$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa File: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (raw, json) Hash identifier: 2U6xmhzv0fOgJj7RZr6nEhhX0Za/2a3PlEUXvRGOzUs= Subject key identifier: 0F:F5:0E:33:2C:96:1D:AC:AB:50:1A:37:F0:AC:F4:A5:37:AD:F1:15 Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0359 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:04:16 +0000 ROA not before: Sat 05 Jul 2025 02:09:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58057 IP address blocks: 103.189.238.0/23 maxlen: 24 2001:df0:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Jul 5 02:09:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40f20-9155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:52:6f:d9:2d:3f:07:6b:dc:3a:26:65:0f:83: f4:12:d1:3a:6a:18:f1:d5:b1:d3:ec:44:ab:a5:6d: a5:fd:29:4c:ae:ba:16:42:28:ea:a5:26:53:ee:7f: b4:25:34:c9:c1:2c:ef:dd:ba:5b:46:19:b9:5b:d6: d3:56:f1:5f:66:ac:8b:f1:c7:e1:1b:37:3c:05:4a: ba:08:28:00:84:0d:ed:77:e8:fa:2b:94:fa:f8:d7: c6:44:a4:ad:c2:a4:b4:ae:a2:bf:da:9e:d7:a7:df: b2:38:8a:54:5f:23:91:3e:75:a4:a1:66:69:c8:52: 40:fd:b8:0f:14:f2:ac:88:cc:88:51:c9:f9:95:27: 34:83:0c:7d:82:07:40:93:a5:aa:77:0e:f4:6d:af: c7:ef:32:21:d6:f9:dd:b7:58:14:e8:81:55:0b:77: 63:9e:8f:73:98:e8:97:1b:43:85:00:79:8a:6f:39: 87:d8:f2:bf:07:0e:1d:55:4c:f1:a1:10:20:96:47: a0:f6:21:4b:dc:8e:0a:3c:95:6e:3a:c3:63:e2:68: 0b:5a:86:a1:db:62:32:4e:dc:98:17:33:2d:6f:ff: 4b:ff:16:f6:3e:cc:67:6b:98:59:df:f8:d0:33:2f: 1a:a4:c6:89:87:cd:8f:14:f0:c7:47:04:5b:24:12: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F5:0E:33:2C:96:1D:AC:AB:50:1A:37:F0:AC:F4:A5:37:AD:F1:15 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.238.0/23 IPv6: 2001:df0:de40::/48 Signature Algorithm: sha256WithRSAEncryption 23:65:d5:7f:42:33:77:44:a5:4b:35:f6:0b:62:02:5a:b7:6b: e4:ed:ae:8f:5c:8a:43:c3:9e:10:49:1e:b1:7a:9a:cf:26:1f: 7a:13:33:65:34:7d:64:91:22:63:09:78:db:6b:94:96:9e:c7: 5b:d8:56:84:15:da:85:ca:a4:80:90:31:19:c1:22:99:9f:4e: 8b:13:ed:21:64:4f:e4:16:07:e7:50:24:7c:70:ac:87:38:15: 70:6a:65:85:f6:d3:f7:6b:f4:95:eb:a3:9c:d6:0d:54:20:4e: 57:b1:8b:8f:e0:1b:13:24:3a:e1:7d:b8:9d:63:e7:03:fc:96: 8c:12:91:03:46:70:6d:1c:7c:e3:09:16:9a:8b:04:8c:53:9c: 0b:29:be:9a:02:b4:e7:01:2f:e4:26:6c:62:18:89:49:62:b8: 02:c8:d2:a0:a6:c4:94:b2:7c:e4:cd:12:68:28:41:f5:29:e1: 8d:ad:51:e7:bc:e9:fb:5e:46:6d:a9:10:79:8a:45:06:74:3f: d9:3d:84:89:3e:0b:9c:4c:bf:f1:06:8f:f0:05:a0:68:61:f2: 6c:10:40:95:84:59:b1:30:4e:7d:50:6e:3d:3c:e4:57:cb:06: 54:01:24:08:9f:64:6f:a0:5f:9b:34:be:c9:65:29:c5:1f:01: b4:90:d5:16 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwNzA1MDIwOTM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGYyMC05MTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1Jv2S0/B2vcOiZlD4P0EtE6ahjx1bHT7ESrpW2l/SlMrroWQijqpSZT7n+0 JTTJwSzv3bpbRhm5W9bTVvFfZqyL8cfhGzc8BUq6CCgAhA3td+j6K5T6+NfGRKSt wqS0rqK/2p7Xp9+yOIpUXyORPnWkoWZpyFJA/bgPFPKsiMyIUcn5lSc0gwx9ggdA k6Wqdw70ba/H7zIh1vndt1gU6IFVC3djno9zmOiXG0OFAHmKbzmH2PK/Bw4dVUzx oRAglkeg9iFL3I4KPJVuOsNj4mgLWoah22IyTtyYFzMtb/9L/xb2Psxna5hZ3/jQ My8apMaJh82PFPDHRwRbJBIcJwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFA/1DjMs lh2sq1AaN/Cs9KU3rfEVMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBDNzMvODIxNDU3RDJGMTM3MTFFQzk3Rjc0RjBDQzRGOUFFMDIvRkEzRkYxRDRG MTNEMTFFQzlCNjczQTJBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ73uMA8EAgACMAkDBwAgAQ3w3kAwDQYJKoZIhvcNAQELBQADggEB ACNl1X9CM3dEpUs19gtiAlq3a+Ttro9cikPDnhBJHrF6ms8mH3oTM2U0fWSRImMJ eNtrlJaex1vYVoQV2oXKpICQMRnBIpmfTosT7SFkT+QWB+dQJHxwrIc4FXBqZYX2 0/dr9JXro5zWDVQgTlexi4/gGxMkOuF9uJ1j5wP8lowSkQNGcG0cfOMJFpqLBIxT nAspvpoCtOcBL+QmbGIYiUliuALI0qCmxJSyfOTNEmgoQfUp4Y2tUee86fteRm2p EHmKRQZ0P9k9hIk+C5xMv/EGj/AFoGhh8mwQQJWEWbEwTn1Qbj085FfLBlQBJAif ZG+gX5s0vsllKcUfAbSQ1RY= -----END CERTIFICATE-----Generated at Mon Mar 2 03:34:08 2026 by rpki-client