$ rpki-client -vvf rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa File: B58C9578378011ECA9E26B5AC4F9AE02.roa (raw, json) Hash identifier: tWNrfcWrRhpaxE6KzUPy0N1Gkp/CrciJBkIG+zBTsq4= Subject key identifier: FF:5D:D0:E2:5C:14:DF:E9:AC:B0:00:C5:CD:64:EE:6E:EE:50:31:27 Certificate issuer: /CN=A9159234/serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Certificate serial: 05F7 Authority key identifier: C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:53:31 +0000 ROA not before: Sun 10 Aug 2025 23:35:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142594 IP address blocks: 103.170.154.0/24 maxlen: 24 103.170.155.0/24 maxlen: 24 2001:df7:1d80::/48 maxlen: 48 2001:df7:1d81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1527 (0x5f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159234, serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Validity Not Before: Aug 10 23:35:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a40c9b-2f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:89:b6:65:3e:f7:3c:87:59:dd:b9:28:c1:6b: 48:8c:74:6b:d8:9a:2d:2d:e3:1f:e0:54:ed:e6:ab: 4c:fc:62:98:d8:95:fd:0c:8e:c4:cc:94:02:34:eb: 18:a0:93:e9:d8:7f:8f:09:7a:3c:2d:92:6b:19:ce: d1:eb:69:75:79:23:e2:aa:47:6c:45:22:b1:cb:29: 61:5c:ca:b5:fe:96:7a:4a:ed:69:c3:33:0e:5f:9c: c1:99:39:8d:3f:5d:37:9a:41:f2:cb:ae:d7:c8:61: 0f:8c:cf:db:86:98:71:1b:39:57:54:22:84:35:ca: 1f:69:1b:c6:9d:04:74:bd:ad:61:b3:f2:85:c8:e2: 8b:9f:9e:b7:a2:64:e3:9d:51:65:47:f5:81:d4:53: 17:b1:85:67:36:b4:7d:b1:25:da:37:6c:54:56:d9: ba:b2:8a:bb:a7:cf:3b:cc:10:dd:ca:e7:f9:76:05: f8:6b:ce:63:a9:2e:d8:cb:fd:33:9f:44:b9:ff:6e: 96:f1:f6:51:53:48:89:18:04:ea:d7:6b:f7:e4:b1: a4:8f:af:2f:f6:a4:22:d6:da:37:56:fe:c4:90:56: 33:4d:21:cb:18:b5:85:2d:cf:a3:04:86:20:c8:b4: 9f:40:4a:38:fe:05:b6:d1:f3:d3:24:41:46:1a:37: e4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5D:D0:E2:5C:14:DF:E9:AC:B0:00:C5:CD:64:EE:6E:EE:50:31:27 X509v3 Authority Key Identifier: keyid:C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.170.154.0/23 IPv6: 2001:df7:1d80::/47 Signature Algorithm: sha256WithRSAEncryption 2c:85:fc:44:fb:c2:99:f5:67:b9:fb:07:58:ab:b5:44:65:f7: 50:17:83:af:10:e8:7e:b2:9a:57:8c:9f:e0:37:bd:ac:45:b1: 41:8f:8a:60:26:1e:26:46:d7:7f:43:75:86:c0:78:a1:ea:bb: 2c:b4:b1:8a:ca:a2:7b:14:e7:b4:c6:c9:04:17:96:13:2f:18: 3d:83:43:18:b7:4b:1c:7d:36:7b:d8:74:10:e1:31:c4:79:02: fe:4c:9a:a4:28:68:3d:0f:8d:30:8d:1c:50:62:f8:e7:33:76: b2:8b:43:49:8e:da:36:ab:23:4e:53:15:96:98:e5:0a:7e:bf: 51:c2:f5:42:40:84:2e:dd:62:d7:7f:38:9b:31:b1:e6:06:b0: 22:d2:53:3e:85:e9:33:34:a0:af:1d:e8:a9:f6:39:5c:fc:f5: f3:35:94:ad:27:12:4c:00:92:19:e6:68:ff:1d:37:b6:14:c3: 13:c8:50:41:20:34:52:3b:90:04:52:5a:80:3d:0c:49:3d:60: 31:a6:6d:27:23:5c:8f:e9:c7:e9:4b:c0:65:bc:33:e6:5c:56: 7e:fb:02:0a:c8:6b:43:4e:3b:cd:62:81:f2:56:5c:6e:f2:1a: dc:f4:8b:d4:1a:b8:5a:44:ad:c1:83:8b:48:04:b5:69:75:91: 58:5c:97:8a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyMzQxMTAvBgNVBAUTKEMzREVDN0ZEREQ0NUM5NTE3MjYwODY0RkE5RUVCQ0ZF N0I4QkNGNTcwHhcNMjUwODEwMjMzNTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGM5Yi0yZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYm2ZT73PIdZ3bkowWtIjHRr2JotLeMf4FTt5qtM/GKY2JX9DI7EzJQCNOsY oJPp2H+PCXo8LZJrGc7R62l1eSPiqkdsRSKxyylhXMq1/pZ6Su1pwzMOX5zBmTmN P103mkHyy67XyGEPjM/bhphxGzlXVCKENcofaRvGnQR0va1hs/KFyOKLn563omTj nVFlR/WB1FMXsYVnNrR9sSXaN2xUVtm6soq7p887zBDdyuf5dgX4a85jqS7Yy/0z n0S5/26W8fZRU0iJGATq12v35LGkj68v9qQi1to3Vv7EkFYzTSHLGLWFLc+jBIYg yLSfQEo4/gW20fPTJEFGGjfkFQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFP9d0OJc FN/prLAAxc1k7m7uUDEnMB8GA1UdIwQYMBaAFMPex/3dRclRcmCGT6nuvP57i89X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTIzNC82QThFMDBFQUVG OEExMUVCQTI5MjE3NjRDNEY5QUUwMi93OTdIX2QxRnlWRnlZSVpQcWU2OF9udUx6 MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c5N0hfZDFGeVZGeVlJWlBxZTY4X251THoxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyMzQvNkE4RTAwRUFFRjhBMTFFQkEyOTIxNzY0QzRGOUFFMDIvQjU4Qzk1Nzgz NzgwMTFFQ0E5RTI2QjVBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6qaMA8EAgACMAkDBwEgAQ33HYAwDQYJKoZIhvcNAQELBQADggEB ACyF/ET7wpn1Z7n7B1irtURl91AXg68Q6H6ymleMn+A3vaxFsUGPimAmHiZG139D dYbAeKHquyy0sYrKonsU57TGyQQXlhMvGD2DQxi3Sxx9NnvYdBDhMcR5Av5MmqQo aD0PjTCNHFBi+OczdrKLQ0mO2jarI05TFZaY5Qp+v1HC9UJAhC7dYtd/OJsxseYG sCLSUz6F6TM0oK8d6Kn2OVz89fM1lK0nEkwAkhnmaP8dN7YUwxPIUEEgNFI7kARS WoA9DEk9YDGmbScjXI/px+lLwGW8M+ZcVn77AgrIa0NOO81igfJWXG7yGtz0i9Qa uFpErcGDi0gEtWl1kVhcl4o= -----END CERTIFICATE-----Generated at Mon Mar 2 17:28:34 2026 by rpki-client