$ rpki-client -vvf rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/FA7C5B6C996611EC8E565E60C4F9AE02.roa File: FA7C5B6C996611EC8E565E60C4F9AE02.roa (raw, json) Hash identifier: APE8o5xIv7U309ISDoXEJ2kfI5bfjt+ixfN+fITzasQ= Subject key identifier: 2B:6B:B8:A2:21:A9:12:D5:83:FD:CB:5C:26:B4:45:CB:F1:D8:A0:D2 Certificate issuer: /CN=A915CD63/serialNumber=2B9D6D7DDABC52255F3CCD79CEEA76DBCF435B9D Certificate serial: 043A Authority key identifier: 2B:9D:6D:7D:DA:BC:52:25:5F:3C:CD:79:CE:EA:76:DB:CF:43:5B:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K51tfdq8UiVfPM15zup2289DW50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/FA7C5B6C996611EC8E565E60C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:23:43 +0000 ROA not before: Wed 07 Jan 2026 00:19:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 25222 IP address blocks: 180.94.48.0/21 maxlen: 21 2402:1500:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/K51tfdq8UiVfPM15zup2289DW50.crl rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/K51tfdq8UiVfPM15zup2289DW50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K51tfdq8UiVfPM15zup2289DW50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CD63, serialNumber=2B9D6D7DDABC52255F3CCD79CEEA76DBCF435B9D Validity Not Before: Jan 7 00:19:37 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44bef-92b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fc:e2:21:03:da:ff:76:dc:ff:d9:44:b0:46: f8:c9:ef:1b:d7:87:e3:c4:e3:e9:5a:f1:ae:1d:22: 98:5e:ed:26:76:52:17:58:e6:a8:4a:08:5d:52:04: 82:38:2a:0b:6b:1c:a1:e0:ab:fe:d0:c2:97:4b:c7: 69:31:bb:e0:17:a6:77:a8:75:a5:17:09:62:66:ea: 30:1b:b7:5d:30:f8:9b:c1:a1:fa:28:49:87:1f:e6: e0:1c:07:4f:fa:fe:c0:05:3b:9f:d2:73:24:f5:9f: 9e:f6:fa:59:f9:77:c6:3c:31:a1:d3:9b:c9:c7:6a: 26:9b:bc:2a:3f:aa:2a:29:83:5e:6f:30:15:87:3e: c9:d7:1a:96:b3:9e:55:f8:f4:66:3a:34:df:72:4b: c9:84:a4:37:27:50:80:3c:ac:c0:83:3b:9a:e2:46: e1:84:9c:d5:d6:ad:5d:82:56:fc:3c:64:f8:ff:13: 0e:ff:95:82:31:01:55:d7:07:e5:3b:f8:5b:3d:73: 86:15:0d:90:4f:33:fa:2d:43:b4:fd:73:7f:e6:c0: 4d:37:e1:77:f4:85:41:54:25:9d:ce:ab:bb:7b:7b: 17:0e:e9:03:3c:51:65:fb:de:fe:ac:94:1f:31:c3: 74:56:e8:85:bf:8c:50:b4:bd:43:9d:57:66:22:0d: 74:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:6B:B8:A2:21:A9:12:D5:83:FD:CB:5C:26:B4:45:CB:F1:D8:A0:D2 X509v3 Authority Key Identifier: keyid:2B:9D:6D:7D:DA:BC:52:25:5F:3C:CD:79:CE:EA:76:DB:CF:43:5B:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/K51tfdq8UiVfPM15zup2289DW50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K51tfdq8UiVfPM15zup2289DW50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/FA7C5B6C996611EC8E565E60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 