$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa File: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (raw, json) Hash identifier: 1Lk248Kt03Gu0ojNjhSbpSSO373t7dM1LsyR+Uq6bxc= Subject key identifier: 32:15:14:29:4E:07:D4:FC:17:CE:2A:7F:1B:50:2F:DA:FF:09:92:A5 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: 016C Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:14:07 +0000 ROA not before: Sat 03 May 2025 05:12:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.37.173.0/24 maxlen: 24 2001:df3:aac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: May 3 05:12:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59b2f-e3df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:48:a8:80:a3:7a:ba:9e:f4:ec:42:78:4c:2d: 35:2e:89:1b:9c:89:49:c7:62:b5:df:52:aa:66:ed: 75:ce:5d:c1:4a:41:e9:69:be:f0:84:6f:ae:d4:ae: 36:a4:e4:b6:0c:db:de:d0:bf:ac:c5:e8:a0:2e:01: cc:a4:48:e0:08:7e:51:e3:65:92:b6:91:90:67:9e: 42:b3:2f:55:5d:84:b8:d8:89:2f:29:a5:6f:fd:2e: 9b:6b:52:87:04:fc:30:9e:a4:e3:05:63:08:96:a2: e5:95:9f:88:28:b4:94:38:bc:b9:55:41:a0:be:74: 19:8a:24:33:ff:91:80:f2:9c:e4:f1:1e:70:09:cd: 66:8a:00:40:de:d5:81:62:46:71:e8:e5:7a:47:51: 9c:1b:be:0d:74:38:84:2f:3d:34:9e:09:c7:44:c4: e9:98:f3:ce:95:a5:4f:d6:0c:ee:8b:e0:5e:69:a1: 0f:f2:1d:62:dd:0c:99:51:cf:b6:cc:61:3a:0c:2f: b4:50:68:f7:ff:a5:d2:fd:4a:49:17:34:b7:dc:b4: be:6b:03:fd:83:63:8c:03:a5:1b:cf:03:27:e9:18: 10:ac:b2:7a:f9:fa:c5:2d:d8:31:bc:59:72:26:3f: 9c:69:62:57:37:15:df:62:54:bc:0b:56:7f:86:de: b3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:15:14:29:4E:07:D4:FC:17:CE:2A:7F:1B:50:2F:DA:FF:09:92:A5 X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.173.0/24 IPv6: 2001:df3:aac0::/48 Signature Algorithm: sha256WithRSAEncryption 2e:0a:ec:d5:a5:72:b8:cd:2c:c7:5b:07:37:c4:ea:4a:6e:56: 37:a1:e4:97:d9:17:2a:2a:83:21:78:4e:2c:01:e7:43:9f:96: 5d:cc:4d:50:69:c3:22:dd:42:85:7e:bc:78:17:c1:dd:f7:5e: 20:ab:22:ed:d3:28:91:8b:e8:7e:5d:27:26:6f:1e:ba:99:28: 1b:cb:59:59:9f:89:12:be:44:16:69:dd:f1:d2:c0:51:c2:ae: 59:a3:37:74:01:b0:e1:d1:ee:12:87:86:5a:e1:ae:cf:0c:a5: 46:f4:8c:27:76:e7:fe:3c:7a:65:27:ce:20:b6:35:47:db:17: a2:50:6a:26:28:8d:5c:ef:26:52:d9:a4:2b:a8:b0:22:d9:88: 12:d8:62:b1:7c:d6:d3:70:96:4b:a2:50:b3:db:4b:13:01:f3: 0f:eb:3e:ac:c3:60:24:71:08:c3:18:d1:46:d3:e1:96:ba:d2: dd:85:0e:c1:33:0a:90:d3:75:ce:ea:c7:63:52:18:9c:81:85: 86:74:fb:a1:bd:d3:81:20:94:69:b1:33:0f:ff:82:64:98:46: 0d:95:57:7f:13:66:ed:36:74:10:74:eb:d9:d7:18:e1:7e:13: cd:02:e5:0c:55:b1:08:45:54:ba:de:25:b7:52:2b:88:7f:65: a6:41:50:d9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjUwNTAzMDUxMjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWIyZi1lM2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50iogKN6up707EJ4TC01LokbnIlJx2K131KqZu11zl3BSkHpab7whG+u1K42 pOS2DNve0L+sxeigLgHMpEjgCH5R42WStpGQZ55Csy9VXYS42IkvKaVv/S6ba1KH BPwwnqTjBWMIlqLllZ+IKLSUOLy5VUGgvnQZiiQz/5GA8pzk8R5wCc1migBA3tWB YkZx6OV6R1GcG74NdDiELz00ngnHRMTpmPPOlaVP1gzui+BeaaEP8h1i3QyZUc+2 zGE6DC+0UGj3/6XS/UpJFzS33LS+awP9g2OMA6UbzwMn6RgQrLJ6+frFLdgxvFly Jj+caWJXNxXfYlS8C1Z/ht6zqQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDIVFClO B9T8F84qfxtQL9r/CZKlMB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU4NDkvREJBRDM4NEVGNzlFMTFFRUE0NUFBRTJDQzRGOUFFMDIvRkEzQjVEQ0FG N0EwMTFFRUJBQzFFMDNCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyiWtMA8EAgACMAkDBwAgAQ3zqsAwDQYJKoZIhvcNAQELBQADggEB AC4K7NWlcrjNLMdbBzfE6kpuVjeh5JfZFyoqgyF4TiwB50Ofll3MTVBpwyLdQoV+ vHgXwd33XiCrIu3TKJGL6H5dJyZvHrqZKBvLWVmfiRK+RBZp3fHSwFHCrlmjN3QB sOHR7hKHhlrhrs8MpUb0jCd25/48emUnziC2NUfbF6JQaiYojVzvJlLZpCuosCLZ iBLYYrF81tNwlkuiULPbSxMB8w/rPqzDYCRxCMMY0UbT4Za60t2FDsEzCpDTdc7q x2NSGJyBhYZ0+6G904EglGmxMw//gmSYRg2VV38TZu02dBB069nXGOF+E80C5QxV sQhFVLreJbdSK4h/ZaZBUNk= -----END CERTIFICATE-----Generated at Thu Mar 26 03:28:53 2026 by rpki-client