$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/FC07CE5C3A7C11EBB38FF025C4F9AE02.roa File: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (raw, json) Hash identifier: yYH3PcU0cdRRsZ0s/WXAKj+o8DaLhXORjZzgZMVE1n0= Subject key identifier: 09:CD:EB:48:77:C5:3F:45:FD:CB:7C:D1:93:CE:5D:32:93:91:79:80 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 07B1 Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/FC07CE5C3A7C11EBB38FF025C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:45:01 +0000 ROA not before: Tue 02 Dec 2025 20:54:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141420 IP address blocks: 103.158.226.0/23 maxlen: 23 103.158.226.0/24 maxlen: 24 103.158.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1969 (0x7b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4, serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: Dec 2 20:54:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45efd-fb8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:24:d0:69:e8:52:00:70:01:e5:6a:be:d8:10: 22:97:21:a3:2e:bb:6f:e9:89:5d:fc:dc:f9:8d:d1: e5:99:e2:24:d9:f3:38:35:b4:87:eb:39:35:70:08: 9f:df:ec:07:22:6e:59:35:3d:08:cf:ac:de:af:49: d8:22:bd:50:f1:ab:22:d0:05:02:cb:73:e8:bc:7d: 4d:88:5e:16:b1:35:8d:00:2a:e5:f7:97:bc:a2:0e: 1b:7f:06:79:23:4b:fc:b3:29:0a:1f:3a:2a:5c:26: 66:33:a6:a7:e6:c2:89:29:50:a8:62:fa:56:70:38: 2c:49:a9:10:a8:bf:59:f3:f4:14:d1:0c:d9:ee:25: 75:6d:34:91:7e:47:b8:f8:5e:e6:b9:11:d2:37:73: f4:5a:1f:da:00:6e:0a:bd:e0:3c:43:37:ad:69:4b: a2:9d:1b:62:d2:51:a9:0c:5b:e9:46:21:43:9c:94: 47:7b:1f:ce:df:d1:2e:96:31:b4:59:36:0b:cf:77: 3c:64:03:a0:95:51:7b:4c:7b:b6:d9:b1:ab:cc:e4: 96:bf:21:00:d6:a2:f4:00:2a:6c:cc:cc:46:7d:3f: d8:5a:13:98:f8:fb:cb:72:df:6e:1d:d1:32:59:56: 6c:04:3c:1b:85:cb:25:3c:7e:96:eb:cb:d5:50:3c: 33:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CD:EB:48:77:C5:3F:45:FD:CB:7C:D1:93:CE:5D:32:93:91:79:80 X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/FC07CE5C3A7C11EBB38FF025C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.226.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:2c:0a:1e:80:6b:06:90:6d:4f:28:9f:4b:1a:f6:45:11:6a: 85:23:b6:9a:d3:af:a6:e0:4f:6c:bc:19:46:0f:6c:4b:78:a6: 25:76:3e:9c:39:51:5f:d7:21:ee:2e:06:76:b4:4b:65:91:03: e2:5c:a6:dd:d0:34:c0:26:97:1c:a1:78:20:b0:76:81:a7:db: 53:ad:07:25:1a:43:5c:4b:53:b1:4b:10:57:45:48:28:04:35: 46:c6:d6:3e:6d:26:81:72:d6:42:f8:98:79:f9:14:8b:0e:6d: 04:97:2d:bb:07:fa:c0:dd:f5:39:90:21:bf:38:1b:38:e6:64: 68:f9:fb:2a:11:82:f5:f9:ba:9c:ef:7c:b0:d4:f0:18:05:7b: 71:7e:f4:70:46:74:a7:f4:a3:ab:f3:56:fc:b4:63:15:6c:ff: 0a:8c:e3:a8:c2:9e:c2:04:47:86:79:ae:19:a2:2e:73:05:d8: e8:b3:ce:1d:af:bd:dd:bd:a2:6f:70:39:31:92:b1:17:92:83: 22:c0:66:77:60:a9:b9:1b:d5:53:d3:53:93:01:32:6f:8b:15: a1:2a:15:2a:33:38:6e:35:87:58:eb:98:78:46:c5:8c:7d:ee: 07:1f:e2:68:98:75:2e:48:06:46:5f:05:c3:da:f9:6b:41:81: f9:11:d5:bb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjUxMjAyMjA1NDEwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWVmZC1mYjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCTQaehSAHAB5Wq+2BAilyGjLrtv6Yld/Nz5jdHlmeIk2fM4NbSH6zk1cAif 3+wHIm5ZNT0Iz6zer0nYIr1Q8asi0AUCy3PovH1NiF4WsTWNACrl95e8og4bfwZ5 I0v8sykKHzoqXCZmM6an5sKJKVCoYvpWcDgsSakQqL9Z8/QU0QzZ7iV1bTSRfke4 +F7muRHSN3P0Wh/aAG4KveA8QzetaUuinRti0lGpDFvpRiFDnJRHex/O39EuljG0 WTYLz3c8ZAOglVF7THu22bGrzOSWvyEA1qL0ACpszMxGfT/YWhOY+PvLct9uHdEy WVZsBDwbhcslPH6W68vVUDwzEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAnN60h3 xT9F/ct80ZPOXTKTkXmAMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVDQTQvN0FFOUZFRDYzQTdCMTFFQkI3ODY5QzI0QzRGOUFFMDIvRkMwN0NFNUMz QTdDMTFFQkIzOEZGMDI1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ57iMA0GCSqGSIb3DQEBCwUAA4IBAQCOLAoegGsGkG1PKJ9LGvZF EWqFI7aa06+m4E9svBlGD2xLeKYldj6cOVFf1yHuLgZ2tEtlkQPiXKbd0DTAJpcc oXggsHaBp9tTrQclGkNcS1OxSxBXRUgoBDVGxtY+bSaBctZC+Jh5+RSLDm0Ely27 B/rA3fU5kCG/OBs45mRo+fsqEYL1+bqc73yw1PAYBXtxfvRwRnSn9KOr81b8tGMV bP8KjOOowp7CBEeGea4Zoi5zBdjos84dr73dvaJvcDkxkrEXkoMiwGZ3YKm5G9VT 01OTATJvixWhKhUqMzhuNYdY65h4RsWMfe4HH+JomHUuSAZGXwXD2vlrQYH5EdW7 -----END CERTIFICATE-----Generated at Fri Mar 13 10:09:44 2026 by rpki-client