$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/FBDB9F4A57F911F0B7986D41C4F9AE02.roa File: FBDB9F4A57F911F0B7986D41C4F9AE02.roa (raw, json) Hash identifier: NjeWQmdo5jHO0hKcWbZMnnwf+MhB7WmVPV528H/kuwA= Subject key identifier: BE:D0:9C:7C:34:21:2A:4A:8D:92:02:D6:F0:3D:85:48:F8:A2:0D:6D Certificate issuer: /CN=A91BD614/serialNumber=4B5C1623FBB33D96A241AB35DB0F0BDEB5C39CB0 Certificate serial: A0 Authority key identifier: 4B:5C:16:23:FB:B3:3D:96:A2:41:AB:35:DB:0F:0B:DE:B5:C3:9C:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1wWI_uzPZaiQas12w8L3rXDnLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/FBDB9F4A57F911F0B7986D41C4F9AE02.roa Signing time: Wed 29 Apr 2026 03:34:58 +0000 ROA not before: Wed 29 Apr 2026 03:34:58 +0000 ROA not after: Fri 28 Aug 2026 00:00:00 +0000 asID: 150797 IP address blocks: 103.109.8.0/23 maxlen: 24 2400:e8a0::/32 maxlen: 32 2400:e8a0::/36 maxlen: 36 2400:e8a0:1000::/36 maxlen: 36 2400:e8a0:2000::/36 maxlen: 36 2400:e8a0:3000::/36 maxlen: 36 2400:e8a0:4000::/36 maxlen: 36 2400:e8a0:5000::/36 maxlen: 36 2400:e8a0:6000::/36 maxlen: 36 2400:e8a0:7000::/36 maxlen: 36 2400:e8a0:8000::/36 maxlen: 36 2400:e8a0:9000::/36 maxlen: 36 2400:e8a0:a000::/36 maxlen: 36 2400:e8a0:b000::/36 maxlen: 36 2400:e8a0:c000::/36 maxlen: 36 2400:e8a0:d000::/36 maxlen: 36 2400:e8a0:e000::/36 maxlen: 36 2400:e8a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/S1wWI_uzPZaiQas12w8L3rXDnLA.crl rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/S1wWI_uzPZaiQas12w8L3rXDnLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1wWI_uzPZaiQas12w8L3rXDnLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD614, serialNumber=4B5C1623FBB33D96A241AB35DB0F0BDEB5C39CB0 Validity Not Before: Apr 29 03:34:58 2026 GMT Not After : Aug 28 00:00:00 2026 GMT Subject: CN=69f17c62-48c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:de:af:cd:d3:2c:40:91:49:65:96:ee:e0: 49:8d:49:f5:60:1d:9c:a5:d6:e7:77:a9:bc:f9:54: 33:28:92:fd:66:24:71:26:28:26:da:27:a9:0e:a3: 98:80:cb:e2:d2:8f:34:85:1d:ea:4f:9d:0b:27:8d: 65:7b:6f:45:78:a2:10:fb:14:e1:51:df:f6:00:13: 74:35:36:19:f5:bb:9a:39:cb:c9:4d:ee:43:28:e0: 20:e4:1f:46:83:93:f4:09:32:ca:fe:17:22:74:5b: 9a:81:45:ae:65:40:bb:f1:55:fa:d5:3a:f0:91:49: 9f:9f:f3:95:38:cc:b4:96:d6:8c:4a:84:dd:d8:12: 4b:c6:73:d0:0c:7f:31:a2:0d:9d:07:c8:e3:17:97: fe:aa:e2:a2:75:be:45:15:d2:cb:38:04:ad:18:b2: 31:0b:0e:3b:2e:23:e5:70:b7:2d:07:cd:95:d2:a0: 03:d3:94:28:5f:52:3a:be:3e:05:f9:ab:c9:34:4d: 87:d0:78:da:80:cc:5d:0a:4e:14:22:b6:08:87:26: 9e:f4:69:fe:02:18:60:1b:c6:2d:f3:d6:7b:e0:31: 9e:0a:62:ce:86:ef:e4:f6:f4:82:a4:00:65:06:12: 25:a8:55:1b:ab:ed:7a:5e:65:94:4d:e8:ed:c3:1f: d3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D0:9C:7C:34:21:2A:4A:8D:92:02:D6:F0:3D:85:48:F8:A2:0D:6D X509v3 Authority Key Identifier: keyid:4B:5C:16:23:FB:B3:3D:96:A2:41:AB:35:DB:0F:0B:DE:B5:C3:9C:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/S1wWI_uzPZaiQas12w8L3rXDnLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S1wWI_uzPZaiQas12w8L3rXDnLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/FBDB9F4A57F911F0B7986D41C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.109.8.0/23 IPv6: 2400:e8a0::/32 Signature Algorithm: sha256WithRSAEncryption 85:9b:df:29:4e:be:85:0a:6a:5f:18:06:87:4a:f7:a2:36:17: c8:6a:c8:56:15:bc:b8:01:42:e2:fd:46:50:17:69:64:b1:30: e9:78:e2:16:f2:b2:6d:a9:e6:b9:ed:54:f4:bb:81:74:b5:89: 0d:32:47:d7:f7:c0:b1:8a:07:16:a8:cd:d7:64:0e:a5:5c:6d: ca:4b:7d:04:52:2b:6f:2d:c5:c5:6c:f2:49:94:ad:d2:8c:6c: 74:64:50:e2:89:99:3d:f0:e0:2f:7c:dc:d9:77:a0:a0:99:ba: 8a:63:15:93:98:53:9f:ce:fe:01:a5:80:ce:98:27:32:b2:3c: c0:41:d9:36:72:7c:61:de:cd:9a:bb:0a:91:87:f0:ef:71:cf: 4c:8b:6a:10:ac:c7:9f:e1:0f:c2:db:dc:e4:b8:a5:c9:e9:f1: 6c:12:5d:0f:9d:17:87:0c:cc:9b:1a:9a:0c:3c:df:fb:26:53: 0c:76:22:39:b0:43:72:17:43:53:f9:b4:7a:c9:e4:a1:6c:c0: b7:fc:a5:b3:5a:50:a4:3b:ea:54:68:82:06:2f:e3:ea:4b:e4: 7b:4a:4f:1c:e9:4b:ad:4c:2f:84:ff:b5:42:de:68:52:28:75: af:68:6f:e4:b9:82:44:22:75:69:9e:46:91:f6:1f:31:31:ca: 03:c3:ae:95 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ2MTQxMTAvBgNVBAUTKDRCNUMxNjIzRkJCMzNEOTZBMjQxQUIzNURCMEYwQkRF QjVDMzlDQjAwHhcNMjYwNDI5MDMzNDU4WhcNMjYwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxN2M2Mi00OGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8Der83TLECRSWWW7uBJjUn1YB2cpdbnd6m8+VQzKJL9ZiRxJigm2iepDqOY gMvi0o80hR3qT50LJ41le29FeKIQ+xThUd/2ABN0NTYZ9buaOcvJTe5DKOAg5B9G g5P0CTLK/hcidFuagUWuZUC78VX61TrwkUmfn/OVOMy0ltaMSoTd2BJLxnPQDH8x og2dB8jjF5f+quKidb5FFdLLOAStGLIxCw47LiPlcLctB82V0qAD05QoX1I6vj4F +avJNE2H0HjagMxdCk4UIrYIhyae9Gn+AhhgG8Yt89Z74DGeCmLOhu/k9vSCpABl BhIlqFUbq+16XmWUTejtwx/TPwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFL7QnHw0 ISpKjZIC1vA9hUj4og1tMB8GA1UdIwQYMBaAFEtcFiP7sz2WokGrNdsPC961w5yw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDYxNC8xREYwNzVFMkJF REMxMUVEOEUwQUREODBDNEY5QUUwMi9TMXdXSV91elBaYWlRYXMxMnc4TDNyWERu TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Mxd1dJX3V6UFphaVFhczEydzhMM3JYRG5MQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ2MTQvMURGMDc1RTJCRURDMTFFRDhFMEFERDgwQzRGOUFFMDIvRkJEQjlGNEE1 N0Y5MTFGMEI3OTg2RDQxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ20IMA0EAgACMAcDBQAkAOigMA0GCSqGSIb3DQEBCwUAA4IBAQCF m98pTr6FCmpfGAaHSveiNhfIashWFby4AULi/UZQF2lksTDpeOIW8rJtqea57VT0 u4F0tYkNMkfX98CxigcWqM3XZA6lXG3KS30EUitvLcXFbPJJlK3SjGx0ZFDiiZk9 8OAvfNzZd6CgmbqKYxWTmFOfzv4BpYDOmCcysjzAQdk2cnxh3s2auwqRh/Dvcc9M i2oQrMef4Q/C29zkuKXJ6fFsEl0PnReHDMybGpoMPN/7JlMMdiI5sENyF0NT+bR6 yeShbMC3/KWzWlCkO+pUaIIGL+PqS+R7Sk8c6UutTC+E/7VC3mhSKHWvaG/kuYJE InVpnkaR9h8xMcoDw66V -----END CERTIFICATE-----Generated at Wed May 13 08:59:16 2026 by rpki-client