$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/596C54DCE83F11EE81772A87C4F9AE02.roa File: 596C54DCE83F11EE81772A87C4F9AE02.roa (raw, json) Hash identifier: lqLW/3F13QI9kdxsDx9jr2d/mE+vvyfFH4FKs/rBDIU= Subject key identifier: 8D:98:0E:B4:12:38:98:9D:E0:F9:64:DC:80:75:28:A4:0D:09:DF:4D Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A6B Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/596C54DCE83F11EE81772A87C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:35:33 +0000 ROA not before: Thu 08 Jan 2026 17:13:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 17639 IP address blocks: 118.215.72.0/21 maxlen: 21 122.252.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6763 (0x1a6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:48 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a486f4-8b30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9c:65:a1:cb:9a:c3:ba:df:86:f6:d7:ec:a2: 11:97:b5:6a:4c:7d:d4:5e:4a:17:7d:17:c8:91:cf: 9f:07:46:b4:1d:c4:0c:53:a8:af:28:fc:ad:f8:3d: e0:8c:13:df:52:f2:02:48:af:22:fa:b1:57:42:98: 79:41:a5:f1:9c:27:8a:6e:00:06:fe:6a:47:33:eb: 55:ae:b8:97:dd:e5:1b:c1:4a:20:5c:ff:1c:26:ef: 29:98:6b:e5:d6:c3:e1:5e:09:b2:bf:64:57:bf:9f: f0:99:03:5b:b0:e3:cf:f7:76:54:7b:79:a3:05:09: 93:93:03:3d:59:6d:bc:c5:a4:b7:04:a6:25:01:90: 93:ea:c9:c1:2c:ea:26:fb:d5:c6:bd:da:45:77:d4: cd:20:e4:f9:cf:11:67:8c:b0:3a:12:66:35:6b:8e: b6:9e:81:9c:49:20:97:7c:4e:ff:69:66:ef:b0:b3: 06:50:a8:7a:7f:a5:84:4d:e9:35:5b:03:fc:4c:2a: 64:da:0c:f0:a6:a4:36:01:d3:f7:5c:ae:a0:5f:8b: ee:ad:c1:c2:3b:f6:1a:3c:39:ec:af:89:e3:98:9d: 65:a2:55:52:87:d1:f0:3c:25:77:2e:3e:0c:c0:10: 1b:5e:ea:01:08:ce:11:51:7d:9e:07:73:f1:3d:b9: 78:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:98:0E:B4:12:38:98:9D:E0:F9:64:DC:80:75:28:A4:0D:09:DF:4D X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/596C54DCE83F11EE81772A87C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.215.72.0/21 122.252.128.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:70:24:d0:9e:56:fa:fc:60:be:f6:9b:04:01:be:8f:63:b6: d6:26:0a:88:08:54:1a:2b:14:1e:b2:16:3b:34:54:77:27:a0: 5d:b5:3c:13:d9:42:1a:9b:49:f4:83:8a:c6:14:91:a7:7e:0f: 93:93:5d:e9:aa:b7:72:79:50:0c:ad:6c:39:95:57:61:31:f8: b6:d3:72:7f:75:a3:f6:02:9a:6e:7b:eb:cf:43:83:f4:0d:37: a2:de:2c:08:ba:bf:15:58:95:bc:66:d0:8a:c4:8b:fd:ea:fe: e5:9b:9a:c6:40:a4:14:ed:e9:d0:12:24:d5:fa:b9:17:6b:96: df:ff:ba:55:85:43:9f:0d:f6:a0:37:6d:33:00:b4:81:89:98: 73:55:0a:94:f0:3b:5f:f5:9b:66:ac:49:94:f1:b9:6d:dd:02: 6c:1d:c7:81:5d:62:14:e3:9b:05:89:89:b5:e1:2e:90:19:8c: 3d:ed:12:73:13:eb:b2:c3:24:2d:2a:08:ec:3f:01:cd:59:71: 03:b8:0c:22:94:6a:a5:26:b3:95:03:0a:2b:d8:48:e5:0f:fe: 83:17:0e:ad:3a:f4:db:c3:52:ee:23:96:6f:d0:7b:40:20:15: 67:2a:4b:a9:ec:9e:6e:e8:7d:9f:83:33:f9:51:c9:8c:f2:ca: 95:9d:f6:c0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICGmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzQ4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZmNC04YjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pxlocuaw7rfhvbX7KIRl7VqTH3UXkoXfRfIkc+fB0a0HcQMU6ivKPyt+D3g jBPfUvICSK8i+rFXQph5QaXxnCeKbgAG/mpHM+tVrriX3eUbwUogXP8cJu8pmGvl 1sPhXgmyv2RXv5/wmQNbsOPP93ZUe3mjBQmTkwM9WW28xaS3BKYlAZCT6snBLOom +9XGvdpFd9TNIOT5zxFnjLA6EmY1a462noGcSSCXfE7/aWbvsLMGUKh6f6WETek1 WwP8TCpk2gzwpqQ2AdP3XK6gX4vurcHCO/YaPDnsr4njmJ1lolVSh9HwPCV3Lj4M wBAbXuoBCM4RUX2eB3PxPbl4tQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFI2YDrQS OJid4Plk3IB1KKQNCd9NMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvNTk2QzU0RENF ODNGMTFFRTgxNzcyQTg3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDdtdIAwQDevyAMA0GCSqGSIb3DQEBCwUAA4IBAQA6cCTQnlb6/GC+ 9psEAb6PY7bWJgqICFQaKxQeshY7NFR3J6BdtTwT2UIam0n0g4rGFJGnfg+Tk13p qrdyeVAMrWw5lVdhMfi203J/daP2Appue+vPQ4P0DTei3iwIur8VWJW8ZtCKxIv9 6v7lm5rGQKQU7enQEiTV+rkXa5bf/7pVhUOfDfagN20zALSBiZhzVQqU8Dtf9Ztm rEmU8blt3QJsHceBXWIU45sFiYm14S6QGYw97RJzE+uywyQtKgjsPwHNWXEDuAwi lGqlJrOVAwor2EjlD/6DFw6tOvTbw1LuI5Zv0HtAIBVnKkup7J5u6H2fgzP5UcmM 8sqVnfbA -----END CERTIFICATE-----Generated at Mon Mar 2 12:40:56 2026 by rpki-client