$ rpki-client -vvf rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/FA429FD6FEED11EF826A3F81C4F9AE02.roa File: FA429FD6FEED11EF826A3F81C4F9AE02.roa (raw, json) Hash identifier: duqpca6K+f3FNkiOtsfEqtlyMmxhg4ZVn8NvukwRevs= Subject key identifier: F4:D8:8D:5C:88:79:F7:F9:D1:48:55:28:D8:94:AE:4A:FA:53:46:6F Certificate issuer: /CN=A91E36C4/serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Certificate serial: B9 Authority key identifier: C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/FA429FD6FEED11EF826A3F81C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:01:24 +0000 ROA not before: Tue 13 May 2025 07:33:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 398704 IP address blocks: 103.167.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E36C4, serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Validity Not Before: May 13 07:33:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e444-9b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:06:6b:dd:35:2c:1a:ea:0e:95:6b:75:12:42: e8:2c:c1:65:31:43:d9:2a:56:43:84:7c:1d:c9:da: cc:18:39:59:39:4f:6b:09:ed:4c:0a:19:61:3d:39: c7:5f:d2:18:51:99:e5:94:21:5c:9d:d1:2c:34:66: 6c:07:99:cf:3f:c7:cf:d2:7f:af:88:a7:bb:47:74: f6:46:bb:2a:fb:82:60:4c:01:a0:c1:b3:4c:3c:bc: b2:7c:67:16:74:3f:53:04:a9:f4:77:bf:38:67:a8: 69:be:b6:f4:0c:e6:6f:76:1b:41:f7:78:b7:af:e8: 10:41:ab:e8:63:4a:02:39:91:a9:f6:c5:a4:87:1e: 20:1a:21:44:ca:ac:b5:43:4c:94:bd:f0:c8:c7:e0: 82:09:6b:72:fb:59:60:52:71:e2:74:1e:60:8b:1c: 96:6f:aa:84:3b:28:9f:5a:09:c4:42:61:6b:56:e8: 2a:26:c4:7b:19:f9:23:14:3c:9c:87:c4:41:2d:00: 26:15:9c:72:ff:bd:2b:b8:40:57:89:35:2e:3f:37: 46:6d:54:cb:20:4d:73:87:3b:16:e7:0a:31:a1:3c: 1f:85:40:48:7d:d6:26:3f:3b:26:be:75:aa:7f:ca: 36:45:b0:59:85:76:e8:41:01:c8:d2:eb:45:5d:07: e5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D8:8D:5C:88:79:F7:F9:D1:48:55:28:D8:94:AE:4A:FA:53:46:6F X509v3 Authority Key Identifier: keyid:C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/FA429FD6FEED11EF826A3F81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.64.0/23 Signature Algorithm: sha256WithRSAEncryption b4:18:4c:29:e6:b4:eb:f5:89:2e:dd:61:9d:59:7b:35:ab:13: f5:51:95:bf:4a:67:1f:07:ac:89:f6:1f:87:c9:f6:dc:4d:48: 1f:69:1a:ff:19:eb:dd:70:70:db:cb:0e:1f:78:df:82:e9:20: 8f:4f:c2:c1:af:2f:6b:00:69:3c:57:9f:df:d2:b5:4f:c3:ea: 6f:4d:83:fe:ac:f7:23:43:1a:50:ed:b6:eb:98:67:99:69:a1: cc:5d:e9:7d:39:8d:02:c5:33:0a:b4:b7:d6:e2:c7:be:9a:0a: 3e:c2:39:00:b7:d6:8b:d6:66:41:09:d3:c6:fe:ad:54:7e:63: 8a:1d:9f:45:4b:43:de:0f:a2:3b:a6:94:f2:2f:ff:5c:0f:64: 35:14:a0:d0:99:50:62:44:2f:e2:a7:c2:22:bc:f2:d3:14:c3: c5:ab:9f:04:b6:a0:bb:94:db:92:44:d5:42:03:50:c0:11:05: 6a:e8:75:2e:57:9b:11:7f:11:5f:99:bc:ae:5e:a7:02:58:43: aa:be:82:bd:28:2c:f0:75:e4:5e:2c:bf:07:f2:f9:d6:a5:5b: 88:71:d7:51:dd:e9:e9:d5:33:2a:07:ff:33:c4:b6:63:b8:18: 85:a5:15:08:0d:86:f8:a5:32:24:56:52:78:40:d8:a0:22:0a: af:a8:a5:87 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM2QzQxMTAvBgNVBAUTKEM3QzMyMzRCRDI2REFENjI5RTJEN0VGNDQ0NDg0RkU1 NDFEODE0OEUwHhcNMjUwNTEzMDczMzU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTQ0NC05Yjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAZr3TUsGuoOlWt1EkLoLMFlMUPZKlZDhHwdydrMGDlZOU9rCe1MChlhPTnH X9IYUZnllCFcndEsNGZsB5nPP8fP0n+viKe7R3T2Rrsq+4JgTAGgwbNMPLyyfGcW dD9TBKn0d784Z6hpvrb0DOZvdhtB93i3r+gQQavoY0oCOZGp9sWkhx4gGiFEyqy1 Q0yUvfDIx+CCCWty+1lgUnHidB5gixyWb6qEOyifWgnEQmFrVugqJsR7GfkjFDyc h8RBLQAmFZxy/70ruEBXiTUuPzdGbVTLIE1zhzsW5woxoTwfhUBIfdYmPzsmvnWq f8o2RbBZhXboQQHI0utFXQflOQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPTYjVyI eff50UhVKNiUrkr6U0ZvMB8GA1UdIwQYMBaAFMfDI0vSba1ini1+9ERIT+VB2BSO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzZDNC9DMTYwNTg1MkZF RUQxMUVGOUZGNkNFODBDNEY5QUUwMi94OE1qUzlKdHJXS2VMWDcwUkVoUDVVSFlG STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4TWpTOUp0cldLZUxYNzBSRWhQNVVIWUZJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM2QzQvQzE2MDU4NTJGRUVEMTFFRjlGRjZDRTgwQzRGOUFFMDIvRkE0MjlGRDZG RUVEMTFFRjgyNkEzRjgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6dAMA0GCSqGSIb3DQEBCwUAA4IBAQC0GEwp5rTr9Yku3WGdWXs1 qxP1UZW/SmcfB6yJ9h+HyfbcTUgfaRr/GevdcHDbyw4feN+C6SCPT8LBry9rAGk8 V5/f0rVPw+pvTYP+rPcjQxpQ7bbrmGeZaaHMXel9OY0CxTMKtLfW4se+mgo+wjkA t9aL1mZBCdPG/q1UfmOKHZ9FS0PeD6I7ppTyL/9cD2Q1FKDQmVBiRC/ip8IivPLT FMPFq58EtqC7lNuSRNVCA1DAEQVq6HUuV5sRfxFfmbyuXqcCWEOqvoK9KCzwdeRe LL8H8vnWpVuIcddR3enp1TMqB/8zxLZjuBiFpRUIDYb4pTIkVlJ4QNigIgqvqKWH -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:36 2026 by rpki-client