$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/025F93342CC111F18F49A0CD8E833773.roa File: 025F93342CC111F18F49A0CD8E833773.roa (raw, json) Hash identifier: +JLotf+m/YHNBP+OERgCsRFnK8a10y9jhl0hyWUv7l0= Subject key identifier: CF:E4:D0:8D:4B:7C:02:FF:66:F6:EC:33:34:F6:E0:96:D2:EE:02:44 Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 06A8 Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/025F93342CC111F18F49A0CD8E833773.roa Signing time: Tue 31 Mar 2026 05:18:10 +0000 ROA not before: Tue 31 Mar 2026 05:18:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134143 IP address blocks: 14.102.164.0/24 maxlen: 24 14.102.165.0/24 maxlen: 24 14.102.166.0/24 maxlen: 24 45.248.196.0/22 maxlen: 24 103.4.55.0/24 maxlen: 24 103.55.92.0/24 maxlen: 24 103.55.93.0/24 maxlen: 24 103.55.94.0/24 maxlen: 24 103.55.95.0/24 maxlen: 24 103.133.52.0/22 maxlen: 24 103.217.164.0/22 maxlen: 24 103.228.104.0/22 maxlen: 24 2405:e180::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578, serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: Mar 31 05:18:10 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69cb5912-7668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:91:62:25:8c:2f:96:c8:86:dd:5b:9b:f6:8a: 59:24:89:b2:e0:e9:7e:cb:7b:88:7c:97:6e:cc:d5: 5c:2f:df:85:3b:f1:47:55:45:8c:f5:b1:6f:6d:f9: c7:a7:35:e1:36:0a:b5:bd:04:67:e1:8c:84:6d:26: 70:52:0c:4f:83:c3:da:7d:91:e5:d7:a6:76:3b:99: f1:06:5d:ef:5d:68:4c:d4:15:39:49:40:c4:ba:bf: ea:72:f7:b8:60:ee:be:d9:94:9c:bf:f2:a4:48:08: 01:e4:2f:29:65:35:1e:80:56:67:cc:ea:92:cf:4f: d0:df:6d:88:d7:c4:e5:54:ad:5d:f5:71:4d:b7:02: 9d:88:57:29:9a:42:a0:28:68:62:da:b0:df:0e:f0: b4:a1:23:a3:4b:73:57:f6:82:01:a8:b9:22:7b:40: ee:5a:3e:98:cc:34:9c:eb:e7:9c:83:f2:12:f7:b6: c3:3d:84:a4:2c:a8:6d:03:74:38:12:b4:93:d2:5f: 21:1d:3a:1a:90:4d:2f:e9:d4:27:03:40:fc:71:10: 90:f8:c3:42:12:07:89:34:c9:84:2a:21:ee:10:13: ab:a7:69:ca:c1:15:90:04:46:ff:ed:0a:4f:b2:fc: 81:f6:6a:3f:81:75:93:05:72:31:1d:2e:1f:13:1a: 22:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E4:D0:8D:4B:7C:02:FF:66:F6:EC:33:34:F6:E0:96:D2:EE:02:44 X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/025F93342CC111F18F49A0CD8E833773.roa sbgp-ipAddrBlock: critical IPv4: 14.102.164.0-14.102.166.255 45.248.196.0/22 103.4.55.0/24 103.55.92.0/22 103.133.52.0/22 103.217.164.0/22 103.228.104.0/22 IPv6: 2405:e180::/32 Signature Algorithm: sha256WithRSAEncryption 78:27:4e:82:d0:11:09:b6:89:9e:47:2b:47:67:8c:10:e4:66: 73:2a:02:53:75:e2:bb:20:9a:be:6d:34:8a:fe:c2:5d:f6:fc: 09:75:f4:df:68:9f:e7:5a:c6:42:b7:d5:f4:6e:72:a6:e0:d9: cc:a4:b4:99:fa:9b:22:ee:d9:c6:70:80:42:be:dd:89:4c:cb: d5:f7:2e:59:dc:f8:78:5c:37:c3:88:81:c8:58:c5:ca:22:8c: 8f:59:68:40:5e:38:b1:30:e6:29:b5:a8:40:5e:f9:53:14:e2: 35:cf:0b:18:77:99:64:79:9f:e1:3e:67:06:06:36:b6:dd:0f: 2d:d6:20:3c:5b:48:cd:1e:e9:d2:cc:92:a3:30:e2:7f:0b:ab: 72:9b:4e:88:87:c5:e6:77:5a:32:40:b2:91:de:dd:36:cc:83: 21:35:43:61:d2:f8:14:16:5e:63:df:be:55:f3:2a:4e:e1:1e: 13:04:af:11:2f:5e:3e:79:a6:9c:2f:0a:ed:e5:50:99:ab:2d: 21:fa:15:62:94:60:9b:a6:16:47:ce:04:5d:9e:3e:75:c1:b5: fa:a8:31:30:9b:0a:1f:5e:52:9f:09:c2:82:f6:7d:e3:35:6a: 48:27:6f:ec:44:c8:a5:7c:44:6c:09:df:17:66:bd:2a:d6:df: 63:58:a6:9a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjYwMzMxMDUxODEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiNTkxMi03NjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5FiJYwvlsiG3Vub9opZJImy4Ol+y3uIfJduzNVcL9+FO/FHVUWM9bFvbfnH pzXhNgq1vQRn4YyEbSZwUgxPg8PafZHl16Z2O5nxBl3vXWhM1BU5SUDEur/qcve4 YO6+2ZScv/KkSAgB5C8pZTUegFZnzOqSz0/Q322I18TlVK1d9XFNtwKdiFcpmkKg KGhi2rDfDvC0oSOjS3NX9oIBqLkie0DuWj6YzDSc6+ecg/IS97bDPYSkLKhtA3Q4 ErST0l8hHToakE0v6dQnA0D8cRCQ+MNCEgeJNMmEKiHuEBOrp2nKwRWQBEb/7QpP svyB9mo/gXWTBXIxHS4fExoi1wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM/k0I1L fAL/ZvbsMzT24JbS7gJEMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc1NzgvRDNDMDE5MENCQjlEMTFFQjg0RjczQjNBQzRGOUFFMDIvMDI1RjkzMzQy Q0MxMTFGMThGNDlBMENEOEU4MzM3NzMucm9hMFoGCCsGAQUFBwEHAQH/BEswSTA4 BAIAATAyMAwDBAIOZqQDBAAOZqYDBAIt+MQDBABnBDcDBAJnN1wDBAJnhTQDBAJn 2aQDBAJn5GgwDQQCAAIwBwMFACQF4YAwDQYJKoZIhvcNAQELBQADggEBAHgnToLQ EQm2iZ5HK0dnjBDkZnMqAlN14rsgmr5tNIr+wl32/Al19N9on+daxkK31fRucqbg 2cyktJn6myLu2cZwgEK+3YlMy9X3Llnc+HhcN8OIgchYxcoijI9ZaEBeOLEw5im1 qEBe+VMU4jXPCxh3mWR5n+E+ZwYGNrbdDy3WIDxbSM0e6dLMkqMw4n8Lq3KbToiH xeZ3WjJAspHe3TbMgyE1Q2HS+BQWXmPfvlXzKk7hHhMErxEvXj55ppwvCu3lUJmr LSH6FWKUYJumFkfOBF2ePnXBtfqoMTCbCh9eUp8JwoL2feM1akgnb+xEyKV8RGwJ 3xdmvSrW32NYppo= -----END CERTIFICATE-----Generated at Sun Apr 5 21:04:17 2026 by rpki-client