$ rpki-client -vvf rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/FA5399BC3AE211ECA119BA68C4F9AE02.roa File: FA5399BC3AE211ECA119BA68C4F9AE02.roa (raw, json) Hash identifier: qes8YH9khZEFlnu1hQBNCikOWkoBdhEDH5RH/15x/84= Subject key identifier: A4:11:5D:AB:C5:FE:53:D7:F3:1E:F3:5A:BD:B2:11:E6:29:92:88:81 Certificate issuer: /CN=A9145418/serialNumber=5FE1543C85B06530A164CF90E1A27DA8DB72450E Certificate serial: 0525 Authority key identifier: 5F:E1:54:3C:85:B0:65:30:A1:64:CF:90:E1:A2:7D:A8:DB:72:45:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/FA5399BC3AE211ECA119BA68C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:52:08 +0000 ROA not before: Fri 09 May 2025 00:16:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38325 IP address blocks: 182.239.32.0/21 maxlen: 22 182.239.32.0/24 maxlen: 24 182.239.33.0/24 maxlen: 24 182.239.34.0/24 maxlen: 24 182.239.35.0/24 maxlen: 24 182.239.36.0/24 maxlen: 24 182.239.37.0/24 maxlen: 24 182.239.38.0/24 maxlen: 24 182.239.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.crl rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145418, serialNumber=5FE1543C85B06530A164CF90E1A27DA8DB72450E Validity Not Before: May 9 00:16:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fe38-c93d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fd:80:3a:bc:67:3d:32:b5:31:d3:7e:9c:25: e8:7a:4b:a6:e5:d1:f0:aa:27:c7:60:e1:82:df:22: bb:d0:c7:a1:de:ca:02:66:6b:a0:7b:dc:8d:eb:58: 02:6b:6b:2c:15:2d:75:2d:63:73:d8:fd:eb:a3:e7: 41:49:69:01:d6:18:e5:ef:32:f6:71:02:fc:b0:0c: 76:f0:82:e0:b4:ba:9e:4d:6d:ea:2f:8c:ef:bc:d0: b9:f6:e7:a4:7a:45:70:45:a3:79:81:94:25:80:cd: 41:6d:af:0d:04:70:1f:b4:50:f6:42:82:ae:f7:66: bd:df:70:29:f0:fa:3c:36:15:db:5a:7b:c9:f5:52: 34:ef:81:2d:7a:95:28:31:fc:f6:c2:7d:93:7a:98: c5:19:71:16:2d:76:f1:39:47:32:2e:42:f2:5d:ec: 64:14:ba:60:a5:54:3a:58:c0:ef:79:14:55:a1:66: 3c:05:ab:43:40:f8:7e:6d:15:2e:41:89:41:89:bc: 6f:08:de:3a:ab:1a:13:8e:0b:e6:a1:ba:f9:17:af: a5:8e:2e:2c:13:e9:1c:33:5e:17:30:4b:59:a4:16: b1:fa:f4:75:e2:b2:54:1b:17:18:3a:81:4d:b1:cd: 7c:ad:5c:0d:ed:03:88:47:f6:bf:23:30:cf:9f:6b: aa:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:11:5D:AB:C5:FE:53:D7:F3:1E:F3:5A:BD:B2:11:E6:29:92:88:81 X509v3 Authority Key Identifier: keyid:5F:E1:54:3C:85:B0:65:30:A1:64:CF:90:E1:A2:7D:A8:DB:72:45:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-FUPIWwZTChZM-Q4aJ9qNtyRQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145418/771931803AE011EC93728D66C4F9AE02/FA5399BC3AE211ECA119BA68C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 