$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa File: FBBFC6D8A86B11E9A1385758C4F9AE02.roa (raw, json) Hash identifier: XTPvOUtwwqNSor3+lvQAUp+XHkA+OuKa7+XgiPm/si4= Subject key identifier: 56:85:E6:F7:B7:0B:88:6B:AE:B2:84:5B:0B:39:3E:03:29:CA:76:2F Certificate issuer: /CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Certificate serial: 0E42 Authority key identifier: D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa Signing time: Sat 26 Jul 2025 17:57:32 +0000 ROA not before: Sat 26 Jul 2025 17:57:32 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24082 IP address blocks: 103.67.26.0/24 maxlen: 24 103.141.98.0/24 maxlen: 24 2001:dde::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5143, serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Validity Not Before: Jul 26 17:57:32 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6885170c-74ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:61:71:07:c8:e1:6a:2d:ae:1b:7b:05:19:cc: a6:f8:b1:74:a5:29:bf:d6:59:31:05:5a:cd:8e:32: 6d:f1:55:75:61:5c:e7:71:8d:00:6f:52:17:cf:b9: 50:26:84:ba:2a:e4:b7:c7:2d:a6:c7:7d:bb:b9:01: 0a:4a:45:58:3a:bc:8e:64:eb:ee:17:6d:a2:6c:15: c5:48:b8:e1:ec:5b:bf:80:b9:a2:5a:24:27:d3:e6: 72:78:83:9f:a7:0e:07:f5:a9:c2:10:03:43:1f:3e: 09:ec:10:8d:f1:48:1a:45:61:00:dd:9b:73:ab:a0: 46:6a:06:b7:97:6d:87:35:27:aa:69:f6:b9:56:5b: 92:5b:a2:ce:4b:47:e6:ac:c1:9f:65:6c:60:e6:14: 30:6b:97:70:07:56:bb:2a:6a:b2:ec:2a:5f:a3:2a: 39:f6:ea:1a:fb:8d:cf:89:90:39:61:86:d4:d9:a1: b8:95:4d:cc:61:4c:2d:43:07:da:ee:6c:ec:38:bf: 60:8a:46:ba:44:07:96:7d:fe:98:b3:f3:d7:0f:f9: dc:dc:b5:d4:2c:04:fa:0f:bc:32:bf:93:46:8e:67: cb:86:b7:5f:19:5a:f6:70:2f:5e:84:14:af:1c:2c: 2b:95:4c:04:7a:ea:78:e4:3b:f7:7b:fe:04:6e:16: 40:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:85:E6:F7:B7:0B:88:6B:AE:B2:84:5B:0B:39:3E:03:29:CA:76:2F X509v3 Authority Key Identifier: keyid:D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.26.0/24 103.141.98.0/24 IPv6: 2001:dde::/48 Signature Algorithm: sha256WithRSAEncryption 7e:22:c1:e7:ff:c3:83:99:36:83:af:d9:8c:18:9d:0b:1d:01: 69:6b:03:bd:1b:15:a4:ba:bc:af:1b:b1:44:91:2b:32:7e:e1: 73:b3:db:84:53:01:69:af:f4:fb:11:c4:c4:9f:0d:08:b4:bc: 91:b2:4d:a1:76:32:3a:2f:f2:ee:cf:81:ed:53:5d:a7:39:a5: 38:41:49:24:13:15:a6:6b:d4:50:5f:ca:f9:7e:c3:c4:38:0d: 7a:6c:9e:6f:8a:95:d8:58:44:42:f2:8e:e7:3b:2f:01:05:bf: 2b:01:3a:43:4c:c4:a9:8a:83:50:77:d4:86:80:3f:d3:a3:6f: 18:3a:95:0b:97:40:1a:4d:c6:63:6a:76:60:d2:6b:4f:bb:eb: 73:1f:70:2f:f0:24:0b:44:fa:de:47:81:13:f1:18:4f:66:c4: df:de:bc:98:6f:eb:fa:75:24:4c:41:06:69:b7:da:1d:95:f0: 42:51:a2:7c:72:00:d1:b4:29:1a:6c:d3:af:0d:31:a6:6b:92: 6e:ba:07:ab:d0:c0:08:f5:8f:92:a3:1b:e7:0d:f4:f1:81:04: 08:ef:f6:e9:64:bf:0d:2c:98:8b:8d:4b:96:5f:0e:81:9f:6d: b0:ac:df:9b:3c:3d:35:0c:8d:64:6a:b5:14:7a:dd:b3:19:b4: be:b4:68:65 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUxNDMxMTAvBgNVBAUTKEQ5MkRBRDRENzZFMUY1QTAyNkMyN0YyREI5MUM0NEZC QUQ4RTQ4N0MwHhcNMjUwNzI2MTc1NzMyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1MTcwYy03NGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2FxB8jhai2uG3sFGcym+LF0pSm/1lkxBVrNjjJt8VV1YVzncY0Ab1IXz7lQ JoS6KuS3xy2mx327uQEKSkVYOryOZOvuF22ibBXFSLjh7Fu/gLmiWiQn0+ZyeIOf pw4H9anCEANDHz4J7BCN8UgaRWEA3Ztzq6BGaga3l22HNSeqafa5VluSW6LOS0fm rMGfZWxg5hQwa5dwB1a7Kmqy7Cpfoyo59uoa+43PiZA5YYbU2aG4lU3MYUwtQwfa 7mzsOL9gika6RAeWff6Ys/PXD/nc3LXULAT6D7wyv5NGjmfLhrdfGVr2cC9ehBSv HCwrlUwEeup45Dv3e/4EbhZAYwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFFaF5ve3 C4hrrrKEWws5PgMpynYvMB8GA1UdIwQYMBaAFNktrU124fWgJsJ/LbkcRPutjkh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTE0My8wREU5Rjc3NkE4 NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlhQW13bjh0dVJ4RS02Mk9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJTMnRUWGJoOWFBbXduOHR1UnhFLTYyT1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUxNDMvMERFOUY3NzZBODZCMTFFOUE3MDFDODU2QzRGOUFFMDIvRkJCRkM2RDhB ODZCMTFFOUExMzg1NzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnQxoDBABnjWIwDwQCAAIwCQMHACABDd4AADANBgkqhkiG 9w0BAQsFAAOCAQEAfiLB5//Dg5k2g6/ZjBidCx0BaWsDvRsVpLq8rxuxRJErMn7h c7PbhFMBaa/0+xHExJ8NCLS8kbJNoXYyOi/y7s+B7VNdpzmlOEFJJBMVpmvUUF/K +X7DxDgNemyeb4qV2FhEQvKO5zsvAQW/KwE6Q0zEqYqDUHfUhoA/06NvGDqVC5dA Gk3GY2p2YNJrT7vrcx9wL/AkC0T63keBE/EYT2bE3968mG/r+nUkTEEGabfaHZXw QlGifHIA0bQpGmzTrw0xpmuSbroHq9DACPWPkqMb5w308YEECO/26WS/DSyYi41L ll8OgZ9tsKzfmzw9NQyNZGq1FHrdsxm0vrRoZQ== -----END CERTIFICATE-----Generated at Mon Aug 11 08:55:24 2025 by rpki-client