$ rpki-client -vvf rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/59029A32233A11E78D48837AC4F9AE02.roa File: 59029A32233A11E78D48837AC4F9AE02.roa (raw, json) Hash identifier: WIpg/C0+mdeSedmqfZ06RVv1H9xr5zVXBw6+Fs0Ejjc= Subject key identifier: F3:2A:98:28:5E:A7:9F:15:EF:65:4D:10:BD:D8:E2:47:DB:66:7E:B7 Certificate issuer: /CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Certificate serial: 1B8F Authority key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/59029A32233A11E78D48837AC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:15:17 +0000 ROA not before: Tue 20 May 2025 16:36:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45766 IP address blocks: 43.251.84.0/22 maxlen: 24 103.216.56.0/22 maxlen: 22 103.216.56.0/22 maxlen: 24 103.216.56.0/23 maxlen: 23 103.216.56.0/23 maxlen: 24 103.216.56.0/24 maxlen: 24 103.216.57.0/24 maxlen: 24 103.216.58.0/23 maxlen: 23 103.216.58.0/23 maxlen: 24 103.216.58.0/24 maxlen: 24 103.216.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7055 (0x1b8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Validity Not Before: May 20 16:36:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a41fc5-e704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a7:6a:90:2e:ae:ae:83:08:b6:47:28:91:d1: bf:cb:39:39:2f:87:da:93:7b:2b:de:69:fd:82:ae: ac:b4:8d:86:2f:69:b0:ef:a8:f7:16:88:07:c7:e7: 42:45:9c:d1:ce:8b:80:9f:34:e6:45:4f:e4:e4:a4: f0:db:9e:6d:84:a0:68:5d:84:8b:ec:23:ec:e7:56: 79:95:be:1e:e3:4b:36:10:ff:4c:88:cc:6a:02:47: 3b:6f:bd:29:76:24:1b:50:4b:16:71:e2:9d:13:bf: 35:4a:b5:ed:89:4d:18:d2:ba:45:88:9d:4d:3a:fe: 3b:31:ce:ac:b3:30:6f:0d:06:e1:01:8e:14:00:91: 8b:a6:37:93:e5:de:29:05:56:9d:cb:e7:01:90:8c: 9b:48:0e:a7:29:5c:6e:2e:77:f9:1f:18:68:65:38: cb:81:5d:4a:26:d0:d5:c7:1a:ef:28:37:d9:0c:cd: 47:1f:a4:30:4d:28:d3:5e:7a:bc:4c:4d:2b:97:1f: d0:e1:4a:8b:2e:11:19:af:42:09:f9:cf:7f:69:ee: e5:64:16:60:4c:89:0e:52:8f:4d:e4:e9:d2:26:51: 08:f9:e4:2c:29:41:70:56:46:cd:10:9c:cd:0e:9f: 20:97:bf:1a:4f:30:24:23:20:3b:65:20:e9:b2:aa: 7e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2A:98:28:5E:A7:9F:15:EF:65:4D:10:BD:D8:E2:47:DB:66:7E:B7 X509v3 Authority Key Identifier: keyid:BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/59029A32233A11E78D48837AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.251.84.0/22 103.216.56.0/22 Signature Algorithm: sha256WithRSAEncryption 25:4b:4e:9d:5b:2f:5d:2e:05:58:08:57:84:2d:14:b7:a0:5d: 56:44:f4:d9:25:10:be:96:05:02:27:7e:3c:8f:b7:c3:4d:eb: 72:1b:99:c4:2b:28:93:49:87:3f:9a:bc:0a:60:04:7c:a7:7a: 43:1f:87:71:3a:0f:86:ca:5c:99:aa:7e:4c:b4:68:c6:9e:e7: ca:d5:c2:08:88:05:ee:5d:35:2d:38:52:be:05:b9:2f:65:dd: d8:fa:9d:dd:cb:1a:4f:e8:8a:57:a4:25:6a:49:84:a2:86:52: b0:36:1c:a0:45:3c:3b:89:e1:5d:65:d1:68:b1:dc:35:1a:c9: a6:82:67:eb:84:8a:e0:9b:8f:e0:b0:6e:27:d7:f3:07:a5:ce: 2b:ad:6d:92:82:52:a9:0b:ad:f5:81:65:28:04:92:2b:a1:12: a8:5f:6f:c3:8e:bc:59:e5:1c:ce:90:01:33:d8:52:59:eb:49: b2:d6:68:11:53:9a:c2:4c:0d:26:ce:b1:37:dd:12:f6:38:41: 4c:95:af:56:02:ba:57:61:6f:73:2d:91:01:cd:9c:30:2e:de: f2:af:1e:bb:79:1a:56:1e:3d:7d:c3:05:f1:aa:4e:04:b9:d4: e7:4d:65:67:d1:8a:af:8d:b6:71:bf:32:dd:80:24:cf:06:2d: 2d:ff:e1:6d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICG48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NkQxMTAvBgNVBAUTKEJEOEY1MzgxRTE4OEU0NTgwRkIyNDcyQzI3MUEwNTQy OUUyRDVDMjIwHhcNMjUwNTIwMTYzNjMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWZjNS1lNzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKdqkC6uroMItkcokdG/yzk5L4fak3sr3mn9gq6stI2GL2mw76j3FogHx+dC RZzRzouAnzTmRU/k5KTw255thKBoXYSL7CPs51Z5lb4e40s2EP9MiMxqAkc7b70p diQbUEsWceKdE781SrXtiU0Y0rpFiJ1NOv47Mc6sszBvDQbhAY4UAJGLpjeT5d4p BVady+cBkIybSA6nKVxuLnf5HxhoZTjLgV1KJtDVxxrvKDfZDM1HH6QwTSjTXnq8 TE0rlx/Q4UqLLhEZr0IJ+c9/ae7lZBZgTIkOUo9N5OnSJlEI+eQsKUFwVkbNEJzN Dp8gl78aTzAkIyA7ZSDpsqp+VQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPMqmChe p58V72VNEL3Y4kfbZn63MB8GA1UdIwQYMBaAFL2PU4HhiORYD7JHLCcaBUKeLVwi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY2RC8xRUIwOTI1NDIz MzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVGZ1Bza2NzSnhvRlFwNHRY Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZOVRnZUdJNUZnUHNrY3NKeG9GUXA0dFhDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ2NkQvMUVCMDkyNTQyMzM5MTFFN0EwNkIyNTc5QzRGOUFFMDIvNTkwMjlBMzIy MzNBMTFFNzhENDg4MzdBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/tUAwQCZ9g4MA0GCSqGSIb3DQEBCwUAA4IBAQAlS06dWy9dLgVY CFeELRS3oF1WRPTZJRC+lgUCJ348j7fDTetyG5nEKyiTSYc/mrwKYAR8p3pDH4dx Og+GylyZqn5MtGjGnufK1cIIiAXuXTUtOFK+BbkvZd3Y+p3dyxpP6IpXpCVqSYSi hlKwNhygRTw7ieFdZdFosdw1GsmmgmfrhIrgm4/gsG4n1/MHpc4rrW2SglKpC631 gWUoBJIroRKoX2/DjrxZ5RzOkAEz2FJZ60my1mgRU5rCTA0mzrE33RL2OEFMla9W ArpXYW9zLZEBzZwwLt7yrx67eRpWHj19wwXxqk4EudTnTWVn0YqvjbZxvzLdgCTP Bi0t/+Ft -----END CERTIFICATE-----Generated at Mon Mar 2 13:38:30 2026 by rpki-client