$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/6CB78E8E967811EA92E45A27C4F9AE02.roa File: 6CB78E8E967811EA92E45A27C4F9AE02.roa (raw, json) Hash identifier: j8SdiRCElSMFnJ22wBx2N8U0G8IWYs38Ik8ORdeha4Y= Subject key identifier: A4:AB:A5:24:D1:F3:6B:5D:6E:83:95:FC:85:42:35:30:50:F6:69:FA Certificate issuer: /CN=A91FEB27/serialNumber=79E5632AF29BAE64E5F9F19C575BC5A995E20550 Certificate serial: 2DB7 Authority key identifier: 79:E5:63:2A:F2:9B:AE:64:E5:F9:F1:9C:57:5B:C5:A9:95:E2:05:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/6CB78E8E967811EA92E45A27C4F9AE02.roa Signing time: Fri 06 Mar 2026 16:18:58 +0000 ROA not before: Fri 06 Mar 2026 16:18:58 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 56304 IP address blocks: 103.15.152.0/22 maxlen: 24 175.111.100.0/22 maxlen: 24 2400:6900::/32 maxlen: 32 2400:6900:3010::/48 maxlen: 48 2400:6900:f000::/48 maxlen: 48 2400:6900:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.crl rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11703 (0x2db7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEB27, serialNumber=79E5632AF29BAE64E5F9F19C575BC5A995E20550 Validity Not Before: Mar 6 16:18:58 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69aafe72-99f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e9:b8:93:e5:04:0f:ee:1e:c8:97:24:ba:97: b1:77:b5:44:92:f1:f0:20:c5:1b:86:91:9c:12:c4: 8d:e0:03:e8:8b:eb:fe:e0:fc:c1:e8:77:9a:04:92: 0e:72:9d:fd:be:b8:50:80:e4:27:ed:0c:b3:f8:ae: 4c:da:3c:15:00:ec:98:9b:97:10:3a:3e:02:df:24: 48:44:89:20:6b:9c:5e:eb:82:89:99:f8:74:82:c6: e1:47:52:3c:af:75:0a:5e:6c:5a:47:a3:67:a6:f7: 15:0e:d6:f8:f6:81:4c:d8:97:1a:c5:aa:a4:5f:ca: be:c7:05:2a:4d:f0:96:39:88:e7:83:32:96:32:94: c4:72:80:76:e2:de:ec:c1:cf:3c:8d:b8:4a:66:98: c8:52:3a:d5:c6:e4:03:e0:7d:5e:9a:75:9d:a7:fd: 06:c0:e7:30:cf:be:3a:92:68:59:44:2f:cd:0f:85: d3:f9:0d:1f:59:5f:33:32:42:74:68:99:b5:ea:cd: 7d:19:d2:da:85:bd:e1:50:af:90:88:12:92:32:15: d6:a1:ed:44:3e:4a:2e:99:2a:ff:64:99:73:7b:93: b2:e0:15:37:d1:ed:b8:a5:b8:f9:fc:b8:87:85:d6: c1:83:78:53:e1:36:78:d7:be:42:99:5f:a1:e1:68: 36:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AB:A5:24:D1:F3:6B:5D:6E:83:95:FC:85:42:35:30:50:F6:69:FA X509v3 Authority Key Identifier: keyid:79:E5:63:2A:F2:9B:AE:64:E5:F9:F1:9C:57:5B:C5:A9:95:E2:05:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/eeVjKvKbrmTl-fGcV1vFqZXiBVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eeVjKvKbrmTl-fGcV1vFqZXiBVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEB27/167A97EC9AE311E3A5A257A75911EA32/6CB78E8E967811EA92E45A27C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.15.152.0/22 