$ rpki-client -vvf rpki.apnic.net/member_repository/A915B556/10452AFA7DC911EC8E9F6B23C4F9AE02/BC58A5C66DD311F09E550D38C4F9AE02.roa File: BC58A5C66DD311F09E550D38C4F9AE02.roa (raw, json) Hash identifier: ZErqDqEjrdMQscIaQSODVIbbT3cVAftr7V5jxpSa9sE= Subject key identifier: 4D:3C:77:58:B4:85:39:F0:7E:FC:E7:39:5D:2A:1A:40:5A:33:D9:20 Certificate issuer: /CN=A915B556/serialNumber=3378DEE2B3A1A8D3ED1AF4E45E225D0099CF7011 Certificate serial: 04A3 Authority key identifier: 33:78:DE:E2:B3:A1:A8:D3:ED:1A:F4:E4:5E:22:5D:00:99:CF:70:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3je4rOhqNPtGvTkXiJdAJnPcBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B556/10452AFA7DC911EC8E9F6B23C4F9AE02/BC58A5C66DD311F09E550D38C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:59:46 +0000 ROA not before: Thu 31 Jul 2025 06:01:01 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150744 IP address blocks: 2400:52a0:50::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B556/10452AFA7DC911EC8E9F6B23C4F9AE02/M3je4rOhqNPtGvTkXiJdAJnPcBE.crl rsync://rpki.apnic.net/member_repository/A915B556/10452AFA7DC911EC8E9F6B23C4F9AE02/M3je4rOhqNPtGvTkXiJdAJnPcBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3je4rOhqNPtGvTkXiJdAJnPcBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B556, serialNumber=3378DEE2B3A1A8D3ED1AF4E45E225D0099CF7011 Validity Not Before: Jul 31 06:01:01 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42a32-51a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:b4:9c:25:53:62:7b:5b:1b:51:63:dc:aa: ad:ef:e8:aa:83:fb:30:2b:c3:2e:1b:d5:5e:80:e3: e0:99:dd:28:9e:16:15:7d:75:0e:03:e0:05:0f:4f: c2:a8:81:f2:77:3a:d9:82:d8:bd:c2:c2:20:e5:a9: d2:4f:13:6f:04:bc:2c:54:6e:5c:48:c5:a6:32:b9: 44:7a:d9:da:42:c5:8d:a0:d0:c4:fc:10:aa:05:cc: 9f:55:e8:f1:0b:1b:9d:9f:5d:0a:e4:9d:83:67:11: 21:15:ce:d0:fd:ca:f9:69:dc:5c:90:93:9c:ee:77: cf:d8:11:dd:43:bf:f5:e6:9c:7c:db:58:e2:02:13: bf:d1:af:bf:f3:06:6f:4b:e1:bd:a5:e5:02:da:d7: f6:9a:dc:de:44:2c:3f:7c:38:9f:fa:f3:6e:28:8b: e0:88:de:d5:a7:99:c9:03:c7:18:be:ea:b2:3f:43: d3:5e:20:3a:11:98:61:7a:fa:f3:23:78:1f:f4:57: 04:23:42:c1:19:3c:61:62:62:a9:d2:36:a9:46:ce: f4:a8:16:ad:1c:09:e5:eb:07:18:f2:e0:b0:ca:c0: 10:31:bb:00:4c:8a:c4:97:00:c3:a5:87:4d:50:30: e1:41:56:f8:81:12:af:bc:e5:87:25:f1:99:13:77: 9d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:3C:77:58:B4:85:39:F0:7E:FC:E7:39:5D:2A:1A:40:5A:33:D9:20 X509v3 Authority Key Identifier: keyid:33:78:DE:E2:B3:A1:A8:D3:ED:1A:F4:E4:5E:22:5D:00:99:CF:70:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B556/10452AFA7DC911EC8E9F6B23C4F9AE02/M3je4rOhqNPtGvTkXiJdAJnPcBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3je4rOhqNPtGvTkXiJdAJnPcBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B556/10452AFA7DC911EC8E9F6B23C4F9AE02/BC58A5C66DD311F09E550D38C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:52a0:50::/48 