$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/FA870AFA94E011EDB701A974C4F9AE02.roa File: FA870AFA94E011EDB701A974C4F9AE02.roa (raw, json) Hash identifier: +PCxlBcrUQ01gjtIwgn/yayahZV/k+s8u1ahf84hyOo= Subject key identifier: 35:3B:F1:1B:91:09:AD:E7:E5:D6:C9:F1:4E:3F:B6:88:17:76:7D:AB Certificate issuer: /CN=A91F1C8C/serialNumber=13BDA64C6F1B5A2C33394736354E9E8E6BCAE256 Certificate serial: 08C4 Authority key identifier: 13:BD:A6:4C:6F:1B:5A:2C:33:39:47:36:35:4E:9E:8E:6B:CA:E2:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E72mTG8bWiwzOUc2NU6ejmvK4lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/FA870AFA94E011EDB701A974C4F9AE02.roa Signing time: Wed 06 May 2026 18:22:20 +0000 ROA not before: Wed 06 May 2026 18:22:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140992 IP address blocks: 103.154.160.0/24 maxlen: 24 103.154.161.0/24 maxlen: 24 2001:df4:9080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/E72mTG8bWiwzOUc2NU6ejmvK4lY.crl rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/E72mTG8bWiwzOUc2NU6ejmvK4lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E72mTG8bWiwzOUc2NU6ejmvK4lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2244 (0x8c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1C8C, serialNumber=13BDA64C6F1B5A2C33394736354E9E8E6BCAE256 Validity Not Before: May 6 18:22:20 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69fb86dc-fbf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:8c:52:a8:20:67:ce:db:34:0d:2f:a2:32: 2f:9a:ef:7e:d4:fd:b5:64:b5:91:2e:7d:4f:2e:29: da:50:41:5b:ad:90:0f:fe:f9:c4:28:5c:62:1e:d5: 0c:8f:c2:45:d1:85:06:41:12:e3:22:41:e8:6e:76: ae:f8:46:ba:b3:4b:5f:9d:a2:47:c8:a1:c2:e0:e0: 02:8c:c6:73:4e:1d:7a:1c:7b:d7:0f:65:4a:ad:2f: 63:f5:d9:07:4c:38:55:de:49:ca:2a:5d:a2:01:f8: 11:ed:c8:29:e9:34:62:bc:cb:b4:69:0a:00:a8:cd: 06:15:17:cf:70:97:00:3c:7b:d7:65:21:9a:01:69: 3a:5e:27:10:c5:a0:ac:cb:42:ae:26:0e:cc:5e:8b: ef:f3:73:f3:d7:3a:a6:2c:f5:9c:cc:45:37:93:d1: 57:cf:de:05:b8:c4:9f:57:fc:cf:34:38:be:02:5c: ea:ae:ee:85:b8:ae:49:e7:1a:59:3b:5b:01:91:11: 7f:91:42:94:47:05:03:ca:de:38:22:5b:95:c0:c0: 37:7d:4d:78:21:4f:42:d3:04:46:12:9d:93:a8:e6: bd:1d:03:36:ff:c2:86:e9:92:38:c9:53:ff:2e:f5: 66:1a:b9:02:73:66:2c:9a:b7:d1:06:74:a6:1f:2a: 58:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3B:F1:1B:91:09:AD:E7:E5:D6:C9:F1:4E:3F:B6:88:17:76:7D:AB X509v3 Authority Key Identifier: keyid:13:BD:A6:4C:6F:1B:5A:2C:33:39:47:36:35:4E:9E:8E:6B:CA:E2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/E72mTG8bWiwzOUc2NU6ejmvK4lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E72mTG8bWiwzOUc2NU6ejmvK4lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/FA870AFA94E011EDB701A974C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.154.160.0/23 