$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa File: 765DBCFEEC1A11EAA8520072C4F9AE02.roa (raw, json) Hash identifier: E1osJa1V0JVtjqosfDLpGdKQTMEb5lq5v8Acf9g4j/A= Subject key identifier: F4:CF:A3:5C:1A:F5:42:EF:6F:FA:7D:09:C1:A7:62:23:C2:FC:D9:86 Certificate issuer: /CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Certificate serial: 0885 Authority key identifier: 07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:53 +0000 ROA not before: Tue 02 Dec 2025 20:22:47 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 64049 IP address blocks: 59.153.104.0/22 maxlen: 22 59.153.104.0/24 maxlen: 24 59.153.105.0/24 maxlen: 24 59.153.106.0/24 maxlen: 24 59.153.107.0/24 maxlen: 24 103.198.140.0/22 maxlen: 22 103.198.140.0/24 maxlen: 24 103.198.141.0/24 maxlen: 24 103.198.142.0/24 maxlen: 24 103.198.143.0/24 maxlen: 24 2403:1a80:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD609, serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Validity Not Before: Dec 2 20:22:47 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a42f61-435b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e6:83:77:c8:21:61:e2:4f:8c:c3:73:cd:ac: 5f:cf:0d:c2:33:e8:7c:6f:dd:2f:63:9f:89:b6:86: 60:2e:df:96:e3:db:d1:b2:fe:11:ab:59:55:8e:73: a3:12:5d:09:9d:09:61:33:06:8d:ba:2c:2b:63:2b: 2f:52:5d:3f:dd:fd:1f:b1:e0:e9:4c:62:70:33:83: 14:b3:87:2b:ce:db:92:b9:7e:40:72:50:4f:13:10: 4e:fb:6c:bd:b2:e1:38:f6:97:9d:4d:79:22:cd:75: 30:59:10:4b:df:e4:eb:23:f6:82:1c:57:d0:0d:e5: 44:7c:45:20:bd:87:02:03:b3:ea:8c:f8:45:a4:e6: 23:1a:8f:3a:5a:7e:a6:0c:0a:26:24:4f:d1:a2:ea: 48:e8:65:00:ad:b1:7b:12:33:18:d6:61:a5:ea:4a: c5:5a:11:d9:20:57:d2:79:0d:20:28:c8:96:37:15: fd:56:8f:ff:03:e8:c8:ec:1a:68:78:4b:03:ea:66: 1f:1f:be:3d:35:f2:e6:3a:fd:47:b1:59:df:d7:49: 13:f8:ef:2c:4b:c7:b6:78:b0:d4:b1:88:b0:5a:8d: 93:e9:0f:9a:5d:2a:47:9d:65:c6:02:02:60:9f:e4: cf:f1:2c:6a:59:89:c3:36:34:25:14:ad:d0:35:88: 15:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:CF:A3:5C:1A:F5:42:EF:6F:FA:7D:09:C1:A7:62:23:C2:FC:D9:86 X509v3 Authority Key Identifier: keyid:07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.153.104.0/22 103.198.140.0/22 IPv6: 2403:1a80:a000::/48 Signature Algorithm: sha256WithRSAEncryption 27:8b:c0:5d:68:66:bf:d8:2e:e2:1c:52:90:e0:68:46:06:b6: 2e:04:bc:04:44:39:a6:2b:1a:ae:b9:36:0c:7a:03:a5:94:29: 1e:08:6d:b8:d7:ce:2f:81:71:64:14:3d:78:1e:ac:3d:f4:d4: 8f:2b:53:f7:18:20:19:31:ef:4e:7d:c1:01:49:1c:57:82:37: 4b:21:84:e4:01:eb:77:cc:bb:49:d4:7a:16:a3:0c:5d:0e:82: ae:e2:cb:10:d9:87:29:48:0a:b5:ab:44:06:16:21:3a:2c:3c: 8c:cb:c7:62:4e:fb:9a:d8:af:b0:06:50:2a:89:8c:b7:28:41: c6:5a:c3:7c:e9:af:c6:a0:11:47:7b:06:33:4d:92:b0:fa:bd: a7:ff:04:47:8d:9f:9e:f7:5c:5a:64:d5:1e:c0:9f:53:21:a0: 8b:cc:67:6e:46:aa:21:19:2a:53:04:88:7a:e2:21:82:40:4e: af:0b:d8:52:5f:b1:32:0f:64:93:0b:19:de:89:e0:d9:d0:d8: dd:dd:35:56:68:68:ea:78:77:2f:57:4e:05:7b:6f:86:28:18: ed:5f:00:7f:71:2e:3e:67:ab:c2:96:a8:c8:22:1d:bd:b5:40: 6d:d3:d2:c2:c8:ae:a9:08:13:19:73:0f:c6:c2:03:3d:20:93: 42:ca:5f:74 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2MDkxMTAvBgNVBAUTKDA3Q0Q5RDMxRUQ2MTg2MkFGNTAzRTUyMDk0MjhDN0NC MjdFQTg4MUYwHhcNMjUxMjAyMjAyMjQ3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY2MS00MzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueaDd8ghYeJPjMNzzaxfzw3CM+h8b90vY5+JtoZgLt+W49vRsv4Rq1lVjnOj El0JnQlhMwaNuiwrYysvUl0/3f0fseDpTGJwM4MUs4crztuSuX5AclBPExBO+2y9 suE49pedTXkizXUwWRBL3+TrI/aCHFfQDeVEfEUgvYcCA7PqjPhFpOYjGo86Wn6m DAomJE/RoupI6GUArbF7EjMY1mGl6krFWhHZIFfSeQ0gKMiWNxX9Vo//A+jI7Bpo eEsD6mYfH749NfLmOv1HsVnf10kT+O8sS8e2eLDUsYiwWo2T6Q+aXSpHnWXGAgJg n+TP8SxqWYnDNjQlFK3QNYgViQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFPTPo1wa 9ULvb/p9CcGnYiPC/NmGMB8GA1UdIwQYMBaAFAfNnTHtYYYq9QPlIJQox8sn6ogf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDYwOS8wQzYwOUI5Q0VD MTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhpcjFBLVVnbENqSHl5ZnFp QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I4MmRNZTFoaGlyMUEtVWdsQ2pIeXlmcWlCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQ2MDkvMEM2MDlCOUNFQzE5MTFFQTkyNURGQzZGQzRGOUFFMDIvNzY1REJDRkVF QzFBMTFFQUE4NTIwMDcyQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCO5loAwQCZ8aMMA8EAgACMAkDBwAkAxqAoAAwDQYJKoZIhvcNAQEL BQADggEBACeLwF1oZr/YLuIcUpDgaEYGti4EvAREOaYrGq65Ngx6A6WUKR4IbbjX zi+BcWQUPXgerD301I8rU/cYIBkx7059wQFJHFeCN0shhOQB63fMu0nUehajDF0O gq7iyxDZhylICrWrRAYWITosPIzLx2JO+5rYr7AGUCqJjLcoQcZaw3zpr8agEUd7 BjNNkrD6vaf/BEeNn573XFpk1R7An1MhoIvMZ25GqiEZKlMEiHriIYJATq8L2FJf sTIPZJMLGd6J4NnQ2N3dNVZoaOp4dy9XTgV7b4YoGO1fAH9xLj5nq8KWqMgiHb21 QG3T0sLIrqkIExlzD8bCAz0gk0LKX3Q= -----END CERTIFICATE-----Generated at Fri Mar 27 04:15:12 2026 by rpki-client