
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/91FD24BA23C511EDA6D7F073C4F9AE02.roa
File: 91FD24BA23C511EDA6D7F073C4F9AE02.roa (raw, json)
Hash identifier: 5herfVtiX3Vkwm/8fsoSk+EzMfC6vIVDvWWZDlnOkKU=
Subject key identifier: CB:DF:DE:83:CD:AB:3F:F1:BC:CB:13:E8:E5:6C:A6:78:BC:29:ED:3D
Certificate issuer: /CN=A91E28C1/serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2
Certificate serial: 0A43
Authority key identifier: 25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/91FD24BA23C511EDA6D7F073C4F9AE02.roa
Signing time: Fri 10 Jul 2026 20:21:40 +0000
ROA not before: Fri 10 Jul 2026 20:21:40 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 58629
IP address blocks: 103.138.122.0/24 maxlen: 24
103.138.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl
rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 19:59:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2627 (0xa43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E28C1, serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2
Validity
Not Before: Jul 10 20:21:40 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a515453-fcec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:21:c3:3e:60:d2:21:e9:ab:38:87:43:8a:e1:
09:81:b6:9e:0c:c5:b1:1a:c5:9e:a8:8e:5e:ab:d9:
42:9b:c0:b6:0f:4f:6c:17:7b:d8:03:7b:65:3e:34:
5a:83:d2:a4:69:a2:e5:29:af:15:65:4c:35:d6:fa:
ba:51:66:b5:7a:77:6d:d0:48:e6:32:c1:ec:7e:ec:
d4:24:8e:88:24:4d:d2:50:4e:86:09:9d:45:b6:81:
80:0a:81:40:5d:11:82:1e:f8:cc:36:41:9d:d9:38:
a0:33:08:45:ad:90:20:db:a7:c1:d6:27:d6:2c:55:
55:f2:06:95:52:d8:6e:00:bc:f7:dc:ce:8f:90:13:
71:5d:40:66:bd:e7:47:58:29:51:a4:b4:7c:ab:a6:
9c:f3:99:3f:75:f4:8b:c9:a7:d0:28:ba:2a:6a:5e:
c6:40:66:74:f7:d3:55:f5:c0:28:ef:c0:31:8d:40:
4f:a1:23:01:bc:a6:b6:99:b8:aa:02:1a:75:7d:00:
68:5e:89:0e:f8:5b:87:1a:3f:05:53:f1:93:6e:86:
91:3f:99:01:09:08:21:77:05:f8:a5:a1:1b:79:b8:
77:a8:72:2b:61:03:3d:89:76:ae:0c:3a:6e:56:97:
66:61:b2:c7:63:15:f8:5a:96:3f:c8:09:95:b8:e4:
3a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DF:DE:83:CD:AB:3F:F1:BC:CB:13:E8:E5:6C:A6:78:BC:29:ED:3D
X509v3 Authority Key Identifier:
keyid:25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/91FD24BA23C511EDA6D7F073C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.138.122.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:65:26:1b:19:21:e7:9a:1c:0b:6a:d0:78:e0:f3:15:35:b0:
37:3d:c3:45:d8:8b:4e:6c:52:91:3d:e1:01:67:26:2d:d5:6c:
31:11:1a:9f:b7:17:ab:82:16:a2:49:41:b3:38:0b:0d:c3:79:
b2:90:c3:d0:19:6e:fa:45:ea:0c:ac:5e:56:34:9d:a5:c8:16:
53:a9:6c:6d:e7:c7:de:c3:40:27:3b:d7:92:57:37:db:3f:96:
8c:f0:df:67:9f:a6:02:8d:a3:04:4d:8b:62:d2:ef:cb:d7:e7:
3d:9b:a9:6e:2f:36:1b:36:38:b3:95:8b:cd:db:d0:3b:0c:a4:
bb:95:63:38:42:59:99:92:a9:ec:54:73:92:09:8d:0d:28:ea:
43:0a:35:30:01:c3:5c:18:20:fa:1e:b5:b1:8b:6e:3c:37:48:
67:56:09:a6:d8:14:fd:50:5e:64:e7:06:20:bd:50:63:a8:a6:
8d:b4:c2:f4:23:e3:80:64:1d:63:5f:63:c1:f2:d3:71:86:89:
a6:9e:b8:0c:95:1c:35:8d:44:a6:91:1f:eb:58:e6:63:7d:18:
09:8e:e5:81:39:0a:cb:9c:85:46:3a:8a:72:73:01:00:b4:24:
a4:a1:45:e6:52:6c:4d:0a:4a:76:ee:a8:ee:d9:f7:a8:17:ab:
d5:44:da:de
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgICCkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTI4QzExMTAvBgNVBAUTKDI1ODQxRkE3N0MwNTcxNjU4NUZFN0JEQjA2MDBCOTg2
NEUzNDA2RDIwHhcNMjYwNzEwMjAyMTQwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTUxNTQ1My1mY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyCHDPmDSIemrOIdDiuEJgbaeDMWxGsWeqI5eq9lCm8C2D09sF3vYA3tlPjRa
g9KkaaLlKa8VZUw11vq6UWa1endt0EjmMsHsfuzUJI6IJE3SUE6GCZ1FtoGACoFA
XRGCHvjMNkGd2TigMwhFrZAg26fB1ifWLFVV8gaVUthuALz33M6PkBNxXUBmvedH
WClRpLR8q6ac85k/dfSLyafQKLoqal7GQGZ099NV9cAo78AxjUBPoSMBvKa2mbiq
Ahp1fQBoXokO+FuHGj8FU/GTboaRP5kBCQghdwX4paEbebh3qHIrYQM9iXauDDpu
VpdmYbLHYxX4WpY/yAmVuOQ6dwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMvf3oPN
qz/xvMsT6OVspni8Ke09MB8GA1UdIwQYMBaAFCWEH6d8BXFlhf572wYAuYZONAbS
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhDMS9GOEFGQTE0MDk5
RTAxMUVBOTY2NTJGMzJDNEY5QUUwMi9KWVFmcDN3RmNXV0ZfbnZiQmdDNWhrNDBC
dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0pZUWZwM3dGY1dXRl9udmJCZ0M1aGs0MEJ0SS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTI4QzEvRjhBRkExNDA5OUUwMTFFQTk2NjUyRjMyQzRGOUFFMDIvOTFGRDI0QkEy
M0M1MTFFREE2RDdGMDczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQBZ4p6MA0GCSqGSIb3DQEBCwUAA4IBAQB8ZSYbGSHnmhwLatB44PMV
NbA3PcNF2ItObFKRPeEBZyYt1WwxERqftxerghaiSUGzOAsNw3mykMPQGW76ReoM
rF5WNJ2lyBZTqWxt58few0AnO9eSVzfbP5aM8N9nn6YCjaMETYti0u/L1+c9m6lu
LzYbNjizlYvN29A7DKS7lWM4QlmZkqnsVHOSCY0NKOpDCjUwAcNcGCD6HrWxi248
N0hnVgmm2BT9UF5k5wYgvVBjqKaNtML0I+OAZB1jX2PB8tNxhommnrgMlRw1jUSm
kR/rWOZjfRgJjuWBOQrLnIVGOopycwEAtCSkoUXmUmxNCkp27qju2feoF6vVRNre
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:20:53 2026 by rpki-client