$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/FF723568A0F311EBA4E4D83CC4F9AE02.roa File: FF723568A0F311EBA4E4D83CC4F9AE02.roa (raw, json) Hash identifier: UjDA69nI4M+QE5F7/yUCsXl1oguMiov/k5pjEhYxCYg= Subject key identifier: D1:6E:A8:FF:FE:45:8A:6C:D3:53:C3:36:A1:5D:8D:69:BC:67:F8:69 Certificate issuer: /CN=A91A5E1F/serialNumber=0BBD705890F278E1D593E98A74F03470F794FE5C Certificate serial: 0B60 Authority key identifier: 0B:BD:70:58:90:F2:78:E1:D5:93:E9:8A:74:F0:34:70:F7:94:FE:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C71wWJDyeOHVk-mKdPA0cPeU_lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/FF723568A0F311EBA4E4D83CC4F9AE02.roa Signing time: Mon 20 Apr 2026 19:24:07 +0000 ROA not before: Mon 20 Apr 2026 19:24:07 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 140229 IP address blocks: 103.148.210.0/23 maxlen: 23 103.148.210.0/24 maxlen: 24 103.148.211.0/24 maxlen: 24 2001:df2:ec80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/C71wWJDyeOHVk-mKdPA0cPeU_lw.crl rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/C71wWJDyeOHVk-mKdPA0cPeU_lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C71wWJDyeOHVk-mKdPA0cPeU_lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 19:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2912 (0xb60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5E1F, serialNumber=0BBD705890F278E1D593E98A74F03470F794FE5C Validity Not Before: Apr 20 19:24:07 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e67d57-4675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bb:df:7a:74:0e:7b:b6:8c:d6:ca:38:f2:87: 05:67:c6:89:21:d3:5b:44:84:39:3a:f0:8a:fc:fe: e2:c0:ad:bd:26:cb:38:4a:f5:5d:c9:e2:d3:1d:db: dd:bb:c9:00:6f:fc:c1:28:77:36:f2:16:b0:e5:f6: 22:74:17:e2:72:d5:6d:17:dd:f0:38:17:09:c6:84: 8e:05:55:3e:dd:cb:b5:06:9d:25:a0:c2:a7:0f:ae: f2:3d:f3:ba:a0:57:21:e7:52:dc:5b:d1:8d:d5:61: 3d:b1:f7:01:dc:1b:38:bb:7f:a0:be:45:87:36:81: 81:15:03:aa:52:78:22:a3:d8:8b:f9:ca:1a:e8:be: 9e:68:97:88:06:d5:1e:88:70:2a:23:a3:68:80:e5: ea:84:96:89:86:d5:97:b0:13:24:68:6d:f3:c4:e6: 8a:39:fb:08:e2:04:67:63:19:27:b7:1a:88:f1:d4: fd:f2:05:41:67:0d:60:95:75:32:1a:58:0f:ac:88: 37:5c:17:5b:c2:fc:18:4c:23:f6:38:68:00:dd:b1: d2:22:20:67:c2:20:2d:ac:c2:9f:d6:b0:87:da:3d: 39:34:8e:db:89:55:7c:74:75:9b:59:04:9a:8c:29: e1:70:ae:67:de:46:cc:fc:ff:6e:a0:65:72:91:5c: 01:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6E:A8:FF:FE:45:8A:6C:D3:53:C3:36:A1:5D:8D:69:BC:67:F8:69 X509v3 Authority Key Identifier: keyid:0B:BD:70:58:90:F2:78:E1:D5:93:E9:8A:74:F0:34:70:F7:94:FE:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/C71wWJDyeOHVk-mKdPA0cPeU_lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C71wWJDyeOHVk-mKdPA0cPeU_lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/FF723568A0F311EBA4E4D83CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.210.0/23 