$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/B67BE8ECC13C11EE80101E73C4F9AE02.roa File: B67BE8ECC13C11EE80101E73C4F9AE02.roa (raw, json) Hash identifier: IVLj0WeJAsKNyITHuDeBc1Jwj1H2yGwi+BTH30ak3Wk= Subject key identifier: 8D:49:59:83:99:30:64:CD:77:24:44:95:CE:B4:1C:6D:75:A7:CD:A1 Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Certificate serial: 0A63 Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/B67BE8ECC13C11EE80101E73C4F9AE02.roa Signing time: Mon 02 Mar 2026 04:41:06 +0000 ROA not before: Sat 04 Oct 2025 20:20:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141342 IP address blocks: 103.72.0.0/24 maxlen: 24 103.72.1.0/24 maxlen: 24 103.72.2.0/24 maxlen: 24 103.72.3.0/24 maxlen: 24 103.194.92.0/24 maxlen: 24 103.194.93.0/24 maxlen: 24 103.194.94.0/24 maxlen: 24 103.194.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 19:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFF15, serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Validity Not Before: Oct 4 20:20:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a514e2-7c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:39:b8:19:3d:39:7e:08:e2:f1:29:e3:ce:2f: b9:01:a6:78:37:dc:6e:46:9c:26:81:1d:d6:8a:af: 87:bf:aa:3c:6b:44:bc:da:a8:22:22:39:b4:4f:0d: 67:0a:80:9e:f3:9d:41:45:34:d7:74:c4:12:e0:ab: 26:f7:12:ac:39:6e:39:7d:36:2a:7b:4a:de:13:d8: 57:4b:67:3a:85:be:ee:d3:a8:e9:78:7f:04:c1:84: 26:b9:89:7e:37:83:46:e8:ce:21:b6:4c:fe:83:58: b3:60:fa:37:53:3c:df:ab:aa:73:f4:9c:27:12:c1: be:dd:ed:fa:e8:f3:c6:bd:22:1e:0c:21:f0:74:32: 35:4b:5c:11:cb:d7:4b:e8:e9:37:fe:c5:30:f9:3f: 29:bc:16:29:4d:01:aa:2c:52:a3:2a:b7:32:c5:e1: ad:fd:db:30:27:e0:3c:5c:31:08:5a:2e:2a:59:6c: cc:d6:07:12:53:cb:ca:14:e8:02:4e:50:81:05:c6: 56:65:4e:50:7b:ec:6b:92:47:a6:dd:4a:3d:f8:01: 77:b2:94:4a:29:98:d0:ab:f7:48:f9:9f:dd:70:34: 43:5e:ff:03:ab:a5:2e:77:b9:36:d4:dd:d9:0d:92: 53:66:76:c6:ac:d8:5b:5a:30:70:e9:c2:96:7f:b2: 1b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:49:59:83:99:30:64:CD:77:24:44:95:CE:B4:1C:6D:75:A7:CD:A1 X509v3 Authority Key Identifier: keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/B67BE8ECC13C11EE80101E73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.0.0/22 103.194.92.0/22 Signature Algorithm: sha256WithRSAEncryption b3:c8:4e:e0:51:3a:4c:25:00:9c:87:d6:28:d9:ef:e7:c6:af: 20:34:e1:1e:0b:1c:65:6d:92:7f:a6:66:65:e1:fe:a5:cb:e3: 5e:f2:97:da:93:16:43:5d:47:83:4b:e9:0c:7f:a2:cf:d9:04: e1:cc:d9:53:57:9e:82:42:2f:fe:f6:61:0a:25:62:2a:45:93: 08:8e:d8:d3:32:01:b1:b4:04:65:c4:1c:a6:31:c6:58:41:bc: 9a:ff:7e:ce:de:33:4a:c2:e0:c3:44:cf:54:95:9e:ce:1b:73: 91:f8:04:80:ae:5e:f7:41:b8:ae:c6:34:59:b0:b4:cc:b0:e8: 89:d5:22:64:3f:69:d6:89:23:e8:d9:3b:7f:a2:22:81:30:57: b4:5a:c1:66:aa:2d:f8:71:35:7e:e3:1a:9f:cf:72:1a:66:c2: 3c:13:75:fb:8f:cb:f2:f0:35:f9:21:ed:06:a8:8c:bb:5f:77: 6f:d1:f3:a2:9b:ec:a7:80:4b:77:82:de:07:aa:25:6d:98:c3: cb:f4:84:b4:c6:55:86:24:4a:59:36:ef:93:b7:5c:9f:34:1f: a4:b3:36:ca:88:34:9e:bd:31:7b:ac:89:02:9c:81:98:1c:bc: 80:d2:19:ef:ea:03:c8:1e:76:2c:37:e1:63:78:34:76:69:06: cd:3f:6f:8d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZGMTUxMTAvBgNVBAUTKDU5OUE3OEQ0QkJDRTEzRDREODEzREVGOTE2N0NEMzU3 NDdFQTAyNjAwHhcNMjUxMDA0MjAyMDA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTRlMi03YzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjm4GT05fgji8Snjzi+5AaZ4N9xuRpwmgR3Wiq+Hv6o8a0S82qgiIjm0Tw1n CoCe851BRTTXdMQS4Ksm9xKsOW45fTYqe0reE9hXS2c6hb7u06jpeH8EwYQmuYl+ N4NG6M4htkz+g1izYPo3Uzzfq6pz9JwnEsG+3e366PPGvSIeDCHwdDI1S1wRy9dL 6Ok3/sUw+T8pvBYpTQGqLFKjKrcyxeGt/dswJ+A8XDEIWi4qWWzM1gcSU8vKFOgC TlCBBcZWZU5Qe+xrkkem3Uo9+AF3spRKKZjQq/dI+Z/dcDRDXv8Dq6Uud7k21N3Z DZJTZnbGrNhbWjBw6cKWf7IbIQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFI1JWYOZ MGTNdyRElc60HG11p82hMB8GA1UdIwQYMBaAFFmaeNS7zhPU2BPe+RZ801dH6gJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkYxNS9CNDc4NUJFODhE NEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5VFlFOTc1Rm56VFYwZnFB bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dacDQxTHZPRTlUWUU5NzVGbnpUVjBmcUFtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZGMTUvQjQ3ODVCRTg4RDRDMTFFQUJCREQzQTc0QzRGOUFFMDIvQjY3QkU4RUND MTNDMTFFRTgwMTAxRTczQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ0gAAwQCZ8JcMA0GCSqGSIb3DQEBCwUAA4IBAQCzyE7gUTpMJQCc h9Yo2e/nxq8gNOEeCxxlbZJ/pmZl4f6ly+Ne8pfakxZDXUeDS+kMf6LP2QThzNlT V56CQi/+9mEKJWIqRZMIjtjTMgGxtARlxBymMcZYQbya/37O3jNKwuDDRM9UlZ7O G3OR+ASArl73QbiuxjRZsLTMsOiJ1SJkP2nWiSPo2Tt/oiKBMFe0WsFmqi34cTV+ 4xqfz3IaZsI8E3X7j8vy8DX5Ie0GqIy7X3dv0fOim+yngEt3gt4HqiVtmMPL9IS0 xlWGJEpZNu+Tt1yfNB+kszbKiDSevTF7rIkCnIGYHLyA0hnv6gPIHnYsN+FjeDR2 aQbNP2+N -----END CERTIFICATE-----Generated at Sat Mar 14 01:03:21 2026 by rpki-client