
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa
File: 3285ADDAA9D911EF9F30DA47C4F9AE02.roa (raw, json)
Hash identifier: xIsuTyZo/KDFH/r02ABu8dMxSJNQpktymxgmNjrBNLs=
Subject key identifier: AB:84:65:60:08:8A:F4:82:FA:7F:1A:69:72:8B:48:C6:ED:14:F9:65
Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Certificate serial: 01D7
Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa
Signing time: Thu 02 Jul 2026 08:17:28 +0000
ROA not before: Thu 02 Jul 2026 08:17:28 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 152698
IP address blocks: 103.14.23.0/24 maxlen: 24
2001:df3:ad40::/48 maxlen: 48
2001:df3:ad41::/48 maxlen: 48
2402:6520::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl
rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 05:52:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 471 (0x1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F9353, serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Validity
Not Before: Jul 2 08:17:28 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a461e97-433b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a6:f3:e5:64:14:af:5c:23:0b:2e:db:2e:11:
cf:5a:65:1a:43:1f:db:44:99:ff:0c:8c:f2:5c:bf:
77:bb:9d:05:c4:00:06:af:11:d5:fa:e8:79:64:a7:
a4:c9:04:cc:fa:98:72:4b:67:9e:ff:3f:3c:92:d8:
5a:48:59:0d:ff:e4:a5:06:c8:69:09:d2:b2:4e:ca:
2d:54:db:e4:23:63:47:ed:e8:05:7a:c3:f6:65:7f:
52:3b:9e:ed:15:aa:28:a8:56:f6:cd:2f:5e:89:e0:
d2:bf:1d:4e:c5:90:21:c9:e4:57:0d:a8:1a:19:3c:
20:9c:73:11:2e:01:a9:92:f4:fe:18:f4:29:1e:b0:
13:c6:90:66:09:a9:fc:dc:04:9c:1a:99:86:06:42:
9c:a0:55:4b:5a:39:27:2f:d2:d3:1c:79:d0:5b:de:
f3:f1:f4:f7:a1:6d:75:bf:96:e2:2f:32:6b:c8:97:
d3:b5:eb:a5:9a:91:e6:f0:d0:d6:3b:f5:ca:ac:19:
9a:4e:fb:fd:08:a6:0a:36:31:97:d6:2d:50:75:50:
ce:9f:aa:a2:69:89:7a:9d:85:72:5a:16:15:77:1d:
66:be:94:0e:a2:59:71:d8:a2:b0:e0:23:f4:5e:d0:
04:4a:93:99:55:bd:9d:83:a1:04:18:54:be:d4:76:
95:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:84:65:60:08:8A:F4:82:FA:7F:1A:69:72:8B:48:C6:ED:14:F9:65
X509v3 Authority Key Identifier:
keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.14.23.0/24
IPv6:
2001:df3:ad40::/47
2402:6520::/32
Signature Algorithm: sha256WithRSAEncryption
01:25:9b:17:c1:35:73:fb:62:1b:ec:e6:4b:a0:e6:cd:48:c0:
5c:2f:fe:fa:23:74:cf:ad:dd:cb:48:aa:e9:aa:3b:80:7f:da:
7e:58:a4:cf:74:34:0e:8b:1a:f6:34:55:a2:8f:f7:ff:48:c4:
0d:02:dd:75:14:fa:c3:31:d0:cc:98:31:a7:da:84:3b:69:71:
ca:27:8a:7b:0c:94:c4:43:c8:92:f9:ba:95:5d:40:8e:0a:63:
af:a4:85:db:ac:29:f4:5d:99:ef:10:79:76:b6:eb:51:91:c3:
df:b7:eb:6a:65:57:b3:d0:04:b2:8c:db:3e:f5:32:a7:fa:db:
fd:d0:31:ca:6a:73:51:36:56:c0:42:e0:88:9d:61:11:db:0a:
0f:07:9f:84:f3:32:bb:e4:3c:16:bd:74:72:db:8e:ef:b2:60:
9c:58:62:7a:6a:02:94:9f:ed:84:d3:eb:c6:04:ae:ec:45:1c:
66:13:39:25:1a:6a:5c:e4:5d:76:b8:13:39:16:bd:38:fa:67:
8c:f1:48:fe:9f:b1:f7:6b:53:43:7e:12:7f:9e:19:a3:b0:64:
6d:62:ef:3b:f0:89:e6:0d:6f:e1:ab:3a:f4:b0:cf:eb:6e:01:
55:b4:f5:56:05:8e:58:1f:af:2f:b7:47:c8:46:4c:b8:af:a3:
9e:fb:24:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 19:36:16 2026 by rpki-client