$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa File: F23EB988E9A811E9864E3674C4F9AE02.roa (raw, json) Hash identifier: h8Yq1El+9tmCY/aSU/vFeXJAQYEI+HLkPqW4KvJG1Ms= Subject key identifier: E7:56:23:F7:F1:CE:75:4E:9D:AC:1B:2C:A5:8A:4C:B1:CC:58:EB:62 Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0DE3 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa Signing time: Tue 14 Apr 2026 18:22:35 +0000 ROA not before: Tue 14 Apr 2026 18:22:35 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135033 IP address blocks: 103.206.192.0/24 maxlen: 24 103.206.193.0/24 maxlen: 24 103.206.194.0/24 maxlen: 24 103.206.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3555 (0xde3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Apr 14 18:22:35 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69de85eb-5ab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0a:cf:57:fc:86:44:eb:cd:42:57:a6:c6:13: 39:e3:b9:b4:60:92:62:84:01:82:3f:de:de:66:d5: d6:83:bb:d6:ff:33:71:12:7b:3e:e3:65:0a:35:2e: ff:71:4b:c8:b1:48:15:9d:17:72:06:a9:06:09:a3: c0:69:d9:fe:c5:83:f7:2a:32:e6:0c:6e:80:10:1c: 8f:a3:ef:70:17:b4:0c:12:f6:41:33:d4:6f:75:b5: 2a:ff:9c:ad:4c:64:f6:11:bb:a2:a8:3d:d4:6f:2d: 87:5c:58:c6:fb:60:5e:e8:c5:37:80:aa:78:c1:f4: 42:66:3f:52:01:da:7c:2a:e2:f4:1d:9f:e2:d9:3b: 06:47:d3:a2:4a:3e:84:66:c6:a9:2f:b5:e3:aa:7c: fb:6b:20:ba:42:9a:55:df:ae:d3:da:9c:90:5d:25: fb:de:13:d3:68:34:6a:3b:7f:31:e9:24:bc:3f:f5: f1:16:3b:e8:4e:4b:2a:59:76:6d:b3:71:3b:ff:fb: d1:4e:45:1c:a0:2b:5c:a3:1b:04:37:f2:af:c2:52: 31:7c:a4:9e:9f:63:56:9b:e9:fb:83:77:b7:41:94: 4e:e2:c3:6e:e0:3c:29:38:ba:43:ed:08:12:04:a1: ad:58:4b:89:da:6b:18:68:d4:7d:de:4b:95:b3:ff: cd:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:56:23:F7:F1:CE:75:4E:9D:AC:1B:2C:A5:8A:4C:B1:CC:58:EB:62 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.206.192.0/22 Signature Algorithm: sha256WithRSAEncryption 80:ce:17:b3:c9:35:04:a0:29:fe:ac:2b:db:93:04:8b:93:e8: 43:50:cd:f7:5b:7c:ae:8d:2d:02:82:ea:2b:8a:5a:19:7a:48: b6:d2:69:8e:b2:5b:50:75:ba:a5:5b:6f:24:46:19:b7:ab:31: c3:77:6f:ab:64:2c:99:59:fd:d0:75:79:be:09:4b:a9:2d:8b: f1:fb:ca:8f:6a:b4:3b:c4:5b:2b:78:84:67:ff:2d:69:25:2f: dc:68:33:1b:ae:35:14:23:63:aa:47:50:10:61:95:a9:6c:c8: c9:32:06:e1:b0:61:36:11:34:36:4a:63:e1:9d:72:44:91:52: 22:58:76:d1:7a:a8:55:5f:a4:1b:96:42:2b:97:44:d4:c1:21: f0:31:ed:e5:e6:e6:06:84:60:00:62:73:77:33:e2:29:40:b7: 14:e9:69:99:64:4e:74:19:0d:1b:56:64:c8:c4:a9:29:26:a4: e5:8b:55:50:f7:c6:a7:7a:ce:fd:b5:f2:2b:3e:3f:04:94:7f: d2:3a:aa:dd:bd:28:cd:42:70:a6:7e:4a:c2:3e:d9:0b:81:b5: 1d:9a:f1:46:e2:3f:40:45:d9:53:1e:f1:c5:a3:80:1b:c7:6a: 7e:98:2f:e9:d0:37:93:ad:28:45:9b:7e:b2:a5:ca:b2:38:e4: 98:04:58:af -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjYwNDE0MTgyMjM1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRlODVlYi01YWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQrPV/yGROvNQlemxhM547m0YJJihAGCP97eZtXWg7vW/zNxEns+42UKNS7/ cUvIsUgVnRdyBqkGCaPAadn+xYP3KjLmDG6AEByPo+9wF7QMEvZBM9RvdbUq/5yt TGT2EbuiqD3Uby2HXFjG+2Be6MU3gKp4wfRCZj9SAdp8KuL0HZ/i2TsGR9OiSj6E ZsapL7Xjqnz7ayC6QppV367T2pyQXSX73hPTaDRqO38x6SS8P/XxFjvoTksqWXZt s3E7//vRTkUcoCtcoxsEN/KvwlIxfKSen2NWm+n7g3e3QZRO4sNu4DwpOLpD7QgS BKGtWEuJ2msYaNR93kuVs//NqwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOdWI/fx znVOnawbLKWKTLHMWOtiMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE4NTcvRjEzMDdCNzREQUQ3MTFFOTlGOENBQzc4QzRGOUFFMDIvRjIzRUI5ODhF OUE4MTFFOTg2NEUzNjc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ87AMA0GCSqGSIb3DQEBCwUAA4IBAQCAzhezyTUEoCn+rCvbkwSL k+hDUM33W3yujS0CguoriloZeki20mmOsltQdbqlW28kRhm3qzHDd2+rZCyZWf3Q dXm+CUupLYvx+8qParQ7xFsreIRn/y1pJS/caDMbrjUUI2OqR1AQYZWpbMjJMgbh sGE2ETQ2SmPhnXJEkVIiWHbReqhVX6QblkIrl0TUwSHwMe3l5uYGhGAAYnN3M+Ip QLcU6WmZZE50GQ0bVmTIxKkpJqTli1VQ98anes79tfIrPj8ElH/SOqrdvSjNQnCm fkrCPtkLgbUdmvFG4j9ARdlTHvHFo4Abx2p+mC/p0DeTrShFm36ypcqyOOSYBFiv -----END CERTIFICATE-----Generated at Sun Apr 19 15:47:43 2026 by rpki-client