$ rpki-client -vvf rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/FC5AFF000BE011ED9E3AA135C4F9AE02.roa File: FC5AFF000BE011ED9E3AA135C4F9AE02.roa (raw, json) Hash identifier: DYt1uh7mPGDQjto9yPvu3WUF/A198ZNwxi2I+7nO8Bw= Subject key identifier: 9B:0C:97:D7:12:15:79:BA:12:F8:6C:93:42:AB:76:11:F6:FF:AA:8D Certificate issuer: /CN=A918F20B/serialNumber=7703A6D56C718021BD9C89EB3C4BED817ED56AE5 Certificate serial: 044F Authority key identifier: 77:03:A6:D5:6C:71:80:21:BD:9C:89:EB:3C:4B:ED:81:7E:D5:6A:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwOm1WxxgCG9nInrPEvtgX7VauU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/FC5AFF000BE011ED9E3AA135C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:03:04 +0000 ROA not before: Wed 27 Aug 2025 01:06:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133861 IP address blocks: 43.242.128.0/24 maxlen: 24 43.242.129.0/24 maxlen: 24 43.242.130.0/24 maxlen: 24 43.242.131.0/24 maxlen: 24 103.251.88.0/24 maxlen: 24 103.251.89.0/24 maxlen: 24 103.251.90.0/24 maxlen: 24 103.251.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/dwOm1WxxgCG9nInrPEvtgX7VauU.crl rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/dwOm1WxxgCG9nInrPEvtgX7VauU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwOm1WxxgCG9nInrPEvtgX7VauU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 23:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F20B, serialNumber=7703A6D56C718021BD9C89EB3C4BED817ED56AE5 Validity Not Before: Aug 27 01:06:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a45528-b6c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:94:90:98:46:18:a7:39:17:d7:cb:64:33:df: b7:a3:7a:18:e6:0f:fa:2d:02:db:26:48:00:d9:af: c4:c7:5d:1b:1b:19:2d:a3:cb:df:be:83:fe:94:e2: df:23:cf:3f:93:ca:fa:ef:08:2b:e2:0e:d1:12:5f: c8:e5:c2:8c:50:e8:32:21:a0:31:32:b7:c5:a6:ed: ec:9a:3e:1e:ce:19:7b:eb:66:25:93:10:b8:3f:7d: 64:83:d1:12:38:41:d9:62:89:b9:b4:a8:c5:ee:6d: ee:59:6c:92:b7:4e:4f:3d:1d:a1:c6:dc:2f:20:f6: d9:c2:11:50:dc:d1:2e:3a:7a:5b:34:5c:fb:e9:6b: 5d:c1:12:2e:84:ba:61:6a:11:07:cd:66:8e:3e:58: 2d:d3:77:17:ef:74:60:1d:50:cd:54:f5:40:b5:07: b9:59:6f:15:94:45:f5:ed:e2:f9:9a:3e:7b:ec:2e: 6f:d4:53:b1:83:e4:fd:5d:db:83:3c:fd:b2:b1:3d: d4:da:b6:b8:13:83:e1:29:6a:94:52:81:ef:ad:af: 78:39:be:b3:33:e0:1b:9a:98:db:88:91:34:f9:7d: 67:fe:c9:11:72:04:bb:a5:fd:b0:6b:41:58:5d:8d: 7c:aa:e1:f1:cb:9f:70:b3:4f:21:fa:1c:22:09:63: bd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0C:97:D7:12:15:79:BA:12:F8:6C:93:42:AB:76:11:F6:FF:AA:8D X509v3 Authority Key Identifier: keyid:77:03:A6:D5:6C:71:80:21:BD:9C:89:EB:3C:4B:ED:81:7E:D5:6A:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/dwOm1WxxgCG9nInrPEvtgX7VauU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwOm1WxxgCG9nInrPEvtgX7VauU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/FC5AFF000BE011ED9E3AA135C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.242.128.0/22 103.251.88.