$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa File: F23EB988E9A811E9864E3674C4F9AE02.roa (raw, json) Hash identifier: ezIjH+EtT8GMZtC8ZEJapvMCXiyJXsb/S/CbtoY1s+Q= Subject key identifier: 16:B7:D9:69:6F:5E:C6:94:A8:7C:26:6D:21:A2:87:9F:69:80:8B:08 Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0DC5 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:21:59 +0000 ROA not before: Fri 30 May 2025 18:31:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135033 IP address blocks: 103.206.192.0/24 maxlen: 24 103.206.193.0/24 maxlen: 24 103.206.194.0/24 maxlen: 24 103.206.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: May 30 18:31:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a40537-5c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bf:e1:4a:81:a1:13:d8:c0:d2:f3:57:e3:4e: 46:ed:f9:ca:cf:95:78:e9:c0:52:a9:09:f4:3d:fc: e9:9c:5c:96:22:47:02:e6:20:d7:71:fd:0b:aa:b5: d8:f8:d6:ad:0c:4d:11:1a:2c:30:09:be:b4:74:92: 6b:96:74:b5:ed:ef:d7:77:8f:39:8f:de:05:37:6f: 6d:f2:ec:ff:c9:cf:24:1e:7c:40:83:96:12:91:3f: c1:41:6f:93:e1:4e:1d:6b:5d:98:0a:d1:c7:97:1d: 64:c4:8f:af:80:1a:1d:6d:3a:f2:21:ec:51:11:98: 2a:4f:77:6e:f5:14:9e:9a:10:49:4b:20:d5:55:53: e0:27:d1:4f:b2:bc:8a:12:15:ce:b9:18:f1:37:39: 07:c8:c4:ec:60:b1:03:36:4d:90:1e:50:de:ff:a3: d3:4d:2c:8a:ae:bb:6e:c6:b6:44:e0:b0:0c:20:2c: a5:09:d5:ef:a8:8d:b5:4d:67:b4:92:9b:63:b8:e3: 5a:7a:48:db:41:c9:6a:23:8f:c6:ff:93:7e:29:dc: 8b:63:44:f8:74:0f:f7:c1:47:da:4d:36:89:af:d8: 53:ce:eb:b1:dd:c4:f0:c7:94:30:3d:06:8b:27:7e: b2:7d:90:10:ca:92:e4:3f:b2:68:59:ac:a4:be:06: 21:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B7:D9:69:6F:5E:C6:94:A8:7C:26:6D:21:A2:87:9F:69:80:8B:08 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.206.192.0/22 Signature Algorithm: sha256WithRSAEncryption 82:20:12:10:ed:80:32:fc:12:15:cb:38:82:80:f4:3b:f4:03: f8:da:f5:a4:6f:29:6a:73:de:31:09:08:07:2b:29:6f:5a:d4: f0:38:d7:ef:ba:58:88:dd:0f:ab:92:f5:1b:d4:bf:01:b0:9c: 40:da:e5:24:2a:2e:71:62:1f:9b:d0:61:2e:dd:11:36:72:49: ee:0d:92:7d:cc:bb:26:ce:5e:2a:d5:16:7f:68:10:c0:ce:a4: 50:51:c0:27:f1:e8:c1:f2:27:ce:b6:00:10:f6:ba:77:43:24: 8e:0a:2c:e4:14:53:77:48:9d:c9:6c:8d:d5:c7:6a:ca:50:09: f7:28:d4:84:e4:8a:f8:fb:cc:ee:da:7f:09:4d:4c:a8:e1:74: be:a8:62:ae:70:8d:4f:b7:4a:ee:e4:a6:05:d5:02:ef:47:ed: b0:6b:4b:60:9c:65:7f:ee:27:06:95:5f:ca:3f:41:c0:39:8b: 44:84:26:29:1f:07:87:bc:fb:2e:f0:be:1e:14:87:ef:84:18: f9:6d:be:b4:5d:87:e6:6d:f5:f8:98:4e:37:51:7a:27:e2:48: 3c:0d:8e:15:ef:4c:39:b4:98:e5:f0:8a:69:60:ba:38:d7:04: d3:f1:8b:5c:87:83:07:66:38:df:c7:6e:31:cf:6f:23:47:d5: 7c:d6:11:4b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwNTMwMTgzMTIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDUzNy01YzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2b/hSoGhE9jA0vNX405G7fnKz5V46cBSqQn0PfzpnFyWIkcC5iDXcf0LqrXY +NatDE0RGiwwCb60dJJrlnS17e/Xd485j94FN29t8uz/yc8kHnxAg5YSkT/BQW+T 4U4da12YCtHHlx1kxI+vgBodbTryIexREZgqT3du9RSemhBJSyDVVVPgJ9FPsryK EhXOuRjxNzkHyMTsYLEDNk2QHlDe/6PTTSyKrrtuxrZE4LAMICylCdXvqI21TWe0 kptjuONaekjbQclqI4/G/5N+KdyLY0T4dA/3wUfaTTaJr9hTzuux3cTwx5QwPQaL J36yfZAQypLkP7JoWaykvgYhfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBa32Wlv XsaUqHwmbSGih59pgIsIMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE4NTcvRjEzMDdCNzREQUQ3MTFFOTlGOENBQzc4QzRGOUFFMDIvRjIzRUI5ODhF OUE4MTFFOTg2NEUzNjc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ87AMA0GCSqGSIb3DQEBCwUAA4IBAQCCIBIQ7YAy/BIVyziCgPQ7 9AP42vWkbylqc94xCQgHKylvWtTwONfvuliI3Q+rkvUb1L8BsJxA2uUkKi5xYh+b 0GEu3RE2cknuDZJ9zLsmzl4q1RZ/aBDAzqRQUcAn8ejB8ifOtgAQ9rp3QySOCizk FFN3SJ3JbI3Vx2rKUAn3KNSE5Ir4+8zu2n8JTUyo4XS+qGKucI1Pt0ru5KYF1QLv R+2wa0tgnGV/7icGlV/KP0HAOYtEhCYpHweHvPsu8L4eFIfvhBj5bb60XYfmbfX4 mE43UXon4kg8DY4V70w5tJjl8IppYLo41wTT8Ytch4MHZjjfx24xz28jR9V81hFL -----END CERTIFICATE-----Generated at Mon Mar 2 05:54:35 2026 by rpki-client