$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/FA56A6A6294B11F09738296CC4F9AE02.roa File: FA56A6A6294B11F09738296CC4F9AE02.roa (raw, json) Hash identifier: O3pM7qvbKmvbVcKlOqt9J2PpCos6mHEcxUkjQ35Bo3o= Subject key identifier: 56:EC:A3:1A:AA:FB:8F:A1:75:C9:0B:ED:65:22:BD:1C:D3:5D:07:39 Certificate issuer: /CN=A91B7DCB/serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Certificate serial: AB Authority key identifier: 0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/FA56A6A6294B11F09738296CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:19:55 +0000 ROA not before: Wed 21 Jan 2026 06:24:48 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 4771 IP address blocks: 203.171.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Validity Not Before: Jan 21 06:24:48 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4672b-e670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:06:79:ba:80:64:2c:cc:aa:5e:b7:e8:9f:2c: 7a:9b:5a:4e:96:f7:b8:3a:05:9d:da:23:87:7c:ed: 14:5f:37:1f:dc:56:00:c6:3f:25:dd:bf:1e:7d:2f: 80:dc:86:b0:08:99:d3:7a:d7:a3:ac:6e:fb:32:98: 48:3b:8b:3c:a0:d1:22:1a:4b:b6:5d:85:4a:9f:f0: 41:67:e1:70:f4:ad:36:24:84:f9:0c:15:a8:09:d5: a0:18:24:45:a3:5e:09:97:fb:58:af:f4:88:ad:33: e3:2b:38:c5:43:c8:0e:bf:6c:0c:09:91:53:73:79: 0e:6f:3c:08:9e:64:bc:86:fd:00:64:90:36:e9:15: 9e:d7:6c:9e:02:1b:df:27:17:ad:e7:8f:d5:b0:e5: 30:83:5a:39:f9:1e:5a:14:fa:5e:a7:7d:23:28:1a: 1a:f7:26:62:6d:67:31:30:9c:a5:7e:1e:e4:12:93: 81:ff:d1:0f:28:9e:f2:ba:90:cf:19:bf:79:12:08: 3d:2e:7a:35:56:83:dd:ff:d8:be:ee:68:aa:03:b0: 8f:52:aa:9e:9b:19:97:55:d7:7a:df:23:26:32:95: 07:00:a2:2b:c2:3b:40:db:ad:9b:2e:9c:fa:c8:12: f0:35:21:ec:15:79:06:21:1a:ca:a6:b9:ff:71:f6: 40:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:EC:A3:1A:AA:FB:8F:A1:75:C9:0B:ED:65:22:BD:1C:D3:5D:07:39 X509v3 Authority Key Identifier: keyid:0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/FA56A6A6294B11F09738296CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.171.223.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:a4:c9:32:15:8a:cb:f8:41:a8:cd:7d:e0:cf:ec:a3:1b:aa: 0a:67:56:a7:cd:ec:44:22:27:3a:72:e4:f4:b4:f5:32:e5:e4: 25:72:b8:71:b0:d9:b6:b0:0d:45:f7:cd:66:ed:53:94:7c:cc: 06:c3:8a:78:6d:44:86:0c:d3:59:50:8c:65:fc:ed:c7:eb:1e: f5:c8:bd:8f:c9:48:54:89:5a:e0:1b:cd:b2:fe:23:22:f0:a7: 87:e4:7b:90:c9:b5:f6:67:5f:be:d0:ea:64:c9:18:36:e4:44: e3:ea:50:7c:7b:50:35:18:32:27:0a:56:b6:d2:77:44:00:3f: ac:73:0e:6a:b9:8c:f6:8c:ef:41:47:fb:15:72:f1:0a:b0:61: ce:dc:b1:b9:a9:d2:74:42:69:62:4c:5e:e9:e7:c6:9f:59:f7: f3:d2:eb:38:b5:2c:ff:8f:d0:0c:4a:d8:da:a2:ad:ed:1a:61: 2d:29:fa:0e:7d:9d:3e:6d:97:d7:74:bb:ad:9d:6c:96:e0:5e: 56:be:61:10:e3:7f:52:a7:6f:fc:62:80:ff:a5:67:ed:eb:65: c3:4e:85:01:49:6e:31:08:85:d0:ee:0f:7f:a2:84:a2:95:4e: fe:db:70:9a:2d:7e:5b:31:f4:fc:c4:2d:f9:92:31:9d:72:a1: 3b:77:ce:54 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKDBBMkEzMzEyRTA4QkE5QzQxQkU3RTBGQjU4QUE2NDJD NkQwMUI4NzUwHhcNMjYwMTIxMDYyNDQ4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjcyYi1lNjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgZ5uoBkLMyqXrfonyx6m1pOlve4OgWd2iOHfO0UXzcf3FYAxj8l3b8efS+A 3IawCJnTetejrG77MphIO4s8oNEiGku2XYVKn/BBZ+Fw9K02JIT5DBWoCdWgGCRF o14Jl/tYr/SIrTPjKzjFQ8gOv2wMCZFTc3kObzwInmS8hv0AZJA26RWe12yeAhvf Jxet54/VsOUwg1o5+R5aFPpep30jKBoa9yZibWcxMJylfh7kEpOB/9EPKJ7yupDP Gb95Egg9Lno1VoPd/9i+7miqA7CPUqqemxmXVdd63yMmMpUHAKIrwjtA262bLpz6 yBLwNSHsFXkGIRrKprn/cfZAnwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFbsoxqq +4+hdckL7WUivRzTXQc5MB8GA1UdIwQYMBaAFAoqMxLgi6nEG+fg+1iqZCxtAbh1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi8wMTUwNUEzMDI5 NDUxMUYwQUUxQUJDNzRDNEY5QUUwMi9DaW96RXVDTHFjUWI1LUQ3V0twa0xHMEJ1 SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Npb3pFdUNMcWNRYjUtRDdXS3BrTEcwQnVIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdEQ0IvMDE1MDVBMzAyOTQ1MTFGMEFFMUFCQzc0QzRGOUFFMDIvRkE1NkE2QTYy OTRCMTFGMDk3MzgyOTZDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy6vfMA0GCSqGSIb3DQEBCwUAA4IBAQAvpMkyFYrL+EGozX3gz+yj G6oKZ1anzexEIic6cuT0tPUy5eQlcrhxsNm2sA1F981m7VOUfMwGw4p4bUSGDNNZ UIxl/O3H6x71yL2PyUhUiVrgG82y/iMi8KeH5HuQybX2Z1++0OpkyRg25ETj6lB8 e1A1GDInCla20ndEAD+scw5quYz2jO9BR/sVcvEKsGHO3LG5qdJ0QmliTF7p58af Wffz0us4tSz/j9AMStjaoq3tGmEtKfoOfZ0+bZfXdLutnWyW4F5WvmEQ439Sp2/8 YoD/pWft62XDToUBSW4xCIXQ7g9/ooSilU7+23CaLX5bMfT8xC35kjGdcqE7d85U -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:31 2026 by rpki-client