$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa File: FA39CA70790E11EE86665E43C4F9AE02.roa (raw, json) Hash identifier: 8eJCqlgHNDS923884X/dfLG+BTELGwUB8rt4AWm/WOI= Subject key identifier: 84:04:92:CA:88:76:2E:B6:52:C2:BC:A2:27:D9:54:40:6C:5A:11:9B Certificate issuer: /CN=A91D6DBD/serialNumber=B1C58C0785159ED73696AFB312D235CF40F3C441 Certificate serial: 01BB Authority key identifier: B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:19:01 +0000 ROA not before: Thu 05 Jun 2025 04:32:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9792 IP address blocks: 203.1.240.0/21 maxlen: 21 2406:11c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD, serialNumber=B1C58C0785159ED73696AFB312D235CF40F3C441 Validity Not Before: Jun 5 04:32:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3f675-1171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f8:c4:af:21:8e:f1:3c:94:31:69:94:94:22: d1:8b:79:94:b4:0f:92:77:da:83:48:2d:2e:e0:25: 3f:16:95:c9:02:c7:92:83:21:b4:aa:d2:cf:45:4a: 3b:f3:81:2b:23:fd:46:5c:16:78:0c:cb:a2:79:57: 20:b2:c2:be:cf:39:96:da:aa:e3:b8:27:e5:1d:a5: 29:e1:44:46:8a:52:a2:58:51:ce:80:da:3a:19:40: c8:70:61:36:9c:de:b2:cf:48:2f:8f:7e:a7:e7:85: 3d:bb:30:88:ea:a5:03:81:bf:e7:97:66:38:99:86: 99:c3:f4:fb:ef:cb:a7:de:54:24:2c:c9:25:d3:32: 8d:6c:5f:6e:b5:76:07:d7:75:9c:ce:34:1d:80:d8: 28:40:f7:bf:3f:57:bc:d2:b4:ac:e8:c7:cb:d8:cf: 48:b1:7e:c1:e7:a5:7a:86:6d:92:20:08:3e:b4:03: bc:2e:44:64:2b:60:8d:7d:62:74:26:88:cc:ca:bd: 3a:0c:f1:dd:8e:84:d6:2e:51:21:bb:65:1e:5a:6b: 79:4f:cc:50:94:91:42:2e:6e:83:db:98:ba:9e:b1: dd:6c:99:1e:d3:fc:86:75:8c:0f:35:c8:72:dc:34: 86:ee:7b:f5:cf:f3:e3:3a:0d:26:aa:93:cf:99:93: 9e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:04:92:CA:88:76:2E:B6:52:C2:BC:A2:27:D9:54:40:6C:5A:11:9B X509v3 Authority Key Identifier: keyid:B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.1.240.0/21 IPv6: 2406:11c0::/32 Signature Algorithm: sha256WithRSAEncryption 45:3b:fa:85:7b:28:7c:f5:fa:27:33:12:68:ab:e7:ee:e5:32: f4:62:01:b4:10:1a:f8:70:58:4e:e9:b5:54:e4:5d:d2:24:27: 30:9e:e0:45:58:df:24:3a:d8:7c:81:1a:86:f8:bb:76:66:f3: 9c:82:ad:57:00:dc:7a:2e:5b:6a:e6:1f:ed:8c:0f:a1:99:f9: a9:e3:7e:27:29:36:93:c8:17:47:42:3d:89:9c:8e:ca:ec:4c: 88:6a:9b:a1:5a:c1:35:c3:05:9c:f3:0d:71:18:20:87:af:f8: 04:d7:cc:d4:53:b3:34:3b:b9:b9:7e:48:01:a8:9b:a2:dd:c7: d5:96:3b:29:7f:23:26:cf:87:0a:75:11:4e:5f:45:c2:4d:4c: 7d:79:7b:08:5c:65:6b:68:9d:21:dc:a9:0a:eb:c6:c0:20:61: 2c:28:90:d1:c0:19:44:e4:5c:7d:62:a8:f4:e5:69:6c:79:07: 2b:c8:52:5a:07:a1:59:93:20:b2:e0:0d:d3:9e:ec:69:62:7b: 2b:16:17:05:92:89:30:06:52:fa:a7:a3:1f:ed:c7:59:fb:88: 5f:26:0d:dc:eb:64:7f:37:21:03:ef:d0:1b:af:fb:1d:b0:5b: 67:ea:69:57:ef:71:7b:18:a4:6c:61:be:af:c1:75:3d:9f:73: 30:ce:8a:cb -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZEQkQxMTAvBgNVBAUTKEIxQzU4QzA3ODUxNTlFRDczNjk2QUZCMzEyRDIzNUNG NDBGM0M0NDEwHhcNMjUwNjA1MDQzMjU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjY3NS0xMTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fjEryGO8TyUMWmUlCLRi3mUtA+Sd9qDSC0u4CU/FpXJAseSgyG0qtLPRUo7 84ErI/1GXBZ4DMuieVcgssK+zzmW2qrjuCflHaUp4URGilKiWFHOgNo6GUDIcGE2 nN6yz0gvj36n54U9uzCI6qUDgb/nl2Y4mYaZw/T778un3lQkLMkl0zKNbF9utXYH 13WczjQdgNgoQPe/P1e80rSs6MfL2M9IsX7B56V6hm2SIAg+tAO8LkRkK2CNfWJ0 JojMyr06DPHdjoTWLlEhu2UeWmt5T8xQlJFCLm6D25i6nrHdbJke0/yGdYwPNchy 3DSG7nv1z/PjOg0mqpPPmZOejwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIQEksqI di62UsK8oifZVEBsWhGbMB8GA1UdIwQYMBaAFLHFjAeFFZ7XNpavsxLSNc9A88RB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkRCRC8wMkFBNDk1MDc5 MEExMUVFOTlFREQxMUZDNEY5QUUwMi9zY1dNQjRVVm50YzJscS16RXRJMXowRHp4 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjV01CNFVWbnRjMmxxLXpFdEkxejBEenhFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZEQkQvMDJBQTQ5NTA3OTBBMTFFRTk5RUREMTFGQzRGOUFFMDIvRkEzOUNBNzA3 OTBFMTFFRTg2NjY1RTQzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQDywHwMA0EAgACMAcDBQAkBhHAMA0GCSqGSIb3DQEBCwUAA4IBAQBF O/qFeyh89fonMxJoq+fu5TL0YgG0EBr4cFhO6bVU5F3SJCcwnuBFWN8kOth8gRqG +Lt2ZvOcgq1XANx6Lltq5h/tjA+hmfmp434nKTaTyBdHQj2JnI7K7EyIapuhWsE1 wwWc8w1xGCCHr/gE18zUU7M0O7m5fkgBqJui3cfVljspfyMmz4cKdRFOX0XCTUx9 eXsIXGVraJ0h3KkK68bAIGEsKJDRwBlE5Fx9Yqj05WlseQcryFJaB6FZkyCy4A3T nuxpYnsrFhcFkokwBlL6p6Mf7cdZ+4hfJg3c62R/NyED79Abr/sdsFtn6mlX73F7 GKRsYb6vwXU9n3MwzorL -----END CERTIFICATE-----Generated at Mon Mar 2 11:21:47 2026 by rpki-client