$ rpki-client -vvf rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FBB9FE90E7E411EC84283679C4F9AE02.roa File: FBB9FE90E7E411EC84283679C4F9AE02.roa (raw, json) Hash identifier: EnYUnwhxxmGS1rufxU7RsXLHu/nIHXPSapF4Xv6tzXQ= Subject key identifier: E6:B3:E6:26:87:2A:EE:FA:99:CD:E1:EF:A6:C9:0A:BA:6A:2F:2A:63 Certificate issuer: /CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Certificate serial: 037B Authority key identifier: E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FBB9FE90E7E411EC84283679C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:56:04 +0000 ROA not before: Sat 06 Dec 2025 23:38:26 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9902 IP address blocks: 43.230.60.0/22 maxlen: 22 43.230.60.0/24 maxlen: 24 43.230.61.0/24 maxlen: 24 43.230.62.0/24 maxlen: 24 43.230.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:56:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 891 (0x37b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C6E1, serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Validity Not Before: Dec 6 23:38:26 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a596f4-67a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:35:52:17:d5:4b:e3:23:a4:11:93:a4:cf:a6: 87:7b:75:46:c6:a5:e5:7d:b0:12:92:20:55:0c:d0: 9b:07:b7:05:a3:6d:88:16:5d:31:4f:18:9d:cf:1b: 46:45:44:8e:33:bc:2f:d8:a7:e9:89:67:4c:62:b8: 77:59:3d:ec:f3:73:c9:63:aa:1a:5e:a0:ae:2d:40: f8:8d:a9:6b:76:f6:e2:6f:32:3c:8b:e1:2c:da:3a: 80:e8:a5:3a:b5:61:02:bd:ad:2a:6d:56:8c:ad:f2: e2:de:0f:a8:1c:f6:07:51:b1:6c:ee:bc:0e:db:fa: bc:98:79:35:51:1a:b5:70:9e:18:e1:63:8b:e2:b2: 8a:cb:ca:2f:f3:42:28:dc:d9:7d:16:d0:8c:02:1a: 2c:8b:5b:51:fa:c4:52:53:98:61:d5:e3:29:96:d3: 64:dd:9f:e6:30:bf:7f:3f:e2:e7:1d:6f:01:0e:72: b7:93:c1:62:c6:4a:78:b5:5b:bf:1f:15:78:10:6b: b4:94:a1:20:b5:19:c3:32:73:da:41:b2:fa:24:6e: 0e:12:f8:a2:c1:55:b6:02:8c:cf:8c:d5:9b:a2:63: c3:73:f4:df:95:39:59:11:4b:ff:e2:58:bf:e0:fb: 73:39:44:84:6f:95:d8:4d:87:a1:7d:c4:3c:d2:0b: 0f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B3:E6:26:87:2A:EE:FA:99:CD:E1:EF:A6:C9:0A:BA:6A:2F:2A:63 X509v3 Authority Key Identifier: keyid:E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/FBB9FE90E7E411EC84283679C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.60.0/22 Signature Algorithm: sha256WithRSAEncryption 23:f7:54:d8:98:68:f6:c9:a9:bf:10:db:fa:fd:0a:7d:63:ac: 62:3a:25:73:50:9c:98:18:ed:9a:69:5d:af:fa:1e:dd:0f:f7: 56:ff:a8:ad:37:dc:4c:4b:a3:07:f6:cc:e4:74:cb:33:35:ff: 6d:f9:e6:c7:e6:6f:46:72:eb:4e:48:66:50:da:5f:ce:55:1f: 2a:a9:49:27:e3:c2:2f:42:58:67:ec:12:5a:97:ab:7e:18:9f: 1c:a4:47:c4:a0:d6:66:81:a2:98:c7:1a:7d:6e:bd:0b:58:25: c0:3f:b2:4f:d8:87:a6:09:1e:8a:c7:25:12:de:3d:5c:46:b4: 73:11:24:98:a3:9d:8b:80:97:3b:74:cb:fd:c6:99:19:af:2f: e0:02:3a:84:80:2a:77:38:7e:d2:d1:db:82:43:04:5f:ed:86: 8f:9f:76:4e:f6:d0:86:63:9b:fb:73:51:a0:34:9c:b6:7d:d8: 13:a3:6b:4c:29:c1:3a:7e:e7:a9:23:5a:cf:70:41:6a:63:3e: 76:8f:10:80:ce:a1:9d:c1:45:67:eb:30:d4:35:8f:5c:cc:88: 4c:4a:27:9b:eb:ad:ef:f7:9c:0d:81:48:dd:bd:b8:20:72:72: 0c:b6:55:8c:e1:59:31:b5:8c:db:1f:87:7b:24:99:3a:8b:ce: f9:b8:fa:c0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2RTExMTAvBgNVBAUTKEUzNEIyODU0MjA1NkNFOUUwNjUwRkVGQzBBQjEyNDIx NkNCNUY5QzEwHhcNMjUxMjA2MjMzODI2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTZmNC02N2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjVSF9VL4yOkEZOkz6aHe3VGxqXlfbASkiBVDNCbB7cFo22IFl0xTxidzxtG RUSOM7wv2KfpiWdMYrh3WT3s83PJY6oaXqCuLUD4jalrdvbibzI8i+Es2jqA6KU6 tWECva0qbVaMrfLi3g+oHPYHUbFs7rwO2/q8mHk1URq1cJ4Y4WOL4rKKy8ov80Io 3Nl9FtCMAhosi1tR+sRSU5hh1eMpltNk3Z/mML9/P+LnHW8BDnK3k8Fixkp4tVu/ HxV4EGu0lKEgtRnDMnPaQbL6JG4OEviiwVW2AozPjNWbomPDc/TflTlZEUv/4li/ 4PtzOUSEb5XYTYehfcQ80gsPlwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOaz5iaH Ku76mc3h76bJCrpqLypjMB8GA1UdIwQYMBaAFONLKFQgVs6eBlD+/AqxJCFstfnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzZFMS9BNTdEODZEOEU3 REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pwNEdVUDc4Q3JFa0lXeTEt Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwc29WQ0JXenA0R1VQNzhDckVrSVd5MS1jRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2RTEvQTU3RDg2RDhFN0RFMTFFQzhEOEM1QzVEQzRGOUFFMDIvRkJCOUZFOTBF N0U0MTFFQzg0MjgzNjc5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+Y8MA0GCSqGSIb3DQEBCwUAA4IBAQAj91TYmGj2yam/ENv6/Qp9 Y6xiOiVzUJyYGO2aaV2v+h7dD/dW/6itN9xMS6MH9szkdMszNf9t+ebH5m9GcutO SGZQ2l/OVR8qqUkn48IvQlhn7BJal6t+GJ8cpEfEoNZmgaKYxxp9br0LWCXAP7JP 2IemCR6KxyUS3j1cRrRzESSYo52LgJc7dMv9xpkZry/gAjqEgCp3OH7S0duCQwRf 7YaPn3ZO9tCGY5v7c1GgNJy2fdgTo2tMKcE6fuepI1rPcEFqYz52jxCAzqGdwUVn 6zDUNY9czIhMSieb663v95wNgUjdvbggcnIMtlWM4VkxtYzbH4d7JJk6i875uPrA -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:05 2026 by rpki-client