$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/4F7B7728DD5D11EF9312601BC4F9AE02.roa File: 4F7B7728DD5D11EF9312601BC4F9AE02.roa (raw, json) Hash identifier: 5xZOfUroHpeE/D4uGz1bEl15IcZj3gdTHW1LZL25guE= Subject key identifier: 71:A9:85:1C:3D:F0:57:F4:B2:10:E8:92:7C:BF:BB:F8:61:11:C2:0B Certificate issuer: /CN=A91EEC3B/serialNumber=B7667505BB2042E72B62AE05BE2D1A3B41B4D235 Certificate serial: 07E3 Authority key identifier: B7:66:75:05:BB:20:42:E7:2B:62:AE:05:BE:2D:1A:3B:41:B4:D2:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/4F7B7728DD5D11EF9312601BC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:24:10 +0000 ROA not before: Mon 22 Sep 2025 16:35:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136917 IP address blocks: 103.110.126.0/24 maxlen: 24 2401:a840::/32 maxlen: 32 2401:a840::/36 maxlen: 36 2401:a840::/40 maxlen: 40 2401:a840:100::/40 maxlen: 40 2401:a840:200::/40 maxlen: 40 2401:a840:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2019 (0x7e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=B7667505BB2042E72B62AE05BE2D1A3B41B4D235 Validity Not Before: Sep 22 16:35:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a49259-2a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f6:18:d7:5c:f8:0b:93:d5:2b:3a:0e:a5:25: a7:ef:7d:1f:f5:f4:19:74:ef:e1:89:33:8f:c5:67: 41:81:91:08:71:11:60:1c:b2:da:13:c1:22:78:ef: c3:8f:45:03:97:1b:4e:3a:0b:80:03:ce:59:d7:23: ca:69:fa:03:f8:fe:1e:91:89:21:47:43:e3:e3:55: 58:7c:d7:b9:66:6d:ac:2b:fa:d9:21:c9:1a:d9:9b: ea:da:aa:48:fa:62:68:f3:5a:7a:bd:10:a1:f8:d1: fc:0c:af:73:0c:8a:d7:21:ee:d8:86:a9:1b:25:c4: c0:38:b0:aa:8d:ac:24:04:d9:76:f9:ed:e0:ba:d3: b7:22:35:12:6a:76:de:8e:f1:a5:61:77:da:81:be: bf:3a:2e:7a:62:81:9c:73:10:13:86:df:83:10:14: df:2a:13:ed:7f:f7:d1:d0:56:c7:f7:36:bf:bc:b3: fa:2f:e1:94:da:bb:6f:b2:4d:d0:e6:cb:b3:56:00: 73:cb:77:c4:1f:46:02:a0:b9:8e:f7:9e:70:20:72: ba:a1:eb:96:35:b3:9d:6f:fe:59:b7:9d:9a:e8:b8: a5:97:03:62:41:f4:72:dd:19:79:8b:e5:90:05:e0: 45:69:ad:f6:7b:7a:19:9a:b8:0c:15:fb:1d:cb:e2: f7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A9:85:1C:3D:F0:57:F4:B2:10:E8:92:7C:BF:BB:F8:61:11:C2:0B X509v3 Authority Key Identifier: keyid:B7:66:75:05:BB:20:42:E7:2B:62:AE:05:BE:2D:1A:3B:41:B4:D2:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/4F7B7728DD5D11EF9312601BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.110.126.0/24 IPv6: 2401:a840::/32 