IPv6: 2001:df2:ec80::/48 Signature Algorithm: sha256WithRSAEncryption 7d:74:ae:75:bc:2e:63:4a:9a:e2:e7:f6:38:d8:e4:7f:ac:a9: 4a:41:b1:80:f2:48:ba:6b:13:77:43:57:e7:f9:74:4b:38:63: 1c:76:b4:6e:38:c0:4b:17:e7:a8:e1:f2:78:ff:ad:18:e7:29: fc:cc:09:11:13:06:eb:cc:6a:89:f9:10:f8:8d:0e:d6:58:40: 4e:bd:01:08:40:80:6a:1e:e5:02:ab:14:05:4a:27:28:40:04: fd:ff:c5:48:72:ae:b6:a0:71:c6:2e:f6:73:0f:82:31:6c:76: fc:e0:50:3d:68:05:56:da:3e:0d:ff:b3:48:24:90:22:32:e2: b6:b8:83:89:33:de:59:f5:83:1b:d9:88:67:d9:8e:04:e8:3a: 62:4e:93:ce:05:a7:42:2f:e1:dd:1e:b7:0a:cc:df:18:67:f4: 48:7d:c0:e3:ca:e3:4d:e8:52:45:42:5d:a0:49:23:d2:e4:06: 17:9e:b7:39:29:36:80:d2:db:be:69:ca:3c:01:c6:e8:06:05: de:3c:2b:7c:8e:34:c6:91:b9:15:fb:da:9e:33:14:04:f7:70: 39:fc:b1:1e:0b:29:91:3a:df:2b:4d:53:5e:50:55:cf:50:48: 7b:7a:27:96:da:30:7d:55:5e:94:35:f2:eb:ac:be:ca:f1:c8: 38:f4:d2:fd -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFMUYxMTAvBgNVBAUTKDBCQkQ3MDU4OTBGMjc4RTFENTkzRTk4QTc0RjAzNDcw Rjc5NEZFNUMwHhcNMjYwNDIwMTkyNDA3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2N2Q1Ny00Njc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurvfenQOe7aM1so48ocFZ8aJIdNbRIQ5OvCK/P7iwK29Jss4SvVdyeLTHdvd u8kAb/zBKHc28haw5fYidBfictVtF93wOBcJxoSOBVU+3cu1Bp0loMKnD67yPfO6 oFch51LcW9GN1WE9sfcB3Bs4u3+gvkWHNoGBFQOqUngio9iL+coa6L6eaJeIBtUe iHAqI6NogOXqhJaJhtWXsBMkaG3zxOaKOfsI4gRnYxkntxqI8dT98gVBZw1glXUy GlgPrIg3XBdbwvwYTCP2OGgA3bHSIiBnwiAtrMKf1rCH2j05NI7biVV8dHWbWQSa jCnhcK5n3kbM/P9uoGVykVwB7QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNFuqP/+ RYps01PDNqFdjWm8Z/hpMB8GA1UdIwQYMBaAFAu9cFiQ8njh1ZPpinTwNHD3lP5c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUUxRi8wMUY3RDZDQTU4 NjIxMUVBODE0RDg0NTlDNEY5QUUwMi9DNzF3V0pEeWVPSFZrLW1LZFBBMGNQZVVf bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3MXdXSkR5ZU9IVmstbUtkUEEwY1BlVV9sdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFMUYvMDFGN0Q2Q0E1ODYyMTFFQTgxNEQ4NDU5QzRGOUFFMDIvRkY3MjM1NjhB MEYzMTFFQkE0RTREODNDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5TSMA8EAgACMAkDBwAgAQ3y7IAwDQYJKoZIhvcNAQELBQADggEB AH10rnW8LmNKmuLn9jjY5H+sqUpBsYDySLprE3dDV+f5dEs4Yxx2tG44wEsX56jh 8nj/rRjnKfzMCRETBuvMaon5EPiNDtZYQE69AQhAgGoe5QKrFAVKJyhABP3/xUhy rragccYu9nMPgjFsdvzgUD1oBVbaPg3/s0gkkCIy4ra4g4kz3ln1gxvZiGfZjgTo OmJOk84Fp0Iv4d0etwrM3xhn9Eh9wOPK403oUkVCXaBJI9LkBheetzkpNoDS275p yjwBxugGBd48K3yONMaRuRX72p4zFAT3cDn8sR4LKZE63ytNU15QVc9QSHt6J5ba MH1VXpQ18uusvsrxyDj00v0= -----END CERTIFICATE-----Generated at Wed Apr 29 00:47:33 2026 by rpki-client