$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/FA4555AA93DC11EEB00AF628C4F9AE02.roa File: FA4555AA93DC11EEB00AF628C4F9AE02.roa (raw, json) Hash identifier: 9LCP0XK17s7on70+9Q+k6wX5exKsDHgO/FsKmRG7g9I= Subject key identifier: 05:D2:E1:CA:41:8D:4C:0B:B1:10:82:11:75:C0:C3:C5:FF:3C:D5:B8 Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1F86 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/FA4555AA93DC11EEB00AF628C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:24:55 +0000 ROA not before: Fri 12 Dec 2025 16:13:43 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134729 IP address blocks: 43.92.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8070 (0x1f86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Dec 12 16:13:43 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48477-bfc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:34:6d:a8:4b:d1:62:80:2b:a1:29:44:2b:95: 53:87:ae:4f:e7:1d:f4:cc:a3:af:37:32:2c:ee:3f: 46:fa:fa:ff:cd:94:96:b7:10:9e:25:7d:88:e6:18: 7f:10:b0:c5:1a:11:c5:9b:5c:37:5a:b7:f9:87:dd: 79:33:dc:35:fa:1e:35:78:59:ec:e2:5b:37:21:8f: 67:fa:9a:ad:72:d1:2a:5f:ca:96:f1:e1:f2:a1:53: 2e:a2:f2:a2:96:18:bd:ef:f6:a6:ea:87:71:d4:7a: ef:3e:54:0e:56:66:17:f3:9f:a9:96:d3:ee:e1:47: c8:9a:ef:a8:01:9a:45:7b:f9:62:66:c0:e6:a8:fa: 5b:46:d2:21:1d:85:8d:d0:41:06:82:e2:85:c7:80: 6d:df:ac:14:a2:59:db:8b:d0:99:2a:00:88:2a:07: 22:41:09:f3:ca:a6:ff:bd:fc:b1:43:f5:f1:11:0c: 1e:6e:53:55:f0:bf:f8:a8:32:b1:9d:8b:23:6d:e1: ca:17:98:db:ac:50:77:00:69:7b:a8:c7:18:af:4a: b7:85:d9:88:52:7e:33:3f:de:25:43:53:a4:36:fc: 29:b1:11:dd:75:55:b5:9a:b8:74:3c:73:cd:cc:7f: 3d:2e:16:d6:b3:fb:04:eb:17:3f:59:62:39:cf:3f: 34:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D2:E1:CA:41:8D:4C:0B:B1:10:82:11:75:C0:C3:C5:FF:3C:D5:B8 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/FA4555AA93DC11EEB00AF628C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.92.224.0/19 Signature Algorithm: sha256WithRSAEncryption 83:70:6f:5d:82:51:f5:74:7c:90:b6:db:08:d1:21:6f:19:bf: e1:9e:0e:e9:3e:e5:a3:4b:65:0f:04:5f:9d:4d:6d:90:d2:5a: 8f:62:0c:42:99:a9:bb:1a:6c:73:ea:4d:9b:f9:62:5d:80:e5: 2b:c5:6d:c7:e6:91:ce:3e:c8:f3:51:de:97:f2:6e:e5:3a:57: 5d:fe:a3:f4:f4:27:b9:f7:e5:3a:b5:e8:a3:ad:39:b2:16:3c: f8:71:d2:a5:b1:86:93:fe:6f:9c:49:49:0b:32:4e:86:97:bc: 2c:ac:e6:91:e7:7f:f9:7d:86:af:03:f7:3d:45:23:2c:03:ba: 46:5a:be:92:97:65:76:c4:79:72:b8:9f:e1:8b:32:ac:64:bb: c5:a8:d5:07:c5:3e:6e:16:7c:f9:1c:b6:90:2a:ca:8c:e2:57: 62:1e:bf:58:84:0c:ba:e8:54:27:2f:5c:20:45:e6:01:20:be: da:2c:b4:46:11:a5:05:28:61:c1:81:e2:8e:e0:cc:15:6e:bc: 92:53:3c:4d:12:72:95:6d:60:c3:bc:81:3a:f1:11:ba:07:a7: e9:23:95:3f:d1:da:e9:23:05:35:19:80:a6:46:f5:d0:ef:a5: 50:ed:a0:bd:0d:8b:58:c1:89:51:2a:fa:c4:da:ec:cd:36:29: b2:c5:7e:a6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICH4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUxMjEyMTYxMzQzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQ3Ny1iZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTRtqEvRYoAroSlEK5VTh65P5x30zKOvNzIs7j9G+vr/zZSWtxCeJX2I5hh/ ELDFGhHFm1w3Wrf5h915M9w1+h41eFns4ls3IY9n+pqtctEqX8qW8eHyoVMuovKi lhi97/am6odx1HrvPlQOVmYX85+pltPu4UfImu+oAZpFe/liZsDmqPpbRtIhHYWN 0EEGguKFx4Bt36wUolnbi9CZKgCIKgciQQnzyqb/vfyxQ/XxEQweblNV8L/4qDKx nYsjbeHKF5jbrFB3AGl7qMcYr0q3hdmIUn4zP94lQ1OkNvwpsRHddVW1mrh0PHPN zH89LhbWs/sE6xc/WWI5zz80jwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAXS4cpB jUwLsRCCEXXAw8X/PNW4MB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvRkE0NTU1QUE5 M0RDMTFFRUIwMEFGNjI4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFK1zgMA0GCSqGSIb3DQEBCwUAA4IBAQCDcG9dglH1dHyQttsI0SFv Gb/hng7pPuWjS2UPBF+dTW2Q0lqPYgxCmam7Gmxz6k2b+WJdgOUrxW3H5pHOPsjz Ud6X8m7lOldd/qP09Ce59+U6teijrTmyFjz4cdKlsYaT/m+cSUkLMk6Gl7wsrOaR 53/5fYavA/c9RSMsA7pGWr6Sl2V2xHlyuJ/hizKsZLvFqNUHxT5uFnz5HLaQKsqM 4ldiHr9YhAy66FQnL1wgReYBIL7aLLRGEaUFKGHBgeKO4MwVbrySUzxNEnKVbWDD vIE68RG6B6fpI5U/0drpIwU1GYCmRvXQ76VQ7aC9DYtYwYlRKvrE2uzNNimyxX6m -----END CERTIFICATE-----Generated at Fri Mar 13 05:24:21 2026 by rpki-client