$ rpki-client -vvf rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/FC2AD5EE3F1E11F1AB154A9A91833773.roa File: FC2AD5EE3F1E11F1AB154A9A91833773.roa (raw, json) Hash identifier: frhSCj6zrH57k5fmrn6Ce1RuAMTqn30tY/7R+v5CiOg= Subject key identifier: 24:67:A9:A1:42:49:BE:0F:5B:20:5F:BD:12:BD:35:86:FB:35:F3:2A Certificate issuer: /CN=A91944AB/serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Certificate serial: 0678 Authority key identifier: 6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/FC2AD5EE3F1E11F1AB154A9A91833773.roa Signing time: Thu 23 Apr 2026 14:16:14 +0000 ROA not before: Thu 23 Apr 2026 14:16:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142157 IP address blocks: 103.167.18.0/23 maxlen: 23 103.167.18.0/24 maxlen: 24 103.167.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944AB, serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Validity Not Before: Apr 23 14:16:14 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69ea29ae-f808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:37:f7:c9:59:f2:c7:18:3e:c4:ac:2c:e5:32: 46:73:d2:37:76:e5:87:a4:6c:fe:6c:d9:85:2d:41: 50:09:0f:74:d5:ff:f3:40:bf:d7:36:67:c0:09:50: 2b:85:ba:ee:72:ac:30:04:d3:48:4b:05:79:f0:ff: 19:ab:1e:89:9c:03:06:a4:4a:5b:d2:7e:87:98:61: a2:15:ee:e5:3c:8e:9c:c4:d4:dd:72:ed:bc:2b:13: ad:7e:cc:0f:11:69:27:aa:d9:c1:7a:d9:ca:09:96: 72:3f:fc:f0:a8:3e:8c:8a:5c:82:d1:d0:bd:a8:d1: 15:e3:84:99:51:9f:2c:c2:7f:e1:f6:77:ee:2c:a9: ad:a1:a7:09:1c:5f:57:55:0b:a0:f9:2b:55:1b:33: 9e:57:81:a2:4a:85:5e:62:67:34:eb:63:aa:e6:6f: 65:0b:04:b3:c7:3a:6b:ae:ea:d4:67:b0:41:a6:27: 56:57:10:ad:a1:e7:aa:81:8f:1e:a3:e5:52:dc:fe: 90:12:1c:59:c2:1d:ee:d9:de:a9:8f:36:e5:2e:f5: 89:6d:46:65:c9:92:f6:98:38:8c:95:14:9e:db:4d: 8f:17:e9:76:cf:27:7d:4b:ff:ca:d4:e9:a2:53:02: ec:7c:e1:e8:d0:f4:77:82:63:9a:04:7a:11:5f:c6: 1b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:67:A9:A1:42:49:BE:0F:5B:20:5F:BD:12:BD:35:86:FB:35:F3:2A X509v3 Authority Key Identifier: keyid:6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/FC2AD5EE3F1E11F1AB154A9A91833773.roa sbgp-ipAddrBlock: critical IPv4: 103.167.18.0/23 Signature Algorithm: sha256WithRSAEncryption 54:af:a6:5f:20:e8:3b:b0:3f:6f:e3:35:79:97:a1:8d:9f:2b: 29:69:14:df:83:aa:8c:37:5d:51:d7:93:d0:4f:47:29:0a:46: 3b:e3:20:4f:a3:0e:a5:0b:17:3b:6b:f7:8c:a6:cc:ce:45:59: a6:05:33:30:83:5e:97:67:8a:93:f0:98:b1:a3:eb:8f:22:46: 4d:9e:45:b5:93:66:2e:d8:06:90:7d:12:a4:68:8b:5a:2a:32: a5:a1:ee:3a:1c:8d:73:08:b2:e5:51:03:8b:37:fb:8e:98:78: 02:95:f6:16:a1:f8:ee:06:f4:d1:ea:55:50:4e:1b:cd:88:34: 7b:57:78:9b:c5:b4:bb:ed:86:99:b4:95:30:0a:a9:e7:a6:bd: 22:b3:5d:25:44:18:8f:05:d3:0f:b2:d3:1c:5b:fd:66:66:41: 01:aa:68:87:ba:04:53:98:80:54:d5:95:47:a8:ad:3c:70:f6: c6:9b:e0:a2:79:80:cb:63:ac:4c:b8:9c:b0:ac:11:39:b8:41: 76:04:02:ad:56:ad:e9:4d:05:a6:1b:6f:b8:e5:4a:25:b3:7d: 76:a2:33:8e:e2:a9:46:20:d4:ea:e6:b1:9c:ce:59:3a:5e:f9: d6:f1:b3:6d:09:5d:39:f6:6b:8f:ee:8a:6b:52:65:9e:a5:ef: dc:d1:52:7b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0QUIxMTAvBgNVBAUTKDZBMTIxOTcyNkQyMzlDODJGNUE0NDYwMTEyN0QxQUY4 NzI1Q0UwRUQwHhcNMjYwNDIzMTQxNjE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWVhMjlhZS1mODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Tf3yVnyxxg+xKws5TJGc9I3duWHpGz+bNmFLUFQCQ901f/zQL/XNmfACVAr hbrucqwwBNNISwV58P8Zqx6JnAMGpEpb0n6HmGGiFe7lPI6cxNTdcu28KxOtfswP EWknqtnBetnKCZZyP/zwqD6MilyC0dC9qNEV44SZUZ8swn/h9nfuLKmtoacJHF9X VQug+StVGzOeV4GiSoVeYmc062Oq5m9lCwSzxzprrurUZ7BBpidWVxCtoeeqgY8e o+VS3P6QEhxZwh3u2d6pjzblLvWJbUZlyZL2mDiMlRSe202PF+l2zyd9S//K1Omi UwLsfOHo0PR3gmOaBHoRX8YbLQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCRnqaFC Sb4PWyBfvRK9NYb7NfMqMB8GA1UdIwQYMBaAFGoSGXJtI5yC9aRGARJ9GvhyXODt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRBQi82RkUzMDZBNkMy QzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5JTDFwRVlCRW4wYS1ISmM0 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoSVpjbTBqbklMMXBFWUJFbjBhLUhKYzRPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQ0QUIvNkZFMzA2QTZDMkM4MTFFQjk4RDlEQTc5QzRGOUFFMDIvRkMyQUQ1RUUz RjFFMTFGMUFCMTU0QTlBOTE4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6cSMA0GCSqGSIb3DQEBCwUAA4IBAQBUr6ZfIOg7sD9v4zV5l6GN nyspaRTfg6qMN11R15PQT0cpCkY74yBPow6lCxc7a/eMpszORVmmBTMwg16XZ4qT 8Jixo+uPIkZNnkW1k2Yu2AaQfRKkaItaKjKloe46HI1zCLLlUQOLN/uOmHgClfYW ofjuBvTR6lVQThvNiDR7V3ibxbS77YaZtJUwCqnnpr0is10lRBiPBdMPstMcW/1m ZkEBqmiHugRTmIBU1ZVHqK08cPbGm+CieYDLY6xMuJywrBE5uEF2BAKtVq3pTQWm G2+45Uols312ojOO4qlGINTq5rGczlk6XvnW8bNtCV059muP7oprUmWepe/c0VJ7 -----END CERTIFICATE-----Generated at Wed May 13 05:26:22 2026 by rpki-client