$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/7B21EBD2B6FB11F0AFDD6239C4F9AE02.roa File: 7B21EBD2B6FB11F0AFDD6239C4F9AE02.roa (raw, json) Hash identifier: bKR+/9hF1Mbqq8jhYcz+VpME4jxBkcq5w4O21jzKfnY= Subject key identifier: 3D:1A:15:15:CD:11:E8:61:0F:45:55:84:E2:30:85:D1:EB:55:89:67 Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: 0192 Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/7B21EBD2B6FB11F0AFDD6239C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:54:12 +0000 ROA not before: Sat 01 Nov 2025 08:19:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 213549 IP address blocks: 103.14.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353, serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: Nov 1 08:19:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a57a63-8616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a6:9f:78:40:9c:76:ce:e1:73:dd:bd:a9:42: b8:f9:73:46:e6:5a:13:20:e7:61:57:ac:b2:70:2c: 93:60:50:ce:a3:8f:88:62:5f:7e:6f:f5:21:64:8a: fe:2f:7c:a4:a2:c0:e1:83:a8:62:e6:60:08:a6:de: ab:db:ab:3c:ef:b2:d4:f1:a9:90:b7:c6:22:a0:ae: c8:fc:a0:2c:1f:b6:3d:f3:76:68:c6:cf:f5:c3:e8: 89:f0:f4:ed:48:93:62:43:2c:55:86:5e:5b:14:df: f9:58:3c:f8:c1:10:f6:34:aa:33:94:54:9e:c3:47: 4a:69:1b:5d:cc:e8:0c:29:b9:c2:9d:d3:52:66:e1: da:68:9d:80:d8:24:9c:22:0d:de:5f:a1:23:93:d3: 4a:0e:9e:af:1b:35:bd:44:62:d5:9e:f2:1d:32:58: 8a:70:43:63:01:8a:68:1c:1d:5e:d0:46:81:3c:c2: 38:1e:cd:80:a2:37:3f:a3:96:36:15:ec:44:d7:b2: c8:f2:c1:29:40:a7:22:48:7b:ab:2f:76:ef:fb:c4: eb:2b:ea:3c:37:5f:88:51:03:a1:a4:b2:a3:4b:ee: 21:32:ba:48:d4:b2:6f:65:7d:01:62:f4:aa:ca:16: 0b:b8:1f:67:08:56:ed:eb:86:8d:7d:8e:e7:f9:c8: 5f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:1A:15:15:CD:11:E8:61:0F:45:55:84:E2:30:85:D1:EB:55:89:67 X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/7B21EBD2B6FB11F0AFDD6239C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.22.0/24 Signature Algorithm: sha256WithRSAEncryption 31:0d:3b:28:0c:8e:2c:8a:c9:87:41:df:a9:62:e0:7c:6e:da: 90:39:e2:4d:03:6b:8e:27:62:a8:10:0a:40:ec:65:87:21:a1: 44:44:ee:10:97:4d:75:04:37:4d:09:24:e0:9b:37:70:55:cf: 9d:b4:fb:ba:ef:e5:16:62:01:fd:6b:6b:98:85:32:3a:66:73: a5:c0:52:d1:50:07:0b:39:30:bf:80:2c:8e:de:33:05:b5:1f: eb:79:63:be:36:b1:28:4c:dd:1d:dd:ec:95:e1:d2:d3:c6:1f: a5:c4:ce:75:dd:f4:4d:83:0e:fc:d9:a2:1c:bd:6a:49:79:61: 06:bc:12:fa:9d:5d:76:41:6a:d2:60:59:7d:09:ff:05:bb:bd: 58:7f:f6:71:34:03:b4:ec:2f:45:71:8a:19:af:5a:9c:7f:51: 64:15:ea:94:de:7e:f6:b6:0f:a0:5d:70:28:16:17:31:ed:56: 30:4b:96:81:57:da:1d:8b:a9:aa:2f:14:7a:d8:29:8a:db:cb: d0:05:8d:c8:b3:35:71:07:62:d1:59:19:e0:5d:a7:b8:b6:5f: 3b:80:7c:97:6f:ac:0a:8d:36:42:ea:b4:9a:0c:0f:95:dd:94: bf:14:4e:b2:c0:cf:cb:91:9a:ef:b8:95:37:c2:d8:e5:3e:10: 78:db:7b:cf -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkzNTMxMTAvBgNVBAUTKEFDRDA0N0QwRDg4RTI2NTdFMTJDRjkxMzAxQzE2MEYx RDNDRDJGMzMwHhcNMjUxMTAxMDgxOTI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1N2E2My04NjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6afeECcds7hc929qUK4+XNG5loTIOdhV6yycCyTYFDOo4+IYl9+b/UhZIr+ L3ykosDhg6hi5mAIpt6r26s877LU8amQt8YioK7I/KAsH7Y983Zoxs/1w+iJ8PTt SJNiQyxVhl5bFN/5WDz4wRD2NKozlFSew0dKaRtdzOgMKbnCndNSZuHaaJ2A2CSc Ig3eX6Ejk9NKDp6vGzW9RGLVnvIdMliKcENjAYpoHB1e0EaBPMI4Hs2Aojc/o5Y2 FexE17LI8sEpQKciSHurL3bv+8TrK+o8N1+IUQOhpLKjS+4hMrpI1LJvZX0BYvSq yhYLuB9nCFbt64aNfY7n+chfMQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD0aFRXN EehhD0VVhOIwhdHrVYlnMB8GA1UdIwQYMBaAFKzQR9DYjiZX4Sz5EwHBYPHTzS8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTM1My8wODc1RTY0ODA1 QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9yTkJIME5pT0psZmhMUGtUQWNGZzhkUE5M ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkzNTMvMDg3NUU2NDgwNUM2MTFFRjg5NjIwQTI2QzRGOUFFMDIvN0IyMUVCRDJC NkZCMTFGMEFGREQ2MjM5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZw4WMA0GCSqGSIb3DQEBCwUAA4IBAQAxDTsoDI4sismHQd+pYuB8 btqQOeJNA2uOJ2KoEApA7GWHIaFERO4Ql011BDdNCSTgmzdwVc+dtPu67+UWYgH9 a2uYhTI6ZnOlwFLRUAcLOTC/gCyO3jMFtR/reWO+NrEoTN0d3eyV4dLTxh+lxM51 3fRNgw782aIcvWpJeWEGvBL6nV12QWrSYFl9Cf8Fu71Yf/ZxNAO07C9FcYoZr1qc f1FkFeqU3n72tg+gXXAoFhcx7VYwS5aBV9odi6mqLxR62CmK28vQBY3IszVxB2LR WRngXae4tl87gHyXb6wKjTZC6rSaDA+V3ZS/FE6ywM/LkZrvuJU3wtjlPhB423vP -----END CERTIFICATE-----Generated at Thu Mar 26 13:54:19 2026 by rpki-client