$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCBA/3400C718E62C11F0976A95FB6F6F56BC/FAFCF5C4E8D111F0BEA778E4616F56BC.roa File: FAFCF5C4E8D111F0BEA778E4616F56BC.roa (raw, json) Hash identifier: hw46GZqTqfjXwDHxT7HupOClnkJFY7kri3rb/x0rAqQ= Subject key identifier: E3:24:3D:4D:3F:B3:98:ED:E5:4A:9E:2E:83:97:C1:F7:3D:FD:49:A2 Certificate issuer: /CN=A916BCBA/serialNumber=19C9A0C21930C16EA4169AC2EBEDC7E6C9D7B52F Certificate serial: 2A Authority key identifier: 19:C9:A0:C2:19:30:C1:6E:A4:16:9A:C2:EB:ED:C7:E6:C9:D7:B5:2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GcmgwhkwwW6kFprC6-3H5snXtS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCBA/3400C718E62C11F0976A95FB6F6F56BC/FAFCF5C4E8D111F0BEA778E4616F56BC.roa Signing time: Sun 01 Mar 2026 05:52:44 +0000 ROA not before: Sat 03 Jan 2026 18:28:20 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152685 IP address blocks: 144.79.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCBA/3400C718E62C11F0976A95FB6F6F56BC/GcmgwhkwwW6kFprC6-3H5snXtS8.crl rsync://rpki.apnic.net/member_repository/A916BCBA/3400C718E62C11F0976A95FB6F6F56BC/GcmgwhkwwW6kFprC6-3H5snXtS8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GcmgwhkwwW6kFprC6-3H5snXtS8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCBA, serialNumber=19C9A0C21930C16EA4169AC2EBEDC7E6C9D7B52F Validity Not Before: Jan 3 18:28:20 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d42c-ee7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:84:38:77:d2:88:25:bb:6c:af:59:fd:87:85: d5:3c:cc:63:05:63:c0:d6:de:e5:47:dd:36:8f:5f: 9f:59:35:0b:25:ee:10:fe:e9:63:91:0e:f6:66:8e: 37:d4:c3:5b:4d:50:ce:84:d6:e3:a3:f4:11:c1:b6: 85:45:f4:a8:1a:a5:6a:66:40:51:38:77:11:63:cf: b5:05:42:2f:c0:8a:08:a9:8e:2d:c4:a2:e5:f6:06: 65:86:29:b4:86:91:17:5e:cc:a3:d2:fe:f0:07:3f: 96:89:22:0c:cc:ae:1a:a7:37:02:ac:b2:4b:4f:5f: 4a:bf:cc:c6:36:d3:2c:d1:55:bd:4e:24:60:5d:08: bc:9c:1d:24:74:96:b5:dc:39:51:c5:87:33:dd:ab: dd:26:d7:86:5e:59:90:f1:ab:98:92:11:51:51:ce: 3c:49:56:42:7e:cf:cd:10:dc:35:74:75:ec:bf:86: 10:c4:8b:2f:b1:d5:fc:65:00:15:3c:70:99:1e:a7: a1:d7:0a:2e:79:f7:14:2a:a3:2e:ba:a8:64:0f:d8: 30:f1:b5:74:74:6c:01:50:87:33:0d:2d:44:19:85: ce:5b:40:88:5d:08:5e:86:58:ee:b4:14:43:69:d9: 38:54:68:b4:95:36:6b:84:02:3e:5f:23:6a:a9:72: 83:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:24:3D:4D:3F:B3:98:ED:E5:4A:9E:2E:83:97:C1:F7:3D:FD:49:A2 X509v3 Authority Key Identifier: keyid:19:C9:A0:C2:19:30:C1:6E:A4:16:9A:C2:EB:ED:C7:E6:C9:D7:B5:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCBA/3400C718E62C11F0976A95FB6F6F56BC/GcmgwhkwwW6kFprC6-3H5snXtS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GcmgwhkwwW6kFprC6-3H5snXtS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCBA/3400C718E62C11F0976A95FB6F6F56BC/FAFCF5C4E8D111F0BEA778E4616F56BC.roa