$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa File: B46F239C6A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: SzlEPDJi9zAc0zG3xIXsTR02HbNoFM1IdbpFsslC/FY= Subject key identifier: CB:2E:8B:00:4B:72:3B:57:38:29:A9:B9:0D:A7:51:5A:F3:88:19:98 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 07ED Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:42:14 +0000 ROA not before: Thu 30 Oct 2025 22:12:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9269 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2029 (0x7ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 30 22:12:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a47a76-6d0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:62:a7:be:3d:4b:91:22:80:df:c6:77:d2:94: e6:90:35:54:c3:71:f8:79:95:8d:ae:71:8e:c4:b8: 24:b4:ca:2f:d7:68:cf:3a:2c:ee:b9:b3:03:2b:80: 61:79:65:c8:4d:84:50:49:1e:10:72:58:c7:64:f2: 72:2f:ae:ee:77:85:c5:dc:f6:83:20:73:be:75:9b: 3d:10:e2:f6:ad:5a:69:a2:d0:9f:d3:b9:a3:59:f9: 72:50:bd:92:a8:b4:97:7a:75:9e:bb:07:31:ab:60: 21:3f:e5:ae:c5:d3:46:a8:44:a9:c6:8e:39:96:99: 4f:9f:5e:32:9a:e0:69:66:dc:ff:c8:69:7d:4a:b1: 1a:44:41:c4:ce:0c:c4:28:1e:13:26:27:aa:d4:ad: dd:f0:0a:09:d9:09:6e:60:ae:e0:dc:cf:a0:14:d1: 2b:8b:00:e0:eb:e7:c7:c3:40:16:72:9c:01:48:75: 43:80:9b:d0:43:6c:71:05:ed:38:79:46:43:a1:05: f0:66:67:36:cb:70:42:58:23:b6:a7:3d:99:c1:d5: 37:8b:55:bf:60:9a:2a:72:91:48:af:5d:d2:3b:4b: 95:c8:b3:e6:16:7f:9f:b8:3f:fd:51:cd:d1:7a:d6: d1:a1:90:7e:f4:88:0c:fd:19:64:f4:fd:88:8a:3c: 90:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2E:8B:00:4B:72:3B:57:38:29:A9:B9:0D:A7:51:5A:F3:88:19:98 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 16:67:3b:bd:24:66:39:70:97:d6:21:ad:4d:42:82:3c:00:b3: 95:2f:73:b3:e4:20:2e:69:f5:a4:d8:92:69:64:8a:a8:36:7e: 44:d6:d1:51:d2:2d:8d:9a:bb:e8:d0:70:d5:80:4e:81:e6:e3: 31:47:e6:77:3b:11:70:3c:94:50:86:e6:c5:2a:30:cd:2f:08: eb:45:41:52:9a:90:7e:cd:b8:3e:d5:66:7f:be:38:59:8c:92: f7:f1:46:49:67:4c:33:3e:f8:76:9c:44:ba:45:25:7d:d6:d1: f9:a4:f5:88:c4:53:42:bd:19:d8:86:60:f1:be:04:bc:3c:86: cd:86:1d:f6:13:6d:31:00:d1:73:d4:02:58:06:63:52:56:78: 59:24:c2:27:57:1b:6e:39:d4:3f:5b:e1:09:43:e4:65:dd:87: 50:b9:80:2f:06:7e:9d:58:29:46:c7:1f:4e:66:6e:7c:e7:1a: 3e:45:b9:64:ce:ea:36:71:9b:bb:73:50:eb:14:92:76:f1:7d: 30:a8:ae:16:d2:b1:ee:2c:ac:74:49:53:f6:e1:96:cc:4f:b2: b0:1f:34:38:d3:b1:2d:f5:ff:6a:af:cf:8b:05:9c:5c:f7:c8: a6:6b:0e:9a:0f:98:8b:f6:6f:0f:88:46:0d:f0:5d:4e:d3:8e: 57:16:e8:cd -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDMwMjIxMjA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E3Ni02ZDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjmKnvj1LkSKA38Z30pTmkDVUw3H4eZWNrnGOxLgktMov12jPOizuubMDK4Bh eWXITYRQSR4QcljHZPJyL67ud4XF3PaDIHO+dZs9EOL2rVppotCf07mjWflyUL2S qLSXenWeuwcxq2AhP+WuxdNGqESpxo45lplPn14ymuBpZtz/yGl9SrEaREHEzgzE KB4TJieq1K3d8AoJ2QluYK7g3M+gFNEriwDg6+fHw0AWcpwBSHVDgJvQQ2xxBe04 eUZDoQXwZmc2y3BCWCO2pz2ZwdU3i1W/YJoqcpFIr13SO0uVyLPmFn+fuD/9Uc3R etbRoZB+9IgM/Rlk9P2IijyQOwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMsuiwBL cjtXOCmpuQ2nUVrziBmYMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjQ2RjIzOUM2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMGkGCCsGAQUFBwEHAQH/BFowWDBH BAIAATBBAwQHOkCAAwMAO7wDBAJnVCADBAdxCoADBAd7AYADBAHAvFIDBAHKBKID BAbLYoADBAbLsMADBAbS0UADBAfS9YAwDQQCAAIwBwMFACQBSgAwDQYJKoZIhvcN AQELBQADggEBABZnO70kZjlwl9YhrU1CgjwAs5Uvc7PkIC5p9aTYkmlkiqg2fkTW 0VHSLY2au+jQcNWAToHm4zFH5nc7EXA8lFCG5sUqMM0vCOtFQVKakH7NuD7VZn++ OFmMkvfxRklnTDM++HacRLpFJX3W0fmk9YjEU0K9GdiGYPG+BLw8hs2GHfYTbTEA 0XPUAlgGY1JWeFkkwidXG2451D9b4QlD5GXdh1C5gC8Gfp1YKUbHH05mbnznGj5F uWTO6jZxm7tzUOsUknbxfTCorhbSse4srHRJU/bhlsxPsrAfNDjTsS31/2qvz4sF nFz3yKZrDpoPmIv2bw+IRg3wXU7TjlcW6M0= -----END CERTIFICATE-----Generated at Mon Mar 2 06:19:56 2026 by rpki-client