$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa File: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (raw, json) Hash identifier: NMXSh4M1f9PUVYv8eikRIhD24GRVnVb8u5tWxsJCUME= Subject key identifier: 7B:CF:ED:A6:76:E6:98:6D:0D:F8:8E:67:38:F9:4C:A4:B2:A1:8A:B1 Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: D2 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:24:40 +0000 ROA not before: Thu 16 Oct 2025 09:10:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153680 IP address blocks: 163.223.56.0/24 maxlen: 24 2001:df5:3340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Oct 16 09:10:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59da8-e210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e8:59:b8:ec:e5:b1:5e:a7:50:b3:98:8e:10: 86:fd:72:3b:3d:e4:71:17:23:48:c8:64:10:24:4c: a5:0a:72:69:4c:d1:62:b5:38:44:22:e7:26:c3:7f: cd:ba:4a:cd:a2:ce:10:fb:76:fe:78:44:be:e4:b3: 08:b0:8c:2f:75:c9:1e:a4:f1:e0:9d:cd:88:43:25: 8c:b5:2e:8e:3e:3d:ab:39:18:5f:22:ee:2b:cc:ff: 74:57:42:80:03:60:bc:43:47:c9:14:c7:3d:5a:c9: 1a:a6:94:a4:75:13:a7:30:81:db:5c:7f:c4:ae:cb: dd:59:ab:91:7f:1e:f9:2c:77:41:8f:1b:ca:33:68: 04:43:b7:ec:8f:9f:d2:df:81:f8:f1:8a:50:ba:d1: 60:4a:3c:54:e3:1c:f5:25:68:e4:04:4d:b6:35:f3: c3:4f:a0:7c:c4:71:12:d9:a9:32:79:42:61:3e:da: 67:4d:c8:68:1a:a9:7c:8d:82:43:98:6a:9d:81:ed: b4:bc:a6:11:a6:de:1f:c3:fb:51:98:3d:28:83:54: 29:b1:ac:80:c6:9b:30:01:5a:03:fb:0e:5a:59:1c: b9:a5:79:be:22:3b:19:9e:7c:5f:f4:5d:10:47:e0: f5:a5:9d:3d:38:b9:fb:a0:17:33:a6:c7:01:c9:a2: 57:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CF:ED:A6:76:E6:98:6D:0D:F8:8E:67:38:F9:4C:A4:B2:A1:8A:B1 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.56.0/24 IPv6: 2001:df5:3340::/48 Signature Algorithm: sha256WithRSAEncryption a0:c0:1c:9c:7b:b7:95:95:6e:2c:48:ae:5d:af:ef:e4:c0:66: a8:ef:6d:94:0f:9d:2a:2b:d9:b2:34:ac:c1:c9:91:c7:66:d5: 77:36:b5:94:ef:c3:7b:73:55:83:8f:ce:53:5f:8f:1f:40:7f: 74:a4:d1:bc:71:6e:97:74:d2:4c:2b:7e:0e:c8:4e:6e:c4:da: 1d:85:ec:25:a2:84:3e:51:c0:0d:95:f6:30:2e:e0:87:e8:a6: f1:e1:ba:a3:de:75:7a:49:05:10:cc:8b:d3:3e:e9:98:fa:09: b6:fa:ed:8b:b4:0a:ee:1f:3b:2e:e7:61:89:cc:f6:a9:17:73: b2:c7:17:1f:6b:b4:e7:f4:f1:c2:54:eb:1a:4d:02:b6:77:7b: 92:05:f4:43:f1:7e:13:ee:ad:e0:ff:24:c0:3a:89:30:95:0a: b2:6a:e9:69:5f:f2:ba:62:a2:85:20:02:3b:8c:f8:5b:b1:2b: 53:8e:b8:1f:36:ab:9b:55:73:1a:c4:95:f9:21:f4:96:d1:93: 5a:66:19:84:b9:5c:60:46:54:7a:77:a6:c0:ae:f5:46:9e:33: 3a:7f:14:cb:07:d2:5e:c0:a8:e2:5e:f3:1f:83:8b:0f:2b:4c: 21:8c:d8:63:7e:ec:a0:e0:f1:b6:ad:8e:a7:fc:38:f3:46:7f: 63:58:70:1d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjUxMDE2MDkxMDQwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWRhOC1lMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OhZuOzlsV6nULOYjhCG/XI7PeRxFyNIyGQQJEylCnJpTNFitThEIucmw3/N ukrNos4Q+3b+eES+5LMIsIwvdckepPHgnc2IQyWMtS6OPj2rORhfIu4rzP90V0KA A2C8Q0fJFMc9WskappSkdROnMIHbXH/ErsvdWauRfx75LHdBjxvKM2gEQ7fsj5/S 34H48YpQutFgSjxU4xz1JWjkBE22NfPDT6B8xHES2akyeUJhPtpnTchoGql8jYJD mGqdge20vKYRpt4fw/tRmD0og1QpsayAxpswAVoD+w5aWRy5pXm+IjsZnnxf9F0Q R+D1pZ09OLn7oBczpscByaJXEwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHvP7aZ2 5phtDfiOZzj5TKSyoYqxMB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4NTAvN0IzQjM3RDQwMTg2MTFGMEIwNUI0QzU5QzRGOUFFMDIvRkM3RjEyMUFB QTZGMTFGMEJDRkVCRDYzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAo984MA8EAgACMAkDBwAgAQ31M0AwDQYJKoZIhvcNAQELBQADggEB AKDAHJx7t5WVbixIrl2v7+TAZqjvbZQPnSor2bI0rMHJkcdm1Xc2tZTvw3tzVYOP zlNfjx9Af3Sk0bxxbpd00kwrfg7ITm7E2h2F7CWihD5RwA2V9jAu4IfopvHhuqPe dXpJBRDMi9M+6Zj6Cbb67Yu0Cu4fOy7nYYnM9qkXc7LHFx9rtOf08cJU6xpNArZ3 e5IF9EPxfhPureD/JMA6iTCVCrJq6Wlf8rpiooUgAjuM+FuxK1OOuB82q5tVcxrE lfkh9JbRk1pmGYS5XGBGVHp3psCu9UaeMzp/FMsH0l7AqOJe8x+Diw8rTCGM2GN+ 7KDg8batjqf8OPNGf2NYcB0= -----END CERTIFICATE-----Generated at Thu Mar 26 08:41:40 2026 by rpki-client