$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa File: FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa (raw, json) Hash identifier: ufXIWT3ybJ8GsLB+9LFHnYVpVRoxtUOEddi9vIDDRZ8= Subject key identifier: 3E:66:7B:8E:5B:8D:8F:62:F6:CD:A3:17:49:C2:17:F2:26:F2:AF:30 Certificate issuer: /CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Certificate serial: 027F Authority key identifier: EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:18:54 +0000 ROA not before: Mon 27 Oct 2025 03:46:13 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135019 IP address blocks: 103.23.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBB1, serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Validity Not Before: Oct 27 03:46:13 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43cbe-9ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9f:a5:c9:7a:ab:5e:a8:1a:43:3c:e5:64:d9: 4c:ef:3d:49:07:85:b2:0a:71:cd:b9:54:a2:9f:f8: 8f:85:1b:c5:61:28:ac:d4:42:09:02:a0:85:9c:4d: 01:66:6a:68:17:2c:0a:ab:7e:4b:bd:a5:44:52:80: 3c:ff:6f:f4:32:10:58:4b:99:be:66:63:32:ce:67: 45:5e:29:7d:c8:28:82:8a:2f:dc:6f:15:a0:d1:e6: 7e:21:3d:53:45:24:8b:51:2d:07:2e:3d:fc:d5:ae: 2c:46:55:23:54:fd:49:8e:6e:3e:be:ef:07:ab:6a: 7e:7d:e8:66:88:27:63:75:83:04:9d:90:e5:69:ee: f9:60:bd:78:27:f1:c7:4b:6c:48:cf:d4:56:fb:62: a9:c7:fb:99:93:d7:80:b9:43:d0:2c:60:33:3f:66: 83:1a:22:31:0d:34:48:e1:4c:a0:df:4d:9f:15:07: 6f:48:73:92:8f:cd:f5:1b:e3:1a:d7:91:09:bf:b1: bf:39:76:18:b8:c7:bb:1e:0c:b0:86:5d:74:cf:10: 2f:0d:73:c7:35:f0:25:2c:25:6f:df:2d:0b:b8:02: 6e:49:63:a5:da:5d:95:0a:ea:6d:e1:7c:54:c2:8f: 49:cc:14:f1:9c:f9:8c:00:8d:ad:52:5f:65:74:8d: c8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:66:7B:8E:5B:8D:8F:62:F6:CD:A3:17:49:C2:17:F2:26:F2:AF:30 X509v3 Authority Key Identifier: keyid:EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/FEDE61B6ED2C11EEBF8F3E49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.255.0/24 Signature Algorithm: sha256WithRSAEncryption 62:e3:2b:5a:d2:d5:e1:e0:5a:22:1f:03:79:b8:94:f1:75:c2: a3:3c:31:98:65:b3:9f:b9:97:42:0f:49:8c:83:b3:43:e8:72: 4f:83:df:62:c5:ac:a3:96:43:62:f7:5d:37:e1:8c:fa:6e:ed: 00:d2:82:69:b9:f5:50:1c:89:c1:7a:c7:50:b3:82:04:9d:cd: d7:50:30:3c:7c:bd:82:6b:d6:5f:a6:e9:d8:ff:70:0f:e6:fd: 35:3a:b0:73:43:51:fa:32:1c:8f:72:9f:99:29:bb:a0:63:e2: 47:e8:80:64:dd:16:75:c8:50:2a:16:85:f3:47:3a:eb:fd:36: cd:5f:f3:db:30:33:0d:42:d8:a6:5d:ca:8e:6d:93:b3:bf:7b: 28:4e:a2:fd:83:e1:6b:56:8e:06:b4:e3:91:74:e0:8c:30:1c: 6e:43:ab:9b:65:98:81:db:34:c2:6d:92:6e:da:38:a0:4b:1b: f6:7b:c3:d6:c6:b0:d6:77:b7:7e:99:31:3d:f2:2c:1b:a5:93: 2e:a4:35:71:ea:1a:5d:55:e6:25:33:b0:da:c3:a3:e2:dc:9c: 1f:48:78:b3:f9:72:86:7e:15:b1:ca:36:7e:01:0f:79:bf:3a: 73:0d:17:ea:47:2c:98:0b:42:7f:b8:1e:e1:a9:73:3c:86:87: c5:bc:1f:4a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCQjExMTAvBgNVBAUTKEVBNDE5QTc5NjI5OTYyNUEwNzRBNjVCN0NBQ0VGRjE4 QjgwNjZDOEIwHhcNMjUxMDI3MDM0NjEzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2NiZS05Y2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0p+lyXqrXqgaQzzlZNlM7z1JB4WyCnHNuVSin/iPhRvFYSis1EIJAqCFnE0B ZmpoFywKq35LvaVEUoA8/2/0MhBYS5m+ZmMyzmdFXil9yCiCii/cbxWg0eZ+IT1T RSSLUS0HLj381a4sRlUjVP1Jjm4+vu8Hq2p+fehmiCdjdYMEnZDlae75YL14J/HH S2xIz9RW+2Kpx/uZk9eAuUPQLGAzP2aDGiIxDTRI4Uyg302fFQdvSHOSj831G+Ma 15EJv7G/OXYYuMe7Hgywhl10zxAvDXPHNfAlLCVv3y0LuAJuSWOl2l2VCupt4XxU wo9JzBTxnPmMAI2tUl9ldI3IcQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD5me45b jY9i9s2jF0nCF/Im8q8wMB8GA1UdIwQYMBaAFOpBmnlimWJaB0plt8rO/xi4BmyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJCMS82N0JFQTQwNjUz OUMxMUVEQUUwMDRFMTdDNEY5QUUwMi82a0dhZVdLWllsb0hTbVczeXM3X0dMZ0di SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZrR2FlV0taWWxvSFNtVzN5czdfR0xnR2JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCQjEvNjdCRUE0MDY1MzlDMTFFREFFMDA0RTE3QzRGOUFFMDIvRkVERTYxQjZF RDJDMTFFRUJGOEYzRTQ5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxf/MA0GCSqGSIb3DQEBCwUAA4IBAQBi4yta0tXh4FoiHwN5uJTx dcKjPDGYZbOfuZdCD0mMg7ND6HJPg99ixayjlkNi91034Yz6bu0A0oJpufVQHInB esdQs4IEnc3XUDA8fL2Ca9ZfpunY/3AP5v01OrBzQ1H6MhyPcp+ZKbugY+JH6IBk 3RZ1yFAqFoXzRzrr/TbNX/PbMDMNQtimXcqObZOzv3soTqL9g+FrVo4GtOORdOCM MBxuQ6ubZZiB2zTCbZJu2jigSxv2e8PWxrDWd7d+mTE98iwbpZMupDVx6hpdVeYl M7Daw6Pi3JwfSHiz+XKGfhWxyjZ+AQ95vzpzDRfqRyyYC0J/uB7hqXM8hofFvB9K -----END CERTIFICATE-----Generated at Mon Mar 2 14:28:15 2026 by rpki-client