$ rpki-client -vvf rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/8E412748A33311EDA2CB2420C4F9AE02.roa File: 8E412748A33311EDA2CB2420C4F9AE02.roa (raw, json) Hash identifier: 8ooMgmV7Ud+S1xspsx7qZBXNFAFm0OtpaMWTTHwLKP0= Subject key identifier: B0:7E:16:44:B1:43:90:E8:5F:FD:9C:33:CC:B5:7B:58:FD:1E:C6:FD Certificate issuer: /CN=A91262F0/serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Certificate serial: 0249 Authority key identifier: FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/8E412748A33311EDA2CB2420C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:57:57 +0000 ROA not before: Fri 31 Oct 2025 02:46:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17539 IP address blocks: 58.84.28.0/24 maxlen: 24 58.84.29.0/24 maxlen: 24 58.84.30.0/24 maxlen: 24 58.84.31.0/24 maxlen: 24 103.197.44.0/24 maxlen: 24 103.197.45.0/24 maxlen: 24 103.197.46.0/24 maxlen: 24 103.197.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262F0, serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Validity Not Before: Oct 31 02:46:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a437d5-f2a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b2:3e:c9:20:8c:ac:6f:db:2f:d5:79:f5:d1: a6:43:09:35:a0:c2:e9:2c:1e:32:fc:88:34:f9:62: 0a:3a:e0:32:84:40:a4:94:b7:71:f4:31:35:f5:f2: 02:d1:80:98:23:d5:b3:15:45:a4:0c:08:68:36:16: a3:a5:7a:7c:e1:4b:60:a9:7f:d5:81:d0:09:3c:6e: 28:96:cc:17:10:cf:20:f3:3d:d8:ec:0b:44:3d:1b: 39:69:be:99:f6:ff:0b:96:0c:24:c5:e0:63:fe:97: e9:d1:5b:a5:f2:2f:d0:96:d5:1b:fd:25:4d:11:71: b9:21:aa:5c:ed:72:42:1f:4b:24:3b:16:b0:23:dc: 63:dc:43:e7:2c:1f:b8:51:c9:1d:b6:ec:84:d1:0b: 56:2a:85:58:14:65:8f:cd:45:37:41:15:98:da:49: 91:a7:e1:fa:5c:f3:2d:59:6e:fe:41:a5:df:ca:22: 42:5f:d2:74:56:56:e2:1f:88:d4:d8:ec:f5:01:08: 82:3b:5c:b8:76:bd:75:71:ea:65:9f:c5:c7:5e:7b: ca:93:a0:b2:24:b6:93:05:c8:7f:54:20:34:6c:2d: 5c:a6:fe:83:4a:c3:ff:6b:91:cd:fd:c3:2d:56:79: ad:a0:39:7d:b0:94:de:ab:dc:a9:81:0e:3c:c7:71: 12:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:7E:16:44:B1:43:90:E8:5F:FD:9C:33:CC:B5:7B:58:FD:1E:C6:FD X509v3 Authority Key Identifier: keyid:FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/8E412748A33311EDA2CB2420C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.84.28.0/22 103.197.44.0/22 Signature Algorithm: sha256WithRSAEncryption 77:70:3c:6e:1d:75:f9:6c:3d:fa:b5:18:dd:99:df:e5:18:f5: 60:e7:57:2a:f1:73:2b:5d:40:58:41:bb:e0:9e:58:1a:77:95: 0f:df:14:ea:cd:36:28:a1:ce:e7:e0:e7:e5:64:82:c2:39:da: 64:4c:14:ec:d2:d7:3f:8a:88:c3:61:25:06:d9:cd:7c:91:be: b6:91:26:58:79:52:c8:2f:6a:30:da:2a:67:42:e2:3e:ab:f8: 24:f6:be:52:8f:c9:11:be:40:d2:d9:33:f1:07:91:fe:aa:83: 15:ff:b2:36:61:aa:f5:e8:d9:e1:53:f3:0a:c1:8a:36:a8:41: 5f:44:f9:47:57:6f:1a:7b:59:73:ec:55:3a:84:ff:d7:e3:61: 76:38:78:56:89:3e:16:d4:e2:10:98:7d:25:dd:fc:08:93:a0: d4:98:b0:0b:7a:e6:40:f7:8a:b7:59:48:cc:e0:c8:de:c8:80: 88:05:d3:03:0b:7e:fc:e9:8a:cc:c2:69:8b:91:93:c7:14:d8: ec:97:5f:da:3c:b0:35:03:c2:69:56:47:22:29:0e:60:7d:b0: 5d:82:85:45:d0:8c:72:38:8f:98:00:5f:0b:c8:5f:50:15:a1: 97:33:26:9f:cd:d8:a8:16:5a:45:6d:05:8b:2b:f0:47:33:d4: 5a:66:88:2a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyRjAxMTAvBgNVBAUTKEZDNEFFN0Q5RTNGNDE5QTdEMjA0QTU0Qzc5RDFGM0VG QTlBN0Q2QzgwHhcNMjUxMDMxMDI0NjI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzdkNS1mMmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrI+ySCMrG/bL9V59dGmQwk1oMLpLB4y/Ig0+WIKOuAyhECklLdx9DE19fIC 0YCYI9WzFUWkDAhoNhajpXp84UtgqX/VgdAJPG4olswXEM8g8z3Y7AtEPRs5ab6Z 9v8LlgwkxeBj/pfp0Vul8i/QltUb/SVNEXG5Iapc7XJCH0skOxawI9xj3EPnLB+4 UckdtuyE0QtWKoVYFGWPzUU3QRWY2kmRp+H6XPMtWW7+QaXfyiJCX9J0VlbiH4jU 2Oz1AQiCO1y4dr11cepln8XHXnvKk6CyJLaTBch/VCA0bC1cpv6DSsP/a5HN/cMt VnmtoDl9sJTeq9ypgQ48x3ESzwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLB+FkSx Q5DoX/2cM8y1e1j9Hsb9MB8GA1UdIwQYMBaAFPxK59nj9Bmn0gSlTHnR8++pp9bI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJGMC8zM0FEMEE2MkEz MEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdhZlNCS1ZNZWRIejc2bW4x c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Fcm4yZVAwR2FmU0JLVk1lZEh6NzZtbjFzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyRjAvMzNBRDBBNjJBMzBDMTFFREIzMzg4QzBDQzRGOUFFMDIvOEU0MTI3NDhB MzMzMTFFREEyQ0IyNDIwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCOlQcAwQCZ8UsMA0GCSqGSIb3DQEBCwUAA4IBAQB3cDxuHXX5bD36 tRjdmd/lGPVg51cq8XMrXUBYQbvgnlgad5UP3xTqzTYooc7n4OflZILCOdpkTBTs 0tc/iojDYSUG2c18kb62kSZYeVLIL2ow2ipnQuI+q/gk9r5Sj8kRvkDS2TPxB5H+ qoMV/7I2Yar16NnhU/MKwYo2qEFfRPlHV28ae1lz7FU6hP/X42F2OHhWiT4W1OIQ mH0l3fwIk6DUmLALeuZA94q3WUjM4MjeyICIBdMDC3786YrMwmmLkZPHFNjsl1/a PLA1A8JpVkciKQ5gfbBdgoVF0IxyOI+YAF8LyF9QFaGXMyafzdioFlpFbQWLK/BH M9RaZogq -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:09 2026 by rpki-client