
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/EB8DE9B49B6411EBA08FBE84C4F9AE02.roa
File: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (raw, json)
Hash identifier: nL3vp/CU21MSnng2C+poLgofAZHvrlCtCeZrfBZOSyU=
Subject key identifier: E2:B3:E9:3D:EB:E9:83:FD:45:07:50:33:20:E4:3D:23:CE:A9:60:1E
Certificate issuer: /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC
Certificate serial: 0700
Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/EB8DE9B49B6411EBA08FBE84C4F9AE02.roa
Signing time: Tue 14 Jul 2026 23:23:38 +0000
ROA not before: Tue 14 Jul 2026 23:23:38 +0000
ROA not after: Thu 30 Sep 2027 00:00:00 +0000
asID: 56229
IP address blocks: 103.26.148.0/24 maxlen: 24
103.26.149.0/24 maxlen: 24
103.26.150.0/24 maxlen: 24
103.26.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl
rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 22:35:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1792 (0x700)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D25E5, serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC
Validity
Not Before: Jul 14 23:23:38 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=6a56c4fa-4341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e3:c4:6c:ef:83:2b:ae:6b:4c:e5:22:b1:34:
00:fd:a3:46:7b:2d:19:64:da:da:f3:72:1d:35:a5:
21:bd:3b:1a:32:75:b9:0a:6c:b9:d8:da:89:f6:54:
c5:0a:a7:72:51:b4:0a:10:2b:eb:85:95:42:c3:08:
96:23:d1:f5:84:7a:f4:7f:57:5d:4a:20:23:b6:63:
d7:d2:4e:43:da:db:b0:35:f2:35:04:13:3c:4f:ab:
a6:b2:13:bb:46:bc:f7:1b:d9:c3:72:08:9c:37:76:
a0:63:2a:94:f1:39:68:90:9c:14:02:d7:cc:7f:a1:
b4:02:dd:0a:b5:4d:00:bf:2c:3e:6e:e0:db:8f:ae:
bd:24:b1:8e:0c:26:9a:13:cd:f2:b6:90:55:36:72:
f3:c2:a6:82:d7:04:e0:7b:e9:40:84:87:03:2a:3c:
8d:eb:fe:aa:84:80:55:41:3e:8b:4c:35:31:8d:e7:
55:ac:fe:bc:e1:83:da:95:7d:8c:5b:fc:8e:e9:c1:
29:17:80:e4:b9:30:ab:d7:d7:45:c0:f2:18:a7:e8:
57:e5:e7:d7:15:cd:e7:a2:b7:1c:94:09:57:15:ea:
0c:8f:14:ef:97:b0:67:65:b1:62:2d:87:66:84:98:
30:9f:73:d8:66:e6:31:87:43:a0:1a:04:c6:ad:29:
30:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:B3:E9:3D:EB:E9:83:FD:45:07:50:33:20:E4:3D:23:CE:A9:60:1E
X509v3 Authority Key Identifier:
keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/EB8DE9B49B6411EBA08FBE84C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.26.148.0/22
Signature Algorithm: sha256WithRSAEncryption
99:1b:f0:7b:db:38:16:d2:a1:47:22:4c:f1:9f:fb:0b:c2:4f:
4c:f8:5f:88:b1:1e:ed:3b:f2:9c:74:7a:06:e6:c5:e7:37:fe:
31:7d:87:64:2c:31:54:64:58:ce:af:75:26:cd:89:f4:3a:58:
1d:c8:ec:6f:6e:9c:1b:45:3c:7d:1a:a6:15:51:0e:c8:08:c3:
0d:b7:d5:5b:20:0d:4d:74:b9:5a:9b:46:ed:ef:a2:2d:79:e2:
92:4a:20:df:1e:73:4e:3a:21:7b:c0:4d:4c:75:26:11:89:8c:
13:4b:59:08:37:ce:a1:53:06:c5:ed:ca:cb:eb:e0:f4:67:7e:
2f:0a:22:27:a6:98:9f:4e:49:5d:47:ac:0f:4b:a0:b6:26:95:
32:76:43:57:c7:04:8d:9e:b6:2d:49:c3:79:40:92:15:a8:67:
2a:36:44:01:97:0d:98:e1:d6:9b:4f:3e:d7:b9:12:89:90:69:
04:39:9f:7e:8c:3f:ca:23:0b:b7:32:29:40:ff:d7:ca:fc:69:
ef:bd:cb:1d:b8:b0:30:1f:b9:4c:80:dd:94:46:8b:28:d9:95:
23:c1:95:38:4b:bc:1c:8b:9c:f1:52:e7:76:97:c6:74:5a:bb:
93:03:c6:c7:4e:ae:cd:bd:4e:ea:5f:0f:40:4a:3a:e9:f8:56:
3a:c2:af:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:23:19 2026 by rpki-client