180.94.48.0/21 IPv6: 2402:1500:8000::/33 Signature Algorithm: sha256WithRSAEncryption 25:c3:0e:42:86:77:0a:de:07:6d:0d:b9:8b:fd:df:bb:00:a8: 3c:32:1a:51:00:24:17:8c:04:53:b0:9f:44:93:05:16:12:3d: fd:3b:5b:ac:a9:29:b9:ec:b3:81:a3:9f:6b:31:28:b1:1a:2d: 05:9e:c0:f1:2b:e7:5c:31:82:b5:e0:ff:4c:59:d0:c7:2d:1c: 4b:5c:bf:64:57:94:30:72:ea:e0:b4:12:42:5c:f3:ab:c8:0f: 1f:b5:5d:73:8b:df:85:93:ba:81:c0:56:53:77:77:fc:bc:7d: 91:9c:db:6b:25:4b:fa:16:5a:00:4f:e9:fa:e3:1e:0d:13:04: 21:25:52:0b:c2:79:f1:7e:bf:ad:23:f6:95:6f:51:c6:6b:af: e8:be:82:93:7c:68:9f:0a:e0:ec:0b:7c:89:89:5c:65:ad:3b: c0:4f:00:9c:1d:95:a2:83:a4:fd:fe:49:2e:d2:48:34:a5:07: be:67:bb:5b:bb:01:ec:6b:71:4e:0d:96:27:34:16:58:2d:b3: 5a:6d:19:f2:0f:e8:30:a3:eb:4d:df:a5:03:58:2b:1f:f1:26: f5:0a:4c:e2:93:cd:39:28:3e:17:84:d4:72:98:c7:18:5f:de: 7e:9f:14:29:4e:fd:5b:3e:6c:96:41:0c:13:a4:ed:f4:ec:c3: 15:1e:cf:6a -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICBDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNENjMxMTAvBgNVBAUTKDJCOUQ2RDdEREFCQzUyMjU1RjNDQ0Q3OUNFRUE3NkRC Q0Y0MzVCOUQwHhcNMjYwMTA3MDAxOTM3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGJlZi05MmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/ziIQPa/3bc/9lEsEb4ye8b14fjxOPpWvGuHSKYXu0mdlIXWOaoSghdUgSC OCoLaxyh4Kv+0MKXS8dpMbvgF6Z3qHWlFwliZuowG7ddMPibwaH6KEmHH+bgHAdP +v7ABTuf0nMk9Z+e9vpZ+XfGPDGh05vJx2omm7wqP6oqKYNebzAVhz7J1xqWs55V +PRmOjTfckvJhKQ3J1CAPKzAgzua4kbhhJzV1q1dglb8PGT4/xMO/5WCMQFV1wfl O/hbPXOGFQ2QTzP6LUO0/XN/5sBNN+F39IVBVCWdzqu7e3sXDukDPFFl+97+rJQf McN0VuiFv4xQtL1DnVdmIg10IQIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFCtruKIh qRLVg/3LXCa0Rcvx2KDSMB8GA1UdIwQYMBaAFCudbX3avFIlXzzNec7qdtvPQ1ud MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0Q2My84QUYwNjdDNDk5 NjIxMUVDQkI2NjFBNTdDNEY5QUUwMi9LNTF0ZmRxOFVpVmZQTTE1enVwMjI4OURX NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1MXRmZHE4VWlWZlBNMTV6dXAyMjg5RFc1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUNENjMvOEFGMDY3QzQ5OTYyMTFFQ0JCNjYxQTU3QzRGOUFFMDIvRkE3QzVCNkM5 OTY2MTFFQzhFNTY1RTYwQzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQDtF4wMA4EAgACMAgDBgckAhUAgDANBgkqhkiG9w0BAQsFAAOCAQEA JcMOQoZ3Ct4HbQ25i/3fuwCoPDIaUQAkF4wEU7CfRJMFFhI9/TtbrKkpueyzgaOf azEosRotBZ7A8SvnXDGCteD/TFnQxy0cS1y/ZFeUMHLq4LQSQlzzq8gPH7Vdc4vf hZO6gcBWU3d3/Lx9kZzbayVL+hZaAE/p+uMeDRMEISVSC8J58X6/rSP2lW9Rxmuv 6L6Ck3xonwrg7At8iYlcZa07wE8AnB2VooOk/f5JLtJINKUHvme7W7sB7GtxTg2W JzQWWC2zWm0Z8g/oMKPrTd+lA1grH/Em9QpM4pPNOSg+F4TUcpjHGF/efp8UKU79 Wz5slkEME6Tt9OzDFR7Pag== -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:20 2026 by rpki-client