$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/FAA72960259911F0953E0023C4F9AE02.roa File: FAA72960259911F0953E0023C4F9AE02.roa (raw, json) Hash identifier: e7nzxpCTQBDCIg5PEDtZeqSUVMOKuiFn7Ttj5SwjEWA= Subject key identifier: 8D:FE:19:ED:EB:0B:EF:C4:BA:2E:7C:37:54:B4:41:6E:B2:F4:B5:28 Certificate issuer: /CN=A916AC73/serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Certificate serial: 10 Authority key identifier: 28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/FAA72960259911F0953E0023C4F9AE02.roa Signing time: Tue 06 May 2025 03:02:45 +0000 ROA not before: Tue 06 May 2025 03:02:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153660 IP address blocks: 163.223.30.0/23 maxlen: 23 163.223.30.0/24 maxlen: 24 163.223.31.0/24 maxlen: 24 2401:f420::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AC73, serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Validity Not Before: May 6 03:02:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68197bd4-9d56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:84:e1:7a:da:07:44:a1:c8:e7:f5:e8:60:5c: c9:be:50:7b:c5:42:f6:d6:99:38:65:5d:1b:9b:51: 9e:5a:41:3d:37:c2:91:b3:04:9e:d2:f5:d7:48:61: ee:b4:c3:8f:b2:c6:dd:87:c4:5e:77:b2:8f:99:5e: a2:9f:ce:32:c2:6f:25:43:9d:56:89:63:5e:4f:3a: 85:ae:80:b0:24:89:46:01:ca:83:5a:7f:70:86:b5: 2d:eb:7e:1b:b9:39:f9:4f:c9:52:c5:b6:a2:d3:41: d1:e2:81:da:9f:8d:7f:7d:60:2a:1b:cb:90:9a:c9: 1a:82:cf:bd:08:7d:26:26:69:c8:d7:6b:f3:a0:b5: 7c:d8:db:1e:ce:16:dd:1c:58:a7:9e:10:24:2a:04: 3c:5f:d0:1e:4c:72:57:b2:ed:d9:34:18:98:c9:6f: f4:b3:4b:c3:76:26:60:ff:69:a3:05:f0:9e:66:3e: 38:70:e9:f7:37:68:63:ac:02:be:a7:0a:5d:30:92: 20:8b:08:69:03:4f:c7:bb:fc:c3:d0:af:99:2e:d3: e0:b4:1b:f9:35:ba:6e:1c:49:40:94:7e:32:76:eb: 91:6d:57:fe:ae:66:78:2d:68:0b:46:1b:ce:dc:ea: c7:a4:d4:42:ca:7c:26:00:5f:5c:8f:e9:13:58:7b: 9a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FE:19:ED:EB:0B:EF:C4:BA:2E:7C:37:54:B4:41:6E:B2:F4:B5:28 X509v3 Authority Key Identifier: keyid:28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/FAA72960259911F0953E0023C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.30.0/23 IPv6: 2401:f420::/32 Signature Algorithm: sha256WithRSAEncryption 97:00:ec:7b:43:24:c4:0d:ca:a4:8b:cf:c8:0b:e8:90:71:ea: 58:be:a7:43:09:8a:fe:b2:97:3e:97:c1:bc:bc:f3:d8:7a:78: 70:56:4a:02:31:70:20:fc:67:f1:e1:b1:06:43:85:c4:98:33: e4:d7:e5:0e:57:fb:1c:27:8f:b4:e4:47:b4:fa:0d:2d:e5:b0: 67:c7:1e:fc:32:49:d5:5f:5a:b4:c9:39:45:25:7a:10:27:d2: 43:3e:16:2b:f8:56:60:72:67:6a:24:cf:e1:be:78:ae:94:ed: 85:e6:cd:78:4b:db:17:7e:eb:d3:9e:ec:ae:03:83:1f:87:e3: e8:2c:0e:18:08:37:b8:7d:06:3f:34:e1:9a:68:af:06:66:b7: 4f:d8:7b:a5:38:2a:fe:18:55:be:1a:ed:63:a6:ad:6b:ba:45: cb:b9:42:46:cc:8c:99:ce:51:d7:25:cb:64:e1:82:7d:e0:d9: d2:bb:f4:df:7a:8a:72:be:44:82:33:6a:08:e6:ff:ef:d1:31: a7:4b:c5:60:3f:d2:74:65:a2:69:df:ea:40:a1:77:5d:b8:7c: f9:6e:8c:45:fa:85:e2:7f:90:b9:7c:16:14:3c:f9:94:80:c0: a0:a5:6b:b4:3c:7d:28:75:3d:47:43:e4:61:72:68:43:40:0b: 15:b0:25:e9 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUM3MzExMC8GA1UEBRMoMjhDRDA5RTY1MEMyNjlFQzdEMkJDOUZFRjdENTY2QzEw MTJEMjA0QzAeFw0yNTA1MDYwMzAyNDVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTk3YmQ0LTlkNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbhOF62gdEocjn9ehgXMm+UHvFQvbWmThlXRubUZ5aQT03wpGzBJ7S9ddIYe60 w4+yxt2HxF53so+ZXqKfzjLCbyVDnVaJY15POoWugLAkiUYByoNaf3CGtS3rfhu5 OflPyVLFtqLTQdHigdqfjX99YCoby5CayRqCz70IfSYmacjXa/OgtXzY2x7OFt0c WKeeECQqBDxf0B5Mcley7dk0GJjJb/SzS8N2JmD/aaMF8J5mPjhw6fc3aGOsAr6n Cl0wkiCLCGkDT8e7/MPQr5ku0+C0G/k1um4cSUCUfjJ265FtV/6uZngtaAtGG87c 6sek1ELKfCYAX1yP6RNYe5rXAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUjf4Z7esL 78S6Lnw3VLRBbrL0tSgwHwYDVR0jBBgwFoAUKM0J5lDCaex9K8n+99VmwQEtIEww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQzczLzc3NTEyREMyMjUx NzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4OUs4bi05OVZtd1FFdElF dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS00wSjVsRENhZXg5SzhuLTk5Vm13UUV0SUV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUM3My83NzUxMkRDMjI1MTcxMUYwQjA3Rjg2MURDNEY5QUUwMi9GQUE3Mjk2MDI1 OTkxMUYwOTUzRTAwMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAaPfHjANBAIAAjAHAwUAJAH0IDANBgkqhkiG9w0BAQsFAAOC AQEAlwDse0MkxA3KpIvPyAvokHHqWL6nQwmK/rKXPpfBvLzz2Hp4cFZKAjFwIPxn 8eGxBkOFxJgz5NflDlf7HCePtORHtPoNLeWwZ8ce/DJJ1V9atMk5RSV6ECfSQz4W K/hWYHJnaiTP4b54rpTthebNeEvbF37r057srgODH4fj6CwOGAg3uH0GPzThmmiv Bma3T9h7pTgq/hhVvhrtY6ata7pFy7lCRsyMmc5R1yXLZOGCfeDZ0rv033qKcr5E gjNqCOb/79Exp0vFYD/SdGWiad/qQKF3Xbh8+W6MRfqF4n+QuXwWFDz5lIDAoKVr tDx9KHU9R0PkYXJoQ0ALFbAl6Q== -----END CERTIFICATE-----Generated at Wed Nov 5 17:16:08 2025 by rpki-client