$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa File: 0589A4B8DF9511EDAAA7E22AC4F9AE02.roa (raw, json) Hash identifier: xoObxmZ+W3wpd6wtoHNLOZOmB8tFDExcRpt7iKNFcJM= Subject key identifier: 37:67:C4:45:F2:F5:5D:D2:1B:F4:11:BC:66:3E:F6:4D:ED:AC:FF:07 Certificate issuer: /CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Certificate serial: 03EF Authority key identifier: E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa Signing time: Fri 27 Feb 2026 00:20:40 +0000 ROA not before: Fri 27 Feb 2026 00:20:40 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135341 IP address blocks: 103.179.59.0/24 maxlen: 24 2400:d1a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:24:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1D, serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Validity Not Before: Feb 27 00:20:40 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a0e358-7db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:04:38:fc:cf:7e:c8:fb:79:cf:44:a0:c5:4e: bd:3e:e9:d6:13:65:10:a6:af:0d:33:69:df:69:8b: a4:8b:7a:71:e2:a0:40:89:e1:0a:8f:01:c8:e4:ca: 80:46:44:78:b5:65:8f:52:2f:e2:e2:25:6e:18:c1: 6b:46:1b:19:18:db:ba:d0:a7:1e:90:0b:b0:21:98: 89:dc:2e:8b:44:0e:c7:57:4b:2f:66:d0:e7:69:c6: 87:4d:1f:5b:68:49:7b:df:21:36:79:38:94:18:4d: b8:53:03:a4:87:fe:ff:c0:e6:25:a5:9d:4a:5c:6c: 9e:a4:1b:4a:20:cb:57:73:a5:30:c7:e3:6f:f4:9d: 7b:fb:a2:a2:09:42:25:8e:be:90:a7:68:7c:e3:77: e5:6d:af:54:6b:a7:a2:b4:11:ff:eb:25:7b:87:3e: bd:fe:ac:2b:eb:6e:30:1b:b9:60:dc:d5:8a:13:cc: 7f:5c:35:da:29:ee:fb:e8:16:b4:bd:72:a5:49:21: 17:4a:3f:97:25:27:fc:2d:3c:f0:ee:4c:f9:47:f2: 6e:bb:73:54:cf:72:81:a1:1f:b7:db:45:02:1b:fb: 58:c2:06:d9:71:62:6f:06:eb:f9:9f:3b:ec:77:c5: 1a:27:cb:2d:d3:f1:37:01:7c:c3:4c:1c:59:1a:00: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:67:C4:45:F2:F5:5D:D2:1B:F4:11:BC:66:3E:F6:4D:ED:AC:FF:07 X509v3 Authority Key Identifier: keyid:E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.179.59.0/24 IPv6: 2400:d1a0:f000::/36 Signature Algorithm: sha256WithRSAEncryption 50:66:a6:5a:16:1e:6a:98:4d:24:f3:36:ef:9b:29:58:62:2f: d2:17:e2:75:ca:0b:3f:2d:87:ee:78:cc:66:ad:6d:96:35:31: a5:ad:4b:db:79:af:eb:b2:69:53:64:f8:b6:13:74:1f:c2:0f: 01:7d:31:84:70:3b:7a:0a:06:29:b0:9f:2c:c0:be:58:f3:28: be:cb:a3:0e:c5:ca:2c:63:e3:51:a3:95:b6:d4:9c:b4:e8:8d: b1:12:45:b2:84:38:88:b1:b1:a2:6f:32:7d:91:e0:63:9b:5b: e2:d0:03:32:7d:cb:48:a8:05:26:99:1d:2a:e4:26:2f:41:fa: df:fb:7e:e2:c7:ff:42:7a:6d:f6:c5:05:c6:6f:86:50:a5:12: 44:fb:84:ac:de:87:f3:ab:04:bb:8a:0e:a7:04:bf:49:b0:31: 65:9e:60:e4:02:e8:b3:e5:b4:fb:32:1f:3a:28:e9:73:48:80: a0:22:39:8a:db:01:5f:b0:20:eb:56:da:fb:3d:1e:c3:3e:a0: 62:00:46:45:95:57:15:56:b9:0b:ea:39:5d:d5:0a:85:23:a8: 5c:8c:4a:ed:ef:69:25:db:7a:fa:a4:7e:11:a3:2f:b5:5a:96: d9:16:50:2c:38:d9:af:45:80:66:71:cf:4e:67:57:fb:ae:e1: e5:95:af:c7 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MkRBMUQxMTAvBgNVBAUTKEU0MjE0MkUzRTU4NDU3NjJEMEU4RDY4QjAyRkIxMEU4 NzVCQzZCRjIwHhcNMjYwMjI3MDAyMDQwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OWEwZTM1OC03ZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAQ4/M9+yPt5z0SgxU69PunWE2UQpq8NM2nfaYuki3px4qBAieEKjwHI5MqA RkR4tWWPUi/i4iVuGMFrRhsZGNu60KcekAuwIZiJ3C6LRA7HV0svZtDnacaHTR9b aEl73yE2eTiUGE24UwOkh/7/wOYlpZ1KXGyepBtKIMtXc6Uwx+Nv9J17+6KiCUIl jr6Qp2h843flba9Ua6eitBH/6yV7hz69/qwr624wG7lg3NWKE8x/XDXaKe776Ba0 vXKlSSEXSj+XJSf8LTzw7kz5R/Juu3NUz3KBoR+320UCG/tYwgbZcWJvBuv5nzvs d8UaJ8st0/E3AXzDTBxZGgCaBQIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFDdnxEXy 9V3SG/QRvGY+9k3trP8HMB8GA1UdIwQYMBaAFOQhQuPlhFdi0OjWiwL7EOh1vGvy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRC9CNDZFNDJEQUJC MUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYyTFE2TmFMQXZzUTZIVzhh X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDRkM0LVdFVjJMUTZOYUxBdnNRNkhXOGFfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRBMUQvQjQ2RTQyREFCQjFCMTFFQ0IwQUMwRjE0QzRGOUFFMDIvMDU4OUE0QjhE Rjk1MTFFREFBQTdFMjJBQzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQAZ7M7MA4EAgACMAgDBgQkANGg8DANBgkqhkiG9w0BAQsFAAOCAQEA UGamWhYeaphNJPM275spWGIv0hfidcoLPy2H7njMZq1tljUxpa1L23mv67JpU2T4 thN0H8IPAX0xhHA7egoGKbCfLMC+WPMovsujDsXKLGPjUaOVttSctOiNsRJFsoQ4 iLGxom8yfZHgY5tb4tADMn3LSKgFJpkdKuQmL0H63/t+4sf/Qnpt9sUFxm+GUKUS RPuErN6H86sEu4oOpwS/SbAxZZ5g5ALos+W0+zIfOijpc0iAoCI5itsBX7Ag61ba +z0ewz6gYgBGRZVXFVa5C+o5XdUKhSOoXIxK7e9pJdt6+qR+EaMvtVqW2RZQLDjZ r0WAZnHPTmdX+67h5ZWvxw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:16 2026 by rpki-client