$ rpki-client -vvf rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/58EF9BECC91911F080D34C6DC4F9AE02.roa File: 58EF9BECC91911F080D34C6DC4F9AE02.roa (raw, json) Hash identifier: BGmFZ9dRfD8EZt0V672OP6EF10Q8PY5YgUnIZ7TDMZ4= Subject key identifier: 7F:2A:41:0C:9B:5D:6D:F6:7C:A1:DE:4E:6F:2C:A3:7E:94:8A:C3:F4 Certificate issuer: /CN=A912598D/serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Certificate serial: DA Authority key identifier: 9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/58EF9BECC91911F080D34C6DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:11:23 +0000 ROA not before: Mon 24 Nov 2025 10:46:28 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9835 IP address blocks: 202.139.202.0/24 maxlen: 24 202.139.203.0/24 maxlen: 24 2001:c38:90a1::/48 maxlen: 48 2001:c38:90a3::/48 maxlen: 48 2001:c38:90a4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912598D, serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Validity Not Before: Nov 24 10:46:28 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48f5b-8e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:10:d3:ae:86:6f:07:bd:4a:39:b7:0f:12:82: 9d:15:5d:25:b4:91:40:44:86:4a:ce:c4:78:65:33: 7d:d0:6b:31:7f:40:55:f0:3b:4b:1e:2d:ed:31:56: 04:02:70:6d:3e:d5:99:7a:8e:01:1c:50:aa:d2:d0: ad:f9:d3:16:64:42:cf:2b:7f:ac:b5:32:75:af:57: ba:28:b5:e9:c5:17:28:d7:69:46:76:44:26:7d:2d: 84:74:17:b5:95:03:7b:97:8a:ab:54:8c:b4:b5:34: 22:00:97:0f:cc:52:cb:09:87:9a:a6:2e:0c:58:0a: 01:04:4d:b3:03:4a:2c:72:1e:3e:97:77:b7:b3:c9: cd:f4:6c:2a:92:1c:3b:04:c7:69:71:dd:2d:fd:c2: b2:a6:61:fd:d5:04:16:ff:05:8a:c4:4b:b3:ee:2c: 38:7f:51:4e:63:c8:c6:67:04:e7:85:30:06:fd:69: ee:56:35:16:9f:5c:ae:78:ec:3a:f5:c0:d5:1e:27: 4b:e5:05:93:0f:1c:bd:aa:51:97:c2:9b:78:2a:a8: dc:36:e5:fc:9f:af:db:11:d7:6a:ff:13:2a:22:28: 08:b3:31:19:49:32:ba:96:2e:f5:ac:01:ea:0a:68: a4:54:ff:b4:84:2b:e4:5b:87:9b:e6:17:45:7f:7a: ce:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:2A:41:0C:9B:5D:6D:F6:7C:A1:DE:4E:6F:2C:A3:7E:94:8A:C3:F4 X509v3 Authority Key Identifier: keyid:9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/58EF9BECC91911F080D34C6DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.139.202.0/23 IPv6: 2001:c38:90a1::/48 2001:c38:90a3::-2001:c38:90a4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 17:f3:68:80:c0:29:75:00:ff:b6:0f:e0:03:19:ab:e8:7f:7e: