$ rpki-client -vvf rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa File: 5C95BDC0C12E11EEA47CBB59C4F9AE02.roa (raw, json) Hash identifier: O0xpewKz8Q7J1ZZQXG0b/KCwkQGEq6Jb5YHKjy66mLk= Subject key identifier: B1:D9:8C:12:01:96:DB:9A:FF:EA:7F:9B:6E:D7:85:B6:19:54:F9:AD Certificate issuer: /CN=A912438F/serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Certificate serial: 0804 Authority key identifier: C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:09:22 +0000 ROA not before: Thu 22 Jan 2026 21:17:42 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 139325 IP address blocks: 103.158.158.0/23 maxlen: 23 103.158.158.0/24 maxlen: 24 103.158.159.0/24 maxlen: 24 2001:df5:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912438F, serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Validity Not Before: Jan 22 21:17:42 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44892-2633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:8f:1d:ae:e0:b4:f2:bc:75:59:a5:d5:24: 82:6c:7b:32:03:07:08:a8:4e:24:6b:b4:e6:4d:a6: fe:52:41:95:40:0e:d4:13:35:7d:df:86:72:bb:59: 12:75:66:05:fa:90:e6:30:cf:be:b3:4d:ed:e3:ec: 0e:32:82:49:c4:e6:32:aa:fc:98:3f:46:d3:a9:11: 6c:5b:a2:88:4d:98:c6:cf:37:09:ee:8c:b5:be:a6: 36:68:d3:1f:1c:32:19:40:88:b6:c8:0a:e5:f9:c4: fb:57:e7:37:a9:3a:9e:ca:b0:4b:d7:0e:36:74:3c: 34:76:31:5a:9c:25:51:c3:b8:e0:f7:db:fa:31:7e: c4:ec:22:c8:66:7b:f8:13:1a:02:58:46:de:13:43: fb:c4:71:32:a6:a0:92:41:ed:7e:79:0b:ff:db:48: 08:23:1f:c2:2b:05:ba:d5:61:3f:fc:c6:c4:e7:be: 82:3f:a2:51:40:c7:f7:57:c5:af:82:e9:66:91:cc: 89:a4:e2:73:88:1e:0e:6a:ce:1a:01:98:bf:1a:55: ac:4a:c9:d4:3f:a3:4f:ee:c6:d4:f8:f5:8e:b1:6a: 13:f0:ff:ba:79:90:31:21:76:af:e5:5c:6b:c0:25: 8a:f2:35:cb:a5:5f:ae:d5:01:82:19:61:ed:17:7a: 40:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D9:8C:12:01:96:DB:9A:FF:EA:7F:9B:6E:D7:85:B6:19:54:F9:AD X509v3 Authority Key Identifier: keyid:C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.158.0/23 IPv6: 2001:df5:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 5b:d7:5e:cb:05:67:76:4e:5d:d6:1f:fc:25:5a:f9:ad:ff:fe: 24:ca:6e:4c:91:66:07:fd:6c:20:56:02:07:b8:c0:07:f8:56: a6:fe:3a:91:df:13:a5:34:23:8f:fa:1f:1a:7c:f2:74:6e:cf: 04:2e:35:b2:5a:5d:25:75:df:00:c4:3c:76:32:22:61:87:4b: 43:95:ac:3a:d7:24:0b:55:a8:3b:19:72:35:60:ef:5f:79:c9: 61:12:d7:b4:f2:43:50:54:b4:50:fe:f5:e8:aa:e3:08:c8:55: e8:8b:e6:39:d4:64:02:b8:91:f3:1a:51:99:a3:61:9a:ae:62: c5:b4:57:50:3b:93:27:51:c5:c7:a8:a1:47:32:eb:8d:85:9d: 00:f3:84:b7:b1:a1:c4:ec:6c:b9:1d:31:e8:07:0b:49:65:c8: cf:c5:af:53:c7:65:d7:ba:a5:1c:fb:dc:a4:63:d2:35:f8:64: 93:ee:f2:5e:cf:31:17:47:a9:20:05:15:86:11:a9:78:10:79: 9e:bf:0b:59:fa:aa:2d:74:3d:3b:36:d2:6b:e9:03:92:73:21: 4f:7a:cd:d5:37:4f:c9:47:81:ad:f6:e4:dd:c9:78:ba:4c:1e: be:c1:c9:06:f0:a1:c0:19:6a:8e:3f:41:c2:54:b2:4d:7c:77: 55:04:0e:bb -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzOEYxMTAvBgNVBAUTKEM4ODhEMUVFRTA0QkVGM0U4MTVGMDlEREZBMTkxOTNE Njk5QjRGNDcwHhcNMjYwMTIyMjExNzQyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDg5Mi0yNjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWGPHa7gtPK8dVml1SSCbHsyAwcIqE4ka7TmTab+UkGVQA7UEzV934Zyu1kS dWYF+pDmMM++s03t4+wOMoJJxOYyqvyYP0bTqRFsW6KITZjGzzcJ7oy1vqY2aNMf HDIZQIi2yArl+cT7V+c3qTqeyrBL1w42dDw0djFanCVRw7jg99v6MX7E7CLIZnv4 ExoCWEbeE0P7xHEypqCSQe1+eQv/20gIIx/CKwW61WE//MbE576CP6JRQMf3V8Wv gulmkcyJpOJziB4Oas4aAZi/GlWsSsnUP6NP7sbU+PWOsWoT8P+6eZAxIXav5Vxr wCWK8jXLpV+u1QGCGWHtF3pAXQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLHZjBIB ltua/+p/m27XhbYZVPmtMB8GA1UdIwQYMBaAFMiI0e7gS+8+gV8J3foZGT1pm09H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDM4Ri9DNzU5MEJENjI1 QUUxMUVCOEVFQzIyMEFDNEY5QUUwMi95SWpSN3VCTDd6NkJYd25kLWhrWlBXbWJU MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJalI3dUJMN3o2Qlh3bmQtaGtaUFdtYlQwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQzOEYvQzc1OTBCRDYyNUFFMTFFQjhFRUMyMjBBQzRGOUFFMDIvNUM5NUJEQzBD MTJFMTFFRUE0N0NCQjU5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ56eMA8EAgACMAkDBwAgAQ31W4AwDQYJKoZIhvcNAQELBQADggEB AFvXXssFZ3ZOXdYf/CVa+a3//iTKbkyRZgf9bCBWAge4wAf4Vqb+OpHfE6U0I4/6 Hxp88nRuzwQuNbJaXSV13wDEPHYyImGHS0OVrDrXJAtVqDsZcjVg7195yWES17Ty Q1BUtFD+9eiq4wjIVeiL5jnUZAK4kfMaUZmjYZquYsW0V1A7kydRxceooUcy642F nQDzhLexocTsbLkdMegHC0llyM/Fr1PHZde6pRz73KRj0jX4ZJPu8l7PMRdHqSAF FYYRqXgQeZ6/C1n6qi10PTs20mvpA5JzIU96zdU3T8lHga325N3JeLpMHr7ByQbw ocAZao4/QcJUsk18d1UEDrs= -----END CERTIFICATE-----Generated at Mon Mar 2 07:40:13 2026 by rpki-client