Signature Algorithm: sha256WithRSAEncryption 2b:44:bd:e6:e7:00:e2:bc:a1:4c:bf:d0:86:51:0a:21:6f:4c: 8d:8b:df:1d:c1:74:84:fb:01:f1:0b:90:f9:5e:dd:48:19:ad: 29:92:14:25:ac:5f:d4:eb:ff:c8:54:81:1c:96:b7:f1:8f:5e: 73:70:d5:e7:6d:a2:68:08:44:95:47:58:51:d8:c7:90:2c:3e: bf:3f:4a:8b:12:3e:ba:16:38:86:df:d3:81:61:40:82:fd:38: c4:57:39:69:11:20:08:0c:bb:4c:d1:fb:dd:6a:8c:0f:34:23: a1:59:d6:af:16:46:15:87:a6:55:bf:0e:3f:98:2f:18:3d:07: 15:5b:bf:50:71:30:92:a7:bd:9a:19:c2:50:49:0a:01:9b:90: f7:03:17:b8:af:80:d1:81:34:1d:44:ea:53:b4:9f:96:9d:27: 52:8d:d5:79:78:04:3c:cb:2a:f2:4a:56:c3:04:32:3f:a7:6b: 3a:ba:e3:00:99:f7:56:94:8f:58:19:b6:0d:d0:9c:aa:9a:e1: f9:9b:35:98:cf:70:07:39:71:1c:f2:f0:8b:77:73:af:7c:fd: e1:18:d8:e1:34:ad:41:d0:a1:07:8e:06:83:03:e4:b7:6e:d7: b0:ed:4f:a1:ea:a6:ec:76:44:af:f4:0d:72:22:d8:14:3a:18: 73:c2:f7:a7 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1NTYxMTAvBgNVBAUTKDMzNzhERUUyQjNBMUE4RDNFRDFBRjRFNDVFMjI1RDAw OTlDRjcwMTEwHhcNMjUwNzMxMDYwMTAxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmEzMi01MWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtu0nCVTYntbG1Fj3Kqt7+iqg/swK8MuG9VegOPgmd0onhYVfXUOA+AFD0/C qIHydzrZgti9wsIg5anSTxNvBLwsVG5cSMWmMrlEetnaQsWNoNDE/BCqBcyfVejx Cxudn10K5J2DZxEhFc7Q/cr5adxckJOc7nfP2BHdQ7/15px821jiAhO/0a+/8wZv S+G9peUC2tf2mtzeRCw/fDif+vNuKIvgiN7Vp5nJA8cYvuqyP0PTXiA6EZhhevrz I3gf9FcEI0LBGTxhYmKp0japRs70qBatHAnl6wcY8uCwysAQMbsATIrElwDDpYdN UDDhQVb4gRKvvOWHJfGZE3edVwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFE08d1i0 hTnwfvznOV0qGkBaM9kgMB8GA1UdIwQYMBaAFDN43uKzoajT7Rr05F4iXQCZz3AR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU1Ni8xMDQ1MkFGQTdE QzkxMUVDOEU5RjZCMjNDNEY5QUUwMi9NM2plNHJPaHFOUHRHdlRrWGlKZEFKblBj QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00zamU0ck9ocU5QdEd2VGtYaUpkQUpuUGNCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1NTYvMTA0NTJBRkE3REM5MTFFQzhFOUY2QjIzQzRGOUFFMDIvQkM1OEE1QzY2 REQzMTFGMDlFNTUwRDM4QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABSoABQMA0GCSqGSIb3DQEBCwUAA4IBAQArRL3m5wDivKFMv9CG UQohb0yNi98dwXSE+wHxC5D5Xt1IGa0pkhQlrF/U6//IVIEclrfxj15zcNXnbaJo CESVR1hR2MeQLD6/P0qLEj66FjiG39OBYUCC/TjEVzlpESAIDLtM0fvdaowPNCOh WdavFkYVh6ZVvw4/mC8YPQcVW79QcTCSp72aGcJQSQoBm5D3Axe4r4DRgTQdROpT tJ+WnSdSjdV5eAQ8yyrySlbDBDI/p2s6uuMAmfdWlI9YGbYN0JyqmuH5mzWYz3AH OXEc8vCLd3OvfP3hGNjhNK1B0KEHjgaDA+S3btew7U+h6qbsdkSv9A1yItgUOhhz wven -----END CERTIFICATE-----Generated at Mon Mar 2 11:57:53 2026 by rpki-client