b3:12:53:b1:49:b0:a1:86:1e:d5:88:3e:ce:c3:3f:79:d7:86: e8:93:67:aa:cd:87:de:d3:1a:39:5f:54:18:2a:a3:4c:10:69: b2:8e:c5:24:1f:92:fa:1e:72:42:e6:ee:20:f6:29:67:07:4b: f5:a3:ac:e1:0a:56:77:13:d9:64:24:50:e5:cb:24:14:4a:bc: 2f:11:99:3d:45:b8:28:14:bc:42:76:df:c9:3d:22:13:e4:3a: c9:15:6e:0a:a8:6c:3f:b8:82:3b:8a:d1:c4:74:82:70:23:69: fe:35:74:5b:d0:8c:ab:bd:23:41:01:0c:9d:a3:98:13:ce:5b: 50:24:33:92:90:b9:d0:7a:f9:34:86:d1:59:bd:15:4c:19:48: dc:d8:08:2e:78:11:42:8c:1f:2a:44:1c:23:7c:ad:4f:0c:48: 00:68:85:80:49:c2:27:7b:a6:29:c5:ed:4f:96:9b:c7:e1:10: 32:b6:9d:62:11:2f:f6:22:9c:bf:79:49:56:22:8b:ee:3a:81: 04:e0:a5:b2:bc:46:ea:2b:a0:9b:dd:46:8d:88:b2:ba:f3:ba: 7f:48:80:34:cb:17:8f:e4:2c:db:10:51:b4:9b:c6:60:18:1f: 52:36:18:4d -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5OEQxMTAvBgNVBAUTKDlBM0E2N0VERENEMDk3NzUzM0E5QTBCOEM0OUY0QzAx MDBDODUzOTEwHhcNMjUxMTI0MTA0NjI4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGY1Yi04ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhDTroZvB71KObcPEoKdFV0ltJFARIZKzsR4ZTN90Gsxf0BV8DtLHi3tMVYE AnBtPtWZeo4BHFCq0tCt+dMWZELPK3+stTJ1r1e6KLXpxRco12lGdkQmfS2EdBe1 lQN7l4qrVIy0tTQiAJcPzFLLCYeapi4MWAoBBE2zA0osch4+l3e3s8nN9Gwqkhw7 BMdpcd0t/cKypmH91QQW/wWKxEuz7iw4f1FOY8jGZwTnhTAG/WnuVjUWn1yueOw6 9cDVHidL5QWTDxy9qlGXwpt4KqjcNuX8n6/bEddq/xMqIigIszEZSTK6li71rAHq CmikVP+0hCvkW4eb5hdFf3rOywIDAQABo4IChTCCAoEwHQYDVR0OBBYEFH8qQQyb XW32fKHeTm8so36UisP0MB8GA1UdIwQYMBaAFJo6Z+3c0Jd1M6mguMSfTAEAyFOR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTk4RC9CODg1MzFDQUM4 RUMxMUYwQTM0NEFCNDVDNEY5QUUwMi9tanBuN2R6UWwzVXpxYUM0eEo5TUFRRElV NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qcG43ZHpRbDNVenFhQzR4SjlNQVFESVU1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU5OEQvQjg4NTMxQ0FDOEVDMTFGMEEzNDRBQjQ1QzRGOUFFMDIvNThFRjlCRUND OTE5MTFGMDgwRDM0QzZEQzRGOUFFMDIucm9hMEQGCCsGAQUFBwEHAQH/BDUwMzAM BAIAATAGAwQByovKMCMEAgACMB0DBwAgAQw4kKEwEgMHACABDDiQowMHACABDDiQ pDANBgkqhkiG9w0BAQsFAAOCAQEAF/NogMApdQD/tg/gAxmr6H9+sxJTsUmwoYYe 1Yg+zsM/edeG6JNnqs2H3tMaOV9UGCqjTBBpso7FJB+S+h5yQubuIPYpZwdL9aOs 4QpWdxPZZCRQ5cskFEq8LxGZPUW4KBS8QnbfyT0iE+Q6yRVuCqhsP7iCO4rRxHSC cCNp/jV0W9CMq70jQQEMnaOYE85bUCQzkpC50Hr5NIbRWb0VTBlI3NgILngRQowf KkQcI3ytTwxIAGiFgEnCJ3umKcXtT5abx+EQMradYhEv9iKcv3lJViKL7jqBBOCl srxG6iugm91GjYiyuvO6f0iANMsXj+Qs2xBRtJvGYBgfUjYYTQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:41:29 2026 by rpki-client