$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9C7048DC621711E9B8C69E15C4F9AE02.roa File: 9C7048DC621711E9B8C69E15C4F9AE02.roa (raw, json) Hash identifier: zTMcMU85Vfrv28bnOAwruUSVF1/v5V80nulZ37SkFAc= Subject key identifier: 61:C3:D7:16:97:E3:53:4C:4A:66:D0:AA:BF:4E:A0:DD:56:6D:6B:2E Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1270 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9C7048DC621711E9B8C69E15C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:26:19 +0000 ROA not before: Tue 14 Oct 2025 18:16:15 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132892 IP address blocks: 103.21.246.0/24 maxlen: 24 103.21.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4720 (0x1270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 14 18:16:15 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a468ab-9975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b9:2a:2a:cb:a3:ce:9e:33:a8:18:8a:71:bc: 4c:f4:61:7c:10:04:1d:7b:a2:50:d3:50:5e:e1:b6: e2:71:7c:90:b0:8f:d9:d4:da:69:a3:a5:2d:58:cd: da:f5:8b:5c:14:e1:f1:a5:d7:51:86:0b:ac:45:f9: c7:ae:ff:a3:d1:48:98:d7:e7:5f:6e:0c:ec:32:8b: 25:f6:73:88:1e:9d:91:34:49:8d:49:74:96:68:6c: 5f:21:18:99:ee:1a:4b:08:c1:ab:6f:78:e4:70:33: b1:0e:66:2f:74:f3:59:6b:49:87:7d:92:ca:f2:12: 87:a0:8b:a2:92:4e:78:29:b8:d3:6c:df:e2:52:dc: 1f:86:90:5e:54:d7:4b:48:d1:7b:29:d5:87:d9:4d: 29:3d:93:cc:49:ff:a6:11:74:4a:b0:21:c7:3e:e5: 5d:4a:ae:fb:b9:81:fa:71:b6:19:eb:17:41:17:6a: 63:90:cb:f0:52:9b:16:a0:7f:ac:75:b0:5d:43:9f: 98:03:54:ff:75:81:51:00:2c:5a:09:a2:b0:4c:28: d7:e6:89:6b:54:38:26:e1:ec:55:12:f2:b8:bf:54: 58:cd:a5:1b:e6:97:8d:93:84:e6:a5:56:d0:84:32: 87:27:87:1e:c3:78:c7:ba:8e:17:9f:23:e4:cd:2c: 47:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C3:D7:16:97:E3:53:4C:4A:66:D0:AA:BF:4E:A0:DD:56:6D:6B:2E X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9C7048DC621711E9B8C69E15C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.21.246.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:cb:c5:23:f5:ee:e9:0a:f0:14:92:be:da:66:83:27:8b:20: 49:71:f1:e6:59:a9:e1:0c:a7:6e:f6:69:5e:f1:ae:e4:ee:37: 8a:72:92:e6:a6:45:d5:01:5f:8e:f6:81:35:bf:fe:ad:0e:1b: da:bf:d3:cf:ee:d5:38:78:34:ca:a7:f6:26:13:b8:e2:08:fc: a8:f8:d5:15:06:95:b3:4f:f5:68:93:b9:4d:2d:68:75:e8:7c: 6a:c8:15:dc:08:2c:81:24:09:fc:86:bc:e8:0f:55:dc:52:da: fd:04:a8:2c:2e:a6:72:84:d0:9e:fb:9e:29:66:30:3f:a7:c1: 16:50:10:f9:78:70:05:89:bf:c5:3b:76:a2:fe:4b:da:07:a7: 30:de:2e:87:d7:2a:6c:0f:83:85:ab:96:4d:29:cf:7c:46:d4: 40:ec:de:e9:a5:a5:55:d4:d5:2c:dd:47:14:b8:d9:02:93:dc: 72:fc:2e:ea:36:3b:56:b3:38:6d:15:0f:84:c7:1f:7c:cd:ed: 7a:67:b5:a7:05:ef:19:0d:1f:fd:b0:e5:d3:71:fd:90:ec:94: 3d:d7:f6:c9:5b:a0:df:38:c8:9a:4d:60:ed:28:f4:db:fe:e9: 7a:85:f2:92:21:d5:a5:23:02:d0:98:84:0c:ad:c6:03:c5:16: 72:d5:70:b0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMDE0MTgxNjE1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjhhYi05OTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bkqKsujzp4zqBiKcbxM9GF8EAQde6JQ01Be4bbicXyQsI/Z1Nppo6UtWM3a 9YtcFOHxpddRhgusRfnHrv+j0UiY1+dfbgzsMosl9nOIHp2RNEmNSXSWaGxfIRiZ 7hpLCMGrb3jkcDOxDmYvdPNZa0mHfZLK8hKHoIuikk54KbjTbN/iUtwfhpBeVNdL SNF7KdWH2U0pPZPMSf+mEXRKsCHHPuVdSq77uYH6cbYZ6xdBF2pjkMvwUpsWoH+s dbBdQ5+YA1T/dYFRACxaCaKwTCjX5olrVDgm4exVEvK4v1RYzaUb5peNk4TmpVbQ hDKHJ4cew3jHuo4XnyPkzSxHhQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGHD1xaX 41NMSmbQqr9OoN1WbWsuMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvOUM3MDQ4REM2 MjE3MTFFOUI4QzY5RTE1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxX2MA0GCSqGSIb3DQEBCwUAA4IBAQA7y8Uj9e7pCvAUkr7aZoMn iyBJcfHmWanhDKdu9mle8a7k7jeKcpLmpkXVAV+O9oE1v/6tDhvav9PP7tU4eDTK p/YmE7jiCPyo+NUVBpWzT/Vok7lNLWh16HxqyBXcCCyBJAn8hrzoD1XcUtr9BKgs LqZyhNCe+54pZjA/p8EWUBD5eHAFib/FO3ai/kvaB6cw3i6H1ypsD4OFq5ZNKc98 RtRA7N7ppaVV1NUs3UcUuNkCk9xy/C7qNjtWszhtFQ+Exx98ze16Z7WnBe8ZDR/9 sOXTcf2Q7JQ91/bJW6DfOMiaTWDtKPTb/ul6hfKSIdWlIwLQmIQMrcYDxRZy1XCw -----END CERTIFICATE-----Generated at Thu Mar 26 06:53:08 2026 by rpki-client