$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/7AFCC818E38611EB8BC17765C4F9AE02.roa File: 7AFCC818E38611EB8BC17765C4F9AE02.roa (raw, json) Hash identifier: 3Cr/pccyDDHFzNo5H8nu6zPrLpYVCpjD2Q93h8Zz6zQ= Subject key identifier: DB:44:AB:6F:87:AF:62:0D:9D:E4:05:10:A4:76:28:D3:D9:B6:3F:23 Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0623 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/7AFCC818E38611EB8BC17765C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:05:31 +0000 ROA not before: Wed 04 Feb 2026 22:19:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 7551 IP address blocks: 103.82.108.0/24 maxlen: 24 103.82.109.0/24 maxlen: 24 111.125.177.0/24 maxlen: 24 111.125.178.0/24 maxlen: 24 111.125.180.0/24 maxlen: 24 111.125.181.0/24 maxlen: 24 111.125.184.0/24 maxlen: 24 111.125.185.0/24 maxlen: 24 119.63.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 22:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1571 (0x623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Feb 4 22:19:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a471db-0454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e0:9b:c0:2b:6c:35:06:8e:22:ac:e3:07:58: e0:9e:80:1c:53:fd:3b:4c:22:a1:cc:41:6c:d5:ff: e1:a3:e9:3d:02:a1:8d:a1:93:c2:6d:29:f3:bc:0c: 2a:85:27:4a:f1:a3:2a:88:36:67:4e:2f:63:81:38: e3:d0:d2:80:84:0b:41:b5:a8:df:ad:f6:ee:5b:78: 7f:b8:5f:8f:3f:e3:0e:fa:65:16:b7:e3:87:75:75: 25:31:4c:c8:67:dd:a9:d3:6c:cd:1d:cf:91:59:be: d1:2d:3d:42:76:76:41:1e:27:7f:b3:d7:49:e7:74: 99:f4:ad:38:8d:7c:07:c8:13:3d:b4:e1:3b:19:8b: 21:a0:25:ba:d1:42:66:89:01:c7:26:9b:73:75:d8: 58:17:03:7e:d4:02:8f:c6:16:6f:eb:99:8e:a6:1c: 8a:de:bb:8f:e0:22:04:97:67:6b:b0:ad:18:c7:a6: 47:32:81:2b:3b:ad:36:ae:62:1a:30:d6:d0:ed:b1: 1b:fd:b5:76:ed:7c:b8:01:02:2d:da:12:95:bb:45: b7:a4:4c:04:ed:cb:64:2a:04:7f:3f:e4:a2:8e:63: 5d:34:39:df:a5:a2:95:af:5a:72:93:a0:cd:87:c9: 14:a0:1d:3d:6b:7a:f1:f1:29:33:2a:2f:80:ec:59: c7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:44:AB:6F:87:AF:62:0D:9D:E4:05:10:A4:76:28:D3:D9:B6:3F:23 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/7AFCC818E38611EB8BC17765C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.82.108.0/23 111.125.177.0-111.125.178.255 111.125.180.0/23 111.125.184.0/23 119.63.209.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ab:89:dd:26:5b:bd:76:c7:12:42:b5:bd:7b:e2:eb:26:b0: 94:31:84:86:1d:5e:2a:e9:8d:79:55:8b:c7:00:54:fc:12:20: 2b:7a:89:08:eb:f3:d9:d2:c7:72:3d:4e:d7:d9:d3:1e:20:5d: b9:71:4c:28:db:e8:95:80:bd:fe:78:85:31:45:00:db:60:ac: e9:47:f3:7c:17:ff:b1:58:82:ba:5c:79:ae:fc:e3:b1:d5:32: be:59:4c:12:66:f6:af:a3:32:8a:31:ea:46:aa:de:22:6a:43: e3:30:ab:e5:c9:84:82:c7:3a:a5:b7:02:cf:44:fe:98:a3:e8: 9a:89:d7:74:e5:32:cd:25:59:84:89:b9:c0:56:ef:e4:c9:16: 2a:8b:50:ce:b4:1c:97:87:97:00:40:5f:1a:de:f8:83:05:37: 89:d7:be:0e:7c:be:3f:90:c3:02:15:57:7f:d9:62:a8:6e:ae: 92:50:69:97:5f:33:6c:30:64:3f:be:84:c6:7f:0a:4a:77:db: 5b:7f:7d:fe:93:81:ab:33:62:c6:95:50:80:23:54:65:86:b1: b9:28:e7:9e:ea:a6:63:96:30:31:8d:88:e3:63:ba:06:bc:b0: ae:22:e2:c3:e1:3d:d4:6c:6c:a6:88:ed:14:61:b8:e3:30:9b: 0b:0e:58:ca -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICBiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjYwMjA0MjIxOTM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzFkYi0wNDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouCbwCtsNQaOIqzjB1jgnoAcU/07TCKhzEFs1f/ho+k9AqGNoZPCbSnzvAwq hSdK8aMqiDZnTi9jgTjj0NKAhAtBtajfrfbuW3h/uF+PP+MO+mUWt+OHdXUlMUzI Z92p02zNHc+RWb7RLT1CdnZBHid/s9dJ53SZ9K04jXwHyBM9tOE7GYshoCW60UJm iQHHJptzddhYFwN+1AKPxhZv65mOphyK3ruP4CIEl2drsK0Yx6ZHMoErO602rmIa MNbQ7bEb/bV27Xy4AQIt2hKVu0W3pEwE7ctkKgR/P+SijmNdNDnfpaKVr1pyk6DN h8kUoB09a3rx8SkzKi+A7FnHQwIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFNtEq2+H r2INneQFEKR2KNPZtj8jMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvN0FGQ0M4MThF Mzg2MTFFQjhCQzE3NzY1QzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmAwQBZ1JsMAwDBABvfbEDBABvfbIDBAFvfbQDBAFvfbgDBAB3P9EwDQYJ KoZIhvcNAQELBQADggEBAB6rid0mW712xxJCtb174usmsJQxhIYdXirpjXlVi8cA VPwSICt6iQjr89nSx3I9TtfZ0x4gXblxTCjb6JWAvf54hTFFANtgrOlH83wX/7FY grpcea7847HVMr5ZTBJm9q+jMoox6kaq3iJqQ+Mwq+XJhILHOqW3As9E/pij6JqJ 13TlMs0lWYSJucBW7+TJFiqLUM60HJeHlwBAXxre+IMFN4nXvg58vj+QwwIVV3/Z YqhurpJQaZdfM2wwZD++hMZ/Ckp321t/ff6TgaszYsaVUIAjVGWGsbko557qpmOW MDGNiONjuga8sK4i4sPhPdRsbKaI7RRhuOMwmwsOWMo= -----END CERTIFICATE-----Generated at Mon Mar 23 01:55:26 2026 by rpki-client