Signature Algorithm: sha256WithRSAEncryption 3b:ff:2b:0b:46:00:e1:2a:e0:53:a2:bf:c3:c4:72:40:7a:09: 5c:6f:0e:e9:2d:c6:c2:e8:5c:c7:dd:74:83:53:0b:e3:9a:98: c5:c4:09:41:df:34:4a:31:92:48:c2:f5:31:f2:32:23:0d:47: 22:56:4b:2f:56:df:5b:b4:e8:1a:2b:08:4a:39:be:9a:39:87: 36:8c:1e:97:5b:6c:c8:bb:26:60:7e:e5:34:33:cd:a2:54:74: 09:72:f4:5c:79:10:0a:d0:46:41:4c:d8:c1:6b:83:31:43:2b: 53:49:43:5c:8f:09:83:2f:d0:f9:77:8d:49:3d:1d:1c:9e:52: ad:f4:ae:20:d1:d6:94:34:6f:1a:39:ee:b6:c7:40:af:ec:f2: fc:6c:90:e5:57:0d:1e:3e:97:e2:4d:11:cb:2e:13:9a:59:c0: 25:11:0f:03:63:ac:30:42:c7:bc:4a:ef:3b:60:8e:07:e3:91: 86:4d:77:57:73:52:86:b4:bc:63:43:2e:d0:de:4b:e7:f5:28: cf:cb:ef:fc:d4:0c:0a:fa:9d:f0:9e:ce:4b:66:e6:e9:a9:7d: 0b:6e:65:7e:d2:3e:ca:32:24:71:9c:1a:ea:95:5c:79:ab:8e: 9c:25:6d:f3:fb:9e:26:eb:bf:c5:ea:82:8b:65:44:14:38:27: d1:ca:f5:0d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKEI3NjY3NTA1QkIyMDQyRTcyQjYyQUUwNUJFMkQxQTNC NDFCNEQyMzUwHhcNMjUwOTIyMTYzNTQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTI1OS0yYTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fYY11z4C5PVKzoOpSWn730f9fQZdO/hiTOPxWdBgZEIcRFgHLLaE8EieO/D j0UDlxtOOguAA85Z1yPKafoD+P4ekYkhR0Pj41VYfNe5Zm2sK/rZIcka2Zvq2qpI +mJo81p6vRCh+NH8DK9zDIrXIe7YhqkbJcTAOLCqjawkBNl2+e3gutO3IjUSanbe jvGlYXfagb6/Oi56YoGccxATht+DEBTfKhPtf/fR0FbH9za/vLP6L+GU2rtvsk3Q 5suzVgBzy3fEH0YCoLmO955wIHK6oeuWNbOdb/5Zt52a6LillwNiQfRy3Rl5i+WQ BeBFaa32e3oZmrgMFfsdy+L3UQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHGphRw9 8Ff0shDokny/u/hhEcILMB8GA1UdIwQYMBaAFLdmdQW7IELnK2KuBb4tGjtBtNI1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi90MloxQmJzZ1F1Y3JZcTRGdmkwYU8wRzAw alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QyWjFCYnNnUXVjcllxNEZ2aTBhTzBHMDBqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDM0IvNkIzN0UxOUM4NDE3MTFFNzg1RjE3MDgwQzRGOUFFMDIvNEY3Qjc3MjhE RDVEMTFFRjkzMTI2MDFCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZ25+MA0EAgACMAcDBQAkAahAMA0GCSqGSIb3DQEBCwUAA4IBAQA7 /ysLRgDhKuBTor/DxHJAeglcbw7pLcbC6FzH3XSDUwvjmpjFxAlB3zRKMZJIwvUx 8jIjDUciVksvVt9btOgaKwhKOb6aOYc2jB6XW2zIuyZgfuU0M82iVHQJcvRceRAK 0EZBTNjBa4MxQytTSUNcjwmDL9D5d41JPR0cnlKt9K4g0daUNG8aOe62x0Cv7PL8 bJDlVw0ePpfiTRHLLhOaWcAlEQ8DY6wwQse8Su87YI4H45GGTXdXc1KGtLxjQy7Q 3kvn9SjPy+/81AwK+p3wns5LZubpqX0LbmV+0j7KMiRxnBrqlVx5q46cJW3z+54m 67/F6oKLZUQUOCfRyvUN -----END CERTIFICATE-----Generated at Fri Mar 27 02:03:43 2026 by rpki-client