$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFEC2/B82A9A1CB87F11F0871AFF42C4F9AE02/FADF73B4C42811F0B219BB6AC4F9AE02.roa File: FADF73B4C42811F0B219BB6AC4F9AE02.roa (raw, json) Hash identifier: b99ya6U9QMY/5a9pzqhDLkO/k1qaTOIL0zEPGVgl0hk= Subject key identifier: 80:39:E6:4C:85:9F:EB:6D:A7:BF:66:50:80:1F:B9:3E:58:2E:9B:BE Certificate issuer: /CN=A91DFEC2/serialNumber=745D577F5B8E7D4F8DB49A8DB9ACB13FC25AA233 Certificate serial: 5F Authority key identifier: 74:5D:57:7F:5B:8E:7D:4F:8D:B4:9A:8D:B9:AC:B1:3F:C2:5A:A2:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF1Xf1uOfU-NtJqNuayxP8JaojM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFEC2/B82A9A1CB87F11F0871AFF42C4F9AE02/FADF73B4C42811F0B219BB6AC4F9AE02.roa Signing time: Sun 29 Mar 2026 08:43:19 +0000 ROA not before: Sun 29 Mar 2026 08:43:19 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 153995 IP address blocks: 103.86.72.0/24 maxlen: 24 103.86.73.0/24 maxlen: 24 103.86.74.0/24 maxlen: 24 103.86.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFEC2/B82A9A1CB87F11F0871AFF42C4F9AE02/dF1Xf1uOfU-NtJqNuayxP8JaojM.crl rsync://rpki.apnic.net/member_repository/A91DFEC2/B82A9A1CB87F11F0871AFF42C4F9AE02/dF1Xf1uOfU-NtJqNuayxP8JaojM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF1Xf1uOfU-NtJqNuayxP8JaojM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFEC2, serialNumber=745D577F5B8E7D4F8DB49A8DB9ACB13FC25AA233 Validity Not Before: Mar 29 08:43:19 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c8e626-0ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:29:cc:53:a6:5c:08:f4:93:51:bb:b5:3b:da: 12:be:5f:27:35:a3:84:36:7e:6f:1e:17:05:7e:ec: e8:96:35:e3:3a:a3:69:b7:bb:df:c6:3a:8b:3c:8c: 19:59:57:0e:0e:bd:d9:34:b7:6d:c1:38:f1:ee:1b: 7a:18:9a:bf:8c:0c:24:77:06:53:bc:ec:ba:19:58: a7:68:c7:76:ca:ab:69:19:41:fa:48:9c:3d:95:0b: b8:03:a1:b0:37:18:96:4a:dc:93:57:06:a1:9a:50: ea:c8:80:af:db:82:f7:68:90:46:5f:eb:ec:22:1b: 41:4b:43:ac:8f:83:a0:a4:9a:c9:9b:18:ae:8b:3b: 91:2a:27:32:e9:99:9b:f7:78:57:4c:00:54:73:ea: ff:c0:9a:29:52:94:d1:e8:41:74:5d:c3:07:3c:7d: 52:db:7e:f8:fd:fd:e8:69:c5:8d:e3:e8:77:0a:4b: fd:09:e2:01:78:36:e0:ef:d0:ef:16:9c:e1:c8:4b: 9e:13:fa:da:10:75:b5:fe:de:ff:58:53:af:09:82: ea:bf:1a:07:6a:a5:d6:f9:9b:07:49:ec:cb:2c:53: 68:89:94:da:66:71:ea:16:3c:30:fb:de:f1:60:91: 89:a2:30:91:de:13:f4:db:44:a0:44:36:5d:0f:13: 1e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:39:E6:4C:85:9F:EB:6D:A7:BF:66:50:80:1F:B9:3E:58:2E:9B:BE X509v3 Authority Key Identifier: keyid:74:5D:57:7F:5B:8E:7D:4F:8D:B4:9A:8D:B9:AC:B1:3F:C2:5A:A2:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFEC2/B82A9A1CB87F11F0871AFF42C4F9AE02/dF1Xf1uOfU-NtJqNuayxP8JaojM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF1Xf1uOfU-NtJqNuayxP8JaojM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFEC2/B82A9A1CB87F11F0871AFF42C4F9AE02/FADF73B4C42811F0B219BB6AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.72.