$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F5FC39B600F811F0BD702A69C4F9AE02.roa File: F5FC39B600F811F0BD702A69C4F9AE02.roa (raw, json) Hash identifier: 9116NXLxQtwPo/GgkPoKQwC8T0+IQ5WfjdteNjA0STk= Subject key identifier: E3:67:D2:8C:39:09:36:78:AA:B0:E0:0D:6A:F6:34:02:42:EE:1B:B8 Certificate issuer: /CN=A91EA80C/serialNumber=312440201B2EF74B7CAC6C31FB85F41E9C4686A0 Certificate serial: D0 Authority key identifier: 31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F5FC39B600F811F0BD702A69C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:14:27 +0000 ROA not before: Sun 18 Jan 2026 23:01:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 32135 IP address blocks: 163.223.40.0/23 maxlen: 23 163.223.40.0/24 maxlen: 32 163.223.41.0/24 maxlen: 24 2401:f460:f000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA80C, serialNumber=312440201B2EF74B7CAC6C31FB85F41E9C4686A0 Validity Not Before: Jan 18 23:01:33 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a465e3-e46d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:f6:b4:a3:dd:d3:c5:55:37:ab:a5:77:01: 72:76:00:0c:02:c6:7f:13:89:80:81:d9:ec:2f:cb: 8d:09:00:08:43:d9:e8:0a:6d:ec:ff:1b:da:e8:8d: e1:35:2d:a6:98:12:d9:80:83:9c:17:7d:0c:de:c5: cb:81:63:bd:b6:fc:7d:22:11:77:ec:95:b2:c2:d5: 4a:c4:4e:15:3c:75:c6:cd:0c:5e:25:8f:d6:90:c7: 96:43:8c:9a:87:49:ee:b0:45:c1:da:88:e7:b1:27: 06:f9:e8:53:ae:6b:02:e2:82:76:d6:56:02:1f:01: 12:89:9f:e5:84:fc:b1:22:36:80:c5:4f:30:40:70: 73:c9:bf:6f:6b:a8:da:16:1d:f7:86:95:ef:00:b7: 24:f6:7e:c9:3d:11:47:a9:13:39:56:42:8b:e7:7b: 2c:f3:e7:b0:02:10:95:bc:9c:5a:60:97:57:76:04: a8:33:2c:35:1e:da:07:bb:ff:b6:2f:96:e4:09:cd: 74:5c:7f:9b:54:c6:08:c1:22:0a:7f:f7:ba:df:b2: c6:c6:aa:a9:c7:c3:65:d0:ca:d7:8a:db:04:7f:98: 35:74:3c:5f:d4:2f:f0:c7:b8:ca:b8:da:56:c7:79: 11:b7:ff:8d:fb:02:d1:40:e9:78:31:f5:44:74:03: c1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:67:D2:8C:39:09:36:78:AA:B0:E0:0D:6A:F6:34:02:42:EE:1B:B8 X509v3 Authority Key Identifier: keyid:31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F5FC39B600F811F0BD702A69C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.40.0/23 IPv6: 2401:f460:f000::/48 Signature Algorithm: sha256WithRSAEncryption 47:2e:9a:a0:32:33:91:f7:20:8c:58:37:b9:1e:d6:80:ea:10: 94:55:53:27:d5:7f:c0:c2:46:55:c5:45:dc:db:0d:3d:06:c0: 45:6d:46:82:bc:b6:7f:5b:f9:cb:77:22:e2:ce:21:65:5a:83: a0:69:53:cd:56:6b:d4:f5:80:cf:89:f3:4f:9e:2c:78:c7:4a: f4:f9:65:f8:37:09:ef:e9:cc:54:87:1d:b2:df:d7:8b:45:ed: 80:32:27:b0:ca:5c:4c:63:1e:99:d4:99:ac:c8:7c:48:56:a8: af:b0:bd:c7:5b:62:bd:a2:76:55:e9:e3:1c:5c:ff:85:eb:b6: 9f:aa:d0:01:db:a1:a1:0a:8a:74:12:c1:0c:c7:eb:7e:87:68: 08:14:5f:50:67:ce:17:f9:ce:da:fb:46:0f:98:e3:46:53:13: f8:7b:35:2a:3b:ff:e9:f0:e6:a5:e2:77:34:04:aa:10:73:78: 04:5c:0a:a7:44:c4:ae:90:c3:d8:8d:fc:42:7d:9b:d6:9b:65: 68:d2:2c:37:4f:4f:7c:19:09:c1:dc:52:c2:06:13:c1:1d:c7: db:7d:cf:19:61:f6:ef:fb:aa:d1:6a:44:f0:32:db:02:91:65: c1:66:d5:66:56:71:46:33:fc:56:2f:8a:21:2d:6d:7b:10:9a: 62:65:45:9b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE4MEMxMTAvBgNVBAUTKDMxMjQ0MDIwMUIyRUY3NEI3Q0FDNkMzMUZCODVGNDFF OUM0Njg2QTAwHhcNMjYwMTE4MjMwMTMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjVlMy1lNDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2L2tKPd08VVN6uldwFydgAMAsZ/E4mAgdnsL8uNCQAIQ9noCm3s/xva6I3h NS2mmBLZgIOcF30M3sXLgWO9tvx9IhF37JWywtVKxE4VPHXGzQxeJY/WkMeWQ4ya h0nusEXB2ojnsScG+ehTrmsC4oJ21lYCHwESiZ/lhPyxIjaAxU8wQHBzyb9va6ja Fh33hpXvALck9n7JPRFHqRM5VkKL53ss8+ewAhCVvJxaYJdXdgSoMyw1HtoHu/+2 L5bkCc10XH+bVMYIwSIKf/e637LGxqqpx8Nl0MrXitsEf5g1dDxf1C/wx7jKuNpW x3kRt/+N+wLRQOl4MfVEdAPBXwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFONn0ow5 CTZ4qrDgDWr2NAJC7hu4MB8GA1UdIwQYMBaAFDEkQCAbLvdLfKxsMfuF9B6cRoag MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTgwQy9ERTk4RUFGMEZC NjUxMUVGQTM3NkU0NDlDNEY5QUUwMi9NU1JBSUJzdTkwdDhyR3d4LTRYMEhweEdo cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TUkFJQnN1OTB0OHJHd3gtNFgwSHB4R2hxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE4MEMvREU5OEVBRjBGQjY1MTFFRkEzNzZFNDQ5QzRGOUFFMDIvRjVGQzM5QjYw MEY4MTFGMEJENzAyQTY5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo98oMA8EAgACMAkDBwAkAfRg8AAwDQYJKoZIhvcNAQELBQADggEB AEcumqAyM5H3IIxYN7ke1oDqEJRVUyfVf8DCRlXFRdzbDT0GwEVtRoK8tn9b+ct3 IuLOIWVag6BpU81Wa9T1gM+J80+eLHjHSvT5Zfg3Ce/pzFSHHbLf14tF7YAyJ7DK XExjHpnUmazIfEhWqK+wvcdbYr2idlXp4xxc/4Xrtp+q0AHboaEKinQSwQzH636H aAgUX1Bnzhf5ztr7Rg+Y40ZTE/h7NSo7/+nw5qXidzQEqhBzeARcCqdExK6Qw9iN /EJ9m9abZWjSLDdPT3wZCcHcUsIGE8Edx9t9zxlh9u/7qtFqRPAy2wKRZcFm1WZW cUYz/FYviiEtbXsQmmJlRZs= -----END CERTIFICATE-----Generated at Mon Mar 2 12:47:50 2026 by rpki-client