$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/FFDA736894CB11ECA827746DC4F9AE02.roa File: FFDA736894CB11ECA827746DC4F9AE02.roa (raw, json) Hash identifier: 24xENw43PWIo++Typlhw9fMm4A6mJx7vCj43VdIGklE= Subject key identifier: E3:2E:69:5D:C1:76:FE:58:52:06:BC:F8:63:CC:41:57:29:C2:54:38 Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 0448 Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/FFDA736894CB11ECA827746DC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:23:20 +0000 ROA not before: Sat 21 Feb 2026 00:20:50 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 149505 IP address blocks: 103.181.104.0/23 maxlen: 23 103.181.104.0/24 maxlen: 24 103.181.105.0/24 maxlen: 24 2001:df0:6bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9, serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Feb 21 00:20:50 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a44bd7-e000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:30:67:e1:dd:7b:9f:64:8a:35:32:d2:54:4f: d2:f7:ed:52:2a:d2:f6:ba:ec:43:73:13:ce:a8:95: 82:7a:0c:3d:c6:f1:09:2b:d1:9d:b6:7b:a6:34:32: 0f:97:ee:51:bc:39:22:60:30:49:59:4e:22:58:10: 3e:0c:37:f2:4b:de:1b:d5:0d:32:c8:e0:b9:39:b1: 30:32:7f:e1:2e:a4:80:2a:b0:29:1b:02:e3:ee:d2: 86:19:a9:f8:39:b0:cd:95:cf:b9:1d:f9:76:cb:01: 3a:2f:2f:48:3c:28:0f:1b:c5:e2:24:b4:3a:cc:8e: 34:4c:78:e7:83:16:5f:f7:88:90:71:3a:72:27:21: 5f:4d:92:26:23:01:e9:d4:71:47:39:db:ce:9d:e0: 56:66:2e:d2:66:5d:96:ac:e3:cd:22:e2:5d:60:68: 64:1c:21:41:e4:4f:12:68:e1:dc:b9:a5:5e:e7:7c: a5:d1:60:42:cb:38:46:43:2d:23:3d:7c:bc:3c:72: 68:7d:6c:73:ed:56:a9:b1:cd:1a:c3:ee:71:f6:d9: b4:15:cf:f5:cf:63:78:70:22:a7:a0:fc:63:a6:ee: a1:cf:b6:8a:3a:9a:b2:69:d1:75:ba:1c:e8:74:56: 80:8d:c1:3a:5b:f4:e0:bb:4c:22:13:2e:5e:22:25: b7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:2E:69:5D:C1:76:FE:58:52:06:BC:F8:63:CC:41:57:29:C2:54:38 X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/FFDA736894CB11ECA827746DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.181.104.0/23 IPv6: 2001:df0:6bc0::/48 Signature Algorithm: sha256WithRSAEncryption 72:fd:af:3c:fe:4a:70:50:c9:f4:a8:ed:d2:5b:f2:20:41:64: 06:5e:18:48:71:22:c2:4d:52:45:06:c4:2b:a6:dc:cc:13:d5: 54:e7:59:1a:96:9f:29:f7:0a:ee:ca:30:3a:d6:7f:72:93:39: 07:05:82:f1:d2:1c:d0:70:87:b6:bc:ee:ce:b3:d7:3c:30:28: 7b:97:bb:c2:e9:ae:ab:86:48:ba:3c:b7:e2:34:29:ec:f1:c6: 53:33:ab:ba:59:3e:f3:b3:49:ba:05:5e:ac:10:bc:92:09:9a: a1:74:1e:d9:65:83:b1:8a:66:e4:c0:b1:7e:14:87:96:14:ae: 1d:76:e9:2c:f9:6c:f1:83:0c:79:8c:b0:4f:37:14:ce:e9:af: 81:3b:99:94:53:dc:f0:00:0a:70:04:c3:e4:04:d3:9a:a7:df: 29:f3:bb:1d:04:50:63:ae:31:14:7a:68:69:fb:2c:aa:c2:09: 04:12:07:98:09:fc:79:6e:53:0f:88:8d:9b:22:43:25:a3:38: 6f:8e:db:f9:3c:0e:e6:bc:2a:e2:02:44:19:81:ba:7b:15:b7: 14:12:11:7c:7c:39:f4:59:50:ee:31:96:ac:c2:a7:4d:65:6e: 1b:45:20:b7:9b:ee:5c:db:de:8d:1c:5a:9e:2e:88:9a:94:c4: f5:a8:b0:b0 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjYwMjIxMDAyMDUwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGJkNy1lMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DBn4d17n2SKNTLSVE/S9+1SKtL2uuxDcxPOqJWCegw9xvEJK9GdtnumNDIP l+5RvDkiYDBJWU4iWBA+DDfyS94b1Q0yyOC5ObEwMn/hLqSAKrApGwLj7tKGGan4 ObDNlc+5Hfl2ywE6Ly9IPCgPG8XiJLQ6zI40THjngxZf94iQcTpyJyFfTZImIwHp 1HFHOdvOneBWZi7SZl2WrOPNIuJdYGhkHCFB5E8SaOHcuaVe53yl0WBCyzhGQy0j PXy8PHJofWxz7Vapsc0aw+5x9tm0Fc/1z2N4cCKnoPxjpu6hz7aKOpqyadF1uhzo dFaAjcE6W/Tgu0wiEy5eIiW3+QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOMuaV3B dv5YUga8+GPMQVcpwlQ4MB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM4QzkvNzM4RERGQzQ5NEM4MTFFQzk1Q0I5NzY1QzRGOUFFMDIvRkZEQTczNjg5 NENCMTFFQ0E4Mjc3NDZEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7VoMA8EAgACMAkDBwAgAQ3wa8AwDQYJKoZIhvcNAQELBQADggEB AHL9rzz+SnBQyfSo7dJb8iBBZAZeGEhxIsJNUkUGxCum3MwT1VTnWRqWnyn3Cu7K MDrWf3KTOQcFgvHSHNBwh7a87s6z1zwwKHuXu8LprquGSLo8t+I0KezxxlMzq7pZ PvOzSboFXqwQvJIJmqF0Htllg7GKZuTAsX4Uh5YUrh126Sz5bPGDDHmMsE83FM7p r4E7mZRT3PAACnAEw+QE05qn3ynzux0EUGOuMRR6aGn7LKrCCQQSB5gJ/HluUw+I jZsiQyWjOG+O2/k8Dua8KuICRBmBunsVtxQSEXx8OfRZUO4xlqzCp01lbhtFILeb 7lzb3o0cWp4uiJqUxPWosLA= -----END CERTIFICATE-----Generated at Mon Mar 2 05:49:09 2026 by rpki-client