$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/7E854EB2BEEF11F084D11C58C4F9AE02.roa File: 7E854EB2BEEF11F084D11C58C4F9AE02.roa (raw, json) Hash identifier: kASRi8HRtxo9EGCHWYidF8DVFzVcSA6wyPyYECd/naA= Subject key identifier: EE:A4:A4:D1:68:E3:B4:A5:12:95:32:5D:B1:30:07:EB:96:3E:09:09 Certificate issuer: /CN=A91C4F1B/serialNumber=7B99F8D6B9413CE2A296EB1C7D7EFE6D47D0CBA4 Certificate serial: 093B Authority key identifier: 7B:99:F8:D6:B9:41:3C:E2:A2:96:EB:1C:7D:7E:FE:6D:47:D0:CB:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/7E854EB2BEEF11F084D11C58C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:45:41 +0000 ROA not before: Tue 11 Nov 2025 11:13:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55492 IP address blocks: 103.152.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.crl rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2363 (0x93b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F1B, serialNumber=7B99F8D6B9413CE2A296EB1C7D7EFE6D47D0CBA4 Validity Not Before: Nov 11 11:13:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46d35-7aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7b:21:e9:e6:40:5c:4c:8a:94:02:77:dd:9b: b5:62:d7:2b:f0:0e:c8:d9:4f:54:8b:a6:f8:31:e7: 96:9b:40:01:05:bf:f3:13:d9:df:21:11:29:9c:2f: 69:54:4d:54:61:80:5d:9e:5c:fc:8f:c8:f8:d0:28: 47:8b:9f:09:e0:cf:cc:bc:2e:3e:6b:67:63:7f:90: 2b:70:76:49:1c:10:ab:fa:75:fb:f5:ec:93:e2:ee: 88:26:37:a7:a7:48:06:0b:6e:9d:f2:49:2c:61:bd: 81:93:35:d6:10:bc:65:a2:11:ec:94:96:53:49:af: 46:ee:3a:b7:d4:04:69:2a:89:14:17:a8:30:cc:3c: 58:cf:5f:e0:29:3d:d1:80:fe:6b:c8:7f:63:24:f9: 77:44:ee:40:f0:46:e1:8d:0d:46:3e:61:e6:08:fa: 28:77:3c:86:6e:06:a9:52:5f:66:ea:15:8d:47:59: 86:62:d8:bd:35:db:08:2e:7b:0e:93:29:5b:27:4b: 19:0c:21:98:8f:0e:09:15:5e:09:90:14:7e:3f:9d: 7c:fe:77:73:58:de:f7:79:5a:1a:ef:20:57:e2:5d: e7:2a:f3:2c:b4:17:22:cb:47:59:df:ed:a7:d0:fc: dd:c5:cb:30:39:f1:43:27:fa:87:f5:54:8f:d7:21: 3f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A4:A4:D1:68:E3:B4:A5:12:95:32:5D:B1:30:07:EB:96:3E:09:09 X509v3 Authority Key Identifier: keyid:7B:99:F8:D6:B9:41:3C:E2:A2:96:EB:1C:7D:7E:FE:6D:47:D0:CB:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/7E854EB2BEEF11F084D11C58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.219.0/24 Signature Algorithm: sha256WithRSAEncryption c2:72:5e:b5:b6:9a:14:96:14:4e:e5:9a:e3:35:a4:1e:2b:63: d6:48:a9:cc:f6:9d:ca:16:6d:b1:b6:2d:f0:f0:56:a9:69:a3: 87:81:d0:31:83:ee:6d:ec:e9:bb:0d:d8:4e:fa:8a:52:1a:df: 97:12:f3:2a:9f:5b:bf:78:82:fa:40:52:e5:69:c2:66:5b:9b: ef:79:ea:3a:50:6e:85:52:b0:08:9f:12:f6:ed:98:e7:91:4a: 42:2f:d6:92:5f:8b:91:a3:65:2b:4c:1e:84:00:da:36:de:00: bc:16:a3:48:e1:a4:8e:a6:71:80:de:2a:b2:ea:30:1a:50:66: 55:11:bc:eb:49:30:0d:7f:80:12:82:f5:b0:95:be:49:58:03: fc:9a:0c:5c:4c:fc:fb:9f:f0:b2:bb:d8:10:9c:b3:8b:33:6c: 3a:dd:4f:0e:4a:3d:2f:1f:bc:a8:8b:11:44:a1:1d:e1:18:f1: bd:cd:e0:9f:15:ac:0d:86:43:83:46:a3:9b:6e:26:97:1e:b4: bc:83:98:5a:97:df:a6:05:78:89:ea:55:f2:9b:99:b2:ca:61: f6:55:ba:25:d2:a8:e2:c8:bb:ba:01:5b:7b:cc:7d:4f:73:a3: bf:f9:6a:08:78:55:b5:82:5e:14:ab:84:b8:44:f9:98:82:a9: 70:f2:3f:69 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMUIxMTAvBgNVBAUTKDdCOTlGOEQ2Qjk0MTNDRTJBMjk2RUIxQzdEN0VGRTZE NDdEMENCQTQwHhcNMjUxMTExMTExMzQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQzNS03YWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3sh6eZAXEyKlAJ33Zu1Ytcr8A7I2U9Ui6b4MeeWm0ABBb/zE9nfIREpnC9p VE1UYYBdnlz8j8j40ChHi58J4M/MvC4+a2djf5ArcHZJHBCr+nX79eyT4u6IJjen p0gGC26d8kksYb2BkzXWELxlohHslJZTSa9G7jq31ARpKokUF6gwzDxYz1/gKT3R gP5ryH9jJPl3RO5A8EbhjQ1GPmHmCPoodzyGbgapUl9m6hWNR1mGYti9NdsILnsO kylbJ0sZDCGYjw4JFV4JkBR+P518/ndzWN73eVoa7yBX4l3nKvMstBciy0dZ3+2n 0PzdxcswOfFDJ/qH9VSP1yE/RwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO6kpNFo 47SlEpUyXbEwB+uWPgkJMB8GA1UdIwQYMBaAFHuZ+Na5QTziopbrHH1+/m1H0Muk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYxQi8yM0YzMDU1MEJD NEYxMUVBQkE4Qzk2MkZDNEY5QUUwMi9lNW40MXJsQlBPS2lsdXNjZlg3LWJVZlF5 NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U1bjQxcmxCUE9LaWx1c2NmWDctYlVmUXk2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGMUIvMjNGMzA1NTBCQzRGMTFFQUJBOEM5NjJGQzRGOUFFMDIvN0U4NTRFQjJC RUVGMTFGMDg0RDExQzU4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5jbMA0GCSqGSIb3DQEBCwUAA4IBAQDCcl61tpoUlhRO5ZrjNaQe K2PWSKnM9p3KFm2xti3w8FapaaOHgdAxg+5t7Om7DdhO+opSGt+XEvMqn1u/eIL6 QFLlacJmW5vveeo6UG6FUrAInxL27ZjnkUpCL9aSX4uRo2UrTB6EANo23gC8FqNI 4aSOpnGA3iqy6jAaUGZVEbzrSTANf4ASgvWwlb5JWAP8mgxcTPz7n/Cyu9gQnLOL M2w63U8OSj0vH7yoixFEoR3hGPG9zeCfFawNhkODRqObbiaXHrS8g5hal9+mBXiJ 6lXym5myymH2Vbol0qjiyLu6AVt7zH1Pc6O/+WoIeFW1gl4Uq4S4RPmYgqlw8j9p -----END CERTIFICATE-----Generated at Thu Mar 26 09:53:56 2026 by rpki-client