$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/FBE538ECC55511F0B6ACB62BC4F9AE02.roa File: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (raw, json) Hash identifier: zqFlnoiRJ96ipkTg+cLy44fvbC4N/hd7GgD9UC/f7t4= Subject key identifier: 3F:87:A0:C3:C6:00:03:78:28:12:A4:AE:8C:47:C9:26:13:3A:D6:51 Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 02A8 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/FBE538ECC55511F0B6ACB62BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:51:27 +0000 ROA not before: Wed 19 Nov 2025 14:42:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139813 IP address blocks: 103.14.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Nov 19 14:42:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46e8f-881c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:97:3b:77:81:61:ca:c3:7e:0c:df:c4:9c: e9:3a:97:d4:08:26:0b:f1:e1:1c:08:fc:5c:8a:03: 24:e3:c9:b9:f0:1d:ae:29:30:a9:ce:08:d3:5e:63: b2:f5:ac:0f:9d:a1:11:7a:0c:5a:83:45:ed:9e:ec: ac:14:23:75:bc:d6:e8:fc:b7:7c:c9:e0:a5:1f:72: a1:00:7d:92:38:45:aa:3c:53:af:26:0a:70:aa:61: 66:7b:d9:0b:44:53:66:f7:4a:63:e0:56:eb:bd:48: 29:a6:33:8f:83:37:3d:12:c3:99:c8:e8:f7:d2:48: d6:4b:7f:96:a4:38:32:a8:42:16:60:7b:7f:f9:50: 9c:96:2c:80:a7:08:10:ae:5f:92:8a:06:35:56:43: 6b:3c:fe:55:0f:10:c4:42:4a:c4:5e:3a:85:4f:7c: c3:9c:5e:05:e7:3d:60:fe:7e:08:8b:f7:61:63:46: 77:f2:79:84:5e:fe:a5:33:bc:20:fb:38:b0:d3:0a: b3:e7:9d:da:53:95:7c:47:71:74:2c:cf:ea:10:a3: 2f:6f:c4:4d:f5:ba:6c:a8:14:f5:32:22:01:6b:85: 27:db:1e:53:7a:f5:83:3d:18:d2:5c:e3:07:1b:33: f1:36:56:9c:42:4a:98:5b:2f:bb:98:25:56:09:3a: 43:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:87:A0:C3:C6:00:03:78:28:12:A4:AE:8C:47:C9:26:13:3A:D6:51 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/FBE538ECC55511F0B6ACB62BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.168.0/24 Signature Algorithm: sha256WithRSAEncryption 23:b0:5f:d6:72:50:19:3c:b0:75:e8:2a:5f:65:01:64:dc:4a: 58:b2:5f:55:4a:f1:f7:ae:37:3c:51:83:81:3c:20:26:bf:5f: 54:b9:a9:e3:b3:a4:eb:9f:00:e9:40:25:bb:57:d7:7c:36:fd: 06:76:04:b4:c1:bd:67:db:8d:18:54:d8:ef:4a:53:82:a2:74: 30:c3:a7:de:8e:22:48:16:a4:20:37:bb:33:8c:f1:d0:62:e8: a2:a9:64:16:ee:3e:f4:42:50:12:bb:f2:75:5f:57:cb:3b:33: 1b:6d:1e:9b:d4:db:32:07:d5:41:59:c7:f4:72:f1:43:b7:fb: 28:fb:c1:3f:73:ed:d4:dc:1a:88:34:62:ee:4f:c8:31:cc:64: 8d:28:be:cd:bc:fc:73:e6:82:33:74:ab:02:61:bf:a5:11:7f: 2d:b2:3f:44:8a:fd:ef:8f:1e:d1:e8:c5:fc:4c:8c:d1:1a:60: d6:a5:d1:1e:25:25:ac:c2:e4:05:0f:22:c4:6d:8b:2e:8c:62: f5:0c:2e:dd:fe:d1:da:1b:4c:a9:19:c0:e2:9f:e1:be:70:7b: e8:17:75:13:f2:54:56:a2:57:74:79:4f:4a:63:38:3d:fd:3e: b4:9d:07:0b:2a:a0:1a:c3:c3:2c:76:43:3c:70:a1:ea:08:69: 97:5b:e3:17 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjUxMTE5MTQ0MjM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmU4Zi04ODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1GXO3eBYcrDfgzfxJzpOpfUCCYL8eEcCPxcigMk48m58B2uKTCpzgjTXmOy 9awPnaERegxag0XtnuysFCN1vNbo/Ld8yeClH3KhAH2SOEWqPFOvJgpwqmFme9kL RFNm90pj4FbrvUgppjOPgzc9EsOZyOj30kjWS3+WpDgyqEIWYHt/+VCcliyApwgQ rl+SigY1VkNrPP5VDxDEQkrEXjqFT3zDnF4F5z1g/n4Ii/dhY0Z38nmEXv6lM7wg +ziw0wqz553aU5V8R3F0LM/qEKMvb8RN9bpsqBT1MiIBa4Un2x5TevWDPRjSXOMH GzPxNlacQkqYWy+7mCVWCTpDYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD+HoMPG AAN4KBKkroxHySYTOtZRMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDN0YvM0I3QkRBQkUzRkM3MTFFREFDOUIyMjFEQzRGOUFFMDIvRkJFNTM4RUND NTU1MTFGMEI2QUNCNjJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZw6oMA0GCSqGSIb3DQEBCwUAA4IBAQAjsF/WclAZPLB16CpfZQFk 3EpYsl9VSvH3rjc8UYOBPCAmv19Uuanjs6TrnwDpQCW7V9d8Nv0GdgS0wb1n240Y VNjvSlOConQww6fejiJIFqQgN7szjPHQYuiiqWQW7j70QlASu/J1X1fLOzMbbR6b 1NsyB9VBWcf0cvFDt/so+8E/c+3U3BqINGLuT8gxzGSNKL7NvPxz5oIzdKsCYb+l EX8tsj9Eiv3vjx7R6MX8TIzRGmDWpdEeJSWswuQFDyLEbYsujGL1DC7d/tHaG0yp GcDin+G+cHvoF3UT8lRWold0eU9KYzg9/T60nQcLKqAaw8MsdkM8cKHqCGmXW+MX -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:26 2026 by rpki-client