IPv6: 2001:df4:9080::/48 Signature Algorithm: sha256WithRSAEncryption 40:72:2e:cd:74:a1:d4:52:c5:86:d2:92:cb:c1:53:11:ad:42: dc:6c:54:b3:f5:a1:d5:9f:3c:b3:82:e6:b1:93:9f:a6:f9:68: b9:af:93:78:c6:d9:1f:f9:da:27:e9:6b:1f:a5:c9:b8:a3:03: f6:35:97:a6:17:72:a1:8b:bc:7f:bc:1c:f6:1e:bb:71:5d:68: 88:4b:a8:1c:74:e0:ae:80:53:97:ae:b8:95:08:92:b7:f8:6a: c6:d9:49:4b:d2:55:78:a8:8d:fc:8f:3b:e5:81:48:cb:dc:f8: 20:3b:ed:a2:62:cb:5c:9d:16:3a:14:75:ee:3c:73:99:e5:54: 2a:a3:5b:b3:4d:b3:cb:e9:a6:31:5f:e3:07:7f:63:cc:cb:74: 14:e1:91:7c:c4:29:5e:26:ef:db:40:97:06:b7:5a:e7:19:59: 48:ba:7c:a9:4d:f5:45:91:72:fe:16:d5:65:a0:89:0d:2e:f9: 5f:5e:c4:d6:ac:26:b2:89:5b:02:e5:a7:93:83:5e:50:0b:e8: ec:3f:a3:1b:08:dd:b3:2e:db:3e:2d:46:7d:53:61:ca:44:91: fe:97:d3:bb:bc:be:ba:94:03:d1:24:88:19:40:41:f9:d4:1f: de:31:99:ec:91:8b:43:2b:07:47:18:50:c4:17:18:8e:25:bc: 2a:28:e8:a9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFDOEMxMTAvBgNVBAUTKDEzQkRBNjRDNkYxQjVBMkMzMzM5NDczNjM1NEU5RThF NkJDQUUyNTYwHhcNMjYwNTA2MTgyMjIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiODZkYy1mYmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqWMUqggZ87bNA0vojIvmu9+1P21ZLWRLn1PLinaUEFbrZAP/vnEKFxiHtUM j8JF0YUGQRLjIkHobnau+Ea6s0tfnaJHyKHC4OACjMZzTh16HHvXD2VKrS9j9dkH TDhV3knKKl2iAfgR7cgp6TRivMu0aQoAqM0GFRfPcJcAPHvXZSGaAWk6XicQxaCs y0KuJg7MXovv83Pz1zqmLPWczEU3k9FXz94FuMSfV/zPNDi+Alzqru6FuK5J5xpZ O1sBkRF/kUKURwUDyt44IluVwMA3fU14IU9C0wRGEp2TqOa9HQM2/8KG6ZI4yVP/ LvVmGrkCc2YsmrfRBnSmHypYqQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDU78RuR Ca3n5dbJ8U4/togXdn2rMB8GA1UdIwQYMBaAFBO9pkxvG1osMzlHNjVOno5ryuJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUM4Qy8yM0U1RDVERURG OTkxMUVBOUY4NUQ5ODJDNEY5QUUwMi9FNzJtVEc4Yldpd3pPVWMyTlU2ZWptdks0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U3Mm1URzhiV2l3ek9VYzJOVTZlam12SzRsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFDOEMvMjNFNUQ1REVERjk5MTFFQTlGODVEOTgyQzRGOUFFMDIvRkE4NzBBRkE5 NEUwMTFFREI3MDFBOTc0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5qgMA8EAgACMAkDBwAgAQ30kIAwDQYJKoZIhvcNAQELBQADggEB AEByLs10odRSxYbSksvBUxGtQtxsVLP1odWfPLOC5rGTn6b5aLmvk3jG2R/52ifp ax+lybijA/Y1l6YXcqGLvH+8HPYeu3FdaIhLqBx04K6AU5euuJUIkrf4asbZSUvS VXiojfyPO+WBSMvc+CA77aJiy1ydFjoUde48c5nlVCqjW7NNs8vppjFf4wd/Y8zL dBThkXzEKV4m79tAlwa3WucZWUi6fKlN9UWRcv4W1WWgiQ0u+V9exNasJrKJWwLl p5ODXlAL6Ow/oxsI3bMu2z4tRn1TYcpEkf6X07u8vrqUA9EkiBlAQfnUH94xmeyR i0MrB0cYUMQXGI4lvCoo6Kk= -----END CERTIFICATE-----Generated at Wed May 13 09:51:46 2026 by rpki-client