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:02:21:79:aa:75:36:2a:af:71:da:58:1a:b2:61:78:56:dd: 9a:50:1c:bb:50:7a:80:5c:d2:81:d5:f8:d4:cf:a4:8f:cd:d9: a0:45:8d:9c:2a:82:a7:1f:b6:d4:79:76:54:b4:70:01:2c:46: 8c:d6:48:a0:1b:a1:19:2e:24:9c:8f:6d:cc:aa:0c:33:16:d5: e1:72:b2:d5:cd:5d:a9:1f:6f:03:92:c2:4e:20:ce:e1:51:37: 99:7a:59:6a:e1:b7:dc:8c:3e:35:ff:4b:7e:63:16:9f:5c:6b: 5a:97:a0:39:46:2e:81:d4:04:4d:19:04:4b:15:5f:d5:9b:ee: c6:83:28:26:1e:94:c9:40:fd:80:ef:26:79:98:5d:19:af:6d: f8:d3:f0:fc:1d:76:82:08:c0:55:2a:a3:9d:40:44:13:38:ad: 0f:b6:29:3d:88:0d:ce:3e:d9:b6:06:6e:9f:06:2d:24:2c:93: 5a:c3:ee:2b:88:af:ae:ec:36:c7:53:31:a6:a0:32:83:a1:67: e6:45:21:82:9e:54:0a:d5:31:e0:42:69:c8:92:a7:d6:d8:e8: b6:7d:1e:be:0e:d2:5f:91:84:ab:54:a2:be:ff:e5:11:c7:b3: 15:e3:3f:fe:d6:23:28:8f:08:7b:50:bf:58:ca:42:f2:a4:7f: fe:42:ef:fa -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYyMEIxMTAvBgNVBAUTKDc3MDNBNkQ1NkM3MTgwMjFCRDlDODlFQjNDNEJFRDgx N0VENTZBRTUwHhcNMjUwODI3MDEwNjQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTUyOC1iNmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlpSQmEYYpzkX18tkM9+3o3oY5g/6LQLbJkgA2a/Ex10bGxkto8vfvoP+lOLf I88/k8r67wgr4g7REl/I5cKMUOgyIaAxMrfFpu3smj4ezhl762YlkxC4P31kg9ES OEHZYom5tKjF7m3uWWySt05PPR2hxtwvIPbZwhFQ3NEuOnpbNFz76WtdwRIuhLph ahEHzWaOPlgt03cX73RgHVDNVPVAtQe5WW8VlEX17eL5mj577C5v1FOxg+T9XduD PP2ysT3U2ra4E4PhKWqUUoHvra94Ob6zM+AbmpjbiJE0+X1n/skRcgS7pf2wa0FY XY18quHxy59ws08h+hwiCWO9wQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJsMl9cS FXm6Evhsk0KrdhH2/6qNMB8GA1UdIwQYMBaAFHcDptVscYAhvZyJ6zxL7YF+1Wrl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjIwQi8xOUU0REJGNjk2 MEYxMUVDODkwQTQ0NkRDNEY5QUUwMi9kd09tMVd4eGdDRzluSW5yUEV2dGdYN1Zh dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3T20xV3h4Z0NHOW5JbnJQRXZ0Z1g3VmF1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEYyMEIvMTlFNERCRjY5NjBGMTFFQzg5MEE0NDZEQzRGOUFFMDIvRkM1QUZGMDAw QkUwMTFFRDlFM0FBMTM1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/KAAwQCZ/tYMA0GCSqGSIb3DQEBCwUAA4IBAQBvAiF5qnU2Kq9x 2lgasmF4Vt2aUBy7UHqAXNKB1fjUz6SPzdmgRY2cKoKnH7bUeXZUtHABLEaM1kig G6EZLiScj23MqgwzFtXhcrLVzV2pH28DksJOIM7hUTeZellq4bfcjD41/0t+Yxaf XGtal6A5Ri6B1ARNGQRLFV/Vm+7GgygmHpTJQP2A7yZ5mF0Zr2340/D8HXaCCMBV KqOdQEQTOK0Ptik9iA3OPtm2Bm6fBi0kLJNaw+4riK+u7DbHUzGmoDKDoWfmRSGC nlQK1THgQmnIkqfW2Oi2fR6+DtJfkYSrVKK+/+URx7MV4z/+1iMojwh7UL9YykLy pH/+Qu/6 -----END CERTIFICATE-----Generated at Tue Mar 24 08:15:08 2026 by rpki-client