$ rpki-client -vvf rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa File: FAFC712C485611EDB713C522C4F9AE02.roa (raw, json) Hash identifier: tHvkos3LllK1/2w9x3zTBuzpUB/1BQzGW8FkmGduBgQ= Subject key identifier: FE:F4:39:DB:A2:C0:57:F1:BC:71:34:44:82:51:8D:09:4B:E0:8F:E1 Certificate issuer: /CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897 Certificate serial: 0813 Authority key identifier: 7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa Signing time: Mon 02 Mar 2026 21:27:20 +0000 ROA not before: Mon 02 Mar 2026 21:27:20 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 132337 IP address blocks: 103.69.212.0/22 maxlen: 24 103.148.238.0/23 maxlen: 23 103.148.238.0/24 maxlen: 24 103.148.239.0/24 maxlen: 24 103.196.48.0/22 maxlen: 24 113.30.156.0/22 maxlen: 24 113.30.228.0/22 maxlen: 24 121.50.216.0/21 maxlen: 24 2406:c140::/32 maxlen: 32 2406:c140:31::/48 maxlen: 48 2406:c140:33::/48 maxlen: 48 2406:c140:65::/48 maxlen: 48 2406:c140:86::/48 maxlen: 48 2406:c140:238::/48 maxlen: 48 2406:c140:239::/48 maxlen: 48 2406:c140:852::/48 maxlen: 48 2406:c140:886::/48 maxlen: 48 2406:c140:1200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115964, serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897 Validity Not Before: Mar 2 21:27:20 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a600b8-bda6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a3:02:15:79:ce:55:e8:23:64:5f:8f:7f:c2: 80:99:26:41:80:07:62:18:05:ff:39:1e:14:98:ca: b3:1c:6f:38:17:b9:26:16:52:46:11:de:0c:54:7c: 84:ac:a7:72:74:d6:79:ab:2d:bd:f5:00:ac:d2:4b: 1c:ed:21:92:d4:6e:24:55:59:ce:c4:b3:de:f4:2b: e4:39:50:f3:6a:e0:d6:a6:91:e1:71:06:e2:18:74: a8:46:dc:f9:98:c9:bd:2e:01:0f:7c:79:33:2a:97: 69:ec:2b:2d:f8:67:12:d8:05:b4:d3:0a:44:2d:ee: 49:85:bb:c0:60:2e:8c:22:39:fd:88:3b:79:3e:25: 62:b5:03:09:97:1e:5e:1e:fa:6c:54:c6:b6:04:5e: de:ba:f7:db:87:12:d0:da:50:d0:df:52:68:3d:83: 63:08:e4:85:b3:ac:c6:fb:9b:d3:57:d3:6a:a1:a9: 21:73:b3:d1:bd:44:b9:7b:05:45:f2:ab:de:cf:d3: 59:fc:99:d5:36:40:21:4d:1e:a6:70:7c:34:ac:39: fb:74:e3:21:fd:cc:87:d3:c8:76:f5:fc:25:f8:64: 95:de:e7:6e:43:e1:ab:e5:73:64:70:0c:a3:f7:9a: 03:9e:44:e5:44:b6:03:f2:28:93:59:bc:c5:b8:c4: 26:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F4:39:DB:A2:C0:57:F1:BC:71:34:44:82:51:8D:09:4B:E0:8F:E1 X509v3 Authority Key Identifier: keyid:7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.69.212.0/22 103.148.238.0/23 103.196.48.0/22 113.30.156.0/22 113.30.228.0/22 121.50.216.0/21 IPv6: 