$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa File: B34D07906A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: TXZ7H4bYoa2tMoTjTtlYu/ju1DHWYH5bM4fA2XxysBg= Subject key identifier: 23:2C:25:10:0E:3B:7A:4B:39:6C:E4:22:C1:41:C4:87:A5:FF:4B:14 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 07EA Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:42:10 +0000 ROA not before: Thu 30 Oct 2025 22:12:06 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17444 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 30 22:12:06 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a47a72-9730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2c:8d:d2:35:d2:e5:d2:2e:76:b3:9a:b3:3f: 9c:e4:7a:ef:6b:e5:3e:ab:31:7c:fb:6b:86:66:32: 9e:2f:3c:97:31:9a:87:6b:28:32:2f:ee:4d:e2:44: 2d:f3:15:89:57:4f:44:98:4f:8f:01:b9:eb:cd:7b: 0e:84:c5:1e:65:45:4c:ac:89:a0:14:f2:8e:4a:60: aa:b3:d0:3e:47:1a:58:10:1c:12:1d:6b:c1:b3:f5: 37:3d:09:b8:d1:3d:29:89:4c:11:3b:44:5e:68:ec: 43:fd:26:2c:4d:ee:14:8c:10:f0:4a:b7:cf:55:bd: 67:e2:c6:e1:99:be:74:67:f4:cf:c4:fb:ab:64:12: 74:14:8f:24:ed:45:5c:7c:e5:70:cb:48:c8:da:ce: 35:58:f9:35:04:4f:c3:84:86:67:ce:4b:b1:fb:8f: 8c:63:03:35:07:7e:5e:80:b2:5b:19:2f:4d:43:71: f6:3b:f9:2c:be:d3:9c:68:21:82:1a:50:78:d3:1d: 03:cf:89:05:62:11:24:9d:5a:a8:84:45:f1:64:75: 66:94:0f:2e:55:c4:27:0c:58:15:31:26:f0:22:ff: e7:87:b3:82:f1:c9:4b:1e:5e:90:80:e4:78:41:d1: e2:0c:6f:f6:7a:6d:08:85:2b:ed:cb:ec:cd:8e:67: 8f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:2C:25:10:0E:3B:7A:4B:39:6C:E4:22:C1:41:C4:87:A5:FF:4B:14 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 60:86:f2:3c:29:d0:0c:d6:17:1d:84:93:42:a7:65:bc:5c:77: 98:f9:60:cc:3c:98:31:de:ed:57:0b:e9:96:82:fd:1c:cc:82: 63:31:7a:4f:3f:6b:dc:aa:96:33:3a:7a:57:c4:9e:b3:73:b6: 8c:76:68:ba:42:8b:e5:92:88:fd:8b:12:d2:bf:14:e9:01:cb: 7e:d6:a0:db:f4:13:bf:f3:fb:f6:56:94:fc:e3:99:a0:49:62: 75:ea:52:d8:2a:fe:1e:f0:cf:96:f7:7f:d1:2b:5e:24:19:1e: 58:3f:a3:43:86:6f:b3:af:31:b3:d7:69:79:18:c7:fc:52:67: 20:71:7d:d8:a0:dc:18:35:0f:ea:0e:62:e1:2d:41:fd:3b:80: d9:8b:46:c6:c4:a1:2a:05:29:4b:62:14:fb:58:4f:d5:70:1a: c7:e1:03:d2:59:1c:7d:d7:00:5b:7c:eb:08:ff:08:44:d5:d6: 13:93:00:6d:df:93:c9:5e:64:f5:8e:01:dc:77:14:d9:93:22: 39:04:bb:00:a2:52:f7:89:dc:86:3c:db:2e:99:fe:9a:03:b1: 94:e3:f7:09:48:6f:80:49:80:87:c9:34:b0:bc:a5:64:c1:ff: 49:fe:3b:90:da:29:36:cb:44:2d:db:80:34:ca:2a:35:2c:c7: 92:a4:81:08 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDMwMjIxMjA2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E3Mi05NzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSyN0jXS5dIudrOasz+c5Hrva+U+qzF8+2uGZjKeLzyXMZqHaygyL+5N4kQt 8xWJV09EmE+PAbnrzXsOhMUeZUVMrImgFPKOSmCqs9A+RxpYEBwSHWvBs/U3PQm4 0T0piUwRO0ReaOxD/SYsTe4UjBDwSrfPVb1n4sbhmb50Z/TPxPurZBJ0FI8k7UVc fOVwy0jI2s41WPk1BE/DhIZnzkux+4+MYwM1B35egLJbGS9NQ3H2O/ksvtOcaCGC GlB40x0Dz4kFYhEknVqohEXxZHVmlA8uVcQnDFgVMSbwIv/nh7OC8clLHl6QgOR4 QdHiDG/2em0IhSvty+zNjmeP/wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCMsJRAO O3pLOWzkIsFBxIel/0sUMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjM0RDA3OTA2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMGkGCCsGAQUFBwEHAQH/BFowWDBH BAIAATBBAwQHOkCAAwMAO7wDBAJnVCADBAdxCoADBAd7AYADBAHAvFIDBAHKBKID BAbLYoADBAbLsMADBAbS0UADBAfS9YAwDQQCAAIwBwMFACQBSgAwDQYJKoZIhvcN AQELBQADggEBAGCG8jwp0AzWFx2Ek0KnZbxcd5j5YMw8mDHe7VcL6ZaC/RzMgmMx ek8/a9yqljM6elfEnrNztox2aLpCi+WSiP2LEtK/FOkBy37WoNv0E7/z+/ZWlPzj maBJYnXqUtgq/h7wz5b3f9ErXiQZHlg/o0OGb7OvMbPXaXkYx/xSZyBxfdig3Bg1 D+oOYuEtQf07gNmLRsbEoSoFKUtiFPtYT9VwGsfhA9JZHH3XAFt86wj/CETV1hOT AG3fk8leZPWOAdx3FNmTIjkEuwCiUveJ3IY82y6Z/poDsZTj9wlIb4BJgIfJNLC8 pWTB/0n+O5DaKTbLRC3bgDTKKjUsx5KkgQg= -----END CERTIFICATE-----Generated at Mon Mar 2 14:27:30 2026 by rpki-client