182.239.32.0/21 Signature Algorithm: sha256WithRSAEncryption ae:d4:e1:cd:d2:93:15:24:f8:ca:be:0b:f6:fd:40:b3:41:5a: ce:9a:57:d3:77:7c:ab:6f:40:72:93:17:e5:81:41:06:c2:a4: 3f:e4:40:10:81:23:80:03:fb:0d:3b:fa:df:0f:c4:67:c4:fd: bb:2d:eb:e4:28:3e:05:e5:21:5a:9b:40:dd:00:86:e6:4d:78: 8c:58:0d:7c:5c:0a:b2:e3:57:73:61:0a:be:6b:62:cd:53:c5: 5a:7d:a4:0c:e7:9c:97:58:8d:ec:53:7a:8a:09:3f:11:6b:eb: 98:12:e3:ee:e0:ae:88:d6:1b:e1:21:87:e7:5c:d2:c8:4d:e8: ba:e2:0e:37:76:4c:03:15:db:ca:b1:48:92:45:86:bd:c4:81: 81:ec:5c:4d:cc:b9:95:9f:09:49:2e:9d:93:89:52:0c:bc:cb: 43:52:04:31:1a:99:f4:b4:b6:87:38:20:2a:1d:9f:00:e6:fc: 57:56:c0:05:c8:54:f9:32:10:8a:b9:38:b5:58:e2:26:82:49: 60:00:5d:a6:c9:a0:6a:40:c4:19:d1:36:14:be:1d:ab:4f:7c: df:3d:8f:c0:4b:54:55:b1:e1:bd:ac:27:5a:93:0f:05:68:4d: 30:f6:11:47:02:4a:1e:ee:6d:5c:c3:44:e0:ff:66:60:7b:3d: e1:c2:25:e6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0MTgxMTAvBgNVBAUTKDVGRTE1NDNDODVCMDY1MzBBMTY0Q0Y5MEUxQTI3REE4 REI3MjQ1MEUwHhcNMjUwNTA5MDAxNjQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmUzOC1jOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/2AOrxnPTK1MdN+nCXoekum5dHwqifHYOGC3yK70Meh3soCZmuge9yN61gC a2ssFS11LWNz2P3ro+dBSWkB1hjl7zL2cQL8sAx28ILgtLqeTW3qL4zvvNC59uek ekVwRaN5gZQlgM1Bba8NBHAftFD2QoKu92a933Ap8Po8NhXbWnvJ9VI074EtepUo Mfz2wn2TepjFGXEWLXbxOUcyLkLyXexkFLpgpVQ6WMDveRRVoWY8BatDQPh+bRUu QYlBibxvCN46qxoTjgvmobr5F6+lji4sE+kcM14XMEtZpBax+vR14rJUGxcYOoFN sc18rVwN7QOIR/a/IzDPn2uqswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKQRXavF /lPX8x7zWr2yEeYpkoiBMB8GA1UdIwQYMBaAFF/hVDyFsGUwoWTPkOGifajbckUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQxOC83NzE5MzE4MDNB RTAxMUVDOTM3MjhENjZDNEY5QUUwMi9YLUZVUElXd1pUQ2haTS1RNGFKOXFOdHlS UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtRlVQSVd3WlRDaFpNLVE0YUo5cU50eVJRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0MTgvNzcxOTMxODAzQUUwMTFFQzkzNzI4RDY2QzRGOUFFMDIvRkE1Mzk5QkMz QUUyMTFFQ0ExMTlCQTY4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDtu8gMA0GCSqGSIb3DQEBCwUAA4IBAQCu1OHN0pMVJPjKvgv2/UCz QVrOmlfTd3yrb0BykxflgUEGwqQ/5EAQgSOAA/sNO/rfD8RnxP27LevkKD4F5SFa m0DdAIbmTXiMWA18XAqy41dzYQq+a2LNU8VafaQM55yXWI3sU3qKCT8Ra+uYEuPu 4K6I1hvhIYfnXNLITei64g43dkwDFdvKsUiSRYa9xIGB7FxNzLmVnwlJLp2TiVIM vMtDUgQxGpn0tLaHOCAqHZ8A5vxXVsAFyFT5MhCKuTi1WOImgklgAF2myaBqQMQZ 0TYUvh2rT3zfPY/AS1RVseG9rCdakw8FaE0w9hFHAkoe7m1cw0Tg/2Zgez3hwiXm -----END CERTIFICATE-----Generated at Mon Mar 2 11:57:37 2026 by rpki-client