2406:c140::/32 Signature Algorithm: sha256WithRSAEncryption 8a:ee:88:21:de:49:9a:87:4a:aa:2a:d2:2f:83:24:8c:78:3a: 49:26:e7:65:d7:b2:f0:1b:f8:a6:3d:cb:fc:ae:02:bd:68:85: 33:e9:d3:27:f3:57:cd:d8:77:b7:c5:e4:a8:03:46:48:45:69: e0:1f:e7:b7:c6:b3:61:36:e9:e2:3c:d4:65:bd:4f:7a:a7:36: d6:45:39:a2:e3:ad:f9:07:97:e7:35:fb:cb:d2:1f:9c:ac:ee: 6c:09:12:e2:e9:e3:df:f6:63:3f:58:a5:cd:3a:24:60:d4:08: 76:e0:f5:85:01:96:a8:02:38:b7:4c:8b:87:8e:23:11:13:aa: 79:74:cc:d5:92:45:2e:90:0c:a7:77:a6:36:25:a4:22:80:1f: 82:b8:e1:4f:08:5f:48:1f:b2:4b:85:10:1d:4a:ed:1a:f6:3e: d1:cf:01:68:a0:43:00:53:fa:72:52:c9:b6:c8:c8:f0:d1:58: eb:fc:dc:ae:47:34:e0:52:b5:54:ec:5f:4b:0f:79:32:3b:f5: 37:88:b5:be:85:26:0d:8c:55:ea:08:a2:a9:70:25:6c:97:ca: 05:29:a3:75:f1:3c:90:4a:03:38:05:54:a7:f0:78:ae:25:6d: 49:ed:87:04:64:f2:37:c7:68:11:bd:a4:85:12:7a:78:50:af: 3d:da:b6:52 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU5NjQxMTAvBgNVBAUTKDdCNzIxMzg4RkQxM0U4QUU0M0M5N0YwMzAxOTgxRDIy OTJDODg4OTcwHhcNMjYwMzAyMjEyNzIwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MDBiOC1iZGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaMCFXnOVegjZF+Pf8KAmSZBgAdiGAX/OR4UmMqzHG84F7kmFlJGEd4MVHyE rKdydNZ5qy299QCs0ksc7SGS1G4kVVnOxLPe9CvkOVDzauDWppHhcQbiGHSoRtz5 mMm9LgEPfHkzKpdp7Cst+GcS2AW00wpELe5JhbvAYC6MIjn9iDt5PiVitQMJlx5e HvpsVMa2BF7euvfbhxLQ2lDQ31JoPYNjCOSFs6zG+5vTV9Nqoakhc7PRvUS5ewVF 8qvez9NZ/JnVNkAhTR6mcHw0rDn7dOMh/cyH08h29fwl+GSV3uduQ+Gr5XNkcAyj 95oDnkTlRLYD8iiTWbzFuMQmWQIDAQABo4ICjTCCAokwHQYDVR0OBBYEFP70Odui wFfxvHE0RIJRjQlL4I/hMB8GA1UdIwQYMBaAFHtyE4j9E+iuQ8l/AwGYHSKSyIiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTk2NC9FRkMyQ0NCQzI3 MEYxMUVCQURFNkMwMTlDNEY5QUUwMi9lM0lUaVAwVDZLNUR5WDhEQVpnZElwTElp SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzSVRpUDBUNks1RHlYOERBWmdkSXBMSWlKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTU5NjQvRUZDMkNDQkMyNzBGMTFFQkFERTZDMDE5QzRGOUFFMDIvRkFGQzcxMkM0 ODU2MTFFREI3MTNDNTIyQzRGOUFFMDIucm9hMEwGCCsGAQUFBwEHAQH/BD0wOzAq BAIAATAkAwQCZ0XUAwQBZ5TuAwQCZ8QwAwQCcR6cAwQCcR7kAwQDeTLYMA0EAgAC MAcDBQAkBsFAMA0GCSqGSIb3DQEBCwUAA4IBAQCK7ogh3kmah0qqKtIvgySMeDpJ Judl17LwG/imPcv8rgK9aIUz6dMn81fN2He3xeSoA0ZIRWngH+e3xrNhNuniPNRl vU96pzbWRTmi4635B5fnNfvL0h+crO5sCRLi6ePf9mM/WKXNOiRg1Ah24PWFAZao Aji3TIuHjiMRE6p5dMzVkkUukAynd6Y2JaQigB+CuOFPCF9IH7JLhRAdSu0a9j7R zwFooEMAU/pyUsm2yMjw0Vjr/NyuRzTgUrVU7F9LD3kyO/U3iLW+hSYNjFXqCKKp cCVsl8oFKaN18TyQSgM4BVSn8HiuJW1J7YcEZPI3x2gRvaSFEnp4UK892rZS -----END CERTIFICATE-----Generated at Thu Mar 26 14:07:02 2026 by rpki-client