$ rpki-client -vvf rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/58A9026623AD11EBB858645DC4F9AE02.roa File: 58A9026623AD11EBB858645DC4F9AE02.roa (raw, json) Hash identifier: UM57hSN5aLzJ1miAi0WEBED5Yq0amggNMnfYd46Qpgk= Subject key identifier: 82:73:7A:38:EC:E6:19:28:75:33:87:DB:E4:83:FE:90:39:87:3D:E6 Certificate issuer: /CN=A914BFE5/serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Certificate serial: 08B8 Authority key identifier: 78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/58A9026623AD11EBB858645DC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:02:51 +0000 ROA not before: Sun 08 Feb 2026 21:14:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38880 IP address blocks: 103.152.248.0/24 maxlen: 24 103.152.249.0/24 maxlen: 24 119.252.176.0/24 maxlen: 24 119.252.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BFE5, serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Validity Not Before: Feb 8 21:14:53 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4632b-89f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:93:e7:c8:9b:62:4d:94:81:10:e4:f6:54:3b: 6b:b3:75:c9:8a:20:7c:3b:08:b0:6b:02:56:38:2c: 8c:9b:d1:9a:fc:48:20:d6:ab:29:d4:7a:d1:52:d3: 44:07:03:d7:48:26:30:dc:ae:92:f9:3d:a7:f7:b0: 82:5d:67:1a:8f:72:06:27:91:c2:63:94:0e:ca:e1: 2d:0a:c5:f4:ff:d7:7d:0e:de:8b:9e:93:4c:15:bf: d0:7e:55:29:43:5a:3c:8c:de:31:da:eb:dc:cc:ca: 06:29:e0:e2:49:a5:bb:3d:2c:d5:fd:04:f9:d5:bd: c6:3b:42:a5:e3:2a:b8:94:94:31:a2:d9:eb:31:4e: a2:9c:56:6d:bf:35:f5:8a:2f:db:8d:e1:22:2c:27: c4:b7:f9:8d:ef:54:af:3f:62:d6:8f:b1:8e:5c:62: 30:0c:ad:98:5e:04:f5:1c:2c:72:a2:63:d8:08:32: 4b:4d:ea:d6:02:97:23:2e:4a:35:07:46:88:5b:30: f6:76:e6:12:f3:7b:d0:b0:39:be:58:e5:a0:a5:91: f6:ff:75:00:dd:a6:25:c8:e7:8e:67:d1:4a:c9:20: 69:52:93:39:40:4e:bd:3a:56:70:7a:6a:72:46:63: 0a:2d:9e:9b:2b:e3:10:d4:fd:15:ce:8d:38:94:9b: 06:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:73:7A:38:EC:E6:19:28:75:33:87:DB:E4:83:FE:90:39:87:3D:E6 X509v3 Authority Key Identifier: keyid:78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/58A9026623AD11EBB858645DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.248.0/23 119.252.176.0/24 119.252.179.0/24 Signature Algorithm: sha256WithRSAEncryption 72:aa:ab:5d:84:36:66:9c:0a:38:ad:0b:34:a6:48:e0:38:e5: b8:16:ba:57:42:5f:20:99:59:2d:f1:d9:bb:fb:07:ba:de:45: d4:34:3e:f1:78:1d:dd:2d:4e:da:3f:6a:da:34:76:e1:9c:5c: 99:fe:5e:12:67:ca:97:21:fd:b9:9a:9c:94:c6:a5:f5:74:c9: 8a:d0:65:36:3b:24:70:db:16:9a:82:2a:5b:4c:64:ff:c4:60: 32:58:6c:df:04:02:47:1b:1e:7a:00:e5:09:c3:6f:ad:8a:60: 96:d8:6b:1f:ad:6b:07:7d:a6:7e:93:17:a9:e4:0e:d0:08:ab: 8f:d4:8f:25:12:e1:2b:c0:40:0f:09:c2:a2:e4:70:a2:85:29: e2:0f:52:23:73:a5:ac:95:96:64:fd:7f:ff:c7:31:33:1c:02: 6a:73:41:a1:91:f5:0d:8c:2f:61:bd:2a:0b:85:14:f4:9a:2c: ce:ec:9b:8b:d4:f4:0a:9d:9f:b3:0f:f6:41:d3:d6:fd:5f:10: ee:94:aa:2f:ec:83:bd:dd:4c:55:14:24:62:dd:e2:1d:61:0f: f5:2f:07:40:69:07:ee:7b:06:b2:34:ad:9c:63:71:c2:fe:b2: 4a:ed:f4:69:60:47:f9:45:1f:a1:eb:1f:04:11:38:3f:cc:cc: 3d:9f:87:75 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGRTUxMTAvBgNVBAUTKDc4QTk5NzdGRkI0N0FGM0VDMUU5NDZCQzEwRjgxMzc2 OTQ5RUJFQzIwHhcNMjYwMjA4MjExNDUzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjMyYi04OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5PnyJtiTZSBEOT2VDtrs3XJiiB8OwiwawJWOCyMm9Ga/Egg1qsp1HrRUtNE BwPXSCYw3K6S+T2n97CCXWcaj3IGJ5HCY5QOyuEtCsX0/9d9Dt6LnpNMFb/QflUp Q1o8jN4x2uvczMoGKeDiSaW7PSzV/QT51b3GO0Kl4yq4lJQxotnrMU6inFZtvzX1 ii/bjeEiLCfEt/mN71SvP2LWj7GOXGIwDK2YXgT1HCxyomPYCDJLTerWApcjLko1 B0aIWzD2duYS83vQsDm+WOWgpZH2/3UA3aYlyOeOZ9FKySBpUpM5QE69OlZwempy RmMKLZ6bK+MQ1P0Vzo04lJsGzwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFIJzejjs 5hkodTOH2+SD/pA5hz3mMB8GA1UdIwQYMBaAFHipl3/7R68+welGvBD4E3aUnr7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkZFNS85REFGNDg2RURE RUIxMUVBQjMwRUQ5MjFDNEY5QUUwMi9lS21YZl90SHJ6N0I2VWE4RVBnVGRwU2V2 c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLbVhmX3RIcno3QjZVYThFUGdUZHBTZXZzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGRTUvOURBRjQ4NkVEREVCMTFFQUIzMEVEOTIxQzRGOUFFMDIvNThBOTAyNjYy M0FEMTFFQkI4NTg2NDVEQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBZ5j4AwQAd/ywAwQAd/yzMA0GCSqGSIb3DQEBCwUAA4IBAQByqqtd hDZmnAo4rQs0pkjgOOW4FrpXQl8gmVkt8dm7+we63kXUND7xeB3dLU7aP2raNHbh nFyZ/l4SZ8qXIf25mpyUxqX1dMmK0GU2OyRw2xaagipbTGT/xGAyWGzfBAJHGx56 AOUJw2+timCW2GsfrWsHfaZ+kxep5A7QCKuP1I8lEuErwEAPCcKi5HCihSniD1Ij c6WslZZk/X//xzEzHAJqc0GhkfUNjC9hvSoLhRT0mizO7JuL1PQKnZ+zD/ZB09b9 XxDulKov7IO93UxVFCRi3eIdYQ/1LwdAaQfuewayNK2cY3HC/rJK7fRpYEf5RR+h 6x8EETg/zMw9n4d1 -----END CERTIFICATE-----Generated at Mon Mar 2 07:10:42 2026 by rpki-client