$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/44C007B0A0D611EDA2603C4EC4F9AE02.roa File: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (raw, json) Hash identifier: R5xEKjp2COzsPx07QmJ9ZHVVMUSggpYYD3FgaBWcVMU= Subject key identifier: BF:D9:3F:EB:19:EA:7C:05:FF:FB:30:B3:A8:7F:56:A9:56:44:44:CA Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2374 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/44C007B0A0D611EDA2603C4EC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:13:32 +0000 ROA not before: Mon 02 Jun 2025 16:14:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55569 IP address blocks: 103.229.140.0/22 maxlen: 22 103.229.140.0/22 maxlen: 24 103.229.140.0/24 maxlen: 24 116.213.20.0/22 maxlen: 22 116.213.20.0/24 maxlen: 24 116.213.21.0/24 maxlen: 24 116.213.22.0/24 maxlen: 24 116.213.23.0/24 maxlen: 24 182.161.72.0/22 maxlen: 22 182.161.72.0/24 maxlen: 24 182.161.73.0/24 maxlen: 24 182.161.74.0/24 maxlen: 24 182.161.75.0/24 maxlen: 24 2406:2600::/32 maxlen: 32 2406:2600::/32 maxlen: 48 2406:2600::/48 maxlen: 48 2406:2600:1::/48 maxlen: 48 2406:2600:2::/48 maxlen: 48 2406:2600:3::/48 maxlen: 48 2406:2600:4::/48 maxlen: 48 2406:2600:5::/48 maxlen: 48 2406:2600:6::/48 maxlen: 48 2406:2600:7::/48 maxlen: 48 2406:2600:8::/48 maxlen: 48 2406:2600:9::/48 maxlen: 48 2406:2600:a::/48 maxlen: 48 2406:2600:b::/48 maxlen: 48 2406:2600:c::/48 maxlen: 48 2406:2600:d::/48 maxlen: 48 2406:2600:e::/48 maxlen: 48 2406:2600:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 15:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9076 (0x2374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Jun 2 16:14:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4033c-2536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e1:49:c3:61:bf:cc:12:af:cc:0b:f0:fb:3b: 9b:29:1c:9f:56:db:c4:54:c2:95:29:fe:3a:46:9b: 50:a8:ba:41:ab:0b:00:96:47:29:76:55:d1:7d:78: 45:55:b2:91:e5:34:e7:26:04:b6:aa:8f:ff:8c:bd: 92:bd:17:0b:56:6d:41:6c:0b:cb:ac:5c:81:da:64: c7:cf:69:a8:e1:67:aa:65:be:ea:8f:4a:af:38:d3: 41:75:35:6d:09:8b:57:55:64:d8:6a:a5:0f:95:61: f6:ec:84:f6:8d:01:dc:df:fd:f3:6d:b9:cf:3e:c3: 65:f9:4a:2c:51:2b:6e:db:15:5d:ea:ab:ef:33:11: e5:ab:67:91:5b:e8:c0:9c:bf:77:99:3f:b4:5a:af: f6:53:ea:34:8d:04:91:e0:2c:a1:28:b9:c5:05:26: 77:bd:73:01:8a:72:88:ff:7e:80:52:8d:7a:a1:29: 78:a5:0b:47:e3:f1:02:54:a8:c0:46:e9:d1:1e:8f: b8:c5:6a:11:bd:bd:0b:8c:a7:96:91:8d:4b:30:06: aa:54:e6:74:cf:9e:a3:10:32:de:f1:86:8c:05:ec: 6d:10:20:ef:6b:1a:ee:0c:c2:46:65:70:3d:2f:91: d2:44:5f:d7:0a:f7:01:49:81:0c:e2:e7:1c:f8:15: c8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D9:3F:EB:19:EA:7C:05:FF:FB:30:B3:A8:7F:56:A9:56:44:44:CA X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/44C007B0A0D611EDA2603C4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.140.0/22 116.213.20.0/22 182.161.72.0/22 IPv6: 2406:2600::/32 Signature Algorithm: sha256WithRSAEncryption ae:f5:86:8c:30:c6:ea:e3:7d:f2:50:58:ab:3b:5c:fc:98:0c: b0:35:33:4e:61:54:17:58:8d:42:64:91:17:3e:54:2f:22:b5: d3:d5:5a:3e:b4:ff:e9:c8:e8:12:bb:83:9c:0c:ce:ae:0e:ed: 0c:4b:1f:1e:68:83:aa:1f:dc:38:fb:b2:11:b1:6d:ea:e5:37: 0d:d8:41:c7:6f:69:85:06:bb:a2:c2:f6:c3:f1:b3:b0:70:13: f3:ec:b9:15:a1:bc:1b:e1:57:9a:38:17:db:79:53:00:4b:56: d9:8a:32:2a:fb:de:9c:dc:99:be:e4:db:2a:66:b9:ea:96:78: 59:2f:89:4d:aa:9c:f3:cf:c9:6d:b5:f8:aa:0f:59:0f:7e:8e: d5:e7:23:80:a4:88:1d:45:f9:21:b4:f0:26:a9:42:72:a4:1a: 00:26:73:e9:d4:17:f1:2e:3b:a7:6a:aa:74:a7:52:47:6b:cd: 29:8e:b3:b5:28:d2:20:f5:59:3c:4f:b2:16:d3:a8:0c:8a:8d: bb:27:9b:ca:df:7b:ab:62:84:8d:a8:bb:f2:ee:1d:10:c2:c2: 8b:ac:49:3f:cf:7d:13:f6:68:b9:d2:23:06:7f:23:39:e9:c9: c3:12:7c:08:02:f2:35:d7:c6:0d:4c:13:83:76:d5:59:02:82: dd:15:03:f8 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICI3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUwNjAyMTYxNDU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDMzYy0yNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+FJw2G/zBKvzAvw+zubKRyfVtvEVMKVKf46RptQqLpBqwsAlkcpdlXRfXhF VbKR5TTnJgS2qo//jL2SvRcLVm1BbAvLrFyB2mTHz2mo4WeqZb7qj0qvONNBdTVt CYtXVWTYaqUPlWH27IT2jQHc3/3zbbnPPsNl+UosUStu2xVd6qvvMxHlq2eRW+jA nL93mT+0Wq/2U+o0jQSR4CyhKLnFBSZ3vXMBinKI/36AUo16oSl4pQtH4/ECVKjA RunRHo+4xWoRvb0LjKeWkY1LMAaqVOZ0z56jEDLe8YaMBextECDvaxruDMJGZXA9 L5HSRF/XCvcBSYEM4ucc+BXIuQIDAQABo4ICezCCAncwHQYDVR0OBBYEFL/ZP+sZ 6nwF//sws6h/VqlWRETKMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkUxMDcvRUUzNUM0NDY5RTY0MTFFNTlENDhGQjYwQzRGOUFFMDIvNDRDMDA3QjBB MEQ2MTFFREEyNjAzQzRFQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZ+WMAwQCdNUUAwQCtqFIMA0EAgACMAcDBQAkBiYAMA0GCSqGSIb3 DQEBCwUAA4IBAQCu9YaMMMbq433yUFirO1z8mAywNTNOYVQXWI1CZJEXPlQvIrXT 1Vo+tP/pyOgSu4OcDM6uDu0MSx8eaIOqH9w4+7IRsW3q5TcN2EHHb2mFBruiwvbD 8bOwcBPz7LkVobwb4VeaOBfbeVMAS1bZijIq+96c3Jm+5NsqZrnqlnhZL4lNqpzz z8lttfiqD1kPfo7V5yOApIgdRfkhtPAmqUJypBoAJnPp1BfxLjunaqp0p1JHa80p jrO1KNIg9Vk8T7IW06gMio27J5vK33urYoSNqLvy7h0QwsKLrEk/z30T9mi50iMG fyM56cnDEnwIAvI118YNTBODdtVZAoLdFQP4 -----END CERTIFICATE-----Generated at Fri Mar 13 07:26:54 2026 by rpki-client