$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/FFDA736894CB11ECA827746DC4F9AE02.roa File: FFDA736894CB11ECA827746DC4F9AE02.roa (raw, json) Hash identifier: KtIufux/j8uZsLjUbLPfpnJOkVL/4Ue5N16JttxJrtA= Subject key identifier: DD:76:5A:A7:72:2B:E3:F7:CA:31:FE:08:45:D1:BB:30:AA:7D:E2:F8 Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 0452 Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/FFDA736894CB11ECA827746DC4F9AE02.roa Signing time: Mon 02 Mar 2026 05:19:11 +0000 ROA not before: Sat 21 Feb 2026 00:20:50 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 149505 IP address blocks: 103.181.104.0/23 maxlen: 23 103.181.104.0/24 maxlen: 24 103.181.105.0/24 maxlen: 24 2001:df0:6bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9, serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Feb 21 00:20:50 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a51dcf-05ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a4:bc:a0:4e:10:cc:68:1e:f7:70:d3:e8:19: 77:25:c4:3c:3c:69:18:32:1d:78:0c:65:83:ae:f2: de:d0:c8:5d:b0:18:ec:d5:d1:50:75:04:ea:e4:b9: 14:b1:67:04:b7:19:ff:9f:77:97:7c:68:62:00:d5: 4f:ac:a3:f8:ef:db:f4:fd:25:f6:4a:49:ae:7a:38: e3:fe:26:a7:9e:9c:df:5e:0d:48:c3:66:b1:80:4a: 27:7d:62:77:f1:7d:1f:aa:18:50:eb:04:1a:d9:99: 74:24:2f:73:69:47:04:ae:39:9a:3f:6b:d7:20:98: 0e:0d:6a:ba:fc:8a:fb:a8:00:d9:3c:83:8b:f0:52: 6f:32:6f:c5:19:dc:0e:63:60:56:22:48:6d:77:cc: 5f:1c:be:5e:40:6e:89:98:1f:44:5d:98:0e:b5:bf: 5f:bc:2e:bc:22:69:6b:a1:5f:00:bb:a2:36:c8:f8: 19:2c:91:13:14:a9:02:00:bd:30:0c:bd:aa:f4:bf: ea:e2:25:d2:02:3e:88:d0:b7:90:e1:0b:e7:e4:8b: 22:ea:ce:6b:0f:0b:c5:77:3e:35:6d:4a:bc:2b:2c: eb:11:71:aa:f2:a1:6b:bd:60:0f:81:c4:69:24:99: 3f:b8:56:72:c2:88:dd:1d:0b:0f:0c:90:e9:8a:be: 7b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:76:5A:A7:72:2B:E3:F7:CA:31:FE:08:45:D1:BB:30:AA:7D:E2:F8 X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/FFDA736894CB11ECA827746DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.181.104.0/23 IPv6: 2001:df0:6bc0::/48 Signature Algorithm: sha256WithRSAEncryption 5e:1e:e1:21:f0:df:11:4e:f8:5f:3d:88:bb:fa:62:05:d8:34: 0e:da:7e:83:3a:b8:98:ef:b2:11:cc:f0:1a:8b:17:01:a7:2f: 91:2d:96:1f:31:5d:5b:22:e3:93:4b:1b:c8:a8:e4:30:3a:09: 7e:69:75:ac:46:23:c0:1f:3d:d5:73:95:88:dc:30:e3:d7:3a: 5c:8d:a4:84:bf:bb:b6:1a:8f:6d:77:4d:a4:91:09:c5:fb:e5: 4e:d3:fc:f5:73:31:ca:64:33:c0:5d:ae:53:41:24:7f:c9:7b: 24:16:f3:7a:b7:8a:e1:24:eb:e1:80:25:6d:e7:45:b2:8f:24: 8e:22:49:d9:19:1a:cb:84:0c:41:99:c1:63:f5:2e:dd:c1:5e: ce:db:d4:58:f9:be:21:8d:78:05:5f:f4:52:d0:24:55:d1:49: 2b:53:cb:61:7a:54:08:24:bc:1d:7d:06:6c:f4:53:c4:ce:b5: 67:9c:18:8b:ba:5f:6b:64:a3:ac:06:da:c9:27:02:11:5e:aa: 60:8c:96:dc:16:27:e5:47:d5:27:64:c7:ff:df:e8:9a:67:10: a0:9a:e0:14:55:c1:2b:88:de:b9:1b:f6:70:23:ac:d8:b2:7a: 5f:92:90:79:26:a4:01:00:31:fc:e6:aa:09:6a:96:4a:f3:b2: d0:6e:ba:f4 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjYwMjIxMDAyMDUwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWRjZi0wNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqS8oE4QzGge93DT6Bl3JcQ8PGkYMh14DGWDrvLe0MhdsBjs1dFQdQTq5LkU sWcEtxn/n3eXfGhiANVPrKP479v0/SX2Skmuejjj/iannpzfXg1Iw2axgEonfWJ3 8X0fqhhQ6wQa2Zl0JC9zaUcErjmaP2vXIJgODWq6/Ir7qADZPIOL8FJvMm/FGdwO Y2BWIkhtd8xfHL5eQG6JmB9EXZgOtb9fvC68ImlroV8Au6I2yPgZLJETFKkCAL0w DL2q9L/q4iXSAj6I0LeQ4Qvn5Isi6s5rDwvFdz41bUq8KyzrEXGq8qFrvWAPgcRp JJk/uFZywojdHQsPDJDpir576QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFN12Wqdy K+P3yjH+CEXRuzCqfeL4MB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM4QzkvNzM4RERGQzQ5NEM4MTFFQzk1Q0I5NzY1QzRGOUFFMDIvRkZEQTczNjg5 NENCMTFFQ0E4Mjc3NDZEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7VoMA8EAgACMAkDBwAgAQ3wa8AwDQYJKoZIhvcNAQELBQADggEB AF4e4SHw3xFO+F89iLv6YgXYNA7afoM6uJjvshHM8BqLFwGnL5Etlh8xXVsi45NL G8io5DA6CX5pdaxGI8AfPdVzlYjcMOPXOlyNpIS/u7Yaj213TaSRCcX75U7T/PVz McpkM8BdrlNBJH/JeyQW83q3iuEk6+GAJW3nRbKPJI4iSdkZGsuEDEGZwWP1Lt3B Xs7b1Fj5viGNeAVf9FLQJFXRSStTy2F6VAgkvB19Bmz0U8TOtWecGIu6X2tko6wG 2sknAhFeqmCMltwWJ+VH1Sdkx//f6JpnEKCa4BRVwSuI3rkb9nAjrNiyel+SkHkm pAEAMfzmqglqlkrzstBuuvQ= -----END CERTIFICATE-----Generated at Thu Mar 26 11:24:35 2026 by rpki-client