$ rpki-client -vvf rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/FAB5FE6E101811EA9A30176EC4F9AE02.roa File: FAB5FE6E101811EA9A30176EC4F9AE02.roa (raw, json) Hash identifier: UVjNs6Ee7f+G00eKucHkD5VRAwAYtWeaPm0YXsnnb+4= Subject key identifier: 0C:B2:01:99:67:0A:25:BC:26:FA:B6:1F:84:B5:2F:03:E2:22:3C:12 Certificate issuer: /CN=A915060F/serialNumber=75C0717740E9187DD535116139012F0F31D84097 Certificate serial: 353F Authority key identifier: 75:C0:71:77:40:E9:18:7D:D5:35:11:61:39:01:2F:0F:31:D8:40:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/FAB5FE6E101811EA9A30176EC4F9AE02.roa Signing time: Fri 10 Apr 2026 15:10:05 +0000 ROA not before: Fri 10 Apr 2026 15:10:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38712 IP address blocks: 116.212.104.0/21 maxlen: 24 120.50.0.0/19 maxlen: 19 120.50.0.0/20 maxlen: 24 120.50.16.0/21 maxlen: 24 120.50.24.0/23 maxlen: 24 120.50.26.0/23 maxlen: 24 120.50.28.0/22 maxlen: 24 2400:5800::/32 maxlen: 32 2400:5800:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.crl rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13631 (0x353f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915060F, serialNumber=75C0717740E9187DD535116139012F0F31D84097 Validity Not Before: Apr 10 15:10:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d912cd-814d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d5:53:92:d4:59:5b:aa:ea:fc:f1:d0:ae:c1: 21:f0:d9:7e:f3:23:5e:dd:28:38:18:c9:e7:1f:1b: d8:22:64:fb:a6:d7:a4:d7:b9:6b:65:8c:98:9d:b7: 1a:68:6a:e5:6e:39:e7:80:d9:fa:ba:ac:4b:88:dc: 6d:5b:34:d5:96:4a:1b:4e:b0:39:c5:29:a2:86:75: c9:d7:e0:85:f9:b3:26:c5:b8:96:91:ce:e0:b3:c0: fe:ba:ab:eb:fa:a7:4a:54:d9:9f:d2:95:76:a8:b0: 9d:ff:ce:dd:7d:c6:2c:57:1f:59:e1:87:7a:0c:9b: 56:32:8a:05:d9:f8:9a:b2:ee:2e:ad:67:6d:1e:0a: bf:c1:9d:16:c6:f6:b9:14:12:2c:d2:8b:82:10:cf: c5:47:10:91:19:da:5a:f5:87:0d:24:f9:5c:e4:41: 7c:cf:e1:02:2c:7e:84:6d:6f:1b:76:85:8b:b2:f3: 28:f8:e4:f0:ce:c8:58:42:69:f0:84:0a:d3:98:4a: 53:09:10:b6:02:e3:76:c1:c6:c3:ed:aa:0b:14:54: f9:bc:df:11:e0:ec:72:89:a4:fd:29:56:8f:74:43: 2d:4c:99:89:69:e3:5a:77:ea:f5:be:0c:54:5f:c8: 04:3b:d2:da:bc:ad:94:4f:3c:2a:0c:df:37:ce:76: 30:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:B2:01:99:67:0A:25:BC:26:FA:B6:1F:84:B5:2F:03:E2:22:3C:12 X509v3 Authority Key Identifier: keyid:75:C0:71:77:40:E9:18:7D:D5:35:11:61:39:01:2F:0F:31:D8:40:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/FAB5FE6E101811EA9A30176EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.212.104.0/21 120.50.0.0/19 IPv6: 2400:5800::/32 