2AAB1A11F096B0EC5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.76.232.0/22 116.206.144.0/22 IPv6: 2407:7a80::/42 Signature Algorithm: sha256WithRSAEncryption 1e:ba:64:86:48:58:6d:96:bf:25:b7:dd:62:cf:b2:50:01:22: ee:65:c5:7d:a4:0d:84:0a:3d:bc:b2:dd:a6:aa:84:01:e7:62: 3d:0e:1b:95:5e:0e:2d:94:5d:4b:ed:c6:78:0e:b9:b1:fa:c6: 58:30:1f:dd:e7:f1:9e:4d:25:a0:ae:80:d9:1c:c3:14:aa:68: 20:17:f0:7f:1b:31:e4:5c:3f:4e:98:64:77:f3:82:f4:f1:97: 2c:03:0a:30:c6:9e:ac:38:72:8b:57:1f:80:2e:eb:3e:a5:4e: 1b:90:5e:55:36:d1:1c:45:bd:3c:ac:d2:a7:39:e0:bd:ad:49: b8:14:3a:0f:eb:66:fe:5c:12:4b:88:1e:13:a2:f2:46:8f:ac: 21:d9:76:25:97:92:99:99:17:fd:38:f2:91:36:3a:fc:21:01: 90:ea:74:61:aa:fe:96:e8:08:c2:c6:09:49:7b:a2:d9:1e:ce: 1c:3c:17:b6:1a:f9:70:16:58:28:f1:e5:ae:43:9a:3c:b1:ef: b1:14:33:cf:fa:46:51:c4:fe:a1:ac:1f:08:31:df:63:62:8d: e5:36:af:82:93:19:d7:97:c1:08:33:d8:40:15:cc:dd:f6:dd: a0:d3:e5:78:3d:92:01:8b:0b:0f:6c:ed:07:ae:21:38:cd:08: b4:2a:23:25 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUxMDE3MDUyOTQyWhcNMjcxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWEwNC1hMGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7eXBkLLbj5X3GR2uXmfnDfGXO/OW6cf04hkLX6lu8nDIXxbPxEaJacImhiW9 aKlwkI6nfmJo9tU8CXdNjV/G5E0HlxegWNBj5tHhPkzvOr8owqCJ+rDDaJwggPSh 9SbsAUqP4lDncm1yBYMQ04miCwKOYrfzmLub2BuBNMYfowiHTzlP7kBpui81ZCle QhMjh37rTsJWS+iIjqGIBW/1MqC3rMPQnow0RzdMIKGUdvUDik5QqmccvSzW8v7I HcNoaN+BRlC21khp963idxKzk3NqNDCEMiiDaCJgS9uo9Cz1nqAabx1tmSimkByk 1+E5oKpNI9gFA2mwoYOsgJ1xwwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFIYcttXo KkPgTRxEmTq9MfG25Qf4MB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURENjQvNTg0MEEwN0MxMzRCMTFFRjk0NDI0RDNEQzRGOUFFMDIvNDdFMzdGMkFB QjFBMTFGMDk2QjBFQzVGQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCZ0zoAwQCdM6QMA8EAgACMAkDBwYkB3qAAAAwDQYJKoZIhvcNAQEL BQADggEBAB66ZIZIWG2WvyW33WLPslABIu5lxX2kDYQKPbyy3aaqhAHnYj0OG5Ve Di2UXUvtxngOubH6xlgwH93n8Z5NJaCugNkcwxSqaCAX8H8bMeRcP06YZHfzgvTx lywDCjDGnqw4cotXH4Au6z6lThuQXlU20RxFvTys0qc54L2tSbgUOg/rZv5cEkuI HhOi8kaPrCHZdiWXkpmZF/048pE2OvwhAZDqdGGq/pboCMLGCUl7otkezhw8F7Ya +XAWWCjx5a5Dmjyx77EUM8/6RlHE/qGsHwgx32NijeU2r4KTGdeXwQgz2EAVzN32 3aDT5Xg9kgGLCw9s7QeuITjNCLQqIyU= -----END CERTIFICATE-----Generated at Thu Mar 26 10:00:03 2026 by rpki-client