$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa File: A58B9338AD4A11EBA6B48687C4F9AE02.roa (raw, json) Hash identifier: JFLo1Ja1paalAQ9cRjNBAw9+CXjqmX6hCmHw3VDuOWQ= Subject key identifier: EC:F6:4A:D3:67:A0:78:A4:8A:12:0F:CF:1D:EF:9B:AD:86:4D:02:A7 Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 0965 Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:10:59 +0000 ROA not before: Tue 04 Nov 2025 20:39:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133744 IP address blocks: 103.43.162.0/24 maxlen: 24 202.43.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC, serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: Nov 4 20:39:34 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47323-b20b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bd:d6:41:cc:e7:0f:b2:96:e3:90:6c:a9:a3: 0e:9b:2c:f8:17:5d:8c:6b:55:f3:8e:d1:a2:ac:66: 70:d5:6e:2e:e2:8c:a3:4e:57:4c:10:8a:c8:2a:39: 8c:1a:aa:68:35:8e:6a:61:51:54:82:fe:7a:2d:97: 23:b0:61:4a:38:6f:07:ad:f1:c0:aa:5b:e4:63:70: 9b:a2:f7:e1:cc:22:92:a2:8c:b0:51:6c:25:94:1e: bb:ca:38:c1:0c:c9:f9:4f:6e:42:91:69:95:a6:a6: 18:4f:a2:fd:3e:e1:1c:cf:ac:1a:5c:64:99:c0:a8: e9:c7:3c:64:a6:3e:e4:a6:70:25:7d:55:91:a5:a1: 74:cc:3a:bf:0c:54:ed:18:67:78:6f:43:c7:ec:ef: 40:ab:0c:00:0f:2f:2f:01:73:a4:92:0b:60:e9:e7: c3:b9:f1:ca:9e:8a:a6:bb:fa:b9:63:4d:f3:83:11: 3d:be:d0:a0:ee:41:50:63:b3:3d:5a:6b:81:33:ad: 74:19:14:82:e4:78:ea:eb:ce:a0:9e:e3:19:05:30: be:c3:ee:32:b2:95:97:e6:2e:c9:12:2b:65:73:c7: 95:05:d9:aa:2d:3d:45:ad:94:4e:dc:8f:0c:dc:7a: 42:e1:db:28:c6:4a:39:4c:87:e8:ce:73:ad:34:64: 4e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F6:4A:D3:67:A0:78:A4:8A:12:0F:CF:1D:EF:9B:AD:86:4D:02:A7 X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.43.162.0/24 202.43.239.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:a6:36:7f:88:66:52:25:6c:c9:85:54:7c:69:a3:c6:9b:2a: a0:ab:67:99:e6:02:33:28:92:3a:d1:66:4f:e6:d5:ac:e5:d6: 24:f1:4d:95:89:e1:5a:2f:2e:49:d8:49:9b:b2:66:4a:70:5d: a6:35:42:cb:79:9e:bc:01:38:68:c8:c1:cf:bb:89:59:a0:52: bc:b1:d9:f6:63:a8:80:f3:91:5d:1c:f7:e1:75:e6:f6:31:3c: cd:79:7e:d1:ce:d5:b3:65:a0:3f:a3:41:08:76:e6:e3:ad:1f: 50:e9:09:16:f4:25:e0:eb:e0:57:42:25:6e:aa:6f:75:16:28: 5c:7c:f5:d5:6e:fa:ff:b0:22:91:9a:ca:2f:8a:5a:b9:bc:3d: de:5c:23:1d:6c:e5:08:26:fe:74:50:ec:61:07:e8:91:a1:24: 91:32:4c:cf:03:b4:a5:73:e9:3b:69:74:ba:b1:a3:78:dd:8a: b1:e2:17:df:81:40:76:cf:b0:d7:5d:03:b5:be:3a:44:ca:13: d5:22:99:df:77:71:8c:5b:7c:f5:dc:9c:f2:97:a6:00:3e:98: b4:5c:68:c7:1f:a3:89:a2:3b:dd:55:66:0f:4a:2e:61:cd:1b: fb:a5:75:8e:34:9d:94:82:70:f2:2a:6f:62:76:f8:4f:b9:e9: ce:4b:cd:ef -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjUxMTA0MjAzOTM0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzMyMy1iMjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmb3WQcznD7KW45BsqaMOmyz4F12Ma1XzjtGirGZw1W4u4oyjTldMEIrIKjmM GqpoNY5qYVFUgv56LZcjsGFKOG8HrfHAqlvkY3CbovfhzCKSooywUWwllB67yjjB DMn5T25CkWmVpqYYT6L9PuEcz6waXGSZwKjpxzxkpj7kpnAlfVWRpaF0zDq/DFTt GGd4b0PH7O9AqwwADy8vAXOkkgtg6efDufHKnoqmu/q5Y03zgxE9vtCg7kFQY7M9 WmuBM610GRSC5Hjq686gnuMZBTC+w+4yspWX5i7JEitlc8eVBdmqLT1FrZRO3I8M 3HpC4dsoxko5TIfoznOtNGROrQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOz2StNn oHikihIPzx3vm62GTQKnMB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyQUMvQTQ4RDU5NjZCQjNFMTFFQUEyOUVFMzIxQzRGOUFFMDIvQTU4QjkzMzhB RDRBMTFFQkE2QjQ4Njg3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZyuiAwQAyivvMA0GCSqGSIb3DQEBCwUAA4IBAQAapjZ/iGZSJWzJ hVR8aaPGmyqgq2eZ5gIzKJI60WZP5tWs5dYk8U2VieFaLy5J2EmbsmZKcF2mNULL eZ68AThoyMHPu4lZoFK8sdn2Y6iA85FdHPfhdeb2MTzNeX7RztWzZaA/o0EIdubj rR9Q6QkW9CXg6+BXQiVuqm91FihcfPXVbvr/sCKRmsovilq5vD3eXCMdbOUIJv50 UOxhB+iRoSSRMkzPA7Slc+k7aXS6saN43Yqx4hffgUB2z7DXXQO1vjpEyhPVIpnf d3GMW3z13Jzyl6YAPpi0XGjHH6OJojvdVWYPSi5hzRv7pXWONJ2UgnDyKm9idvhP uenOS83v -----END CERTIFICATE-----Generated at Mon Mar 2 11:37:37 2026 by rpki-client