$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/A7C7EF962A8911F09526D35BC4F9AE02.roa File: A7C7EF962A8911F09526D35BC4F9AE02.roa (raw, json) Hash identifier: u3gJXE5CVo/4Di5xZg31vIxBE+g16w/hFZMtDFCGFIA= Subject key identifier: 9A:48:2A:11:EB:09:B5:5C:46:AA:72:B1:2B:25:8D:D8:83:C5:B8:C7 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: A6 Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/A7C7EF962A8911F09526D35BC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:40:38 +0000 ROA not before: Sat 04 Oct 2025 05:03:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153856 IP address blocks: 163.227.246.0/23 maxlen: 23 163.227.246.0/24 maxlen: 24 163.227.247.0/24 maxlen: 24 2001:df5:7ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Oct 4 05:03:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a58546-1257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fe:ed:d4:27:36:71:0d:d5:c5:74:fd:ae:46: d4:44:17:3b:46:c0:fe:9e:82:85:7b:48:92:57:59: 5a:40:60:93:25:13:af:5e:9f:67:42:e6:7b:69:f2: ea:4b:3d:28:af:67:01:a7:46:ed:59:c3:b1:fa:9d: a4:60:f9:18:bc:52:9a:2b:d4:4a:0e:78:23:04:ea: 71:eb:8a:b9:6e:e4:41:cc:5b:97:12:32:c6:d4:2a: 39:bc:c9:e7:47:95:96:f5:ff:90:5c:18:eb:ed:d7: a9:79:ba:48:a6:70:3c:6e:ef:7d:ff:a5:9e:85:7b: ab:f8:98:f6:4d:d8:57:05:5b:02:04:4d:1e:52:19: 35:21:09:48:00:73:96:44:9d:2d:05:10:91:35:40: b3:43:e3:a7:33:04:de:96:5c:56:d3:77:cc:67:8c: 7e:a1:07:de:d1:00:25:6e:7a:83:35:6e:82:fa:e1: 1e:b0:22:eb:02:72:12:34:27:62:7c:e7:e3:ff:2e: c0:8e:0e:c2:14:88:78:f6:5c:c6:ed:60:0e:1a:59: 8d:77:99:8d:2e:4b:f2:ad:27:90:24:a4:24:ea:2e: d4:c3:8e:38:cc:24:6d:0b:c9:36:e6:30:18:f7:df: 66:a7:50:5b:97:be:22:21:b4:f1:98:f8:1b:fb:22: 65:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:48:2A:11:EB:09:B5:5C:46:AA:72:B1:2B:25:8D:D8:83:C5:B8:C7 X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/A7C7EF962A8911F09526D35BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.227.246.0/23 IPv6: 2001:df5:7ec0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:99:a1:9f:f2:d8:c2:ce:8f:e7:d7:72:83:d3:4b:90:ee:14: b0:1c:2c:6b:74:60:de:81:51:73:12:c4:88:4a:6b:5c:0c:9c: 28:ec:af:bf:37:3d:d1:0c:6b:9b:58:69:69:02:06:fa:7b:5f: 4b:b0:9c:cd:00:1d:71:8f:0e:b0:5e:54:2d:39:86:58:e3:b3: 9e:f7:90:ce:17:fe:8d:0d:e1:c3:c6:0b:d9:b1:45:a8:22:b3: 2c:6f:45:47:fe:28:21:cc:4a:51:ac:b4:78:36:c2:26:44:a7: 4e:a0:a9:53:8d:40:de:60:7a:b3:b9:72:68:0a:6f:70:09:b2: a6:e1:f7:9f:46:87:66:e7:56:ff:30:cb:ca:53:fe:63:99:6b: 90:07:d7:75:03:e5:a4:4e:1e:c7:b4:6d:76:25:cd:91:8c:13: bd:2f:0a:29:bd:23:14:57:ae:7b:a1:59:58:ac:f0:35:c1:60: f8:a5:78:3e:52:cb:47:1d:bc:d2:15:79:b1:cf:41:7e:57:0b: ea:51:d5:c3:9a:a7:62:ce:e2:c8:43:62:4c:a4:97:79:db:73: 04:40:db:ad:31:8e:f5:37:68:18:f0:3e:54:62:fb:e9:5a:cf: 19:a1:3c:40:6e:e5:d9:f6:72:6c:4c:8a:41:e0:f2:75:0e:ce: 18:96:f1:3b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM3QUExMTAvBgNVBAUTKDc1RkUzN0E4M0VEQTgwMEE2MTAyNjA4NTg3RURGNDA4 OUQ4MjQwRTAwHhcNMjUxMDA0MDUwMzE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODU0Ni0xMjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/7t1Cc2cQ3VxXT9rkbURBc7RsD+noKFe0iSV1laQGCTJROvXp9nQuZ7afLq Sz0or2cBp0btWcOx+p2kYPkYvFKaK9RKDngjBOpx64q5buRBzFuXEjLG1Co5vMnn R5WW9f+QXBjr7depebpIpnA8bu99/6WehXur+Jj2TdhXBVsCBE0eUhk1IQlIAHOW RJ0tBRCRNUCzQ+OnMwTellxW03fMZ4x+oQfe0QAlbnqDNW6C+uEesCLrAnISNCdi fOfj/y7Ajg7CFIh49lzG7WAOGlmNd5mNLkvyrSeQJKQk6i7Uw444zCRtC8k25jAY 999mp1Bbl74iIbTxmPgb+yJlIQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJpIKhHr CbVcRqpysSsljdiDxbjHMB8GA1UdIwQYMBaAFHX+N6g+2oAKYQJghYft9AidgkDg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzdBQS9EMjJFREEzNDJB ODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9kZjQzcUQ3YWdBcGhBbUNGaC0zMENKMkNR T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM3QUEvRDIyRURBMzQyQTg4MTFGMEEzMEQ5MTU5QzRGOUFFMDIvQTdDN0VGOTYy QTg5MTFGMDk1MjZEMzVCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo+P2MA8EAgACMAkDBwAgAQ31fsAwDQYJKoZIhvcNAQELBQADggEB AA2ZoZ/y2MLOj+fXcoPTS5DuFLAcLGt0YN6BUXMSxIhKa1wMnCjsr783PdEMa5tY aWkCBvp7X0uwnM0AHXGPDrBeVC05hljjs573kM4X/o0N4cPGC9mxRagisyxvRUf+ KCHMSlGstHg2wiZEp06gqVONQN5gerO5cmgKb3AJsqbh959Gh2bnVv8wy8pT/mOZ a5AH13UD5aROHse0bXYlzZGME70vCim9IxRXrnuhWVis8DXBYPileD5Sy0cdvNIV ebHPQX5XC+pR1cOap2LO4shDYkykl3nbcwRA260xjvU3aBjwPlRi++lazxmhPEBu 5dn2cmxMikHg8nUOzhiW8Ts= -----END CERTIFICATE-----Generated at Sat Mar 28 13:23:43 2026 by rpki-client