sbgp-ipAddrBlock: critical IPv4: 144.79.219.0/24 Signature Algorithm: sha256WithRSAEncryption 75:ae:f6:8e:ff:19:e3:1f:e7:a7:34:26:2f:c1:3e:eb:71:15: 0d:f2:df:e0:32:09:33:35:0d:17:4a:3e:f7:7b:bf:4f:bd:50: a9:9c:bd:be:62:39:2f:0a:ea:61:c9:1d:cb:22:2e:bb:25:cf: 7a:71:ef:9d:9d:73:46:90:22:cc:e8:49:3c:ef:bd:4a:d4:35: 95:02:7d:7b:06:ed:ba:a4:d4:e6:c6:28:92:40:1f:c7:3f:0f: 2d:9d:b7:59:5f:99:19:8f:54:19:90:bb:ca:c6:26:fb:f5:b9: 9c:c2:d3:ef:5a:7f:43:26:50:bd:9e:27:52:13:a0:87:14:53: 4c:7a:bd:74:65:09:dc:87:e1:4d:4c:43:24:c1:59:5c:1e:18: f6:11:44:a8:a0:e1:2f:9b:88:6a:08:42:25:dc:5d:71:56:22: fd:3c:21:33:da:55:d5:f5:89:08:b0:56:06:58:20:b3:f4:3f: fd:db:d5:cd:e2:19:95:a6:6e:b5:a6:93:e3:26:18:f0:66:6a: 42:96:31:d9:77:8e:c1:cf:b0:67:35:77:46:09:99:7c:f2:22: ed:d1:b2:e0:de:98:3e:25:43:ce:7f:63:2e:b3:31:d0:17:94: 77:72:69:74:4c:9d:e5:cc:a1:f8:14:a7:8b:3c:79:0b:9a:92: 06:b3:d5:fb -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QkNCQTExMC8GA1UEBRMoMTlDOUEwQzIxOTMwQzE2RUE0MTY5QUMyRUJFREM3RTZD OUQ3QjUyRjAeFw0yNjAxMDMxODI4MjBaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNDJjLWVlN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrhDh30oglu2yvWf2HhdU8zGMFY8DW3uVH3TaPX59ZNQsl7hD+6WORDvZmjjfU w1tNUM6E1uOj9BHBtoVF9KgapWpmQFE4dxFjz7UFQi/Aigipji3EouX2BmWGKbSG kRdezKPS/vAHP5aJIgzMrhqnNwKssktPX0q/zMY20yzRVb1OJGBdCLycHSR0lrXc OVHFhzPdq90m14ZeWZDxq5iSEVFRzjxJVkJ+z80Q3DV0dey/hhDEiy+x1fxlABU8 cJkep6HXCi559xQqoy66qGQP2DDxtXR0bAFQhzMNLUQZhc5bQIhdCF6GWO60FENp 2ThUaLSVNmuEAj5fI2qpcoP1AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU4yQ9TT+z mO3lSp4ug5fB9z39SaIwHwYDVR0jBBgwFoAUGcmgwhkwwW6kFprC6+3H5snXtS8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCQ0JBLzM0MDBDNzE4RTYy QzExRjA5NzZBOTVGQjZGNkY1NkJDL0djbWd3aGt3d1c2a0ZwckM2LTNINXNuWHRT OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2NtZ3doa3d3VzZrRnByQzYtM0g1c25YdFM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNCQS8zNDAwQzcxOEU2MkMxMUYwOTc2QTk1RkI2RjZGNTZCQy9GQUZDRjVDNEU4 RDExMUYwQkVBNzc4RTQ2MTZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACQT9swDQYJKoZIhvcNAQELBQADggEBAHWu9o7/GeMf56c0Ji/BPutx FQ3y3+AyCTM1DRdKPvd7v0+9UKmcvb5iOS8K6mHJHcsiLrslz3px752dc0aQIszo STzvvUrUNZUCfXsG7bqk1ObGKJJAH8c/Dy2dt1lfmRmPVBmQu8rGJvv1uZzC0+9a f0MmUL2eJ1IToIcUU0x6vXRlCdyH4U1MQyTBWVweGPYRRKig4S+biGoIQiXcXXFW Iv08ITPaVdX1iQiwVgZYILP0P/3b1c3iGZWmbrWmk+MmGPBmakKWMdl3jsHPsGc1 d0YJmXzyIu3RsuDemD4lQ85/Yy6zMdAXlHdyaXRMneXMofgUp4s8eQuakgaz1fs= -----END CERTIFICATE-----Generated at Mon Mar 2 10:46:42 2026 by rpki-client