$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa File: B57F14B86A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: 7g2GzMpbsXg0SC1u5pI0BA7KwxetbBq/6LlcQTkxPZY= Subject key identifier: ED:A4:16:94:54:80:D4:0E:B7:48:32:19:2E:40:5D:81:9D:BF:A9:36 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 07EF Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:42:16 +0000 ROA not before: Thu 30 Oct 2025 22:12:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9381 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2031 (0x7ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 30 22:12:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a47a78-a221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1f:7d:14:75:b1:ea:28:c7:19:34:2d:08:7a: 3f:1e:30:ef:ed:9a:70:6a:d2:7c:2e:d7:39:c8:b0: ee:e1:74:82:7a:f8:2a:87:ae:db:57:b5:e7:7b:50: a7:23:e0:4c:ea:15:c5:2e:b3:36:4d:9a:0a:26:87: 53:8c:34:ac:5c:5b:68:3a:b1:68:a9:05:b8:a4:f8: 10:5b:b2:29:ad:d1:c6:26:0d:a0:6b:ac:e4:37:26: 49:7a:dc:d0:2a:f8:cd:f1:1f:88:da:44:09:43:94: da:0f:1f:d0:39:f1:da:82:be:80:ba:b0:ec:94:72: c9:34:5e:45:69:bf:16:e3:d5:eb:ab:3b:f8:ca:a3: 69:dd:dd:f4:db:15:cf:88:32:0c:b2:9c:f4:ad:8e: d6:75:64:bf:3a:33:71:d0:57:35:1f:f0:99:3a:75: 4b:6c:7c:d3:96:5c:59:f5:a3:10:d8:d6:68:70:4a: 5e:62:96:01:79:96:3f:ae:01:58:16:ef:ec:5c:3d: 03:ff:58:38:e6:26:bc:be:84:0c:9b:58:46:dd:8f: e3:7e:fd:c3:ba:95:19:95:f5:b8:d2:01:2e:3b:86: a2:e1:b0:1e:3d:e8:48:34:af:c8:2c:db:77:4d:04: 76:81:6e:cb:f9:84:31:f5:de:41:d6:50:9f:7f:b1: eb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A4:16:94:54:80:D4:0E:B7:48:32:19:2E:40:5D:81:9D:BF:A9:36 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 54:34:fc:9b:8a:45:c9:ee:76:b2:82:f8:3a:08:56:88:35:3e: c9:3a:f7:ae:60:8d:9d:e7:28:5a:31:e4:78:d5:ac:87:f8:82: 2c:19:63:63:26:d4:44:88:bc:7e:3e:1a:93:27:48:c3:55:a0: c7:08:4b:1d:25:7a:44:87:61:a9:5b:ef:aa:56:e1:4f:90:4b: aa:6c:7f:15:b6:a1:36:87:a9:ff:f4:a9:3d:2f:e0:30:54:78: a8:a1:81:8e:52:79:c7:16:f1:df:20:6e:d3:e0:66:42:1b:7c: b9:72:2f:25:24:4b:ed:c2:e0:3a:16:3b:19:c7:80:40:c7:60: 02:7d:02:bf:01:53:84:53:68:99:3f:41:fd:a4:f9:58:af:1c: 57:88:f2:f0:3f:ef:60:12:11:fb:59:b0:97:55:df:3d:ef:e1: f8:24:6a:0b:a1:8b:29:2b:f9:9f:b1:1d:17:4b:6a:29:bc:96: 59:0f:de:a8:ab:82:92:f2:1f:1c:8e:c4:e7:5e:bf:18:d8:da: 7b:5b:31:89:15:b0:71:7a:83:60:06:38:d7:19:fd:6b:be:0a: 88:a9:ed:eb:59:6d:95:7b:ec:56:89:66:d3:52:47:bc:70:f1: c9:14:4e:1d:16:f9:13:66:ff:2c:12:f9:a2:f9:2e:89:77:d3: f6:32:53:68 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDMwMjIxMjEwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E3OC1hMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxR99FHWx6ijHGTQtCHo/HjDv7ZpwatJ8Ltc5yLDu4XSCevgqh67bV7Xne1Cn I+BM6hXFLrM2TZoKJodTjDSsXFtoOrFoqQW4pPgQW7IprdHGJg2ga6zkNyZJetzQ KvjN8R+I2kQJQ5TaDx/QOfHagr6AurDslHLJNF5Fab8W49Xrqzv4yqNp3d302xXP iDIMspz0rY7WdWS/OjNx0Fc1H/CZOnVLbHzTllxZ9aMQ2NZocEpeYpYBeZY/rgFY Fu/sXD0D/1g45ia8voQMm1hG3Y/jfv3DupUZlfW40gEuO4ai4bAePehINK/ILNt3 TQR2gW7L+YQx9d5B1lCff7HrswIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO2kFpRU gNQOt0gyGS5AXYGdv6k2MB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjU3RjE0Qjg2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMGkGCCsGAQUFBwEHAQH/BFowWDBH BAIAATBBAwQHOkCAAwMAO7wDBAJnVCADBAdxCoADBAd7AYADBAHAvFIDBAHKBKID BAbLYoADBAbLsMADBAbS0UADBAfS9YAwDQQCAAIwBwMFACQBSgAwDQYJKoZIhvcN AQELBQADggEBAFQ0/JuKRcnudrKC+DoIVog1Psk6965gjZ3nKFox5HjVrIf4giwZ Y2Mm1ESIvH4+GpMnSMNVoMcISx0lekSHYalb76pW4U+QS6psfxW2oTaHqf/0qT0v 4DBUeKihgY5SeccW8d8gbtPgZkIbfLlyLyUkS+3C4DoWOxnHgEDHYAJ9Ar8BU4RT aJk/Qf2k+VivHFeI8vA/72ASEftZsJdV3z3v4fgkaguhiykr+Z+xHRdLaim8llkP 3qirgpLyHxyOxOdevxjY2ntbMYkVsHF6g2AGONcZ/Wu+Coip7etZbZV77FaJZtNS R7xw8ckUTh0W+RNm/ywS+aL5Lol30/YyU2g= -----END CERTIFICATE-----Generated at Mon Mar 2 11:00:40 2026 by rpki-client