$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa File: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (raw, json) Hash identifier: gBr8kuEdca8+8LvnqhMagU492eKuThSVJtqW18qCZ/o= Subject key identifier: E8:95:57:9D:C3:84:B0:B9:2C:70:56:F3:7C:10:27:C8:3C:E4:25:E0 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 021B Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:35:51 +0000 ROA not before: Fri 09 May 2025 03:32:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151480 IP address blocks: 103.243.100.0/23 maxlen: 23 202.53.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: May 9 03:32:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3de46-3910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ea:60:e8:23:7d:bd:dd:6e:04:26:b3:12:dd: 68:5e:46:a6:69:c2:d3:8f:fb:be:42:ee:94:66:e3: 57:54:61:88:c5:12:f9:b5:21:03:56:56:a0:ef:fc: 2b:7f:b0:49:25:98:86:74:24:9d:7e:6d:84:d9:de: 0e:d3:e2:b6:48:98:ed:4f:72:cc:aa:fc:45:34:ef: b5:0f:09:5b:bd:3d:c0:69:ff:c5:e0:80:b5:a6:84: 97:5e:cf:7a:a9:ef:11:2e:f0:c5:f3:f4:f5:56:b7: a6:07:e6:77:e3:fd:53:a3:3f:ad:42:74:22:50:c0: d3:ad:40:18:5a:01:12:2a:47:35:70:cb:ab:8f:de: f7:72:4d:47:2e:f7:19:db:b3:ca:b9:e9:c5:25:a4: ce:74:a9:86:71:f6:83:1c:42:25:62:07:29:74:22: db:ab:95:b1:23:50:85:32:81:b3:e1:33:01:5c:2c: 4d:44:8e:90:fa:1f:19:b7:97:ef:2c:e5:46:96:5f: 11:48:b6:48:c3:e5:e0:fc:a7:2b:13:ba:fb:10:3e: 6b:e4:e0:09:ea:35:6b:af:6d:34:b8:ac:69:92:fc: 4e:c7:84:10:49:a3:12:dc:30:db:eb:21:1c:c7:3e: 3c:6b:38:06:96:70:bb:04:89:d0:7d:df:b0:37:86: 15:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:95:57:9D:C3:84:B0:B9:2C:70:56:F3:7C:10:27:C8:3C:E4:25:E0 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.243.100.0/23 202.53.0.0/22 Signature Algorithm: sha256WithRSAEncryption 70:b1:c0:67:84:39:ee:fa:6d:4d:d5:aa:7a:db:2e:d8:94:7f: fc:cf:b4:58:df:bf:35:c9:e0:f7:6e:8d:8a:aa:93:85:4c:25: 07:dd:cb:9f:71:5d:37:d2:5e:c1:6f:07:eb:46:63:4d:64:28: 71:8d:d5:e6:7a:26:9b:44:4f:6a:56:f3:ab:f7:72:39:c2:3b: 39:7e:13:5f:12:e5:bf:e3:af:5b:16:68:af:fd:6f:a5:1b:f7: 65:c5:f8:5e:1b:57:60:4e:d2:a1:60:16:4a:9b:60:2c:51:43: de:98:91:77:7a:0d:31:67:b5:bd:9f:fd:60:6b:df:c9:17:7f: 85:a0:b3:b5:1b:99:ac:1c:5f:df:e4:b6:cd:73:01:8c:fe:1e: 28:5d:0a:05:5b:af:a8:28:2b:d5:d1:73:8a:dc:92:a6:77:09: 3f:00:e8:1e:a9:d0:76:52:aa:34:1f:16:08:09:d8:f9:31:1e: cc:43:2c:3c:34:4d:74:dc:09:b1:bc:6b:e3:dc:e8:2a:31:c6: d3:ce:18:6e:6a:15:31:14:ac:69:fd:3e:b1:ef:73:65:f6:fc: 83:e6:eb:2c:01:37:b9:d6:b7:1e:e0:1c:94:ed:f0:e8:4e:be: c3:1d:ea:f4:43:bf:f3:71:03:47:88:a0:29:f4:41:7d:f9:4b: a2:3d:28:89 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwNTA5MDMzMjU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGU0Ni0zOTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5upg6CN9vd1uBCazEt1oXkamacLTj/u+Qu6UZuNXVGGIxRL5tSEDVlag7/wr f7BJJZiGdCSdfm2E2d4O0+K2SJjtT3LMqvxFNO+1DwlbvT3Aaf/F4IC1poSXXs96 qe8RLvDF8/T1VremB+Z34/1Toz+tQnQiUMDTrUAYWgESKkc1cMurj973ck1HLvcZ 27PKuenFJaTOdKmGcfaDHEIlYgcpdCLbq5WxI1CFMoGz4TMBXCxNRI6Q+h8Zt5fv LOVGll8RSLZIw+Xg/KcrE7r7ED5r5OAJ6jVrr200uKxpkvxOx4QQSaMS3DDb6yEc xz48azgGlnC7BInQfd+wN4YVEwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOiVV53D hLC5LHBW83wQJ8g85CXgMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE2NEMvRTFBNTQ2MjZGNzk4MTFFRDk2Nzc3MTI0QzRGOUFFMDIvRkZDRTA3MkUy QjgxMTFFRTlCREVDMDc5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ/NkAwQCyjUAMA0GCSqGSIb3DQEBCwUAA4IBAQBwscBnhDnu+m1N 1ap62y7YlH/8z7RY3781yeD3bo2KqpOFTCUH3cufcV030l7BbwfrRmNNZChxjdXm eiabRE9qVvOr93I5wjs5fhNfEuW/469bFmiv/W+lG/dlxfheG1dgTtKhYBZKm2As UUPemJF3eg0xZ7W9n/1ga9/JF3+FoLO1G5msHF/f5LbNcwGM/h4oXQoFW6+oKCvV 0XOK3JKmdwk/AOgeqdB2Uqo0HxYICdj5MR7MQyw8NE103AmxvGvj3OgqMcbTzhhu ahUxFKxp/T6x73Nl9vyD5ussATe51rce4ByU7fDoTr7DHer0Q7/zcQNHiKAp9EF9 +UuiPSiJ -----END CERTIFICATE-----Generated at Mon Mar 2 09:56:43 2026 by rpki-client