$ rpki-client -vvf rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/FAB5FE6E101811EA9A30176EC4F9AE02.roa File: FAB5FE6E101811EA9A30176EC4F9AE02.roa (raw, json) Hash identifier: ejSzcir65rLiTU/e/21Y3fbhfAZ1CL0WvA6cLtmCZRA= Subject key identifier: 09:5B:6A:5D:05:D9:E1:EF:42:BB:92:F9:AE:93:D8:35:1B:CC:2C:C1 Certificate issuer: /CN=A915060F/serialNumber=75C0717740E9187DD535116139012F0F31D84097 Certificate serial: 3526 Authority key identifier: 75:C0:71:77:40:E9:18:7D:D5:35:11:61:39:01:2F:0F:31:D8:40:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/FAB5FE6E101811EA9A30176EC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:10:09 +0000 ROA not before: Thu 10 Apr 2025 14:20:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38712 IP address blocks: 116.212.104.0/21 maxlen: 24 120.50.0.0/19 maxlen: 19 120.50.0.0/20 maxlen: 24 120.50.16.0/21 maxlen: 24 120.50.24.0/23 maxlen: 24 120.50.26.0/23 maxlen: 24 120.50.28.0/22 maxlen: 24 2400:5800::/32 maxlen: 32 2400:5800:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.crl rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915060F, serialNumber=75C0717740E9187DD535116139012F0F31D84097 Validity Not Before: Apr 10 14:20:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40271-70b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d0:a5:a2:53:c3:a8:29:f8:0b:ce:ec:58:75: 66:21:0d:2e:08:ce:e2:3c:b8:36:95:b8:51:05:f9: 6f:60:a7:3b:69:55:f3:ca:d3:a5:19:3c:8d:e3:3d: 80:f2:2b:58:0c:60:64:38:36:0e:7b:b8:a1:fd:1e: 0e:c2:90:f3:91:9c:17:3f:db:b0:7d:f4:fc:63:c7: 83:27:55:76:86:ea:90:a5:d6:68:f8:73:96:26:40: 9f:6b:57:ba:f9:8a:d3:d1:3c:3d:95:71:46:87:12: 83:44:a7:bd:3d:2b:7f:01:9f:76:4d:14:68:e8:16: 60:2f:44:d6:74:6f:fe:26:ef:41:2b:26:9c:df:99: fa:e1:22:42:3a:4d:c5:3c:f8:46:7f:9e:f5:f6:d4: 14:a8:78:16:1e:eb:12:65:b1:55:e1:7c:fb:25:4c: 7f:af:c0:40:25:da:be:7b:11:68:6d:07:b1:a5:1b: fd:6e:00:22:60:2a:e3:ab:31:ad:15:4c:c8:1e:0c: b3:0b:17:75:14:7b:18:44:56:2f:b4:41:d3:20:9e: 41:ad:7d:4f:d4:d5:35:08:68:fe:b8:3a:43:33:c8: cb:d2:d8:08:b6:94:5e:d5:d6:29:32:aa:ef:4b:4f: 83:3b:4b:5b:47:8e:64:f6:60:ba:23:0f:f2:1a:3a: 7e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5B:6A:5D:05:D9:E1:EF:42:BB:92:F9:AE:93:D8:35:1B:CC:2C:C1 X509v3 Authority Key Identifier: keyid:75:C0:71:77:40:E9:18:7D:D5:35:11:61:39:01:2F:0F:31:D8:40:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dcBxd0DpGH3VNRFhOQEvDzHYQJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915060F/5E7ED5E41D6C11E28ACBD0AC08B02CD2/FAB5FE6E101811EA9A30176EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.212.104.0/21 