$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa File: F7AA5B1CA1DA11EF86B88981C4F9AE02.roa (raw, json) Hash identifier: BKIcMCkVW60KGWs7PV20fBUIOJZkjn2YRewfApxSy5k= Subject key identifier: 7D:AA:13:A4:1B:CA:AA:3A:6B:C9:5F:81:A5:B2:A7:56:05:00:A1:6E Certificate issuer: /CN=A91DD299/serialNumber=156ED5BF81437C1B71E71CB02EEC27AB18AF79A4 Certificate serial: F6 Authority key identifier: 15:6E:D5:BF:81:43:7C:1B:71:E7:1C:B0:2E:EC:27:AB:18:AF:79:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:55:19 +0000 ROA not before: Sun 01 Jun 2025 06:46:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132294 IP address blocks: 103.166.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.crl rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD299, serialNumber=156ED5BF81437C1B71E71CB02EEC27AB18AF79A4 Validity Not Before: Jun 1 06:46:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e2d7-3d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:69:97:99:1f:45:cc:4a:ae:30:cf:12:c6:b9: d8:ed:09:34:ff:6d:b4:00:79:a7:34:07:9e:4a:bd: 89:fb:0e:e9:dc:c4:c2:a1:38:3f:2b:3f:32:13:41: c1:32:50:c7:ab:ff:54:16:35:fb:2e:39:99:83:aa: ea:36:ea:12:5a:a4:1d:0b:3f:a4:49:84:66:2a:d6: 44:d6:97:a8:96:79:cc:81:b1:4e:10:16:67:30:f0: a6:dd:bc:71:e4:4e:50:2d:91:c1:1d:16:3c:6e:8f: cd:b6:68:90:d0:43:9f:92:51:5b:d8:69:f4:34:98: 45:f1:d3:0c:c4:24:92:45:41:8b:ce:aa:b7:47:d0: f7:b7:0c:8d:0d:8d:52:73:95:62:86:7a:21:89:57: 6f:4f:dd:55:15:0d:d8:d5:d3:df:1f:79:be:4b:83: 89:db:1a:ba:a6:39:03:da:17:08:fa:a9:59:cd:38: b4:11:66:7c:8c:30:be:84:3d:75:f6:0f:87:c2:de: 01:e9:aa:80:84:ac:4b:86:2e:eb:63:df:6d:d4:f9: 8c:6a:e9:be:9d:d5:47:99:2c:02:f5:81:1c:4e:af: 0b:71:32:58:0f:ae:a0:62:f8:61:2d:93:f6:57:ce: bb:d9:51:3e:6d:77:71:ef:70:90:c4:83:ab:83:51: f2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:AA:13:A4:1B:CA:AA:3A:6B:C9:5F:81:A5:B2:A7:56:05:00:A1:6E X509v3 Authority Key Identifier: keyid:15:6E:D5:BF:81:43:7C:1B:71:E7:1C:B0:2E:EC:27:AB:18:AF:79:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/FW7Vv4FDfBtx5xywLuwnqxiveaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW7Vv4FDfBtx5xywLuwnqxiveaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD299/5EB93A72A1DA11EFB2333A45C4F9AE02/F7AA5B1CA1DA11EF86B88981C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.47.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:d4:95:45:6d:ac:a3:8e:b7:59:51:59:9c:3f:26:4f:bc:76: 23:b0:cf:e8:12:a4:c1:40:23:2b:7b:74:57:b9:4d:b9:85:29: d2:0f:eb:58:7d:22:b0:e9:bf:77:fd:f2:94:8b:d1:94:d7:b9: 9b:5b:5f:18:73:49:49:2f:db:b7:86:95:1a:7f:78:3b:97:48: fe:d3:bb:6d:f5:32:c5:b4:e8:d2:7d:82:c8:98:61:5e:cb:78: f7:ac:9a:5b:88:97:26:6f:f7:74:86:e9:ef:85:54:af:34:6b: 47:44:c1:76:c9:ea:08:4b:6a:a7:fa:22:10:29:c7:7f:53:64: 6b:84:29:95:c9:2d:a7:c6:96:9b:15:e7:0a:8d:af:ec:a2:cd: e4:5e:f8:48:3b:10:12:82:f5:e8:a0:2a:b9:13:ac:c8:e4:cd: c6:0d:46:8c:6b:18:14:24:03:21:86:40:57:17:92:e7:82:94: fe:54:4b:de:90:1e:72:af:25:7f:98:e8:0f:fc:3e:1d:27:45: 99:dc:2a:06:e7:8d:9f:7c:16:31:ba:bf:51:68:e8:38:b6:7d: cb:8c:f1:ef:cb:d7:40:3c:3e:78:aa:98:1b:c4:45:4b:68:28: 3a:c6:4f:28:47:df:ee:34:5e:b2:08:8d:27:a7:f1:8f:d6:53: 20:1d:70:55 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQyOTkxMTAvBgNVBAUTKDE1NkVENUJGODE0MzdDMUI3MUU3MUNCMDJFRUMyN0FC MThBRjc5QTQwHhcNMjUwNjAxMDY0NjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTJkNy0zZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32mXmR9FzEquMM8SxrnY7Qk0/220AHmnNAeeSr2J+w7p3MTCoTg/Kz8yE0HB MlDHq/9UFjX7LjmZg6rqNuoSWqQdCz+kSYRmKtZE1peolnnMgbFOEBZnMPCm3bxx 5E5QLZHBHRY8bo/NtmiQ0EOfklFb2Gn0NJhF8dMMxCSSRUGLzqq3R9D3twyNDY1S c5VihnohiVdvT91VFQ3Y1dPfH3m+S4OJ2xq6pjkD2hcI+qlZzTi0EWZ8jDC+hD11 9g+Hwt4B6aqAhKxLhi7rY99t1PmMaum+ndVHmSwC9YEcTq8LcTJYD66gYvhhLZP2 V8672VE+bXdx73CQxIOrg1Hy1QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH2qE6Qb yqo6a8lfgaWyp1YFAKFuMB8GA1UdIwQYMBaAFBVu1b+BQ3wbceccsC7sJ6sYr3mk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDI5OS81RUI5M0E3MkEx REExMUVGQjIzMzNBNDVDNEY5QUUwMi9GVzdWdjRGRGZCdHg1eHl3THV3bnF4aXZl YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXN1Z2NEZEZkJ0eDV4eXdMdXducXhpdmVhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQyOTkvNUVCOTNBNzJBMURBMTFFRkIyMzMzQTQ1QzRGOUFFMDIvRjdBQTVCMUNB MURBMTFFRjg2Qjg4OTgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6YvMA0GCSqGSIb3DQEBCwUAA4IBAQA61JVFbayjjrdZUVmcPyZP vHYjsM/oEqTBQCMre3RXuU25hSnSD+tYfSKw6b93/fKUi9GU17mbW18Yc0lJL9u3 hpUaf3g7l0j+07tt9TLFtOjSfYLImGFey3j3rJpbiJcmb/d0hunvhVSvNGtHRMF2 yeoIS2qn+iIQKcd/U2RrhCmVyS2nxpabFecKja/sos3kXvhIOxASgvXooCq5E6zI 5M3GDUaMaxgUJAMhhkBXF5LngpT+VEvekB5yryV/mOgP/D4dJ0WZ3CoG542ffBYx ur9RaOg4tn3LjPHvy9dAPD54qpgbxEVLaCg6xk8oR9/uNF6yCI0np/GP1lMgHXBV -----END CERTIFICATE-----Generated at Mon Mar 2 23:39:28 2026 by rpki-client