$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa File: F894F5B0E09411F0B3B2B389426F56BC.roa (raw, json) Hash identifier: i1NQ3dvRnw0Bs6jS9vQXeiF+G8ng2+6kPCVgO9nJjSE= Subject key identifier: 4F:03:D3:70:DB:FB:EE:32:64:BA:6A:A8:46:EE:57:7D:53:53:08:F1 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D1D Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa Signing time: Sun 01 Mar 2026 19:06:59 +0000 ROA not before: Fri 02 Jan 2026 08:36:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 2914 IP address blocks: 103.197.208.0/24 maxlen: 24 103.197.209.0/24 maxlen: 24 103.197.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3357 (0xd1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jan 2 08:36:11 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e53-fab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4c:85:c9:6d:95:83:8c:fe:e9:84:f6:e0:a5: 85:40:aa:8e:07:b9:e9:7d:6f:7c:0f:21:9f:9d:9a: 18:9a:19:98:74:d6:f2:45:71:36:74:22:d5:4c:1c: ba:dc:50:5c:72:76:6c:2a:3e:3c:fa:e3:51:2f:08: e4:1a:f7:ca:0b:02:1c:68:82:76:ee:e0:a6:b9:3e: 77:71:68:7a:7c:36:b9:95:c1:74:10:b1:7c:bd:7a: 04:d9:ce:85:5d:f0:29:b8:9b:2c:5b:f0:fe:2c:e1: e4:dc:15:b5:77:33:55:ee:16:9d:ec:73:52:86:af: 9e:5f:8f:3f:53:f1:f9:35:b7:be:f3:f2:b7:58:b7: 9e:e5:ca:a8:3b:31:1f:f7:2d:8e:e0:79:26:19:c3: c3:fa:af:f8:94:01:5c:ef:51:2e:3f:49:21:53:2a: f8:50:cc:24:c1:51:54:e2:04:31:ce:d3:a7:61:76: 6c:a8:26:a3:a5:2a:13:b0:dc:bf:fe:ce:22:43:b9: 53:24:42:66:a6:12:c0:d5:8b:06:1a:a3:8a:3c:df: 25:13:cc:c8:be:6f:4e:da:39:0f:eb:e9:74:d2:bf: af:38:c4:d9:e0:ce:ef:d0:b6:d2:aa:1c:45:ce:3c: 43:ba:21:44:ef:4f:fd:65:d0:f8:af:28:fc:61:a0: c7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:03:D3:70:DB:FB:EE:32:64:BA:6A:A8:46:EE:57:7D:53:53:08:F1 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/F894F5B0E09411F0B3B2B389426F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.197.208.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:bf:19:59:90:fc:e6:d3:f6:ee:b4:37:e8:17:2c:19:2c:2d: a6:bf:5b:d1:57:5d:2d:7c:0d:c2:b7:07:7f:bd:b5:fa:52:44: 58:06:96:a8:09:69:27:5f:2e:7e:ae:94:68:5b:d2:cd:c1:fd: 18:52:a8:ac:56:7a:a5:0e:c9:22:c2:ad:c4:e1:42:b1:9b:ae: 4c:b8:66:d8:2b:81:cf:01:07:b7:b3:b3:d8:b1:1d:ef:6e:58: 50:82:30:f3:0e:f4:18:04:fe:48:8d:a6:3e:e9:8d:2b:ef:34: 65:30:16:92:9b:5d:b0:2b:2d:f8:46:9f:0d:11:76:c4:6c:77: d8:80:49:e9:2d:72:f6:58:67:b0:ea:c8:4e:90:5d:79:3f:e3: 94:8a:dd:f4:7e:01:2a:fb:e4:e0:3a:7d:b1:18:d5:b1:e8:a4: a2:9b:79:05:4d:57:e6:91:57:d6:5e:19:01:29:de:8b:4b:15: 1c:ad:ce:3a:9d:a4:35:53:24:96:d9:bd:24:cb:9d:9c:bc:90: c0:55:de:63:aa:28:b0:e7:f1:f5:5e:05:7a:12:10:05:4a:13: 97:f1:6b:e1:62:97:46:7d:14:2f:e3:cf:1e:2a:88:97:22:c9: 24:1d:9c:7d:3c:90:a5:ee:8b:56:1f:44:3b:14:ee:9b:fb:63: fc:91:fc:90 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMTAyMDgzNjExWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU1My1mYWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkyFyW2Vg4z+6YT24KWFQKqOB7npfW98DyGfnZoYmhmYdNbyRXE2dCLVTBy6 3FBccnZsKj48+uNRLwjkGvfKCwIcaIJ27uCmuT53cWh6fDa5lcF0ELF8vXoE2c6F XfApuJssW/D+LOHk3BW1dzNV7had7HNShq+eX48/U/H5Nbe+8/K3WLee5cqoOzEf 9y2O4HkmGcPD+q/4lAFc71EuP0khUyr4UMwkwVFU4gQxztOnYXZsqCajpSoTsNy/ /s4iQ7lTJEJmphLA1YsGGqOKPN8lE8zIvm9O2jkP6+l00r+vOMTZ4M7v0LbSqhxF zjxDuiFE70/9ZdD4ryj8YaDHbQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE8D03Db ++4yZLpqqEbuV31TUwjxMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRjg5NEY1QjBF MDk0MTFGMEIzQjJCMzg5NDI2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ8XQMA0GCSqGSIb3DQEBCwUAA4IBAQA7vxlZkPzm0/butDfoFywZ LC2mv1vRV10tfA3Ctwd/vbX6UkRYBpaoCWknXy5+rpRoW9LNwf0YUqisVnqlDski wq3E4UKxm65MuGbYK4HPAQe3s7PYsR3vblhQgjDzDvQYBP5IjaY+6Y0r7zRlMBaS m12wKy34Rp8NEXbEbHfYgEnpLXL2WGew6shOkF15P+OUit30fgEq++TgOn2xGNWx 6KSim3kFTVfmkVfWXhkBKd6LSxUcrc46naQ1UySW2b0ky52cvJDAVd5jqiiw5/H1 XgV6EhAFShOX8WvhYpdGfRQv488eKoiXIskkHZx9PJCl7otWH0Q7FO6b+2P8kfyQ -----END CERTIFICATE-----Generated at Mon Mar 2 12:53:35 2026 by rpki-client