
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/298965AC06B611EBBBFD6B2CC4F9AE02.roa
File: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (raw, json)
Hash identifier: Oay45StLaCFy3ElLitbFqzSRt2aPUrYuOR3+p3SZq8E=
Subject key identifier: 97:30:62:DE:3B:3E:4F:80:3B:CB:62:18:DA:5B:21:54:A5:EF:06:4F
Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8
Certificate serial: 08B2
Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/298965AC06B611EBBBFD6B2CC4F9AE02.roa
Signing time: Thu 02 Jul 2026 21:22:20 +0000
ROA not before: Thu 02 Jul 2026 21:22:20 +0000
ROA not after: Thu 30 Sep 2027 00:00:00 +0000
asID: 55720
IP address blocks: 103.27.74.0/24 maxlen: 24
103.100.152.0/24 maxlen: 24
220.158.200.0/24 maxlen: 24
220.158.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl
rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 21:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2226 (0x8b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8
Validity
Not Before: Jul 2 21:22:20 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=6a46d68c-336f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a8:e8:8e:a6:81:a3:51:f6:67:de:ac:ad:d3:
7d:73:28:1f:49:7c:9b:92:1a:76:25:41:a9:f5:43:
3f:54:d0:b8:6f:2c:f7:4c:7b:7e:27:ac:0a:ab:cf:
30:b5:7b:3f:f9:db:db:c4:98:2f:31:1d:95:58:73:
6e:c5:b9:65:cf:17:62:6a:a8:5a:0b:5e:0c:51:bd:
7b:cf:43:a1:1c:0f:9b:5a:8b:18:b9:39:01:15:41:
8c:1d:d0:f7:2b:da:da:63:25:4c:59:af:80:3d:9d:
b4:26:b7:37:69:09:b1:e5:75:fe:01:e0:fb:b5:d9:
62:b6:e7:91:fd:c8:53:49:c4:ec:d9:99:92:f3:d7:
58:81:b3:e2:38:48:b2:48:67:8b:f2:74:42:32:ba:
0b:7e:f0:6f:3f:3a:ed:1b:cf:d1:62:cd:77:7d:28:
e6:88:c5:b5:8a:dd:fc:68:f5:4b:ae:a6:70:29:ea:
7f:63:63:f5:e0:f8:58:f3:9d:c6:db:2d:29:08:f5:
b1:b9:a8:3d:95:66:0e:9d:c8:df:d7:9b:df:38:f1:
9b:37:2f:b2:5d:d1:91:f0:2d:cd:f7:71:e8:a7:26:
80:5a:c1:9e:b8:07:12:ca:11:ec:51:6c:56:3f:1c:
52:10:ed:dd:e0:e6:3a:59:e1:41:82:ce:92:b9:d0:
40:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:30:62:DE:3B:3E:4F:80:3B:CB:62:18:DA:5B:21:54:A5:EF:06:4F
X509v3 Authority Key Identifier:
keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/298965AC06B611EBBBFD6B2CC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.27.74.0/24
103.100.152.0/24
220.158.200.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:08:dc:68:29:dd:90:ae:f9:14:b1:3d:f0:44:eb:58:56:eb:
71:37:5e:9e:20:ae:ad:06:64:17:fa:e8:3a:81:f2:1c:01:b1:
25:5a:61:c0:a5:b5:6d:6b:9a:b7:f8:a3:4d:f2:cf:91:3b:27:
00:6e:49:b9:e4:bd:fd:54:8a:0a:bd:41:2b:31:12:8d:91:67:
8f:2f:78:e2:fd:37:9a:c1:02:77:6d:4b:e5:10:f8:b9:82:c2:
53:df:38:35:80:f3:5e:ca:18:25:02:ef:9f:dd:a9:dc:0e:dd:
3a:2c:08:7f:68:de:8d:44:ab:14:16:aa:3c:83:69:ff:e5:82:
af:a8:2b:a8:be:b0:f3:4e:7b:e0:58:e1:84:d5:20:61:f5:4f:
fa:17:f6:e9:4f:1b:19:17:7c:75:e8:2c:41:fa:46:d5:4f:60:
53:c0:fa:34:f1:98:8b:e0:ac:86:7b:62:63:87:95:96:97:a6:
7d:02:83:39:6d:86:78:7a:b9:26:23:8e:69:59:64:68:44:34:
f6:04:bd:e9:ad:0d:46:79:38:d7:38:3d:6e:cd:c1:5e:ea:8d:
e1:1a:35:9f:2c:d7:1d:6c:d6:6b:54:50:ab:1b:74:00:94:44:
07:38:5a:3c:20:85:e1:23:fb:d8:7c:df:26:e4:5e:42:b6:dd:
4b:40:86:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 00:15:29 2026 by rpki-client