
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa
File: C145485EAE9A11E9B17AC77EC4F9AE02.roa (raw, json)
Hash identifier: rUpaSwZKGK2SflEl5oRSUOsZ6h9lQccT+3OZkbf79PI=
Subject key identifier: 6C:E1:2F:59:5E:A4:28:61:3F:04:E3:65:4A:7E:41:2A:1F:2A:A7:44
Certificate issuer: /CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1
Certificate serial: 0EF5
Authority key identifier: 11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa
Signing time: Thu 16 Jul 2026 18:18:34 +0000
ROA not before: Thu 16 Jul 2026 18:18:34 +0000
ROA not after: Thu 30 Sep 2027 00:00:00 +0000
asID: 137932
IP address blocks: 103.117.128.0/24 maxlen: 24
103.117.129.0/24 maxlen: 24
103.117.130.0/24 maxlen: 24
103.117.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl
rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:18:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3829 (0xef5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA7B2, serialNumber=1156205EC7380A00F10F3410114D040357F00FF1
Validity
Not Before: Jul 16 18:18:34 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=6a59207a-57a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:09:b0:6a:8d:ab:12:c2:e4:6d:7d:c5:c2:23:
39:bf:39:93:8f:1b:1e:32:61:b5:9e:09:f6:61:ab:
ac:9d:53:a9:69:b2:3f:ed:9b:28:1b:b8:76:1b:5b:
a2:dc:2b:97:8b:c1:1d:78:bf:8b:d2:22:fb:64:84:
bb:98:9e:12:71:d5:ad:1d:ad:74:b8:d7:77:0a:51:
a6:66:1f:02:ef:89:31:3f:42:17:2f:dd:89:b3:03:
89:78:05:6d:d4:96:ea:ee:e4:ab:6b:b6:c4:49:82:
34:2e:ac:3b:48:b5:26:38:76:78:22:c4:d4:6d:60:
0d:48:e5:e8:97:94:a3:16:c1:b3:58:79:1f:6c:15:
0b:89:1e:a2:56:03:c0:a0:d5:62:53:44:e7:e7:40:
13:09:df:90:4a:2c:3c:c1:5a:05:c2:f1:7b:bf:8b:
d2:d0:a7:b1:fe:ce:62:61:2d:a0:65:d3:c1:09:a5:
48:0f:18:21:e4:4e:e4:da:19:8f:34:78:a6:04:39:
a0:4e:69:fc:5e:1d:e7:c9:36:6e:4e:ce:f4:ed:c7:
4c:09:89:0d:28:6d:21:8a:8b:2c:b5:d5:19:f6:69:
64:30:a2:c7:b2:d6:73:f2:5e:18:35:7e:aa:b9:22:
56:c9:cc:c0:2a:db:32:2c:4f:95:38:5c:fb:fb:79:
0f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E1:2F:59:5E:A4:28:61:3F:04:E3:65:4A:7E:41:2A:1F:2A:A7:44
X509v3 Authority Key Identifier:
keyid:11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.117.128.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:50:8a:96:f0:20:da:64:ab:d0:74:4a:fe:26:31:ec:92:2a:
23:3e:12:41:bb:3a:1f:d9:df:09:43:5c:3c:e0:b7:1b:62:f4:
c3:65:55:4c:7b:cf:4c:ac:38:89:b3:df:f1:7e:7c:f9:bb:a3:
03:9a:8f:a4:2a:c4:74:4a:ff:14:d0:fe:8f:c1:f5:62:fe:85:
3d:09:42:43:87:e3:c5:96:af:38:06:78:a7:8b:48:eb:03:bd:
c0:5d:f0:f4:4e:6d:53:e7:76:96:39:68:01:24:e4:d6:ec:22:
ea:44:b5:ae:5c:e2:14:04:36:46:3d:5a:7c:4e:2d:0b:b0:f8:
ba:3f:35:1e:75:69:0f:e5:ba:68:c7:c4:ea:ba:bf:03:ac:5e:
93:26:9d:9c:70:5b:21:90:53:f3:c3:f1:a2:5f:6e:c5:ca:31:
91:8e:bd:79:5b:66:09:98:ba:50:f7:48:0d:ee:5d:c3:75:59:
6b:5b:ba:f8:65:73:7c:f5:a4:e0:1d:a7:20:b6:38:c2:11:3a:
47:38:2a:7d:a8:be:b2:84:b6:99:10:1f:69:65:9c:1c:f9:77:
0b:e0:53:0e:ba:ea:2c:f8:4f:52:cd:d7:55:ef:45:aa:21:9c:
92:1d:bf:40:6f:eb:9b:f9:74:22:2b:3a:a8:45:65:d8:51:7e:
13:96:be:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 13:33:30 2026 by rpki-client