$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa File: 75D9F37C007A11ECA444E049C4F9AE02.roa (raw, json) Hash identifier: 1mRV89mqNc+nLOCZGSyR4uuy7wclwLlHSJ3xFNf7VPs= Subject key identifier: 88:D7:F5:07:1C:4A:CE:C0:9C:20:6F:AD:0F:43:A4:F7:99:6B:5A:9E Certificate issuer: /CN=A91CF24F/serialNumber=6DC5248164BB952E8B9ED9239BE7106A63CEF06C Certificate serial: 0A33 Authority key identifier: 6D:C5:24:81:64:BB:95:2E:8B:9E:D9:23:9B:E7:10:6A:63:CE:F0:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa Signing time: Mon 16 Mar 2026 19:26:00 +0000 ROA not before: Mon 16 Mar 2026 19:26:00 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 132405 IP address blocks: 43.230.100.0/22 maxlen: 24 43.245.72.0/21 maxlen: 24 43.250.92.0/22 maxlen: 24 103.12.22.0/24 maxlen: 24 103.13.86.0/23 maxlen: 24 103.41.216.0/22 maxlen: 24 103.49.127.0/24 maxlen: 24 103.49.144.0/23 maxlen: 24 103.82.136.0/22 maxlen: 24 103.247.224.0/23 maxlen: 24 103.253.92.0/22 maxlen: 24 2001:df0:2c7::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.crl rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2611 (0xa33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF24F, serialNumber=6DC5248164BB952E8B9ED9239BE7106A63CEF06C Validity Not Before: Mar 16 19:26:00 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69b85947-781f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:88:f9:e3:d9:b6:06:a4:bc:03:f8:46:21:65: f0:16:f1:03:8b:5f:54:88:f4:29:fb:d6:b3:97:77: 35:8f:67:b2:2e:62:85:2e:95:85:e6:f8:fe:75:66: b6:fe:64:cc:3c:13:3f:f1:37:bb:16:83:06:bc:0f: da:86:91:58:2a:57:6e:c6:a2:c8:b2:38:c7:79:35: 53:6b:c0:e9:35:f1:60:ac:1b:0c:ce:02:9d:0b:e7: 37:71:2e:98:29:4e:c8:60:dc:e6:a0:9b:3b:bd:53: 41:35:fd:e1:7a:28:50:a7:7d:b4:46:bd:95:2e:88: a0:9a:94:7e:91:7c:b3:a8:f1:88:10:e3:07:fc:60: a1:86:cc:6d:33:7b:31:4e:1e:12:34:a7:13:df:14: 0d:4b:ce:f6:9e:8c:5b:70:1e:a8:20:26:ae:2d:36: 60:21:db:83:9e:87:d7:5b:62:98:63:a3:9d:c5:63: 7c:73:4b:4d:de:b4:8f:b4:5d:ea:a4:9e:c8:eb:1b: bd:b2:6f:07:3e:32:48:16:51:9b:97:73:9a:4b:11: fe:eb:73:ba:1f:c8:9f:b7:bd:cc:1d:79:6b:e0:a6: d5:21:ce:36:ed:46:be:31:f5:cb:b3:72:ca:3d:c2: 08:a1:13:0c:52:e4:91:1c:4a:08:eb:15:c9:1c:f3: ef:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D7:F5:07:1C:4A:CE:C0:9C:20:6F:AD:0F:43:A4:F7:99:6B:5A:9E X509v3 Authority Key Identifier: keyid:6D:C5:24:81:64:BB:95:2E:8B:9E:D9:23:9B:E7:10:6A:63:CE:F0:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.100.0/22 43.245.72.0/21 43.250.92.0/22 103.12.22.0/24 103.13.86.0/23 103.41.216.0/22 103.49.127.0/24 103.49.144.0/23 103.82.136.0/22 103.247.224.0/23 103.253.92.0/22 IPv6: 2001:df0:2c7::/48 