
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa
File: 0EF4DA3A38D011EC936A8C4FC4F9AE02.roa (raw, json)
Hash identifier: x4TIcXHDDXWE6cxEb0z58vwY9a1AwvZmTTAZuYFQgdk=
Subject key identifier: B3:83:B5:23:79:DC:8E:D2:6F:17:76:63:07:6C:5A:61:69:9A:51:52
Certificate issuer: /CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134
Certificate serial: 061A
Authority key identifier: BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa
Signing time: Sat 27 Jun 2026 11:31:58 +0000
ROA not before: Sat 27 Jun 2026 11:31:58 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 140499
IP address blocks: 103.169.64.0/24 maxlen: 24
2001:df6:ec80::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl
rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 23:19:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1562 (0x61a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F7C21, serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134
Validity
Not Before: Jun 27 11:31:58 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=6a3fb4ae-5458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:93:02:c7:2e:7c:55:d9:cf:b4:65:1f:29:54:
99:27:77:79:76:24:aa:86:98:09:36:7c:67:77:4f:
d4:38:20:1c:7b:fa:43:cc:fa:02:2c:16:44:82:58:
f2:b4:6e:cc:68:1a:30:b0:aa:3f:3c:90:91:fc:44:
cb:1b:9e:b5:36:ce:d8:d8:c7:2b:5a:87:69:c4:d2:
fc:d7:2f:e9:a6:9f:94:8a:1c:47:a0:f8:66:2d:27:
c3:43:aa:91:47:21:d4:c7:04:70:c9:77:35:87:81:
52:e8:69:54:37:17:15:5a:9f:8c:e9:88:68:00:71:
90:bd:5e:2b:a1:0c:09:6c:d7:a0:8a:b6:49:f2:6f:
47:9b:6f:17:30:a9:d0:c8:9b:53:fc:78:d5:bf:da:
8d:5b:0f:b4:ee:e2:ee:3a:45:29:1f:59:30:05:11:
61:24:99:94:5d:b3:88:b4:31:33:27:2e:ee:0f:af:
e1:7f:ad:93:a8:82:19:0a:c8:0e:7b:b9:e1:9e:38:
2d:49:68:29:c3:d3:3f:c4:d3:dd:41:c5:87:4e:50:
0d:6d:d4:9d:34:b0:f8:68:2a:d2:5f:67:0d:42:89:
03:07:c8:3a:ff:f2:a6:de:d0:23:de:df:62:60:50:
6d:87:e9:a8:0b:ef:61:fe:51:18:d7:57:20:dc:62:
34:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:83:B5:23:79:DC:8E:D2:6F:17:76:63:07:6C:5A:61:69:9A:51:52
X509v3 Authority Key Identifier:
keyid:BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.169.64.0/24
IPv6:
2001:df6:ec80::/48
Signature Algorithm: sha256WithRSAEncryption
b4:15:e5:cb:78:e0:8e:af:52:84:41:5c:82:be:12:3b:ec:89:
34:b1:84:38:bc:a1:e8:d2:95:60:35:26:eb:d9:80:30:ab:0e:
32:e9:bc:59:e3:eb:b3:85:0d:57:34:32:4b:7e:37:c9:bb:2a:
9d:9e:23:37:f9:46:bf:70:25:4e:b2:1b:17:aa:15:31:52:6e:
88:d9:6f:bd:ae:b9:e9:75:a8:15:b4:3e:a4:a3:88:17:f2:f6:
94:20:e7:03:bf:cd:e7:3e:96:13:87:2c:08:6e:bd:1d:5a:c5:
b8:6c:71:c5:1e:fb:44:c6:82:3d:0f:6a:ec:2d:48:8b:b1:84:
f9:54:89:93:bb:eb:a6:f4:15:7f:25:ad:8d:3d:98:09:63:77:
4e:b8:00:34:79:70:9d:54:56:79:81:e6:25:f7:64:0a:4b:d0:
89:5a:5c:d2:13:a9:da:b2:cd:5c:c0:b9:dc:44:55:8d:1c:c0:
a6:fd:d6:38:b5:ce:09:65:67:6e:f5:8e:e3:7c:06:1d:62:8c:
49:12:a7:e3:1b:36:16:86:63:a2:8c:1f:b5:0c:29:50:5c:ca:
62:b9:48:83:1a:0c:6b:be:a2:96:cf:a0:a4:e5:06:56:de:4b:
85:e3:4d:38:ef:ae:f9:f0:2d:2b:90:ce:e9:6d:9f:a9:64:3d:
f8:fa:ba:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:03:51 2026 by rpki-client