Signature Algorithm: sha256WithRSAEncryption 0e:db:42:e8:4a:7a:a0:1c:73:06:69:b4:b2:f7:88:2f:e2:ba: 72:0f:6e:3e:4f:a4:57:94:3e:59:4f:8d:22:93:5b:4f:1d:6d: 72:ed:ea:4d:67:ac:d8:68:ed:3e:4f:f3:34:49:dd:88:75:03: 60:b1:bd:ab:5f:bf:12:de:9a:a2:f6:bb:80:68:70:78:7f:4f: c3:8e:81:36:89:9e:f2:f8:57:07:08:7e:0b:32:13:48:4d:43: 5c:af:02:75:66:6d:cb:21:56:7b:da:67:03:6e:50:45:95:00: 39:4e:0a:10:94:66:01:86:a8:ba:03:76:42:0b:0c:72:55:d9: e2:30:5e:fa:17:0f:ee:4f:2c:4c:12:68:83:83:ee:69:26:c7: 96:f5:de:d8:b7:65:9c:10:4f:6f:d6:95:e0:c0:0f:8a:e2:34: 82:7a:88:78:89:a2:f4:64:53:a6:f7:73:19:30:20:20:c0:99: 81:40:af:05:86:6e:ac:e6:93:31:13:4d:ce:8e:32:06:9e:95: fb:f1:55:7d:13:8b:38:42:75:45:e6:ec:72:44:77:bc:5f:09: 65:4e:3e:eb:b3:85:79:b7:3f:9f:00:51:e7:73:91:dd:53:f7: a1:fd:37:a9:07:bd:ce:af:49:12:76:0b:83:c6:42:2e:fd:e0: b2:b9:53:69 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICNT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA2MEYxMTAvBgNVBAUTKDc1QzA3MTc3NDBFOTE4N0RENTM1MTE2MTM5MDEyRjBG MzFEODQwOTcwHhcNMjYwNDEwMTUxMDA1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ5MTJjZC04MTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNVTktRZW6rq/PHQrsEh8Nl+8yNe3Sg4GMnnHxvYImT7ptek17lrZYyYnbca aGrlbjnngNn6uqxLiNxtWzTVlkobTrA5xSmihnXJ1+CF+bMmxbiWkc7gs8D+uqvr +qdKVNmf0pV2qLCd/87dfcYsVx9Z4Yd6DJtWMooF2fiasu4urWdtHgq/wZ0Wxva5 FBIs0ouCEM/FRxCRGdpa9YcNJPlc5EF8z+ECLH6EbW8bdoWLsvMo+OTwzshYQmnw hArTmEpTCRC2AuN2wcbD7aoLFFT5vN8R4OxyiaT9KVaPdEMtTJmJaeNad+r1vgxU X8gEO9LavK2UTzwqDN83znYwlQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFAyyAZln CiW8Jvq2H4S1LwPiIjwSMB8GA1UdIwQYMBaAFHXAcXdA6Rh91TURYTkBLw8x2ECX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDYwRi81RTdFRDVFNDFE NkMxMUUyOEFDQkQwQUMwOEIwMkNEMi9kY0J4ZDBEcEdIM1ZOUkZoT1FFdkR6SFlR SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RjQnhkMERwR0gzVk5SRmhPUUV2RHpIWVFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA2MEYvNUU3RUQ1RTQxRDZDMTFFMjhBQ0JEMEFDMDhCMDJDRDIvRkFCNUZFNkUx MDE4MTFFQTlBMzAxNzZFQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQDdNRoAwQFeDIAMA0EAgACMAcDBQAkAFgAMA0GCSqGSIb3DQEBCwUA A4IBAQAO20LoSnqgHHMGabSy94gv4rpyD24+T6RXlD5ZT40ik1tPHW1y7epNZ6zY aO0+T/M0Sd2IdQNgsb2rX78S3pqi9ruAaHB4f0/DjoE2iZ7y+FcHCH4LMhNITUNc rwJ1Zm3LIVZ72mcDblBFlQA5TgoQlGYBhqi6A3ZCCwxyVdniMF76Fw/uTyxMEmiD g+5pJseW9d7Yt2WcEE9v1pXgwA+K4jSCeoh4iaL0ZFOm93MZMCAgwJmBQK8Fhm6s 5pMxE03OjjIGnpX78VV9E4s4QnVF5uxyRHe8XwllTj7rs4V5tz+fAFHnc5HdU/eh /TepB73Or0kSdguDxkIu/eCyuVNp -----END CERTIFICATE-----Generated at Fri Apr 17 12:45:47 2026 by rpki-client