$ rpki-client -vvf rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa File: 7A5433D6A37811F083057A2CC4F9AE02.roa (raw, json) Hash identifier: FANmQvsw9bCwAwyqdXDJrppPXNeZUQEnf9l9y1Ou+Zc= Subject key identifier: 77:41:DC:73:DA:12:67:56:73:CA:B9:2B:59:56:00:68:EC:1D:8C:E1 Certificate issuer: /CN=A91C67F9/serialNumber=BD4C441F02C7ADD42FA6242E8331D93F59E5183A Certificate serial: 0269 Authority key identifier: BD:4C:44:1F:02:C7:AD:D4:2F:A6:24:2E:83:31:D9:3F:59:E5:18:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:15:09 +0000 ROA not before: Fri 05 Dec 2025 00:40:30 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150708 IP address blocks: 103.65.226.0/23 maxlen: 23 103.65.226.0/24 maxlen: 24 103.65.227.0/24 maxlen: 24 2001:df1:c8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.crl rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C67F9, serialNumber=BD4C441F02C7ADD42FA6242E8331D93F59E5183A Validity Not Before: Dec 5 00:40:30 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4741c-34c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e4:f3:fe:84:78:4e:c4:fb:45:e9:db:54:58: 69:16:d6:a0:07:4b:b9:2f:8d:03:8d:73:3d:f5:2e: 00:d9:d6:08:9a:72:d5:f8:56:e1:95:69:b8:05:20: 57:e0:42:17:21:4d:f9:b7:3b:61:84:cf:62:19:3c: aa:86:fe:11:3c:9d:0b:15:05:6e:58:9d:79:58:61: 58:59:24:bb:d7:02:08:53:53:45:f4:71:e5:53:bc: 18:27:0a:ce:a7:52:c3:f4:a9:ce:9e:38:11:39:78: 55:ff:d8:3f:c5:ef:24:3f:57:00:e0:85:05:e6:94: 1c:eb:ad:bf:74:88:ba:ce:3d:d3:eb:ae:d1:92:a2: 5e:3b:d3:0a:5b:42:af:10:ab:b5:99:cc:3e:31:22: 4b:d7:a4:55:fc:0f:92:fa:b1:cd:f0:7c:1f:fb:c5: 65:47:ca:30:9e:b3:98:01:fd:d1:54:90:15:60:7f: a7:04:af:33:8f:8f:ac:73:e6:8d:70:78:c6:11:21: 95:55:0c:1f:8d:2d:38:cb:f9:b8:56:c5:2e:db:dc: 04:75:54:29:c3:d9:c6:b3:4b:cd:12:d9:6c:90:aa: 04:db:70:82:66:3a:a9:85:c7:5d:16:83:f4:f3:33: 3c:2c:fc:00:f6:e8:08:30:a5:13:a4:59:86:3f:1c: de:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:41:DC:73:DA:12:67:56:73:CA:B9:2B:59:56:00:68:EC:1D:8C:E1 X509v3 Authority Key Identifier: keyid:BD:4C:44:1F:02:C7:AD:D4:2F:A6:24:2E:83:31:D9:3F:59:E5:18:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.65.226.0/23 IPv6: 2001:df1:c8c0::/48 Signature Algorithm: sha256WithRSAEncryption cb:77:b1:6c:9a:5f:b3:53:0e:6c:2d:5e:98:b3:83:b9:f1:5a: 35:55:bd:93:21:54:b0:8d:53:e8:fe:81:c3:c5:ea:0e:d4:ac: