$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa File: FBBFC6D8A86B11E9A1385758C4F9AE02.roa (raw, json) Hash identifier: uK9y+gPM8Frp0brfv/3gjohOY8wSZFPP3WtdADUyL4w= Subject key identifier: A0:3D:D6:4C:30:71:F5:12:E0:E4:0B:B1:73:97:F2:F1:A8:38:91:2F Certificate issuer: /CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Certificate serial: 0EB5 Authority key identifier: D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:36:49 +0000 ROA not before: Sat 26 Jul 2025 17:57:32 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24082 IP address blocks: 103.67.26.0/24 maxlen: 24 103.141.98.0/24 maxlen: 24 2001:dde::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3765 (0xeb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5143, serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Validity Not Before: Jul 26 17:57:32 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a424d1-fa5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:41:79:53:77:6b:b4:37:94:d9:9a:bc:00:e5: 3c:7f:19:23:94:e4:8b:d4:c3:99:45:e7:f1:33:a5: a1:bf:8a:a0:b3:d8:7c:40:52:46:af:1c:bf:2e:b9: 9f:63:bb:59:5c:82:49:a4:5c:fb:04:61:94:91:c6: c6:6b:e9:fa:2a:eb:0a:3e:e1:57:9c:0c:f5:cf:dc: f4:93:8d:b3:0a:63:36:48:58:2c:d3:94:1b:02:24: 43:87:10:01:a0:bf:23:db:5a:29:fb:7d:b9:80:87: 48:54:81:47:c0:39:66:88:d7:51:60:98:c2:d6:fd: 84:74:8a:4e:72:5f:38:d8:74:70:a2:76:b6:31:4a: 93:26:97:a2:68:60:ae:8e:8f:f6:72:ec:2a:60:dd: fa:b5:7f:1b:ff:8f:cc:e5:c6:6b:33:06:30:6a:f0: d9:ce:d1:0d:ca:f2:d5:82:16:aa:b5:5f:3f:7e:b2: a1:36:87:3a:b5:c6:9d:49:a3:6a:c7:33:4b:e2:ab: 48:3b:1c:59:d1:f6:7f:e3:da:27:2d:77:bb:85:ab: 6f:e9:1d:49:83:5d:9b:e1:14:54:0a:75:67:86:cd: 59:8b:35:41:3f:1e:22:1e:02:cb:53:4c:9f:dc:c5: 01:65:9c:16:4c:6a:fd:36:68:23:34:2a:e6:1c:bd: b8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3D:D6:4C:30:71:F5:12:E0:E4:0B:B1:73:97:F2:F1:A8:38:91:2F X509v3 Authority Key Identifier: keyid:D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/FBBFC6D8A86B11E9A1385758C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.67.26.0/24 103.141.98.0/24 IPv6: 2001:dde::/48 Signature Algorithm: sha256WithRSAEncryption bf:ec:b5:c0:c5:ba:36:f0:f1:10:5f:4d:db:e7:9f:85:cb:48: e9:06:cd:b2:46:d5:7c:99:af:12:b5:bf:2c:fc:89:46:6e:30: 76:8c:cf:6e:0f:bd:6e:29:95:05:db:d1:a2:c2:c3:ba:79:b4: 44:6c:33:ab:11:5e:b7:83:ea:8e:37:42:9c:c6:46:ca:b2:65: 3a:bd:7b:59:d9:61:c2:ac:85:ba:84:70:a0:46:ce:45:e7:c3: cb:6c:f0:5e:e9:3a:92:64:86:91:7c:2f:2b:2b:01:67:5f:b0: f1:3f:5d:63:d8:df:74:1b:f4:6b:fb:52:8d:19:27:d2:b3:44: 50:c1:b7:9a:75:fb:6c:6d:a6:e9:99:a9:08:54:ac:e8:0a:ac: 2c:4d:94:88:25:3d:28:73:2d:db:e5:6a:fb:91:c3:57:3a:f6: 01:46:a2:de:13:20:a2:6c:d5:41:7a:43:a9:98:f0:31:99:f8: 5b:23:f4:ac:21:cf:95:02:7a:84:e1:59:7c:8b:21:32:6d:f0: fb:7e:da:0e:8a:b7:53:5a:f7:47:5a:d2:31:84:b9:31:d0:97: fc:29:10:89:ee:35:eb:6e:e1:d6:97:35:b9:45:f0:de:6f:7c: 64:0b:ac:c0:3c:ed:73:28:eb:49:23:24:26:20:51:3e:bd:3f: ca:5b:6f:91 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICDrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUxNDMxMTAvBgNVBAUTKEQ5MkRBRDRENzZFMUY1QTAyNkMyN0YyREI5MUM0NEZC QUQ4RTQ4N0MwHhcNMjUwNzI2MTc1NzMyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjRkMS1mYTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUF5U3drtDeU2Zq8AOU8fxkjlOSL1MOZRefxM6Whv4qgs9h8QFJGrxy/Lrmf Y7tZXIJJpFz7BGGUkcbGa+n6KusKPuFXnAz1z9z0k42zCmM2SFgs05QbAiRDhxAB oL8j21op+325gIdIVIFHwDlmiNdRYJjC1v2EdIpOcl842HRwona2MUqTJpeiaGCu jo/2cuwqYN36tX8b/4/M5cZrMwYwavDZztENyvLVghaqtV8/frKhNoc6tcadSaNq xzNL4qtIOxxZ0fZ/49onLXe7hatv6R1Jg12b4RRUCnVnhs1ZizVBPx4iHgLLU0yf 3MUBZZwWTGr9NmgjNCrmHL24/QIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFKA91kww cfUS4OQLsXOX8vGoOJEvMB8GA1UdIwQYMBaAFNktrU124fWgJsJ/LbkcRPutjkh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTE0My8wREU5Rjc3NkE4 NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlhQW13bjh0dVJ4RS02Mk9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJTMnRUWGJoOWFBbXduOHR1UnhFLTYyT1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUxNDMvMERFOUY3NzZBODZCMTFFOUE3MDFDODU2QzRGOUFFMDIvRkJCRkM2RDhB ODZCMTFFOUExMzg1NzU4QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ0MaAwQAZ41iMA8EAgACMAkDBwAgAQ3eAAAwDQYJKoZIhvcNAQEL BQADggEBAL/stcDFujbw8RBfTdvnn4XLSOkGzbJG1XyZrxK1vyz8iUZuMHaMz24P vW4plQXb0aLCw7p5tERsM6sRXreD6o43QpzGRsqyZTq9e1nZYcKshbqEcKBGzkXn w8ts8F7pOpJkhpF8LysrAWdfsPE/XWPY33Qb9Gv7Uo0ZJ9KzRFDBt5p1+2xtpumZ qQhUrOgKrCxNlIglPShzLdvlavuRw1c69gFGot4TIKJs1UF6Q6mY8DGZ+Fsj9Kwh z5UCeoThWXyLITJt8Pt+2g6Kt1Na90da0jGEuTHQl/wpEInuNetu4daXNblF8N5v fGQLrMA87XMo60kjJCYgUT69P8pbb5E= -----END CERTIFICATE-----Generated at Mon Mar 2 17:17:18 2026 by rpki-client