$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/66CA9E0C0C5C11ECBD37E846C4F9AE02.roa File: 66CA9E0C0C5C11ECBD37E846C4F9AE02.roa (raw, json) Hash identifier: 8SswotttndtpysuN8f3cf2rgkNFT8Coim7wSA3FW2yY= Subject key identifier: F7:70:1F:E5:2F:C6:88:EB:DD:BD:81:67:6F:D2:71:68:2E:92:D5:A7 Certificate issuer: /CN=A91F7AC9/serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Certificate serial: 059A Authority key identifier: 32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/66CA9E0C0C5C11ECBD37E846C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:51:22 +0000 ROA not before: Wed 30 Apr 2025 23:35:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138934 IP address blocks: 103.137.88.0/22 maxlen: 24 2404:adc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:53:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1434 (0x59a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7AC9, serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Validity Not Before: Apr 30 23:35:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fe0a-2066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:49:48:ac:e4:49:db:31:de:4b:df:05:75:e9: 38:f6:93:f6:8e:1b:06:21:06:57:e8:65:47:c3:ee: 63:2a:7d:0a:75:9f:f3:da:02:03:43:dd:ae:34:fb: 1e:4a:89:35:f1:2b:4d:c9:21:6a:eb:6e:45:24:cb: 42:8f:40:a0:32:f6:71:d0:fe:eb:c7:7f:ab:55:14: 43:c9:a6:04:11:1b:0b:2d:66:3f:50:2e:5d:b5:8b: fe:69:b4:d4:69:21:21:c4:0d:1c:b1:c1:42:4c:86: 5b:49:2b:3c:81:38:a6:6e:fd:2b:08:44:44:8d:65: 83:a5:2e:9e:98:46:8f:a6:ce:44:42:0d:b3:33:f0: fe:c9:35:fe:f2:a3:4c:df:19:ab:84:f8:6d:82:42: be:78:2f:5e:6d:46:5b:89:cf:33:d8:95:ad:b6:b8: f5:26:a9:37:75:c7:75:77:20:49:1f:a9:f7:e8:6f: f6:29:cd:08:21:4a:4b:4b:5c:c4:03:e1:cf:10:12: 20:84:97:00:f0:57:b2:cd:96:76:36:6f:d6:45:d6: f1:b1:12:cf:e1:3c:53:e4:75:50:86:a1:a1:73:af: 76:39:f8:c7:b3:51:a3:8d:28:c4:8f:9e:e2:d8:80: 45:92:56:d7:bb:4d:21:0a:da:5e:1e:4c:9b:05:0d: e1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:70:1F:E5:2F:C6:88:EB:DD:BD:81:67:6F:D2:71:68:2E:92:D5:A7 X509v3 Authority Key Identifier: keyid:32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/66CA9E0C0C5C11ECBD37E846C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.88.0/22 IPv6: 2404:adc0::/32 Signature Algorithm: sha256WithRSAEncryption d8:a6:52:ff:6c:08:f3:92:fb:9c:e8:2a:46:61:28:b2:98:e8: 54:31:bb:e3:96:f2:b3:3e:e7:8b:de:37:36:1a:55:04:42:6f: 83:f1:ab:d3:c7:32:be:98:47:26:c5:4d:90:30:33:17:44:56: 6b:4f:29:20:de:f4:73:82:73:3a:ee:35:1e:d0:28:06:95:28: 5f:b0:c2:5b:98:65:d5:cb:9b:b3:1c:57:48:51:99:64:f1:b9: e9:25:06:eb:12:ac:b1:30:7e:75:4a:30:e8:51:7d:b6:08:f2: 20:82:c9:2e:58:a1:f6:40:b4:73:a4:7c:97:85:f5:1b:f1:cf: 3c:a9:da:a4:03:e2:89:6e:9e:7b:94:3a:2f:34:89:d1:19:17: 4d:ba:3e:ab:5f:38:82:40:ce:54:6b:bd:e0:3b:2c:ea:d7:82: cc:11:3c:68:e3:92:4a:c2:46:ca:bb:4b:5b:97:7b:61:29:da: 24:2f:1b:c9:6d:b7:d5:1e:31:18:0d:60:16:04:47:8d:44:01: 64:04:a3:0a:a6:28:f2:aa:88:42:d6:4e:45:53:ff:95:c4:96: bf:7e:9b:c2:23:92:6d:a0:69:ab:7d:42:08:7f:a2:3b:cb:5a: 85:81:fe:3a:20:92:37:8b:4d:a2:8d:dd:93:c8:86:41:a2:9d: c8:12:a7:48 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdBQzkxMTAvBgNVBAUTKDMyNkU1NUU3NEIwNkNEODNGOTk0Q0MxREE2NjU2NTQy MUNDOUUyMTkwHhcNMjUwNDMwMjMzNTEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmUwYS0yMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUlIrORJ2zHeS98Fdek49pP2jhsGIQZX6GVHw+5jKn0KdZ/z2gIDQ92uNPse Sok18StNySFq625FJMtCj0CgMvZx0P7rx3+rVRRDyaYEERsLLWY/UC5dtYv+abTU aSEhxA0cscFCTIZbSSs8gTimbv0rCEREjWWDpS6emEaPps5EQg2zM/D+yTX+8qNM 3xmrhPhtgkK+eC9ebUZbic8z2JWttrj1Jqk3dcd1dyBJH6n36G/2Kc0IIUpLS1zE A+HPEBIghJcA8FeyzZZ2Nm/WRdbxsRLP4TxT5HVQhqGhc692OfjHs1GjjSjEj57i 2IBFklbXu00hCtpeHkybBQ3hCQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPdwH+Uv xojr3b2BZ2/ScWguktWnMB8GA1UdIwQYMBaAFDJuVedLBs2D+ZTMHaZlZUIcyeIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0FDOS8wRDlGNDBFNjBD NUExMUVDOUY0MTUzNDVDNEY5QUUwMi9NbTVWNTBzR3pZUDVsTXdkcG1WbFFoeko0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tNVY1MHNHellQNWxNd2RwbVZsUWh6SjRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdBQzkvMEQ5RjQwRTYwQzVBMTFFQzlGNDE1MzQ1QzRGOUFFMDIvNjZDQTlFMEMw QzVDMTFFQ0JEMzdFODQ2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4lYMA0EAgACMAcDBQAkBK3AMA0GCSqGSIb3DQEBCwUAA4IBAQDY plL/bAjzkvuc6CpGYSiymOhUMbvjlvKzPueL3jc2GlUEQm+D8avTxzK+mEcmxU2Q MDMXRFZrTykg3vRzgnM67jUe0CgGlShfsMJbmGXVy5uzHFdIUZlk8bnpJQbrEqyx MH51SjDoUX22CPIggskuWKH2QLRzpHyXhfUb8c88qdqkA+KJbp57lDovNInRGRdN uj6rXziCQM5Ua73gOyzq14LMETxo45JKwkbKu0tbl3thKdokLxvJbbfVHjEYDWAW BEeNRAFkBKMKpijyqohC1k5FU/+VxJa/fpvCI5JtoGmrfUIIf6I7y1qFgf46IJI3 i02ijd2TyIZBop3IEqdI -----END CERTIFICATE-----Generated at Thu Mar 26 20:37:09 2026 by rpki-client