$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/7438DDF0FD4A11EF85D3AC1AC4F9AE02.roa File: 7438DDF0FD4A11EF85D3AC1AC4F9AE02.roa (raw, json) Hash identifier: crMuBoqElTDMkWwf4m/QaNXTW9zQWs2tJYADmx9RNs8= Subject key identifier: F8:C3:08:0B:EA:06:22:A4:04:CD:A2:0D:92:AD:C0:8C:2B:E7:49:7F Certificate issuer: /CN=A91E5998/serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Certificate serial: 06B8 Authority key identifier: 60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/7438DDF0FD4A11EF85D3AC1AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:47:57 +0000 ROA not before: Sat 10 May 2025 23:02:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142053 IP address blocks: 103.165.184.0/24 maxlen: 24 2001:df6:7080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5998, serialNumber=601DC54B1F5205080EFD9AA6CFA5A51C4A79DD2B Validity Not Before: May 10 23:02:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40b4d-4b61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:71:ea:19:aa:84:a2:a0:72:be:8f:b6:6e:1f: c5:c7:66:6f:45:39:21:59:56:ca:0f:60:cb:08:42: 3f:1b:e5:79:61:36:df:12:80:05:06:42:37:09:a3: ee:bf:7b:3f:06:6b:54:1c:06:fe:62:c7:ac:7e:34: aa:21:ac:18:8a:95:0b:bb:97:20:47:1f:33:a9:c9: 33:1a:e6:87:d9:85:2e:5d:52:d2:63:cf:f5:a2:30: 32:f7:ab:46:2f:37:79:f5:69:2f:49:29:40:c4:c1: 87:c8:c7:4c:c3:2a:c5:5d:8a:74:0a:6c:87:7b:8b: c9:49:55:31:10:35:79:96:a1:86:8f:f7:4c:f9:97: ea:30:6d:33:c8:35:e0:8c:38:07:a7:71:17:fe:8f: 25:7a:33:45:05:62:f2:f2:89:2c:41:11:05:c1:43: df:a4:f3:67:44:25:19:fb:8a:9e:e6:98:5b:8d:5f: 45:5b:9f:0b:24:17:66:b3:5b:a9:3b:68:c0:f0:82: 66:ce:f4:77:c8:8d:3a:a2:f1:19:59:bd:91:37:fb: 65:3d:90:24:3a:5e:6f:fc:73:11:a3:8e:f9:e7:75: 27:d6:2e:cb:41:1a:41:29:9f:86:61:78:5b:bc:6c: d0:37:7b:61:d3:3e:00:c0:16:6e:9b:e3:96:12:f3: 46:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C3:08:0B:EA:06:22:A4:04:CD:A2:0D:92:AD:C0:8C:2B:E7:49:7F X509v3 Authority Key Identifier: keyid:60:1D:C5:4B:1F:52:05:08:0E:FD:9A:A6:CF:A5:A5:1C:4A:79:DD:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB3FSx9SBQgO_Zqmz6WlHEp53Ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5998/2C592E289F1F11EBB30D5743C4F9AE02/7438DDF0FD4A11EF85D3AC1AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.165.184.0/24 IPv6: 2001:df6:7080::/48 Signature Algorithm: sha256WithRSAEncryption 54:1d:48:32:85:df:5d:79:00:0e:c4:67:0a:4e:13:be:b4:b9: c9:21:cc:8b:0b:81:33:e9:d1:7f:6f:79:22:05:f1:89:61:39: 2c:98:cf:02:e4:05:7f:b0:20:40:65:2c:63:ca:13:f7:de:48: 8a:6a:0d:47:9b:05:8b:5c:bb:c4:fe:dc:a8:d3:8b:65:d5:9e: aa:b3:3a:9a:46:40:16:8b:e4:63:4a:b5:49:42:c1:7c:2e:bc: 75:ad:29:c8:9d:6a:51:fc:1d:b4:02:ff:49:fd:f0:bb:4b:c1: 74:cd:41:b8:21:9f:55:dc:e4:7f:5a:b1:f0:c1:48:6c:40:41: 26:a3:64:3b:17:e6:dc:fb:88:57:4c:64:47:f6:00:e4:8d:f5: 89:59:55:49:de:c0:fb:5b:41:e7:7e:18:57:1f:2b:82:50:6e: 91:e4:ca:3f:e3:b3:5c:86:74:6f:d8:e3:d3:40:5f:ea:d9:11: 56:9e:97:46:54:74:5e:93:ad:58:47:19:62:ef:b5:13:ea:a6: e9:17:4f:07:c6:21:48:b0:3f:1d:75:a6:28:ac:e2:f4:91:c3: 9b:23:aa:e9:88:8c:3a:32:64:88:6c:4e:c8:70:2a:56:bb:77: 41:32:14:e2:61:41:c6:2e:70:7d:4c:a3:fc:ec:e9:8c:00:6f: 14:04:3c:3c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU5OTgxMTAvBgNVBAUTKDYwMURDNTRCMUY1MjA1MDgwRUZEOUFBNkNGQTVBNTFD NEE3OUREMkIwHhcNMjUwNTEwMjMwMjEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGI0ZC00YjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3HqGaqEoqByvo+2bh/Fx2ZvRTkhWVbKD2DLCEI/G+V5YTbfEoAFBkI3CaPu v3s/BmtUHAb+YsesfjSqIawYipULu5cgRx8zqckzGuaH2YUuXVLSY8/1ojAy96tG Lzd59WkvSSlAxMGHyMdMwyrFXYp0CmyHe4vJSVUxEDV5lqGGj/dM+ZfqMG0zyDXg jDgHp3EX/o8lejNFBWLy8oksQREFwUPfpPNnRCUZ+4qe5phbjV9FW58LJBdms1up O2jA8IJmzvR3yI06ovEZWb2RN/tlPZAkOl5v/HMRo47553Un1i7LQRpBKZ+GYXhb vGzQN3th0z4AwBZum+OWEvNGFQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFPjDCAvq BiKkBM2iDZKtwIwr50l/MB8GA1UdIwQYMBaAFGAdxUsfUgUIDv2aps+lpRxKed0r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTk5OC8yQzU5MkUyODlG MUYxMUVCQjMwRDU3NDNDNEY5QUUwMi9ZQjNGU3g5U0JRZ09fWnFtejZXbEhFcDUz U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCM0ZTeDlTQlFnT19acW16NldsSEVwNTNTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU5OTgvMkM1OTJFMjg5RjFGMTFFQkIzMEQ1NzQzQzRGOUFFMDIvNzQzOERERjBG RDRBMTFFRjg1RDNBQzFBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ6W4MA8EAgACMAkDBwAgAQ32cIAwDQYJKoZIhvcNAQELBQADggEB AFQdSDKF3115AA7EZwpOE760uckhzIsLgTPp0X9veSIF8YlhOSyYzwLkBX+wIEBl LGPKE/feSIpqDUebBYtcu8T+3KjTi2XVnqqzOppGQBaL5GNKtUlCwXwuvHWtKcid alH8HbQC/0n98LtLwXTNQbghn1Xc5H9asfDBSGxAQSajZDsX5tz7iFdMZEf2AOSN 9YlZVUnewPtbQed+GFcfK4JQbpHkyj/js1yGdG/Y49NAX+rZEVael0ZUdF6TrVhH GWLvtRPqpukXTwfGIUiwPx11piis4vSRw5sjqumIjDoyZIhsTshwKla7d0EyFOJh QcYucH1Mo/zs6YwAbxQEPDw= -----END CERTIFICATE-----Generated at Thu Mar 26 13:29:49 2026 by rpki-client