$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/EEA8968C461A11ED898DD14FC4F9AE02.roa File: EEA8968C461A11ED898DD14FC4F9AE02.roa (raw, json) Hash identifier: rO0tDNcttMplae7nIOvYG1R1bdxFHJg9RWvc/5wp/yQ= Subject key identifier: 57:E7:A0:EF:12:40:3D:24:61:1F:CD:6D:4F:F6:FF:01:A1:14:7D:E2 Certificate issuer: /CN=A91AE3F2/serialNumber=FFE1B7A8729A0ECBBEC8B2FD9A97B74826CCDBC5 Certificate serial: 0293 Authority key identifier: FF:E1:B7:A8:72:9A:0E:CB:BE:C8:B2:FD:9A:97:B7:48:26:CC:DB:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-G3qHKaDsu-yLL9mpe3SCbM28U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/EEA8968C461A11ED898DD14FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:40:19 +0000 ROA not before: Fri 16 Jan 2026 12:03:01 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150345 IP address blocks: 103.17.6.0/24 maxlen: 24 103.17.7.0/24 maxlen: 24 2400:b3a0:e5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.crl rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-G3qHKaDsu-yLL9mpe3SCbM28U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE3F2, serialNumber=FFE1B7A8729A0ECBBEC8B2FD9A97B74826CCDBC5 Validity Not Before: Jan 16 12:03:01 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46bf3-d78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:88:e6:3d:69:aa:23:bb:a7:07:bf:b3:ba:ec: 66:ec:38:be:05:6c:7f:c0:6e:2e:00:30:a9:7c:02: 46:ef:dc:52:fd:49:e1:3e:1d:d0:ee:0b:2c:1c:a9: d6:6c:00:15:39:a5:21:c9:e9:0d:22:bc:30:2e:8d: 60:02:c2:6c:95:92:f4:9f:e7:54:20:10:27:53:90: de:c3:f9:10:c3:29:b7:d0:6c:d1:07:92:77:98:12: e3:87:ac:33:69:e9:b1:54:f0:a7:57:4a:9c:1e:3b: 37:da:ee:cf:fd:97:ff:36:38:cd:cf:02:2d:f3:c0: d3:47:22:3d:83:67:64:b2:14:63:73:69:ef:5c:64: a0:1a:c5:dd:60:99:d6:96:90:97:89:b0:f5:e0:c6: 8d:73:90:8d:d2:d5:6e:f4:71:2d:b8:1e:36:f5:a5: 03:90:b0:37:18:88:44:e6:96:5d:de:63:64:5f:66: 82:b0:5f:bb:ef:70:2e:74:06:cb:42:06:8e:4c:65: 8d:28:77:ed:a1:ca:38:c9:a6:7c:93:4c:ca:a5:67: 6a:97:62:3b:45:08:b6:ec:1f:e8:6e:06:74:e9:e9: 86:6e:59:fd:a1:eb:f3:53:ac:75:01:7f:a7:e9:90: 5b:29:6d:03:2a:7b:05:7f:e8:89:df:35:74:ec:b5: a8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E7:A0:EF:12:40:3D:24:61:1F:CD:6D:4F:F6:FF:01:A1:14:7D:E2 X509v3 Authority Key Identifier: keyid:FF:E1:B7:A8:72:9A:0E:CB:BE:C8:B2:FD:9A:97:B7:48:26:CC:DB:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-G3qHKaDsu-yLL9mpe3SCbM28U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/EEA8968C461A11ED898DD14FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.6.0/23 