$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa File: FDC6A888AEB111EE9A78E132C4F9AE02.roa (raw, json) Hash identifier: HJTu/QaBBUaGGzi25rXbR60EpAJ8f6RdGFNR0tCCt90= Subject key identifier: D2:65:03:AE:45:AB:9F:1E:54:33:B2:30:34:9F:7C:99:B1:2A:6B:70 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 03E5 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa Signing time: Wed 18 Mar 2026 04:09:21 +0000 ROA not before: Wed 18 Mar 2026 04:09:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 146943 IP address blocks: 103.101.58.0/24 maxlen: 24 103.101.59.0/24 maxlen: 24 103.205.140.0/24 maxlen: 24 103.205.142.0/24 maxlen: 24 103.205.143.0/24 maxlen: 24 103.217.222.0/24 maxlen: 24 103.217.223.0/24 maxlen: 24 103.227.1.0/24 maxlen: 24 202.94.172.0/24 maxlen: 24 202.94.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Mar 18 04:09:21 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69ba2571-fe1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:cc:e0:3a:8a:fc:d8:49:b7:cb:ed:ff:ae:9b: d1:63:93:76:4a:d8:95:cf:3d:36:93:2b:2b:2d:1b: ed:bc:6e:3b:7c:fe:95:6c:cd:7d:b2:c0:57:7d:71: 20:5b:89:7c:8c:b0:87:a6:0d:e0:b7:a7:18:19:fe: f7:26:27:dd:3b:4d:ec:eb:46:bb:38:0b:d0:7c:ff: c0:80:11:65:49:4d:e9:d5:ac:38:c9:a6:52:df:69: 0d:b8:08:9a:88:53:91:be:93:13:26:09:77:4f:c2: 28:33:6a:06:4a:d6:64:e1:f5:b9:4b:27:85:82:a4: 93:56:bb:7d:5e:98:1c:b9:c5:90:6f:48:c8:22:ee: d8:76:08:b7:c5:3b:20:88:02:a2:06:cf:84:f0:8a: 0a:0d:c2:5e:45:5d:86:be:65:c6:78:7e:98:0d:4e: ba:85:0e:84:ea:7b:12:8e:c3:a2:d4:51:69:c5:8b: e7:7d:07:27:ee:7e:9b:2f:28:bd:da:d3:f0:97:ed: 23:58:02:a6:ac:30:42:00:fa:f8:4a:83:ba:72:f3: df:4e:a1:ab:39:2f:1c:da:25:71:b7:51:cc:4f:fc: 8c:0b:13:3f:24:3a:c6:8b:61:dd:51:9e:c9:61:22: c7:66:82:bf:85:e6:2b:a6:98:a7:5f:bc:3d:53:b1: 7e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:65:03:AE:45:AB:9F:1E:54:33:B2:30:34:9F:7C:99:B1:2A:6B:70 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FDC6A888AEB111EE9A78E132C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.101.58.0/23 103.205.140.0/24 103.205.142.0/23 103.217.222.0/23 103.227.1.0/24 202.94.172.0/23 Signature Algorithm: sha256WithRSAEncryption 91:97:71:b0:ca:20:ec:57:cf:25:05:a9:ed:d8:bb:12:68:f3: 32:ab:c9:22:6b:ab:87:0b:c3:3d:f1:57:61:84:cb:3e:1f:74: b8:fd:ee:98:61:3a:b6:b5:4a:fe:54:b5:b3:b5:61:ee:a3:d3: c0:0c:d6:2c:00:48:77:22:fb:67:f9:69:b9:47:c0:41:86:c1: 62:76:b7:37:a9:40:5a:b3:a4:f3:3c:af:71:09:20:ee:f1:86: 55:b5:f4:1c:71:cf:fc:d3:3d:67:11:ba:d6:7d:e9:a4:fc:cd: 56:ce:dd:3e:37:2b:b3:85:bc:92:ea:f6:7f:e8:c6:27:7f:12: 91:4c:e4:61:51:9c:77:8f:19:f0:9a:6a:c8:1d:32:81:16:85: 13:49:9c:65:b2:ad:60:48:78:c0:4c:71:c8:0d:6f:4e:9d:95: 54:1a:bd:43:23:22:a6:37:ba:09:0d:38:fc:24:9f:03:80:1b: f9:9c:ea:bc:d6:33:03:e9:f4:c9:34:e7:29:05:ee:d4:43:21: b7:d3:2b:12:5b:95:a7:2e:5c:af:01:d0:ea:ae:da:5f:b1:17: 1a:35:b5:e5:0a:e8:38:97:19:6c:84:5e:ef:0b:12:c8:65:5b: 17:7c:1e:95:12:a6:68:a5:23:97:3c:47:c4:bd:36:23:da:16: e8:b9:f7:85 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjYwMzE4MDQwOTIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJhMjU3MS1mZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkczgOor82Em3y+3/rpvRY5N2StiVzz02kysrLRvtvG47fP6VbM19ssBXfXEg W4l8jLCHpg3gt6cYGf73JifdO03s60a7OAvQfP/AgBFlSU3p1aw4yaZS32kNuAia iFORvpMTJgl3T8IoM2oGStZk4fW5SyeFgqSTVrt9XpgcucWQb0jIIu7Ydgi3xTsg iAKiBs+E8IoKDcJeRV2GvmXGeH6YDU66hQ6E6nsSjsOi1FFpxYvnfQcn7n6bLyi9 2tPwl+0jWAKmrDBCAPr4SoO6cvPfTqGrOS8c2iVxt1HMT/yMCxM/JDrGi2HdUZ7J YSLHZoK/heYrppinX7w9U7F+PQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFNJlA65F q58eVDOyMDSffJmxKmtwMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkRDNkE4ODhB RUIxMTFFRTlBNzhFMTMyQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQBZ2U6AwQAZ82MAwQBZ82OAwQBZ9neAwQAZ+MBAwQByl6sMA0GCSqG SIb3DQEBCwUAA4IBAQCRl3GwyiDsV88lBant2LsSaPMyq8kia6uHC8M98VdhhMs+ H3S4/e6YYTq2tUr+VLWztWHuo9PADNYsAEh3Ivtn+Wm5R8BBhsFidrc3qUBas6Tz PK9xCSDu8YZVtfQccc/80z1nEbrWfemk/M1Wzt0+NyuzhbyS6vZ/6MYnfxKRTORh UZx3jxnwmmrIHTKBFoUTSZxlsq1gSHjATHHIDW9OnZVUGr1DIyKmN7oJDTj8JJ8D gBv5nOq81jMD6fTJNOcpBe7UQyG30ysSW5WnLlyvAdDqrtpfsRcaNbXlCug4lxls hF7vCxLIZVsXfB6VEqZopSOXPEfEvTYj2hboufeF -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:36 2026 by rpki-client