$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/FD9457225B1011F0A31EF763C4F9AE02.roa File: FD9457225B1011F0A31EF763C4F9AE02.roa (raw, json) Hash identifier: DHCrD/BmJiwChnMZypQOoV/NKOdhW+NSK0er3Q/6jx8= Subject key identifier: D0:51:D3:E3:91:C5:93:33:46:49:9E:2E:1C:A1:46:CC:E5:EE:BA:65 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 079B Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/FD9457225B1011F0A31EF763C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:29:08 +0000 ROA not before: Mon 24 Nov 2025 20:42:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141385 IP address blocks: 103.158.2.0/23 maxlen: 23 103.158.2.0/24 maxlen: 24 103.158.3.0/24 maxlen: 24 2001:df2:efc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:16:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Nov 24 20:42:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43114-9952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:cb:39:5a:13:74:6a:fc:41:83:2a:f2:3d: 11:49:8f:9b:be:0c:92:32:5a:a4:1c:a6:13:6d:cc: 6d:ee:b6:c1:91:e0:6d:f4:db:f5:98:2b:d2:38:69: 7f:32:dc:1b:b0:ba:1c:31:54:7c:21:55:c3:9c:a5: b9:28:78:bd:8f:bc:a5:bc:1d:a6:7c:61:2f:6f:be: 55:90:76:ed:b1:ca:7f:8f:9f:2c:1a:12:5f:d1:62: 67:c7:21:f0:f7:b5:73:40:c1:d7:bf:56:00:39:46: 92:5d:ae:51:a5:65:a8:f0:c3:7c:c8:c0:e3:18:88: ac:63:48:f1:b2:90:93:8e:9f:b4:57:f5:24:e0:86: 5f:23:88:e1:ef:0d:dd:9a:14:54:ce:35:4d:ff:09: 7f:c4:fe:11:13:b8:de:23:50:33:0f:05:cc:65:03: 79:e0:38:17:d9:06:58:fe:db:a4:82:b3:88:8d:a6: a2:24:16:dc:47:c5:22:e4:f5:6f:79:20:48:1d:ee: 2f:7f:6f:0c:40:db:34:ab:99:17:17:b7:e7:02:a7: de:e4:3a:c1:73:de:cd:b2:b8:59:9c:f0:49:da:3f: 34:89:16:8b:74:ec:2a:a0:36:6d:08:6d:9b:14:a2: 2e:77:3b:2d:be:12:59:ed:e3:e8:cb:04:ba:59:6d: 87:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:51:D3:E3:91:C5:93:33:46:49:9E:2E:1C:A1:46:CC:E5:EE:BA:65 X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/FD9457225B1011F0A31EF763C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.2.0/23 IPv6: 2001:df2:efc0::/48 Signature Algorithm: sha256WithRSAEncryption 12:70:93:50:4b:93:e6:31:e6:2b:bd:eb:e1:f7:b1:1e:93:5c: e6:04:bb:9b:97:6f:51:64:f0:9f:7d:8a:84:df:31:d6:25:85: 09:f7:cc:96:45:14:62:b6:6b:db:68:fd:d6:f9:df:30:05:48: 0b:fd:48:d2:78:b3:74:5f:da:74:3d:72:f2:82:1f:37:42:42: a2:af:6b:59:37:04:cd:9f:0e:ba:58:38:6e:8f:89:83:97:bd: a2:f1:63:08:bf:b9:37:19:5f:96:9a:34:ac:3f:c0:68:d7:38: e0:e3:15:07:21:f1:36:42:bb:c7:21:de:b0:a3:99:c5:4c:d6: 80:ae:f8:57:8d:3b:9f:80:9d:3d:2d:df:06:6c:c9:d5:5f:e2: 08:d7:e6:af:78:a3:db:5f:8d:8b:6f:fc:70:ab:7c:b6:03:a4: 77:c6:5a:40:c8:c9:63:f7:51:f6:08:90:87:25:ae:0e:1c:58: 4b:f3:33:72:57:ae:f3:96:09:cb:a3:4a:2a:b2:66:2a:05:86: ba:11:74:74:8d:2a:8f:75:b3:98:c7:15:97:58:cc:8c:e3:f9: 27:2b:82:25:8b:02:9e:5a:4d:53:ac:07:54:22:08:0d:62:da: 3e:ac:c0:f2:6f:8d:5d:6d:a2:06:87:14:73:0b:89:7a:9a:30: cd:55:f0:80 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUxMTI0MjA0MjEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzExNC05OTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JPLOVoTdGr8QYMq8j0RSY+bvgySMlqkHKYTbcxt7rbBkeBt9Nv1mCvSOGl/ MtwbsLocMVR8IVXDnKW5KHi9j7ylvB2mfGEvb75VkHbtscp/j58sGhJf0WJnxyHw 97VzQMHXv1YAOUaSXa5RpWWo8MN8yMDjGIisY0jxspCTjp+0V/Uk4IZfI4jh7w3d mhRUzjVN/wl/xP4RE7jeI1AzDwXMZQN54DgX2QZY/tukgrOIjaaiJBbcR8Ui5PVv eSBIHe4vf28MQNs0q5kXF7fnAqfe5DrBc97NsrhZnPBJ2j80iRaLdOwqoDZtCG2b FKIudzstvhJZ7ePoywS6WW2HkQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNBR0+OR xZMzRkmeLhyhRszl7rplMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGQUYvMDcxNzYyNDA0OTJDMTFFQkE5ODFCRjUyQzRGOUFFMDIvRkQ5NDU3MjI1 QjEwMTFGMEEzMUVGNzYzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ54CMA8EAgACMAkDBwAgAQ3y78AwDQYJKoZIhvcNAQELBQADggEB ABJwk1BLk+Yx5iu96+H3sR6TXOYEu5uXb1Fk8J99ioTfMdYlhQn3zJZFFGK2a9to /db53zAFSAv9SNJ4s3Rf2nQ9cvKCHzdCQqKva1k3BM2fDrpYOG6PiYOXvaLxYwi/ uTcZX5aaNKw/wGjXOODjFQch8TZCu8ch3rCjmcVM1oCu+FeNO5+AnT0t3wZsydVf 4gjX5q94o9tfjYtv/HCrfLYDpHfGWkDIyWP3UfYIkIclrg4cWEvzM3JXrvOWCcuj SiqyZioFhroRdHSNKo91s5jHFZdYzIzj+ScrgiWLAp5aTVOsB1QiCA1i2j6swPJv jV1togaHFHMLiXqaMM1V8IA= -----END CERTIFICATE-----Generated at Thu Mar 26 10:53:27 2026 by rpki-client