ee:c6:d9:cd:02:72:bc:13:2d:ac:b6:c5:89:ac:66:04:a2:4a: 77:35:ea:7f:f7:e9:5a:3b:99:bb:8a:c9:45:25:1d:b6:0f:e2: d9:35:b5:f7:d6:dd:4f:3d:56:16:4b:b3:0a:68:c4:90:97:c1: 1b:37:cb:3a:bf:fc:75:8f:67:cf:5c:05:76:b5:53:69:16:00: cf:2b:f0:c0:cb:72:59:98:2c:30:cd:cf:6f:c2:b1:55:32:09: 64:a7:fa:0f:e8:2d:6e:1d:a2:cd:f3:3d:bb:b0:79:e7:00:bd: 70:15:78:7b:b5:75:23:e9:97:c1:c1:2a:89:2d:53:da:4a:8b: 8b:0e:db:8f:44:2c:46:79:e5:f2:9a:11:8c:35:37:2f:84:23: a2:13:1b:bb:44:27:00:e5:af:98:10:d3:88:b2:8c:c5:69:42: cb:73:14:34:77:21:c0:b3:33:6d:02:a7:28:bc:12:8a:44:0b: 3c:fb:da:53:eb:7f:5f:01:94:8e:46:d6:da:ab:08:45:da:c5: 5d:c2:2f:1a:22:4e:84:2e:c0:0d:5c:1a:3c:af:44:f7:b6:62: cb:80:6a:f9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY3RjkxMTAvBgNVBAUTKEJENEM0NDFGMDJDN0FERDQyRkE2MjQyRTgzMzFEOTNG NTlFNTE4M0EwHhcNMjUxMjA1MDA0MDMwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzQxYy0zNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueTz/oR4TsT7RenbVFhpFtagB0u5L40DjXM99S4A2dYImnLV+FbhlWm4BSBX 4EIXIU35tzthhM9iGTyqhv4RPJ0LFQVuWJ15WGFYWSS71wIIU1NF9HHlU7wYJwrO p1LD9KnOnjgROXhV/9g/xe8kP1cA4IUF5pQc662/dIi6zj3T667RkqJeO9MKW0Kv EKu1mcw+MSJL16RV/A+S+rHN8Hwf+8VlR8ownrOYAf3RVJAVYH+nBK8zj4+sc+aN cHjGESGVVQwfjS04y/m4VsUu29wEdVQpw9nGs0vNEtlskKoE23CCZjqphcddFoP0 8zM8LPwA9ugIMKUTpFmGPxzeyQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHdB3HPa EmdWc8q5K1lWAGjsHYzhMB8GA1UdIwQYMBaAFL1MRB8Cx63UL6YkLoMx2T9Z5Rg6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjdGOS9FQUUxMkU0NDhE QUQxMUVEQjJEQ0M0ODdDNEY5QUUwMi92VXhFSHdMSHJkUXZwaVF1Z3pIWlAxbmxH RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZVeEVId0xIcmRRdnBpUXVnekhaUDFubEdEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY3RjkvRUFFMTJFNDQ4REFEMTFFREIyRENDNDg3QzRGOUFFMDIvN0E1NDMzRDZB Mzc4MTFGMDgzMDU3QTJDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ0HiMA8EAgACMAkDBwAgAQ3xyMAwDQYJKoZIhvcNAQELBQADggEB AMt3sWyaX7NTDmwtXpizg7nxWjVVvZMhVLCNU+j+gcPF6g7UrO7G2c0CcrwTLay2 xYmsZgSiSnc16n/36Vo7mbuKyUUlHbYP4tk1tffW3U89VhZLswpoxJCXwRs3yzq/ /HWPZ89cBXa1U2kWAM8r8MDLclmYLDDNz2/CsVUyCWSn+g/oLW4dos3zPbuweecA vXAVeHu1dSPpl8HBKoktU9pKi4sO249ELEZ55fKaEYw1Ny+EI6ITG7tEJwDlr5gQ 04iyjMVpQstzFDR3IcCzM20Cpyi8EopECzz72lPrf18BlI5G1tqrCEXaxV3CLxoi ToQuwA1cGjyvRPe2YsuAavk= -----END CERTIFICATE-----Generated at Thu Mar 26 05:35:53 2026 by rpki-client