
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/6BB6EF78EB5F11ECB4060F86C4F9AE02.roa
File: 6BB6EF78EB5F11ECB4060F86C4F9AE02.roa (raw, json)
Hash identifier: 8O8JY2NXJlU6iXynIm/TOWGZDFkAjSbZghW1iOqNz4A=
Subject key identifier: 4A:CF:5C:80:22:09:49:41:88:8C:C6:22:4B:0A:DD:E7:01:7B:27:16
Certificate issuer: /CN=A91C56FB/serialNumber=93C058A0DF1773012459164B5A80D85372C7E292
Certificate serial: 153C
Authority key identifier: 93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/6BB6EF78EB5F11ECB4060F86C4F9AE02.roa
Signing time: Sat 04 Jul 2026 17:17:07 +0000
ROA not before: Sat 04 Jul 2026 17:17:07 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 906
IP address blocks: 103.117.100.0/22 maxlen: 24
103.135.248.0/22 maxlen: 22
103.135.248.0/24 maxlen: 24
103.135.249.0/24 maxlen: 24
103.135.250.0/24 maxlen: 24
103.135.251.0/24 maxlen: 24
2403:18c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl
rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 17:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5436 (0x153c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C56FB, serialNumber=93C058A0DF1773012459164B5A80D85372C7E292
Validity
Not Before: Jul 4 17:17:07 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a494013-7f6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c0:bb:ea:60:1c:55:19:cf:98:47:4e:d3:3b:
e9:5b:e7:94:aa:05:30:cb:70:6f:25:95:43:57:b3:
96:b0:da:e7:b0:39:50:59:d2:d3:e3:61:2b:28:8b:
29:5c:9e:73:8f:e7:a6:6a:22:6a:cb:70:c7:37:d7:
34:fc:3f:77:8e:e3:f4:50:ae:ad:c4:3b:ce:14:40:
e1:6d:00:da:bd:73:4e:ca:0b:24:73:44:b1:33:34:
8d:ca:f1:15:76:42:ac:2d:82:83:0e:ce:0f:93:2c:
3d:f8:82:4a:2e:34:56:97:9c:6e:27:e0:fc:10:6a:
7b:cb:a3:77:dd:28:11:f9:1d:fb:97:00:91:3c:8e:
99:6f:22:84:cd:75:b6:07:2e:a9:5b:29:b5:2b:f9:
cc:60:76:3b:21:03:4e:f2:3d:98:0c:19:12:20:f1:
2a:dd:4c:e9:48:1f:06:92:14:a8:0c:9c:19:71:3c:
70:a7:f3:fb:ae:73:f0:0b:59:cc:93:f2:77:d2:f8:
e1:5c:80:d9:32:fa:c1:0f:7f:1e:24:02:b9:25:9a:
48:d3:84:58:0b:3e:b4:72:09:28:33:86:16:25:0a:
aa:59:ba:77:dc:0d:89:af:5d:7a:b6:37:f3:18:b9:
0b:58:73:41:b5:02:87:13:39:06:96:2a:4d:82:a0:
53:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:CF:5C:80:22:09:49:41:88:8C:C6:22:4B:0A:DD:E7:01:7B:27:16
X509v3 Authority Key Identifier:
keyid:93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/6BB6EF78EB5F11ECB4060F86C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.117.100.0/22
103.135.248.0/22
IPv6:
2403:18c0::/32
Signature Algorithm: sha256WithRSAEncryption
1f:b7:66:dc:0b:a1:aa:ac:b2:46:e7:7e:20:f7:29:89:13:a3:
f6:a4:a0:33:d1:5d:71:d5:d1:bc:ae:9e:dd:e6:11:3e:39:29:
cf:79:f3:7f:5e:53:2c:ef:9e:87:bc:6b:3f:40:b8:25:64:de:
ec:f4:dc:48:44:cf:1f:9f:b0:73:a5:50:28:27:eb:d0:d3:a5:
d1:27:50:1b:50:58:d1:c8:91:db:fb:8c:85:00:81:64:79:19:
13:ea:4c:01:33:c8:c0:a8:06:8d:4b:33:6e:0f:32:12:16:08:
75:a2:4d:7d:bd:b1:8d:6b:74:7d:29:5c:52:5f:4c:15:ca:9d:
8d:cf:0a:ac:8f:0d:fe:03:cd:b9:cd:d7:cb:5d:b8:56:c4:8e:
51:a1:f8:de:f1:96:cf:75:80:39:2a:01:b4:40:b2:fa:af:85:
dc:39:26:05:93:01:02:25:36:79:f3:39:54:86:aa:04:34:53:
ee:ad:57:9d:38:e0:7c:93:a1:70:89:12:f1:0c:97:fa:df:27:
cd:98:43:18:0c:c8:64:25:bc:7e:f7:de:01:74:4c:07:03:e7:
93:7b:eb:db:e9:64:8e:3d:ec:2d:69:77:90:1d:bd:e8:71:7b:
bf:11:0b:29:02:07:8c:b9:3b:01:8e:3d:57:ea:cf:7c:21:67:
88:f0:42:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 19:57:24 2026 by rpki-client