$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa File: F23EB988E9A811E9864E3674C4F9AE02.roa (raw, json) Hash identifier: 1HBmKr2W8T1Zso/kNdXzLHpN23DmEnBt1mCLlPmSVtU= Subject key identifier: 45:42:C9:68:99:C2:D5:38:0C:85:D4:62:50:5E:94:F3:36:C6:C8:63 Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0DD9 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa Signing time: Tue 31 Mar 2026 18:23:20 +0000 ROA not before: Tue 31 Mar 2026 18:23:20 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 135033 IP address blocks: 103.206.192.0/24 maxlen: 24 103.206.193.0/24 maxlen: 24 103.206.194.0/24 maxlen: 24 103.206.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3545 (0xdd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Mar 31 18:23:20 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cc1118-7e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:ad:82:4d:00:ff:b6:06:98:52:9e:5b:ab:3a: ff:6f:b8:f7:75:3a:89:6f:49:f1:60:90:c9:ed:b8: d8:4e:f3:51:1d:9c:56:05:6f:77:33:1f:61:88:ff: 0c:5b:98:75:47:74:db:e7:49:25:2b:d2:64:c4:29: d9:80:70:3a:05:d2:89:1d:cb:c6:89:c7:ad:f2:e4: da:84:d0:1d:c2:ac:9c:c0:10:81:9a:5b:b8:78:89: 21:ed:20:0d:f3:25:1e:3f:79:c8:6f:62:73:f5:94: 1f:c6:2d:e8:17:d5:96:e4:6b:3a:8a:49:22:e0:aa: 17:15:06:ce:e9:ae:09:74:ce:29:37:de:f1:16:c3: 20:69:d5:ae:e4:66:25:bb:0b:6f:5b:68:a9:0b:e6: 04:e4:29:9c:99:be:06:18:f8:50:98:ab:81:fc:5c: 7f:1a:1e:48:e3:24:bb:7f:13:5e:44:df:65:88:7e: 8a:6a:d7:63:55:9f:af:90:b1:b8:3f:6c:26:d2:00: 66:97:68:e1:d8:44:fe:7f:fa:ec:b9:83:45:3c:85: ac:2e:b8:62:eb:44:b2:b8:ac:de:46:e9:94:d7:8a: 97:d0:2f:ce:e8:4a:70:d9:bd:3e:5f:8e:15:4f:fc: 55:0e:44:c8:ab:67:6e:4a:7a:bb:77:77:82:44:fc: 4b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:42:C9:68:99:C2:D5:38:0C:85:D4:62:50:5E:94:F3:36:C6:C8:63 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.206.192.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:81:ab:98:0b:c5:5c:80:eb:cc:47:b1:40:86:20:69:af:54: 08:64:51:c9:c5:01:02:14:e2:48:49:ce:ac:35:30:c8:05:a8: 81:91:b5:35:6e:79:40:13:91:89:81:d7:86:24:68:7a:1b:bc: fa:5d:be:dd:1f:84:fb:7b:f0:32:41:71:52:d3:d1:96:71:e2: 5b:13:94:ed:49:d2:9f:ba:80:09:b6:ef:82:2c:99:8b:7d:da: 06:6a:7c:47:a7:8f:db:a9:62:6c:17:14:20:07:ed:32:65:79: 63:0e:45:c8:bf:6c:30:3e:5e:8e:e3:4c:bf:3e:2b:82:de:d2: 77:87:e2:76:c4:22:5c:26:be:b8:fa:e1:fc:8c:c2:48:c8:f1: 80:51:34:9c:00:6c:54:19:f1:89:d7:1f:55:2f:d5:bf:e5:2e: db:21:f8:45:5c:d1:f9:1d:a1:e5:9d:f1:57:52:08:84:b8:3e: 50:ef:78:77:f6:c4:f4:4e:17:62:26:96:fc:c5:45:60:ae:fe: a7:68:f1:b8:c3:05:de:08:b2:3c:c0:8c:33:3c:8e:13:18:3c: b1:26:20:96:2c:17:b0:05:8c:bd:5f:40:8d:bc:0b:96:46:d1: fa:50:ee:fe:ab:32:cb:53:41:61:36:af:1f:07:46:ff:07:e1: 1f:3e:b5:29 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjYwMzMxMTgyMzIwWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjMTExOC03ZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiK2CTQD/tgaYUp5bqzr/b7j3dTqJb0nxYJDJ7bjYTvNRHZxWBW93Mx9hiP8M W5h1R3Tb50klK9JkxCnZgHA6BdKJHcvGicet8uTahNAdwqycwBCBmlu4eIkh7SAN 8yUeP3nIb2Jz9ZQfxi3oF9WW5Gs6ikki4KoXFQbO6a4JdM4pN97xFsMgadWu5GYl uwtvW2ipC+YE5Cmcmb4GGPhQmKuB/Fx/Gh5I4yS7fxNeRN9liH6KatdjVZ+vkLG4 P2wm0gBml2jh2ET+f/rsuYNFPIWsLrhi60SyuKzeRumU14qX0C/O6Epw2b0+X44V T/xVDkTIq2duSnq7d3eCRPxL8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEVCyWiZ wtU4DIXUYlBelPM2xshjMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE4NTcvRjEzMDdCNzREQUQ3MTFFOTlGOENBQzc4QzRGOUFFMDIvRjIzRUI5ODhF OUE4MTFFOTg2NEUzNjc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ87AMA0GCSqGSIb3DQEBCwUAA4IBAQBPgauYC8VcgOvMR7FAhiBp r1QIZFHJxQECFOJISc6sNTDIBaiBkbU1bnlAE5GJgdeGJGh6G7z6Xb7dH4T7e/Ay QXFS09GWceJbE5TtSdKfuoAJtu+CLJmLfdoGanxHp4/bqWJsFxQgB+0yZXljDkXI v2wwPl6O40y/PiuC3tJ3h+J2xCJcJr64+uH8jMJIyPGAUTScAGxUGfGJ1x9VL9W/ 5S7bIfhFXNH5HaHlnfFXUgiEuD5Q73h39sT0ThdiJpb8xUVgrv6naPG4wwXeCLI8 wIwzPI4TGDyxJiCWLBewBYy9X0CNvAuWRtH6UO7+qzLLU0FhNq8fB0b/B+EfPrUp -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:45 2026 by rpki-client