175.111.100.0/22 IPv6: 2400:6900::/32 Signature Algorithm: sha256WithRSAEncryption 1a:94:ed:5b:dc:a5:27:b9:d4:0b:05:26:8b:a0:2f:26:ac:7b: 17:f4:1e:80:02:1c:bb:92:ff:57:30:b5:44:ea:17:f9:16:df: af:2b:dd:92:92:e3:bd:86:71:dd:0b:00:37:03:29:38:2a:cc: cf:e8:71:8d:be:ef:af:25:55:b2:21:ba:ed:84:2a:25:79:85: 12:ee:03:9d:cc:94:29:16:e0:0c:f6:fb:e7:9f:79:c8:88:b5: 20:31:df:98:1d:83:3a:2f:da:54:fe:f2:78:cf:0d:3f:7d:e1: 7e:0e:88:10:70:67:a1:11:ca:65:18:81:9b:95:a0:3d:fd:40: 83:14:ac:df:15:09:26:5b:9a:47:b8:a9:be:da:1b:ac:1c:85: 1a:10:0d:7e:d0:74:2d:21:63:ee:0f:33:da:df:14:f1:b4:49: 9c:f7:18:4b:1a:27:f9:9a:42:7d:8d:44:5f:8c:8d:03:1e:48: eb:c2:7c:e7:36:1e:af:55:cb:53:b2:de:8e:fa:db:9f:2c:f1: b4:21:c5:0a:cb:2b:1e:6c:10:8a:d9:bc:68:16:b7:05:63:2d: 53:01:7b:a9:a9:ed:35:e0:de:50:14:37:da:25:81:dc:b4:8d: de:53:63:47:6c:ea:0f:fd:24:73:13:c7:27:b7:26:49:d8:e7: e1:eb:33:4a -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICLbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVCMjcxMTAvBgNVBAUTKDc5RTU2MzJBRjI5QkFFNjRFNUY5RjE5QzU3NUJDNUE5 OTVFMjA1NTAwHhcNMjYwMzA2MTYxODU4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFhZmU3Mi05OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtem4k+UED+4eyJckupexd7VEkvHwIMUbhpGcEsSN4APoi+v+4PzB6HeaBJIO cp39vrhQgOQn7Qyz+K5M2jwVAOyYm5cQOj4C3yRIRIkga5xe64KJmfh0gsbhR1I8 r3UKXmxaR6NnpvcVDtb49oFM2JcaxaqkX8q+xwUqTfCWOYjngzKWMpTEcoB24t7s wc88jbhKZpjIUjrVxuQD4H1emnWdp/0GwOcwz746kmhZRC/ND4XT+Q0fWV8zMkJ0 aJm16s19GdLahb3hUK+QiBKSMhXWoe1EPkoumSr/ZJlze5Oy4BU30e24pbj5/LiH hdbBg3hT4TZ4175CmV+h4Wg2lwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKSrpSTR 82tdboOV/IVCNTBQ9mn6MB8GA1UdIwQYMBaAFHnlYyrym65k5fnxnFdbxamV4gVQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUIyNy8xNjdBOTdFQzlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9lZVZqS3ZLYnJtVGwtZkdjVjF2RnFaWGlC VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VlVmpLdkticm1UbC1mR2NWMXZGcVpYaUJWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVCMjcvMTY3QTk3RUM5QUUzMTFFM0E1QTI1N0E3NTkxMUVBMzIvNkNCNzhFOEU5 Njc4MTFFQTkyRTQ1QTI3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZw+YAwQCr29kMA0EAgACMAcDBQAkAGkAMA0GCSqGSIb3DQEBCwUA A4IBAQAalO1b3KUnudQLBSaLoC8mrHsX9B6AAhy7kv9XMLVE6hf5Ft+vK92SkuO9 hnHdCwA3Ayk4KszP6HGNvu+vJVWyIbrthColeYUS7gOdzJQpFuAM9vvnn3nIiLUg Md+YHYM6L9pU/vJ4zw0/feF+DogQcGehEcplGIGblaA9/UCDFKzfFQkmW5pHuKm+ 2husHIUaEA1+0HQtIWPuDzPa3xTxtEmc9xhLGif5mkJ9jURfjI0DHkjrwnznNh6v VctTst6O+tufLPG0IcUKyysebBCK2bxoFrcFYy1TAXupqe014N5QFDfaJYHctI3e U2NHbOoP/SRzE8cntyZJ2Ofh6zNK -----END CERTIFICATE-----Generated at Thu Mar 26 19:47:51 2026 by rpki-client