IPv6: 2400:b3a0:e5::/48 Signature Algorithm: sha256WithRSAEncryption 87:2d:59:e0:15:b8:ac:9d:5b:ca:93:cf:9a:47:86:87:22:f3: 74:8f:9f:35:1e:c9:65:b5:da:89:df:c9:c9:47:05:ca:3e:09: da:f5:c1:4a:81:37:9f:76:a6:5a:61:4d:95:f0:00:3e:d5:10: 48:69:7f:d2:06:3f:0a:b4:95:11:ff:29:f3:80:cd:15:fa:8b: 0f:8c:bd:b7:0a:b5:67:59:90:44:e5:c5:3d:8d:db:8a:fb:7b: 42:ae:c8:df:d0:13:d8:18:71:60:dd:75:36:1b:1c:3d:50:6f: 17:47:33:96:13:a2:61:ae:0d:29:30:ea:c3:66:2d:01:68:43: 73:ed:50:cd:73:2e:2e:3b:21:d8:b9:a0:b0:49:76:89:48:d2: 17:48:40:63:a1:fb:25:43:ec:23:0d:3e:02:48:94:1a:65:65: b1:71:de:34:3f:52:35:08:d7:a9:d2:67:85:54:f8:0a:a7:6f: fd:b2:94:68:3a:8f:6a:a6:2a:2e:54:d1:22:29:ed:da:8f:d5: 27:fa:73:97:47:15:c0:79:2e:ab:15:c4:00:0c:f0:71:40:52: 84:7d:5a:12:6e:12:5a:2a:ec:e6:bb:5e:88:38:84:69:6d:17: 28:1a:ef:cd:3e:b5:43:bb:27:98:d4:72:92:a2:e7:aa:c5:47: 19:19:8f:f5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUzRjIxMTAvBgNVBAUTKEZGRTFCN0E4NzI5QTBFQ0JCRUM4QjJGRDlBOTdCNzQ4 MjZDQ0RCQzUwHhcNMjYwMTE2MTIwMzAxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmJmMy1kNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14jmPWmqI7unB7+zuuxm7Di+BWx/wG4uADCpfAJG79xS/UnhPh3Q7gssHKnW bAAVOaUhyekNIrwwLo1gAsJslZL0n+dUIBAnU5Dew/kQwym30GzRB5J3mBLjh6wz aemxVPCnV0qcHjs32u7P/Zf/NjjNzwIt88DTRyI9g2dkshRjc2nvXGSgGsXdYJnW lpCXibD14MaNc5CN0tVu9HEtuB429aUDkLA3GIhE5pZd3mNkX2aCsF+773AudAbL QgaOTGWNKHftoco4yaZ8k0zKpWdql2I7RQi27B/obgZ06emGbln9oevzU6x1AX+n 6ZBbKW0DKnsFf+iJ3zV07LWo+QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFfnoO8S QD0kYR/NbU/2/wGhFH3iMB8GA1UdIwQYMBaAFP/ht6hymg7Lvsiy/ZqXt0gmzNvF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTNGMi84NkEwRkIyODQ2 MTYxMUVEOTJFQUFEMjBDNEY5QUUwMi9fLUczcUhLYURzdS15TEw5bXBlM1NDYk0y OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tRzNxSEthRHN1LXlMTDltcGUzU0NiTTI4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUzRjIvODZBMEZCMjg0NjE2MTFFRDkyRUFBRDIwQzRGOUFFMDIvRUVBODk2OEM0 NjFBMTFFRDg5OEREMTRGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZxEGMA8EAgACMAkDBwAkALOgAOUwDQYJKoZIhvcNAQELBQADggEB AIctWeAVuKydW8qTz5pHhoci83SPnzUeyWW12onfyclHBco+Cdr1wUqBN592plph TZXwAD7VEEhpf9IGPwq0lRH/KfOAzRX6iw+MvbcKtWdZkETlxT2N24r7e0KuyN/Q E9gYcWDddTYbHD1QbxdHM5YTomGuDSkw6sNmLQFoQ3PtUM1zLi47Idi5oLBJdolI 0hdIQGOh+yVD7CMNPgJIlBplZbFx3jQ/UjUI16nSZ4VU+Aqnb/2ylGg6j2qmKi5U 0SIp7dqP1Sf6c5dHFcB5LqsVxAAM8HFAUoR9WhJuEloq7Oa7Xog4hGltFyga780+ tUO7J5jUcpKi56rFRxkZj/U= -----END CERTIFICATE-----Generated at Sun Mar 22 04:42:12 2026 by rpki-client