$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa File: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (raw, json) Hash identifier: vlYY+5TtJ2iPuvI4KrqFuTWbHS6vrSjRQ3Wr/LyP/X8= Subject key identifier: 57:34:50:FB:FA:45:40:0A:19:B4:13:1F:72:61:E9:9F:81:C0:DC:DB Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 0221 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:01:01 +0000 ROA not before: Fri 09 May 2025 03:32:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151480 IP address blocks: 103.243.100.0/23 maxlen: 23 202.53.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: May 9 03:32:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5198d-507e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:d5:fc:27:62:61:26:38:6e:18:02:59:3d: 18:05:d6:c4:7f:13:dc:7c:3f:6c:ce:f3:a0:d1:88: 69:28:f3:b6:a0:d3:4e:e0:87:4b:c3:26:bc:60:f0: eb:a0:46:ea:39:98:f1:b5:a5:20:0a:5a:12:42:7b: 77:f1:a4:6f:2d:59:d5:7a:b2:73:01:37:cd:dc:e9: 85:bc:2d:e0:65:c9:4d:27:b1:e6:28:02:12:da:eb: cd:a2:a0:99:ed:d0:f7:2a:cc:25:bd:8b:15:78:96: db:a2:51:1d:1f:44:6f:6c:25:bf:46:f4:0a:5c:3f: 3b:2a:9d:3f:7b:73:71:3a:5b:2d:22:64:0c:93:c2: 56:0c:ac:63:e8:78:77:7e:88:37:c1:20:3e:49:e3: 63:24:62:43:cc:ac:58:a3:f9:d0:8f:30:38:d8:51: fc:81:9a:2c:ee:72:b6:af:12:77:6d:88:8d:87:f6: 25:0e:ef:ca:0f:76:0c:4c:14:51:84:a4:86:da:ff: b4:84:4f:72:b2:60:3c:d1:85:69:63:a1:97:21:d7: b6:b9:60:20:30:95:3f:8d:da:49:d6:7a:93:2b:f1: 97:ca:b9:8f:c0:33:0f:6e:05:26:dd:b7:af:84:58: 99:5b:da:dd:4f:66:5b:b3:87:0c:ca:e8:8a:36:d1: 96:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:34:50:FB:FA:45:40:0A:19:B4:13:1F:72:61:E9:9F:81:C0:DC:DB X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.243.100.0/23 202.53.0.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:8c:f2:99:6f:57:b6:4f:79:75:87:af:10:37:22:e5:d3:66: ec:6b:c9:ae:58:56:be:f4:b8:b9:d1:1d:1d:60:5c:7d:6d:99: 62:25:f5:5e:3a:74:f1:93:4b:5e:b6:87:2b:1b:ad:4f:08:a4: c1:87:0e:33:53:77:6a:ed:49:1c:63:9c:ad:c4:70:b5:01:74: 24:42:0e:4f:55:fd:c5:a5:82:c9:7a:85:c4:55:36:c4:f4:a1: 98:68:1b:fe:ef:cd:17:c5:f6:d5:2c:96:4a:b3:94:2e:ed:e2: 55:bd:2d:7f:eb:05:bf:d7:43:47:17:c6:54:db:fa:2d:7a:e1: ab:d1:f7:59:12:85:33:34:bf:30:da:43:fb:7e:16:52:a6:3a: 11:2c:9c:05:5d:e8:48:7d:aa:05:05:4d:97:44:9e:25:68:ea: c8:36:96:c6:01:c4:2a:41:84:59:e0:20:2b:ff:ef:df:9d:93: 0c:22:22:f3:07:47:0b:34:c1:bd:ed:07:c2:98:8b:13:72:54: 47:51:ad:8f:7b:fe:31:38:28:9c:21:23:c9:9a:3b:af:c8:29: e4:31:6d:5a:b6:4b:11:56:6e:9a:3f:fe:4b:b5:19:44:43:bb: 05:b7:98:ed:f6:ee:14:73:41:3a:1c:29:6c:91:4c:d1:c9:61: 5b:69:1e:3d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwNTA5MDMzMjU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTk4ZC01MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1XV/CdiYSY4bhgCWT0YBdbEfxPcfD9szvOg0YhpKPO2oNNO4IdLwya8YPDr oEbqOZjxtaUgCloSQnt38aRvLVnVerJzATfN3OmFvC3gZclNJ7HmKAIS2uvNoqCZ 7dD3KswlvYsVeJbbolEdH0RvbCW/RvQKXD87Kp0/e3NxOlstImQMk8JWDKxj6Hh3 fog3wSA+SeNjJGJDzKxYo/nQjzA42FH8gZos7nK2rxJ3bYiNh/YlDu/KD3YMTBRR hKSG2v+0hE9ysmA80YVpY6GXIde2uWAgMJU/jdpJ1nqTK/GXyrmPwDMPbgUm3bev hFiZW9rdT2Zbs4cMyuiKNtGWawIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFFc0UPv6 RUAKGbQTH3Jh6Z+BwNzbMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE2NEMvRTFBNTQ2MjZGNzk4MTFFRDk2Nzc3MTI0QzRGOUFFMDIvRkZDRTA3MkUy QjgxMTFFRTlCREVDMDc5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ/NkAwQCyjUAMA0GCSqGSIb3DQEBCwUAA4IBAQBsjPKZb1e2T3l1 h68QNyLl02bsa8muWFa+9Li50R0dYFx9bZliJfVeOnTxk0tetocrG61PCKTBhw4z U3dq7UkcY5ytxHC1AXQkQg5PVf3FpYLJeoXEVTbE9KGYaBv+780XxfbVLJZKs5Qu 7eJVvS1/6wW/10NHF8ZU2/oteuGr0fdZEoUzNL8w2kP7fhZSpjoRLJwFXehIfaoF BU2XRJ4laOrINpbGAcQqQYRZ4CAr/+/fnZMMIiLzB0cLNMG97QfCmIsTclRHUa2P e/4xOCicISPJmjuvyCnkMW1atksRVm6aP/5LtRlEQ7sFt5jt9u4Uc0E6HClskUzR yWFbaR49 -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:24 2026 by rpki-client