$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FB9DB0B8778011EFA197A558C4F9AE02.roa File: FB9DB0B8778011EFA197A558C4F9AE02.roa (raw, json) Hash identifier: NdFnlMSr/V5noQXIsNx/D5f9zVB2iTgM5spp/nQu96Y= Subject key identifier: 2B:52:7C:D2:BD:BE:E5:A0:52:50:56:6B:DA:30:A3:67:08:B2:46:91 Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 02C2 Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FB9DB0B8778011EFA197A558C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:56:45 +0000 ROA not before: Tue 11 Nov 2025 00:17:30 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150385 IP address blocks: 103.24.88.0/23 maxlen: 23 103.24.88.0/24 maxlen: 24 103.24.89.0/24 maxlen: 24 2400:baa0::/32 maxlen: 32 2400:baa0:1::/48 maxlen: 48 2400:baa0:2::/48 maxlen: 48 2400:baa0:3::/48 maxlen: 48 2400:baa0:1000::/48 maxlen: 48 2400:baa0:1111::/48 maxlen: 48 2400:baa0:2000::/48 maxlen: 48 2400:baa0:2222::/48 maxlen: 48 2400:baa0:3000::/48 maxlen: 48 2400:baa0:3333::/48 maxlen: 48 2400:baa0:4000::/48 maxlen: 48 2400:baa0:4444::/48 maxlen: 48 2400:baa0:5000::/48 maxlen: 48 2400:baa0:5555::/48 maxlen: 48 2400:baa0:6000::/48 maxlen: 48 2400:baa0:6666::/48 maxlen: 48 2400:baa0:7000::/48 maxlen: 48 2400:baa0:7777::/48 maxlen: 48 2400:baa0:8000::/48 maxlen: 48 2400:baa0:8888::/48 maxlen: 48 2400:baa0:9000::/48 maxlen: 48 2400:baa0:9999::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Nov 11 00:17:30 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a41b6d-19c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:19:5a:47:e3:44:94:b4:c2:e2:e9:47:f6:44: 35:e3:3a:42:d6:df:61:19:75:f5:05:31:d5:46:bb: ab:d2:56:84:ae:e4:0d:fc:55:77:ea:23:b0:3f:87: a6:ab:bd:89:67:2d:3b:c7:c3:8e:4b:7c:51:98:35: 1e:ac:f3:a5:6c:e6:cd:01:67:bf:c5:5e:17:0c:51: 1f:d1:eb:83:88:6c:1c:4e:42:49:f0:f2:c7:b8:07: f5:9f:6d:17:d8:83:15:cc:17:4b:90:84:b2:08:41: 45:e8:01:9c:7a:74:fc:4c:6a:a8:41:22:29:2b:3b: 39:08:ac:ff:c0:67:9c:5b:69:44:9d:fb:31:7f:73: f1:9b:77:10:73:ba:13:25:f7:7c:5a:8d:3c:38:7f: cf:72:cb:00:71:6f:6e:c0:ed:0e:fb:c0:b9:ac:80: ec:e7:5f:c3:c0:44:6a:ed:0e:85:ba:2c:8d:50:8e: cb:7a:2a:38:a5:1e:d1:4a:9f:19:94:0b:98:84:14: 6d:3a:7f:d7:ec:c7:79:8d:15:a7:53:b2:79:61:7b: 64:ca:26:18:6d:ef:fd:6a:5a:56:f7:fd:ee:97:5d: 9a:34:24:2a:39:d4:4a:21:8b:b9:90:a1:10:de:f3: a5:f7:32:e4:1a:8d:67:32:1f:a4:5d:a1:39:95:fb: 26:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:52:7C:D2:BD:BE:E5:A0:52:50:56:6B:DA:30:A3:67:08:B2:46:91 X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FB9DB0B8778011EFA197A558C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.24.88.0/23 IPv6: 2400:baa0::/32 Signature Algorithm: sha256WithRSAEncryption 83:c1:c8:b2:04:9b:66:e6:cc:20:28:e6:21:ab:cc:b2:f3:48: 2e:c3:49:58:1c:66:b7:1a:90:85:b8:c8:f1:0b:16:77:61:d9: 55:c4:8d:ba:fa:96:74:0d:72:73:cb:77:d6:c3:7f:76:19:45: 2a:1a:40:34:42:8e:2b:f2:68:36:74:59:37:8f:ec:c7:61:36: a3:97:ef:56:e5:08:d9:3a:05:07:b6:52:2c:81:36:03:19:99: b9:d2:09:b0:71:92:24:c2:49:2f:ca:b4:11:1e:88:a7:50:3c: ce:3b:5f:d4:cb:c0:c6:92:0d:47:89:16:44:05:18:23:55:39: 31:c2:cd:e2:5b:72:bf:91:01:0b:3a:3c:ea:a9:cc:75:48:f3: 3a:ec:52:f3:47:8c:94:ef:e7:7d:28:e1:31:52:51:19:2b:69: 11:b8:60:ad:38:26:ac:e6:b5:99:c4:cc:17:1a:f8:e2:ea:92: 1b:72:7c:7c:6a:0a:51:37:ff:54:2d:96:e6:fd:d7:71:13:e1: db:b5:80:65:cf:72:82:a9:d8:5f:41:ae:32:3f:81:ea:c1:db: 3d:2d:c5:ae:fe:b3:5f:02:fd:07:e4:a9:b3:72:1c:4b:15:83: e9:c9:ce:c1:e5:39:f5:ed:15:04:78:70:e6:0b:51:10:81:81: b3:8f:96:4d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjUxMTExMDAxNzMwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWI2ZC0xOWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhlaR+NElLTC4ulH9kQ14zpC1t9hGXX1BTHVRrur0laEruQN/FV36iOwP4em q72JZy07x8OOS3xRmDUerPOlbObNAWe/xV4XDFEf0euDiGwcTkJJ8PLHuAf1n20X 2IMVzBdLkISyCEFF6AGcenT8TGqoQSIpKzs5CKz/wGecW2lEnfsxf3Pxm3cQc7oT Jfd8Wo08OH/PcssAcW9uwO0O+8C5rIDs51/DwERq7Q6FuiyNUI7Leio4pR7RSp8Z lAuYhBRtOn/X7Md5jRWnU7J5YXtkyiYYbe/9alpW9/3ul12aNCQqOdRKIYu5kKEQ 3vOl9zLkGo1nMh+kXaE5lfsmGQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFCtSfNK9 vuWgUlBWa9owo2cIskaRMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyOEYvN0REQzVBMkU1NTQ3MTFFREI0N0IzMzJCQzRGOUFFMDIvRkI5REIwQjg3 NzgwMTFFRkExOTdBNTU4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZxhYMA0EAgACMAcDBQAkALqgMA0GCSqGSIb3DQEBCwUAA4IBAQCD wciyBJtm5swgKOYhq8yy80guw0lYHGa3GpCFuMjxCxZ3YdlVxI26+pZ0DXJzy3fW w392GUUqGkA0Qo4r8mg2dFk3j+zHYTajl+9W5QjZOgUHtlIsgTYDGZm50gmwcZIk wkkvyrQRHoinUDzOO1/Uy8DGkg1HiRZEBRgjVTkxws3iW3K/kQELOjzqqcx1SPM6 7FLzR4yU7+d9KOExUlEZK2kRuGCtOCas5rWZxMwXGvji6pIbcnx8agpRN/9ULZbm /ddxE+HbtYBlz3KCqdhfQa4yP4Hqwds9LcWu/rNfAv0H5KmzchxLFYPpyc7B5Tn1 7RUEeHDmC1EQgYGzj5ZN -----END CERTIFICATE-----Generated at Thu Mar 26 02:27:42 2026 by rpki-client