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:52:be:a3:f1:5a:ff:d8:e6:7a:fe:25:4d:50:1a:f5:76:62: 58:b1:b7:c6:c2:7a:dd:86:8b:71:01:aa:be:7c:e3:93:01:36: 1b:c9:94:b1:f8:20:31:70:ee:e4:42:4e:37:43:17:c3:f7:d1: 9a:c6:ea:33:09:75:0c:8a:30:05:04:52:14:59:34:d9:5e:ba: db:74:bb:ef:81:b5:e2:b1:e4:31:3f:4e:e1:ab:03:ff:5b:15: 33:68:bf:e1:b5:aa:5b:48:be:e0:21:cc:62:ac:fe:ce:99:8b: f8:94:c4:ea:5a:fe:3e:bd:01:d9:b9:f1:9e:4b:22:70:a3:91: b7:47:6f:bb:a9:0a:14:65:48:fe:97:ec:e3:03:eb:43:ee:cd: 73:21:e7:9a:57:e7:96:0d:3e:e0:f8:56:a8:26:a9:25:62:3e: 7e:07:ac:8c:4e:9e:6e:60:22:db:2a:28:73:6c:01:ac:b3:b9: 14:29:85:65:17:75:86:44:5e:34:43:23:53:f7:e2:e1:bc:7b: 7c:f4:30:e9:f6:c6:ad:b6:d0:ff:df:c2:76:9c:90:15:81:42: 98:44:22:74:50:cb:30:72:3d:c8:9b:01:f3:79:f7:e8:e8:56: b7:51:a2:c8:c5:5a:54:42:2e:f1:2d:0b:9f:85:79:df:af:0a: 34:2c:1e:ea -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkVDMjExMC8GA1UEBRMoNzQ1RDU3N0Y1QjhFN0Q0RjhEQjQ5QThEQjlBQ0IxM0ZD MjVBQTIzMzAeFw0yNjAzMjkwODQzMTlaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzhlNjI2LTBlYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdKcxTplwI9JNRu7U72hK+Xyc1o4Q2fm8eFwV+7OiWNeM6o2m3u9/GOos8jBlZ Vw4Ovdk0t23BOPHuG3oYmr+MDCR3BlO87LoZWKdox3bKq2kZQfpInD2VC7gDobA3 GJZK3JNXBqGaUOrIgK/bgvdokEZf6+wiG0FLQ6yPg6CkmsmbGK6LO5EqJzLpmZv3 eFdMAFRz6v/AmilSlNHoQXRdwwc8fVLbfvj9/ehpxY3j6HcKS/0J4gF4NuDv0O8W nOHIS54T+toQdbX+3v9YU68Jguq/Ggdqpdb5mwdJ7MssU2iJlNpmceoWPDD73vFg kYmiMJHeE/TbRKBENl0PEx6NAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUgDnmTIWf 622nv2ZQgB+5Plgum74wHwYDVR0jBBgwFoAUdF1Xf1uOfU+NtJqNuayxP8JaojMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGRUMyL0I4MkE5QTFDQjg3 RjExRjA4NzFBRkY0MkM0RjlBRTAyL2RGMVhmMXVPZlUtTnRKcU51YXl4UDhKYW9q TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZEYxWGYxdU9mVS1OdEpxTnVheXhQOEphb2pNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkVDMi9CODJBOUExQ0I4N0YxMUYwODcxQUZGNDJDNEY5QUUwMi9GQURGNzNCNEM0 MjgxMUYwQjIxOUJCNkFDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJnVkgwDQYJKoZIhvcNAQELBQADggEBAAxSvqPxWv/Y5nr+JU1QGvV2 Ylixt8bCet2Gi3EBqr5845MBNhvJlLH4IDFw7uRCTjdDF8P30ZrG6jMJdQyKMAUE UhRZNNleutt0u++BteKx5DE/TuGrA/9bFTNov+G1qltIvuAhzGKs/s6Zi/iUxOpa /j69Adm58Z5LInCjkbdHb7upChRlSP6X7OMD60PuzXMh55pX55YNPuD4VqgmqSVi Pn4HrIxOnm5gItsqKHNsAayzuRQphWUXdYZEXjRDI1P34uG8e3z0MOn2xq220P/f wnackBWBQphEInRQyzByPcibAfN59+joVrdRosjFWlRCLvEtC5+Fed+vCjQsHuo= -----END CERTIFICATE-----Generated at Mon Apr 6 10:08:07 2026 by rpki-client