$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/FFD30A3A3CB811F1BBDAFF7AB4833773.roa File: FFD30A3A3CB811F1BBDAFF7AB4833773.roa (raw, json) Hash identifier: SjUSWIZP5JehPI4S4JhlMJHXgjL5bWNza1x377Y4CkQ= Subject key identifier: B5:2D:2B:2A:03:EB:3F:B4:71:3E:7A:D8:41:72:59:C8:C6:9B:B0:42 Certificate issuer: /CN=A91B43D7/serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Certificate serial: 075F Authority key identifier: F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/FFD30A3A3CB811F1BBDAFF7AB4833773.roa Signing time: Mon 20 Apr 2026 13:01:09 +0000 ROA not before: Mon 20 Apr 2026 13:01:09 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 134835 IP address blocks: 103.85.24.0/24 maxlen: 24 103.85.25.0/24 maxlen: 24 103.85.26.0/24 maxlen: 24 103.85.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 21:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1887 (0x75f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43D7, serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Validity Not Before: Apr 20 13:01:09 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e62395-df68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:b8:da:00:48:2f:1d:d6:97:8b:7b:13:88: 74:0c:0d:09:96:17:31:89:24:dd:d0:2b:01:16:10: c8:5d:92:ee:27:de:dd:3d:7d:fd:01:48:2e:31:13: 09:d5:1e:3e:18:d7:b2:f0:a4:d9:76:2f:e1:e4:c2: a5:7c:7f:22:3c:a0:db:b5:ca:4f:66:c9:9f:ea:ea: db:0e:81:e2:97:7e:e0:76:45:40:ef:ba:49:52:90: db:ab:de:22:d3:f2:46:b4:bf:8a:91:c8:32:cf:e2: 1d:7e:1a:2f:c9:a1:ed:4f:0d:23:09:0d:23:2a:74: b6:49:f3:f8:8d:53:fb:49:62:6c:51:64:16:b7:25: 63:1e:32:e0:66:e7:29:a8:48:fe:f6:5d:81:1e:b4: eb:ec:64:b9:73:78:f9:97:15:3f:59:a2:55:e5:bc: 3b:51:34:57:20:70:62:65:ec:f1:e7:2c:cd:1f:7c: 74:28:ae:6d:82:89:52:05:f9:29:90:d9:43:05:3f: 69:e7:47:c1:c7:06:1d:9d:cd:3c:e9:30:23:3a:cc: 5b:6e:6f:70:a1:d8:24:a0:27:02:f5:a1:01:38:d3: b0:1c:8a:23:da:01:42:d1:85:e0:9c:dc:94:eb:09: 33:7c:af:4e:73:f7:f0:60:b0:3a:50:81:9b:9a:61: ac:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2D:2B:2A:03:EB:3F:B4:71:3E:7A:D8:41:72:59:C8:C6:9B:B0:42 X509v3 Authority Key Identifier: keyid:F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/FFD30A3A3CB811F1BBDAFF7AB4833773.roa sbgp-ipAddrBlock: critical IPv4: 103.85.24.0/22 Signature Algorithm: sha256WithRSAEncryption 42:05:3d:ea:83:57:60:e4:19:0e:a3:7e:73:39:a3:15:ae:f1: 65:0f:e0:ec:7d:f7:d6:bc:f9:72:67:e8:8d:0e:d2:ae:e5:de: a1:3c:c2:dd:8b:7d:07:63:0e:1e:42:68:55:f4:bd:91:69:99: e9:55:94:f8:f5:86:37:a3:81:7f:2d:a6:8e:a9:cc:08:7f:e0: d1:79:03:b0:83:f2:4d:60:f4:2a:e9:54:01:99:be:4e:3b:26: c4:7b:4d:7c:b8:8d:0e:1d:01:8a:54:bb:25:ef:b2:ac:3f:33: 39:ac:04:c7:07:ca:9d:06:f4:79:81:bf:76:71:07:9f:b9:42: c2:8b:5a:80:66:b2:6d:00:9e:7c:fe:69:a1:33:be:48:04:70: 65:c6:89:cf:27:d1:ee:a6:e9:f3:25:b0:61:ce:bd:65:90:4d: 4d:03:a5:a8:f7:73:e2:7e:62:a4:9e:91:91:63:c3:30:96:ed: 98:b6:08:5c:ff:21:5e:1b:b4:71:a9:f2:34:52:46:1b:71:2d: 9b:67:9f:e2:1c:ae:f6:27:1d:d0:50:4c:fd:32:68:60:7e:7d: fc:9d:dc:41:b0:05:f9:7c:37:40:8b:3a:3f:09:f1:34:22:cf: 3a:ef:58:c8:b0:4a:d2:31:76:84:d8:7a:ee:3f:2a:3a:a8:b1: 76:6a:47:3e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRDcxMTAvBgNVBAUTKEYyQjcwQjQ5NzMyMkJFRTY2ODIwRUQzRkNFMjhBQTc5 NkRCMDkxNTMwHhcNMjYwNDIwMTMwMTA5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2MjM5NS1kZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraW42gBILx3Wl4t7E4h0DA0JlhcxiSTd0CsBFhDIXZLuJ97dPX39AUguMRMJ 1R4+GNey8KTZdi/h5MKlfH8iPKDbtcpPZsmf6urbDoHil37gdkVA77pJUpDbq94i 0/JGtL+Kkcgyz+IdfhovyaHtTw0jCQ0jKnS2SfP4jVP7SWJsUWQWtyVjHjLgZucp qEj+9l2BHrTr7GS5c3j5lxU/WaJV5bw7UTRXIHBiZezx5yzNH3x0KK5tgolSBfkp kNlDBT9p50fBxwYdnc086TAjOsxbbm9wodgkoCcC9aEBONOwHIoj2gFC0YXgnNyU 6wkzfK9Oc/fwYLA6UIGbmmGsJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLUtKyoD 6z+0cT562EFyWcjGm7BCMB8GA1UdIwQYMBaAFPK3C0lzIr7maCDtP84oqnltsJFT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNENy9FOUY1RDkzRTY1 MjQxMUVCOTgzRjFCMTFDNEY5QUUwMi84cmNMU1hNaXZ1Wm9JTzBfemlpcWVXMndr Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhyY0xTWE1pdnVab0lPMF96aWlxZVcyd2tWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzRDcvRTlGNUQ5M0U2NTI0MTFFQjk4M0YxQjExQzRGOUFFMDIvRkZEMzBBM0Ez Q0I4MTFGMUJCREFGRjdBQjQ4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ1UYMA0GCSqGSIb3DQEBCwUAA4IBAQBCBT3qg1dg5BkOo35zOaMV rvFlD+DsfffWvPlyZ+iNDtKu5d6hPMLdi30HYw4eQmhV9L2RaZnpVZT49YY3o4F/ LaaOqcwIf+DReQOwg/JNYPQq6VQBmb5OOybEe018uI0OHQGKVLsl77KsPzM5rATH B8qdBvR5gb92cQefuULCi1qAZrJtAJ58/mmhM75IBHBlxonPJ9HupunzJbBhzr1l kE1NA6Wo93PifmKknpGRY8Mwlu2Ytghc/yFeG7RxqfI0UkYbcS2bZ5/iHK72Jx3Q UEz9Mmhgfn38ndxBsAX5fDdAizo/CfE0Is8671jIsErSMXaE2HruPyo6qLF2akc+ -----END CERTIFICATE-----Generated at Mon Apr 27 16:15:18 2026 by rpki-client