$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa File: FCC3542E445E11EBB692887EC4F9AE02.roa (raw, json) Hash identifier: EF9uieKoaY19hPq/K/Sub8whVe1rvynhE+WooVi1n/8= Subject key identifier: F9:B4:0B:C7:82:88:AF:D7:A2:AB:C7:5E:D8:CF:A5:35:A6:DE:06:63 Certificate issuer: /CN=A91E0435/serialNumber=42911B109D46E88661FA85616C812803C5AB3C64 Certificate serial: 0798 Authority key identifier: 42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:28:58 +0000 ROA not before: Tue 02 Dec 2025 20:54:39 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141456 IP address blocks: 103.160.8.0/24 maxlen: 24 103.160.20.0/24 maxlen: 24 2001:df1:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.crl rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1944 (0x798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0435, serialNumber=42911B109D46E88661FA85616C812803C5AB3C64 Validity Not Before: Dec 2 20:54:39 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4310a-2d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c8:d3:28:21:86:41:ad:60:35:98:a5:0b:8c: 1c:bb:01:eb:6d:10:10:7b:77:d0:8e:fe:6c:50:2d: 27:8d:4c:0f:69:8e:a6:f1:2c:94:72:05:7b:4c:a5: 05:7b:5c:80:a6:ca:15:df:02:b1:b2:70:96:86:86: ff:93:e8:96:b4:2a:05:98:87:b7:f2:cc:61:a7:69: aa:a6:aa:b2:bc:9b:61:9f:0c:ef:e9:5a:cb:34:e5: bf:ba:66:c3:6c:e3:56:ae:ca:4d:6f:18:fc:a6:3b: e4:f6:a9:35:e3:8d:1b:0f:c0:cc:46:bb:a0:71:0b: b0:38:0c:b7:84:e9:42:43:5f:e9:72:4c:ef:81:51: f1:57:8b:7c:30:74:e0:09:44:25:8b:12:15:61:dd: 53:1c:41:b9:24:78:17:82:43:74:4f:ab:17:92:4a: 8a:8e:0a:4b:97:9b:bd:c4:5a:f1:0a:01:16:b3:4b: 64:c7:eb:db:8b:33:6c:a2:00:98:ba:86:71:ba:3b: ad:ea:75:78:22:a1:d8:0a:98:72:3f:de:c0:10:2a: da:67:23:42:70:0f:43:4b:d8:29:40:32:b9:3c:3c: 01:d3:48:64:3c:d2:b0:9e:6c:12:c7:3f:7e:be:ae: 50:4a:09:2b:f0:76:67:1c:c6:84:4a:28:0f:f0:7d: 27:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B4:0B:C7:82:88:AF:D7:A2:AB:C7:5E:D8:CF:A5:35:A6:DE:06:63 X509v3 Authority Key Identifier: keyid:42:91:1B:10:9D:46:E8:86:61:FA:85:61:6C:81:28:03:C5:AB:3C:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpEbEJ1G6IZh-oVhbIEoA8WrPGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0435/D2885BC4445D11EBA517457EC4F9AE02/FCC3542E445E11EBB692887EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.160.8.0/24 103.160.20.0/24 IPv6: 2001:df1:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 6f:d6:ac:6f:e0:15:c7:42:b5:e3:4a:6d:6e:96:ac:ab:d2:72: 8c:3f:72:9e:5a:fa:ca:20:8e:f5:83:ee:72:55:06:48:a5:dd: 9c:15:f0:9c:b3:12:d2:f8:e7:77:5f:69:59:47:ea:68:40:78: 17:0f:a4:8d:34:fc:14:c7:69:f4:69:8f:b4:3c:9e:99:1f:87: f5:d9:5b:e7:3f:fd:98:82:67:1a:3b:15:0f:e4:eb:8e:21:40: 98:a3:a5:20:cf:f9:c8:76:6f:2e:c0:f4:48:e3:da:d7:17:22: 36:59:0d:94:c6:85:50:6c:62:f4:bc:71:73:5a:3b:95:16:83: 8d:48:4f:0e:e1:2c:fb:e2:0d:f4:62:60:f6:b4:3b:49:a6:e4: 61:2a:e5:f1:8d:11:88:b9:aa:0a:c9:76:d1:1c:7e:2e:a3:5a: e9:ab:eb:8e:b2:8a:f5:21:5e:1a:e5:5d:ef:8b:83:2a:ec:59: 56:17:7e:7e:f0:a8:21:f2:77:03:59:25:54:32:f9:f1:a4:79: ba:d4:76:cf:e9:a6:65:8a:9a:ec:5d:5c:d1:5a:41:76:ab:58: bc:20:96:de:42:96:52:a1:a6:f0:88:f8:da:5e:da:bb:2e:f3: 69:92:0a:31:b9:b1:a0:83:ff:1f:d6:ff:27:84:65:56:f6:95: de:02:01:34 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICB5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0MzUxMTAvBgNVBAUTKDQyOTExQjEwOUQ0NkU4ODY2MUZBODU2MTZDODEyODAz QzVBQjNDNjQwHhcNMjUxMjAyMjA1NDM5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzEwYS0yZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8jTKCGGQa1gNZilC4wcuwHrbRAQe3fQjv5sUC0njUwPaY6m8SyUcgV7TKUF e1yApsoV3wKxsnCWhob/k+iWtCoFmIe38sxhp2mqpqqyvJthnwzv6VrLNOW/umbD bONWrspNbxj8pjvk9qk1440bD8DMRrugcQuwOAy3hOlCQ1/pckzvgVHxV4t8MHTg CUQlixIVYd1THEG5JHgXgkN0T6sXkkqKjgpLl5u9xFrxCgEWs0tkx+vbizNsogCY uoZxujut6nV4IqHYCphyP97AECraZyNCcA9DS9gpQDK5PDwB00hkPNKwnmwSxz9+ vq5QSgkr8HZnHMaESigP8H0n5wIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFPm0C8eC iK/XoqvHXtjPpTWm3gZjMB8GA1UdIwQYMBaAFEKRGxCdRuiGYfqFYWyBKAPFqzxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDQzNS9EMjg4NUJDNDQ0 NUQxMUVCQTUxNzQ1N0VDNEY5QUUwMi9RcEViRUoxRzZJWmgtb1ZoYklFb0E4V3JQ R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwRWJFSjFHNklaaC1vVmhiSUVvQThXclBHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA0MzUvRDI4ODVCQzQ0NDVEMTFFQkE1MTc0NTdFQzRGOUFFMDIvRkNDMzU0MkU0 NDVFMTFFQkI2OTI4ODdFQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ6AIAwQAZ6AUMA8EAgACMAkDBwAgAQ3xOkAwDQYJKoZIhvcNAQEL BQADggEBAG/WrG/gFcdCteNKbW6WrKvScow/cp5a+sogjvWD7nJVBkil3ZwV8Jyz EtL453dfaVlH6mhAeBcPpI00/BTHafRpj7Q8npkfh/XZW+c//ZiCZxo7FQ/k644h QJijpSDP+ch2by7A9Ejj2tcXIjZZDZTGhVBsYvS8cXNaO5UWg41ITw7hLPviDfRi YPa0O0mm5GEq5fGNEYi5qgrJdtEcfi6jWumr646yivUhXhrlXe+LgyrsWVYXfn7w qCHydwNZJVQy+fGkebrUds/ppmWKmuxdXNFaQXarWLwglt5CllKhpvCI+Npe2rsu 82mSCjG5saCD/x/W/yeEZVb2ld4CATQ= -----END CERTIFICATE-----Generated at Mon Mar 2 17:06:35 2026 by rpki-client