Signature Algorithm: sha256WithRSAEncryption a0:24:08:f7:83:8d:9d:b2:a8:a8:ac:72:79:ba:a2:ba:4f:9a: 88:85:e5:dd:ad:2d:db:dc:ab:7d:5d:3a:f1:cc:96:ec:73:8e: 34:24:b5:85:0e:59:b5:0b:7f:04:5e:50:74:c4:5b:ed:1e:39: 52:a8:3b:35:9b:0b:5f:5b:67:a8:e4:9d:81:f8:27:01:59:2d: e3:79:08:d3:0d:17:16:94:c6:28:2d:e4:95:6b:06:d1:3b:74: d2:99:a3:57:b1:76:e6:52:20:87:52:4e:63:c3:ad:62:13:61: 57:c2:31:93:1a:5b:f9:ca:04:0c:fb:33:9b:1a:c4:5e:65:90: a8:27:a1:66:9b:b4:31:13:de:5b:23:36:f2:44:1b:8d:bb:0c: a2:c0:69:19:24:d1:7e:00:cd:38:97:cc:b7:e9:a8:dd:07:da: ee:e8:5e:62:73:1d:49:8b:f5:0b:f1:be:d4:08:21:70:9c:d1: 0a:13:ef:30:65:b7:61:fa:dd:4f:96:39:d8:d0:aa:cb:f6:ca: 93:71:e8:b3:28:ce:8a:78:6a:96:e4:e3:21:53:1e:2e:d7:f0: 98:17:77:51:44:41:b1:c0:e6:b7:03:d2:54:bd:41:75:cb:dc: 25:8b:2a:34:b0:2a:7f:01:95:b6:e5:b4:77:79:91:b2:3b:0f: b6:4f:7c:a2 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICCjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyNEYxMTAvBgNVBAUTKDZEQzUyNDgxNjRCQjk1MkU4QjlFRDkyMzlCRTcxMDZB NjNDRUYwNkMwHhcNMjYwMzE2MTkyNjAwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4NTk0Ny03ODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi4j549m2BqS8A/hGIWXwFvEDi19UiPQp+9azl3c1j2eyLmKFLpWF5vj+dWa2 /mTMPBM/8Te7FoMGvA/ahpFYKlduxqLIsjjHeTVTa8DpNfFgrBsMzgKdC+c3cS6Y KU7IYNzmoJs7vVNBNf3heihQp320Rr2VLoigmpR+kXyzqPGIEOMH/GChhsxtM3sx Th4SNKcT3xQNS872noxbcB6oICauLTZgIduDnofXW2KYY6OdxWN8c0tN3rSPtF3q pJ7I6xu9sm8HPjJIFlGbl3OaSxH+63O6H8ift73MHXlr4KbVIc427Ua+MfXLs3LK PcIIoRMMUuSRHEoI6xXJHPPv6wIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFIjX9Qcc Ss7AnCBvrQ9DpPeZa1qeMB8GA1UdIwQYMBaAFG3FJIFku5Uui57ZI5vnEGpjzvBs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI0Ri8zN0MxMTBCODhG NTkxMUVBQUI3MEUyMzRDNEY5QUUwMi9iY1VrZ1dTN2xTNkxudGtqbS1jUWFtUE84 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjVWtnV1M3bFM2TG50a2ptLWNRYW1QTzhHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YyNEYvMzdDMTEwQjg4RjU5MTFFQUFCNzBFMjM0QzRGOUFFMDIvNzVEOUYzN0Mw MDdBMTFFQ0E0NDRFMDQ5QzRGOUFFMDIucm9hMGwGCCsGAQUFBwEHAQH/BF0wWzBI BAIAATBCAwQCK+ZkAwQDK/VIAwQCK/pcAwQAZwwWAwQBZw1WAwQCZynYAwQAZzF/ AwQBZzGQAwQCZ1KIAwQBZ/fgAwQCZ/1cMA8EAgACMAkDBwAgAQ3wAscwDQYJKoZI hvcNAQELBQADggEBAKAkCPeDjZ2yqKiscnm6orpPmoiF5d2tLdvcq31dOvHMluxz jjQktYUOWbULfwReUHTEW+0eOVKoOzWbC19bZ6jknYH4JwFZLeN5CNMNFxaUxigt 5JVrBtE7dNKZo1exduZSIIdSTmPDrWITYVfCMZMaW/nKBAz7M5saxF5lkKgnoWab tDET3lsjNvJEG427DKLAaRkk0X4AzTiXzLfpqN0H2u7oXmJzHUmL9QvxvtQIIXCc 0QoT7zBlt2H63U+WOdjQqsv2ypNx6LMozop4apbk4yFTHi7X8JgXd1FEQbHA5rcD 0lS9QXXL3CWLKjSwKn8BlbbltHd5kbI7D7ZPfKI= -----END CERTIFICATE-----Generated at Thu Mar 26 13:56:15 2026 by rpki-client