$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa File: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (raw, json) Hash identifier: xmXX2I3IErrJ4Tb+a2xOm3UuHMKaORzrEOx19VC0uEk= Subject key identifier: 24:B2:AA:2A:10:06:0E:F2:F1:21:4B:35:2E:6A:B8:EF:8A:2A:29:C2 Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0EEB Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:17:26 +0000 ROA not before: Sat 12 Apr 2025 17:57:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136277 IP address blocks: 103.85.214.0/24 maxlen: 24 103.85.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3819 (0xeeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69, serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: Apr 12 17:57:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a42e56-759f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a8:51:4c:0b:6e:62:a1:80:2d:74:19:37:fa: ef:d9:5c:e3:8d:a6:a8:7d:63:30:1d:f7:54:53:17: 5e:ab:22:39:ae:6a:91:24:8e:dd:8e:19:51:0f:b6: 89:db:ae:75:78:e2:5c:de:cc:97:f6:c7:a2:aa:56: 16:e2:5f:48:cf:29:2b:4b:76:62:d8:fe:71:57:e3: 51:96:71:f6:f2:85:19:8e:72:39:fd:cd:31:0a:c4: 54:f8:de:26:b8:49:a2:74:f6:12:d1:35:c7:a4:9d: 2c:88:34:90:4e:bc:9b:71:a6:66:33:ac:f0:fe:03: f2:15:4e:02:9c:22:0b:7e:33:85:f9:21:59:12:ce: 32:db:21:62:c1:c7:33:31:c6:f3:3b:cc:90:4d:df: 2e:86:62:68:80:06:a5:63:6b:fc:58:56:1f:76:46: 50:62:62:9b:6f:fb:4d:57:a3:39:26:85:d4:e8:41: 18:78:64:2f:9e:f7:b4:9c:48:b7:a0:4a:27:1e:67: 89:16:3c:16:0b:8f:82:bb:53:c5:67:8e:f7:23:81: 58:e3:c3:22:62:e8:1f:89:34:97:fd:23:46:02:45: 61:a8:dd:32:52:c4:4f:83:bc:b4:91:f0:ea:04:7e: da:e4:ed:97:f0:2c:45:e8:74:c8:7b:ce:ac:30:24: 93:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B2:AA:2A:10:06:0E:F2:F1:21:4B:35:2E:6A:B8:EF:8A:2A:29:C2 X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.85.214.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:6d:2f:f6:c8:26:e7:b8:46:e7:a7:65:56:37:80:47:5f:12: 39:0c:77:fb:e6:0d:3b:30:55:46:41:8c:7a:0e:a8:a3:75:33: 14:8b:36:bd:90:ac:94:d6:a2:ab:4e:31:dc:66:65:19:ba:46: 5c:4e:b2:ea:82:fe:2b:bd:08:bf:10:e2:d7:8d:bb:7c:ea:65: 53:44:fd:cc:41:f3:70:e3:00:d7:7f:b7:8f:1a:61:8e:0e:f2: 6a:7a:15:f9:6c:23:05:0f:a1:c6:f8:80:47:c1:df:1f:7a:f2: 96:6b:da:6a:5b:e6:d7:e2:d2:93:6d:27:56:d2:05:01:0a:3b: 52:b1:87:60:f8:66:ad:c8:f0:2f:4e:24:59:2d:1f:07:00:d8: d6:6a:04:50:d9:cb:83:90:1c:8e:7f:4a:52:ed:e3:5d:32:9e: f4:06:1e:ac:82:c5:a0:70:ab:f0:9a:7b:37:a9:0c:12:a6:f6: fa:d6:59:e4:2f:1c:dd:c3:ca:9e:82:e2:b1:54:48:79:f0:9b: 7f:9a:6b:bc:83:1f:09:d2:3d:ca:3c:ce:87:da:22:f1:08:8b: d9:66:40:2a:4f:6b:e5:5e:c6:da:f2:a4:58:eb:85:75:5c:3d: 2c:fb:ed:72:58:4a:30:6d:01:4b:4e:22:42:30:36:e9:9d:31: 83:74:7e:06 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjUwNDEyMTc1NzE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmU1Ni03NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KhRTAtuYqGALXQZN/rv2VzjjaaofWMwHfdUUxdeqyI5rmqRJI7djhlRD7aJ 2651eOJc3syX9seiqlYW4l9IzykrS3Zi2P5xV+NRlnH28oUZjnI5/c0xCsRU+N4m uEmidPYS0TXHpJ0siDSQTrybcaZmM6zw/gPyFU4CnCILfjOF+SFZEs4y2yFiwccz McbzO8yQTd8uhmJogAalY2v8WFYfdkZQYmKbb/tNV6M5JoXU6EEYeGQvnve0nEi3 oEonHmeJFjwWC4+Cu1PFZ473I4FY48MiYugfiTSX/SNGAkVhqN0yUsRPg7y0kfDq BH7a5O2X8CxF6HTIe86sMCSTRwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCSyqioQ Bg7y8SFLNS5quO+KKinCMB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FBNjkvNDBFMUZDOUM5RUIwMTFFOUIwN0U3QTgyQzRGOUFFMDIvMUZBQjYwRUU5 RUIxMTFFOTlFRDEwRDg0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ1XWMA0GCSqGSIb3DQEBCwUAA4IBAQAabS/2yCbnuEbnp2VWN4BH XxI5DHf75g07MFVGQYx6DqijdTMUiza9kKyU1qKrTjHcZmUZukZcTrLqgv4rvQi/ EOLXjbt86mVTRP3MQfNw4wDXf7ePGmGODvJqehX5bCMFD6HG+IBHwd8fevKWa9pq W+bX4tKTbSdW0gUBCjtSsYdg+GatyPAvTiRZLR8HANjWagRQ2cuDkByOf0pS7eNd Mp70Bh6sgsWgcKvwmns3qQwSpvb61lnkLxzdw8qeguKxVEh58Jt/mmu8gx8J0j3K PM6H2iLxCIvZZkAqT2vlXsba8qRY64V1XD0s++1yWEowbQFLTiJCMDbpnTGDdH4G -----END CERTIFICATE-----Generated at Mon Mar 2 06:35:46 2026 by rpki-client