$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/FE96F04256EE11F09D243832C4F9AE02.roa File: FE96F04256EE11F09D243832C4F9AE02.roa (raw, json) Hash identifier: e8GSBttrBgtoI1SFNewE5+wtUTbMHlzUBUVAWSdm4M8= Subject key identifier: 10:2B:E1:EE:66:5C:4F:B2:AC:5B:8E:4F:DD:8B:48:61:DE:4C:3E:AB Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 3509 Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/FE96F04256EE11F09D243832C4F9AE02.roa Signing time: Thu 28 May 2026 16:13:15 +0000 ROA not before: Thu 28 May 2026 16:13:15 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 56284 IP address blocks: 103.29.52.0/22 maxlen: 22 119.2.56.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13577 (0x3509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: May 28 16:13:15 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a18699b-b13d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:2c:9d:a6:6f:72:69:9a:f9:9d:ed:71:df:14: 0d:37:48:f2:79:d2:89:6a:40:8d:da:4a:8b:30:59: 44:0e:97:c4:da:94:67:36:24:d3:78:fc:f2:76:d4: 1b:fa:68:b5:bd:bd:e0:c3:7b:85:04:67:1c:d2:09: b7:af:f3:37:80:a6:4d:33:cc:2d:c8:df:02:0a:26: 03:ae:46:6f:87:b6:d6:32:c2:65:a2:f1:86:b9:73: a5:4f:91:d7:04:8b:5f:97:81:b4:f5:fd:e3:22:0f: fa:99:8f:75:06:93:b1:71:be:56:75:d7:5e:bd:98: 2e:c0:26:a5:fa:30:33:c6:a4:ac:aa:eb:67:a3:f4: 04:29:d4:31:e6:10:38:95:52:60:76:52:9e:6e:83: c0:29:03:04:fa:43:be:b4:8d:1e:09:94:69:e0:6c: ab:98:a2:9f:97:40:c6:00:15:40:87:a8:18:60:fd: 96:82:8c:20:9e:d6:14:ec:8d:38:61:4f:9c:03:cb: 65:62:71:41:f1:07:75:99:1a:b9:04:c3:3a:35:34: f7:1f:90:80:a8:5b:4e:51:b4:43:42:6f:34:18:8d: fe:fb:fd:ce:fd:7e:95:ad:33:93:62:b1:fc:dc:e1: 21:a9:34:94:4d:d7:16:67:c6:b2:a7:64:db:d6:7a: eb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2B:E1:EE:66:5C:4F:B2:AC:5B:8E:4F:DD:8B:48:61:DE:4C:3E:AB X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/FE96F04256EE11F09D243832C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.29.52.0/22 119.2.56.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:fa:0c:7a:59:4a:f6:05:55:2b:0a:e8:58:ef:f5:d7:a3:1e: fb:87:6d:43:8c:78:24:14:1a:e2:13:2d:eb:a0:46:3c:84:46: 56:6f:25:96:2d:8f:a5:d0:3d:56:59:9c:90:9f:0e:17:e4:49: 98:a7:75:43:e1:56:d8:66:d0:bc:ca:bc:0a:9a:5d:cf:35:5f: b5:ee:2f:cd:44:ce:61:f2:0a:65:f2:07:91:cc:9f:c7:3d:52: 38:9d:f7:85:a8:25:ca:3f:6e:60:48:14:8d:c3:90:fb:52:37: 3d:bb:f8:a4:70:a3:68:48:0a:0e:67:5a:a0:d5:0a:a0:46:dc: 43:ae:91:5a:69:e8:ff:26:5e:a0:a3:4d:4c:cc:56:2a:5d:30: 97:e8:4b:eb:a2:b4:4b:7b:13:6c:53:e0:0a:d7:0c:e4:e4:de: fd:5d:5a:89:c7:80:fa:c6:f9:d9:59:72:83:a7:5f:d3:7c:6f: 22:14:9c:dc:03:8a:62:99:12:19:28:38:7e:dd:96:bc:f4:c1: c3:8c:1d:b5:11:cf:67:1c:40:60:ef:88:8c:d8:ed:65:2d:50: 6a:a6:50:fd:b7:ff:a2:17:02:13:25:b8:d7:f3:ed:05:06:eb: 21:77:bd:dd:4a:64:fa:0a:72:d2:48:3d:dd:c3:2c:5a:f7:c8: cf:bb:35:bd -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjYwNTI4MTYxMzE1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE4Njk5Yi1iMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhiydpm9yaZr5ne1x3xQNN0jyedKJakCN2kqLMFlEDpfE2pRnNiTTePzydtQb +mi1vb3gw3uFBGcc0gm3r/M3gKZNM8wtyN8CCiYDrkZvh7bWMsJlovGGuXOlT5HX BItfl4G09f3jIg/6mY91BpOxcb5WdddevZguwCal+jAzxqSsqutno/QEKdQx5hA4 lVJgdlKeboPAKQME+kO+tI0eCZRp4GyrmKKfl0DGABVAh6gYYP2WgowgntYU7I04 YU+cA8tlYnFB8Qd1mRq5BMM6NTT3H5CAqFtOUbRDQm80GI3++/3O/X6VrTOTYrH8 3OEhqTSUTdcWZ8ayp2Tb1nrrEwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBAr4e5m XE+yrFuOT92LSGHeTD6rMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNGQzQvQjE2NUEzQTgyOTU4MTFFMkIzOEQ1OEZCMDhCMDJDRDIvRkU5NkYwNDI1 NkVFMTFGMDlEMjQzODMyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZx00AwQDdwI4MA0GCSqGSIb3DQEBCwUAA4IBAQB6+gx6WUr2BVUr CuhY7/XXox77h21DjHgkFBriEy3roEY8hEZWbyWWLY+l0D1WWZyQnw4X5EmYp3VD 4VbYZtC8yrwKml3PNV+17i/NRM5h8gpl8geRzJ/HPVI4nfeFqCXKP25gSBSNw5D7 Ujc9u/ikcKNoSAoOZ1qg1QqgRtxDrpFaaej/Jl6go01MzFYqXTCX6EvrorRLexNs U+AK1wzk5N79XVqJx4D6xvnZWXKDp1/TfG8iFJzcA4pimRIZKDh+3Za89MHDjB21 Ec9nHEBg74iM2O1lLVBqplD9t/+iFwITJbjX8+0FBushd73dSmT6CnLSSD3dwyxa 98jPuzW9 -----END CERTIFICATE-----Generated at Sat Jun 13 21:25:27 2026 by rpki-client