$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/FAA72960259911F0953E0023C4F9AE02.roa File: FAA72960259911F0953E0023C4F9AE02.roa (raw, json) Hash identifier: O09UdOIvOj1qcl3/WTrZg9iUeXJv//L0a5ehI9CYUR8= Subject key identifier: 45:F4:58:75:F1:3A:A0:55:C8:35:70:5C:C5:EB:29:82:66:6C:49:31 Certificate issuer: /CN=A916AC73/serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Certificate serial: A8 Authority key identifier: 28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/FAA72960259911F0953E0023C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:04:07 +0000 ROA not before: Tue 06 May 2025 03:02:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153660 IP address blocks: 163.223.30.0/23 maxlen: 23 163.223.30.0/24 maxlen: 24 163.223.31.0/24 maxlen: 24 2401:f420::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AC73, serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Validity Not Before: May 6 03:02:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3e4e6-e0fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:9c:2d:7a:1a:90:63:f1:c8:e0:36:35:c8: 7d:ae:b0:26:85:e3:ff:e6:91:38:72:65:7b:e9:b8: 8c:ed:ee:7d:4f:4f:91:07:f6:7f:85:ab:ac:d5:95: e7:29:70:1a:6e:cd:ff:7c:5a:ea:5f:5c:e5:70:1d: d9:b4:8e:b3:b7:b3:56:ba:f6:b0:5a:b7:4a:59:70: 7b:39:34:07:4e:97:09:42:5e:8e:23:75:7a:a2:cf: 66:17:c9:e5:3b:57:4c:0b:1b:3d:5a:28:09:e4:ae: 21:a4:8f:fc:a5:6c:3a:f1:f7:45:06:6a:2f:90:e1: 2f:e8:d7:c8:90:31:da:f4:b6:03:d3:c9:e9:45:43: d6:bc:56:bc:fe:24:f3:e6:63:ab:a2:f3:77:1d:c1: d3:82:56:e4:28:64:50:9c:b7:9f:92:d1:d8:7b:4d: 4d:b0:40:e9:9c:57:2c:56:38:a3:e0:b7:ec:2a:27: fb:30:34:d5:17:80:5e:23:43:c9:c6:5b:26:d3:ec: d5:8b:9c:fe:2a:fa:30:d3:e3:3a:41:df:f0:c2:53: c5:42:ee:28:e0:05:18:19:1c:d5:b7:8c:fc:9f:cb: 1b:e1:58:c2:55:7b:cd:5a:a4:2f:40:a3:42:f4:86: 9b:3a:dc:83:bc:5e:33:8d:dc:e5:31:11:b0:a1:73: 21:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F4:58:75:F1:3A:A0:55:C8:35:70:5C:C5:EB:29:82:66:6C:49:31 X509v3 Authority Key Identifier: keyid:28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/FAA72960259911F0953E0023C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.30.0/23 IPv6: 2401:f420::/32 Signature Algorithm: sha256WithRSAEncryption df:fd:4f:07:75:b4:a9:7f:97:49:74:ef:17:60:b1:0d:7d:d4: 4e:42:c9:39:20:68:94:4d:9d:0a:0d:8c:da:fc:81:47:ca:1b: 8a:cd:05:e5:52:c4:33:07:07:89:91:2a:36:f2:34:38:d0:9d: 83:df:dc:c5:e8:4b:70:a0:ec:24:54:6d:95:da:37:8a:5e:c2: 4b:d4:58:fa:52:40:85:0d:11:a8:19:bb:5e:94:9e:8f:81:d4: 40:68:c5:22:23:0d:7b:f0:3c:d1:d0:2d:e8:3e:85:e7:04:04: f6:f2:9d:09:bd:aa:2f:af:f5:c7:c1:c2:30:09:5c:05:56:50: 50:df:6c:63:9b:fd:29:1e:a8:93:f9:21:d1:1e:89:f4:a7:3c: 24:0a:09:ef:b5:54:45:69:d6:6e:30:eb:af:90:12:b2:07:49: 84:9f:c8:55:20:b0:bc:47:ec:33:38:13:2e:fe:d6:8e:f4:e3: 50:26:6d:49:98:bc:8f:c3:00:ff:00:01:04:d8:7d:28:f2:98: 70:35:6b:de:1c:c5:96:ae:5a:4e:66:2c:7c:5b:d1:45:d8:06: a7:d8:48:5e:da:7c:c7:20:5e:ed:17:c4:dd:52:e7:c7:51:e0: 39:87:2b:6a:d4:b8:2a:5f:88:ee:ae:16:16:08:ef:d8:91:16: 62:4d:16:61 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFDNzMxMTAvBgNVBAUTKDI4Q0QwOUU2NTBDMjY5RUM3RDJCQzlGRUY3RDU2NkMx MDEyRDIwNEMwHhcNMjUwNTA2MDMwMjQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTRlNi1lMGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcWcLXoakGPxyOA2Nch9rrAmheP/5pE4cmV76biM7e59T0+RB/Z/haus1ZXn KXAabs3/fFrqX1zlcB3ZtI6zt7NWuvawWrdKWXB7OTQHTpcJQl6OI3V6os9mF8nl O1dMCxs9WigJ5K4hpI/8pWw68fdFBmovkOEv6NfIkDHa9LYD08npRUPWvFa8/iTz 5mOrovN3HcHTglbkKGRQnLefktHYe01NsEDpnFcsVjij4LfsKif7MDTVF4BeI0PJ xlsm0+zVi5z+Kvow0+M6Qd/wwlPFQu4o4AUYGRzVt4z8n8sb4VjCVXvNWqQvQKNC 9IabOtyDvF4zjdzlMRGwoXMhYwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEX0WHXx OqBVyDVwXMXrKYJmbEkxMB8GA1UdIwQYMBaAFCjNCeZQwmnsfSvJ/vfVZsEBLSBM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUM3My83NzUxMkRDMjI1 MTcxMUYwQjA3Rjg2MURDNEY5QUUwMi9LTTBKNWxEQ2FleDlLOG4tOTlWbXdRRXRJ RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNMEo1bERDYWV4OUs4bi05OVZtd1FFdElFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkFDNzMvNzc1MTJEQzIyNTE3MTFGMEIwN0Y4NjFEQzRGOUFFMDIvRkFBNzI5NjAy NTk5MTFGMDk1M0UwMDIzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBo98eMA0EAgACMAcDBQAkAfQgMA0GCSqGSIb3DQEBCwUAA4IBAQDf /U8HdbSpf5dJdO8XYLENfdROQsk5IGiUTZ0KDYza/IFHyhuKzQXlUsQzBweJkSo2 8jQ40J2D39zF6EtwoOwkVG2V2jeKXsJL1Fj6UkCFDRGoGbtelJ6PgdRAaMUiIw17 8DzR0C3oPoXnBAT28p0Jvaovr/XHwcIwCVwFVlBQ32xjm/0pHqiT+SHRHon0pzwk CgnvtVRFadZuMOuvkBKyB0mEn8hVILC8R+wzOBMu/taO9ONQJm1JmLyPwwD/AAEE 2H0o8phwNWveHMWWrlpOZix8W9FF2Aan2Ehe2nzHIF7tF8TdUufHUeA5hytq1Lgq X4jurhYWCO/YkRZiTRZh -----END CERTIFICATE-----Generated at Mon Mar 2 13:49:06 2026 by rpki-client