120.50.0.0/19 IPv6: 2400:5800::/32 Signature Algorithm: sha256WithRSAEncryption 64:75:8b:cc:fb:48:0e:c5:3a:4f:b6:1b:16:df:56:3d:43:1f: 63:93:69:1d:10:d8:6c:8c:0a:4b:50:c2:f1:47:90:00:66:62: 37:f8:44:7a:6c:a6:11:1b:52:e0:b7:60:9b:17:77:87:e3:42: b3:c2:1b:aa:ff:ef:6e:f7:0f:f7:ba:c2:7d:b6:7b:d5:11:37: ef:dc:75:6e:ac:5f:d6:84:cd:d1:ff:17:92:51:5a:e9:a6:2c: 9f:c2:2b:a3:05:77:7a:fb:2c:10:cd:3c:72:20:61:02:df:58: d0:42:aa:14:bf:63:5c:20:72:e9:4c:40:73:4a:ee:8a:70:92: bf:de:09:0d:40:b6:ee:92:bf:27:c6:f7:c2:f8:98:e6:36:2f: 47:0a:99:f0:b7:99:d2:85:20:28:7b:c7:49:da:90:04:fd:0d: 53:25:4b:4e:c0:66:6f:6d:af:05:4d:43:81:1e:e6:22:f3:bf: a0:c8:35:e7:92:07:88:d4:4a:90:71:67:a6:f2:3b:98:d1:b9: e3:14:06:98:e2:ab:92:dd:68:7f:ca:ac:a0:3f:12:1a:2c:47: a9:47:fe:f5:e2:27:6a:3f:15:4d:ed:b1:8a:37:19:56:81:7d: 07:cb:21:7b:7e:fa:83:fa:66:f5:48:ec:2d:00:0f:3e:81:8f: a6:95:7a:41 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA2MEYxMTAvBgNVBAUTKDc1QzA3MTc3NDBFOTE4N0RENTM1MTE2MTM5MDEyRjBG MzFEODQwOTcwHhcNMjUwNDEwMTQyMDA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDI3MS03MGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodClolPDqCn4C87sWHVmIQ0uCM7iPLg2lbhRBflvYKc7aVXzytOlGTyN4z2A 8itYDGBkODYOe7ih/R4OwpDzkZwXP9uwffT8Y8eDJ1V2huqQpdZo+HOWJkCfa1e6 +YrT0Tw9lXFGhxKDRKe9PSt/AZ92TRRo6BZgL0TWdG/+Ju9BKyac35n64SJCOk3F PPhGf5719tQUqHgWHusSZbFV4Xz7JUx/r8BAJdq+exFobQexpRv9bgAiYCrjqzGt FUzIHgyzCxd1FHsYRFYvtEHTIJ5BrX1P1NU1CGj+uDpDM8jL0tgItpRe1dYpMqrv S0+DO0tbR45k9mC6Iw/yGjp+oQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFAlbal0F 2eHvQruS+a6T2DUbzCzBMB8GA1UdIwQYMBaAFHXAcXdA6Rh91TURYTkBLw8x2ECX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDYwRi81RTdFRDVFNDFE NkMxMUUyOEFDQkQwQUMwOEIwMkNEMi9kY0J4ZDBEcEdIM1ZOUkZoT1FFdkR6SFlR SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RjQnhkMERwR0gzVk5SRmhPUUV2RHpIWVFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA2MEYvNUU3RUQ1RTQxRDZDMTFFMjhBQ0JEMEFDMDhCMDJDRDIvRkFCNUZFNkUx MDE4MTFFQTlBMzAxNzZFQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQDdNRoAwQFeDIAMA0EAgACMAcDBQAkAFgAMA0GCSqGSIb3DQEBCwUA A4IBAQBkdYvM+0gOxTpPthsW31Y9Qx9jk2kdENhsjApLUMLxR5AAZmI3+ER6bKYR G1Lgt2CbF3eH40Kzwhuq/+9u9w/3usJ9tnvVETfv3HVurF/WhM3R/xeSUVrppiyf wiujBXd6+ywQzTxyIGEC31jQQqoUv2NcIHLpTEBzSu6KcJK/3gkNQLbukr8nxvfC +JjmNi9HCpnwt5nShSAoe8dJ2pAE/Q1TJUtOwGZvba8FTUOBHuYi87+gyDXnkgeI 1EqQcWem8juY0bnjFAaY4quS3Wh/yqygPxIaLEepR/714idqPxVN7bGKNxlWgX0H yyF7fvqD+mb1SOwtAA8+gY+mlXpB -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:35 2026 by rpki-client