$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa File: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (raw, json) Hash identifier: qSB4ftjX3kA4tLaGQ98+0+IxSSCm+dtpWVZIBrMu7h8= Subject key identifier: BE:F2:62:FA:2D:94:80:71:80:A2:72:FA:AD:E3:D0:78:55:FB:AB:6B Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 069B Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:18:57 +0000 ROA not before: Tue 25 Nov 2025 12:28:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 63473 IP address blocks: 103.73.64.0/23 maxlen: 23 103.73.66.0/24 maxlen: 24 103.73.67.0/24 maxlen: 24 216.250.96.0/24 maxlen: 24 216.250.97.0/24 maxlen: 24 2406:ef80:1::/48 maxlen: 48 2406:ef80:2::/48 maxlen: 48 2406:ef80:3::/48 maxlen: 48 2406:ef80:4::/48 maxlen: 48 2406:ef80:5::/48 maxlen: 48 2406:ef80:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176, serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Nov 25 12:28:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5aa61-fc6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a7:42:23:dc:db:f7:fc:d3:d4:0d:0c:ba:7f: f2:36:86:f5:5f:99:85:8a:6d:ea:02:e8:8e:10:ee: bd:74:1c:fc:a8:8e:35:9f:6d:bb:b8:54:70:1f:d3: a9:75:a0:86:37:e1:00:86:1d:f4:25:f6:fc:4a:ac: 87:a7:16:a8:aa:0a:b6:a4:be:3c:2f:dc:e1:37:82: f4:c6:7d:08:af:be:2e:7e:c2:e6:bd:34:d7:a2:bd: 41:2b:28:c1:b4:fd:46:4b:19:6e:81:86:97:4d:73: 3b:48:78:72:13:6c:be:c7:96:2b:ce:b1:9a:a3:8a: e1:fa:ec:71:01:40:3a:1d:02:57:f3:c7:f4:5d:84: 6f:23:99:8c:87:49:29:f0:86:a9:dd:e1:dd:9b:56: b6:2b:54:45:0a:81:01:c7:d6:77:a8:62:c8:eb:c0: fd:3c:26:4b:56:ea:c5:40:45:66:95:d5:14:25:71: 9e:06:56:73:e4:13:c4:1a:f4:b9:47:c3:a6:8f:0e: e4:e1:bf:6d:06:33:1c:89:5c:3a:9a:72:11:41:2d: f1:1e:cf:0e:cc:6e:de:b3:d1:12:66:ab:15:ea:bf: 5a:26:23:d0:bf:aa:5b:16:88:cb:1e:e6:e5:24:0a: 77:ee:c3:45:6a:71:a1:25:b5:27:85:f5:ba:3d:79: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F2:62:FA:2D:94:80:71:80:A2:72:FA:AD:E3:D0:78:55:FB:AB:6B X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.73.64.0/22 216.250.96.0/23 IPv6: 2406:ef80:1::-2406:ef80:5:ffff:ffff:ffff:ffff:ffff 2406:ef80:100::/40 Signature Algorithm: sha256WithRSAEncryption 73:f1:aa:b5:7d:d6:25:bd:46:90:b4:74:3d:df:32:a1:7b:4c: 11:1b:4b:6f:7c:d5:b0:11:1d:c6:58:3e:4b:56:78:6e:bc:01: cd:a5:e1:48:b3:eb:a1:1f:92:9e:9d:5b:32:36:62:63:39:da: 0d:2e:ee:2f:7f:5e:ac:f6:29:cc:b8:2e:52:9d:e9:91:69:6d: dd:96:f5:92:90:04:9c:6c:38:a3:23:99:2a:7e:27:eb:85:09: 6b:37:8b:f4:ff:d8:7e:0e:a6:e3:12:9c:0d:24:79:d6:a3:2c: 6e:92:59:c3:9d:52:7f:b3:be:cf:e3:20:15:6d:0b:7d:75:1f: a6:b1:29:ea:9c:38:de:e9:d9:9a:cb:e0:4f:a5:3b:ac:79:3a: 6b:10:ce:ec:45:f8:e7:54:97:33:46:52:24:fb:12:10:2e:07: 2a:60:25:94:9b:d2:2c:a7:e5:5e:63:7a:86:37:3b:66:a2:46: 86:34:8e:a8:88:16:59:b7:bb:c2:f1:7d:bb:b7:12:83:9f:39: fb:32:37:0a:f7:46:70:13:ca:0c:98:be:71:58:31:76:cf:82: 55:3c:bd:d1:5a:28:39:1c:fa:b3:7b:90:e3:be:ad:a9:5d:58: d1:21:7c:70:a5:4b:06:00:54:31:ae:1f:4d:f7:08:ad:f2:e9: 48:26:d7:97 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjUxMTI1MTIyODU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWE2MS1mYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxadCI9zb9/zT1A0Mun/yNob1X5mFim3qAuiOEO69dBz8qI41n227uFRwH9Op daCGN+EAhh30Jfb8SqyHpxaoqgq2pL48L9zhN4L0xn0Ir74ufsLmvTTXor1BKyjB tP1GSxlugYaXTXM7SHhyE2y+x5YrzrGao4rh+uxxAUA6HQJX88f0XYRvI5mMh0kp 8Iap3eHdm1a2K1RFCoEBx9Z3qGLI68D9PCZLVurFQEVmldUUJXGeBlZz5BPEGvS5 R8Omjw7k4b9tBjMciVw6mnIRQS3xHs8OzG7es9ESZqsV6r9aJiPQv6pbFojLHubl JAp37sNFanGhJbUnhfW6PXnKiQIDAQABo4ICijCCAoYwHQYDVR0OBBYEFL7yYvot lIBxgKJy+q3j0HhV+6trMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExNzYvQUREM0FFQ0VCMjhFMTFFQjk0RDIxODQ3QzRGOUFFMDIvNjU5NUNFOUNC MjkwMTFFQkJCRjRGNTQ4QzRGOUFFMDIucm9hMEkGCCsGAQUFBwEHAQH/BDowODAS BAIAATAMAwQCZ0lAAwQB2PpgMCIEAgACMBwwEgMHACQG74AAAQMHASQG74AABAMG ACQG74ABMA0GCSqGSIb3DQEBCwUAA4IBAQBz8aq1fdYlvUaQtHQ93zKhe0wRG0tv fNWwER3GWD5LVnhuvAHNpeFIs+uhH5KenVsyNmJjOdoNLu4vf16s9inMuC5SnemR aW3dlvWSkAScbDijI5kqfifrhQlrN4v0/9h+DqbjEpwNJHnWoyxuklnDnVJ/s77P 4yAVbQt9dR+msSnqnDje6dmay+BPpTuseTprEM7sRfjnVJczRlIk+xIQLgcqYCWU m9Isp+VeY3qGNztmokaGNI6oiBZZt7vC8X27txKDnzn7MjcK90ZwE8oMmL5xWDF2 z4JVPL3RWig5HPqze5Djvq2pXVjRIXxwpUsGAFQxrh9N9wit8ulIJteX -----END CERTIFICATE-----Generated at Thu Mar 26 12:37:16 2026 by rpki-client