$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa File: D34588789F8A11ECB8E03812C4F9AE02.roa (raw, json) Hash identifier: rasmIGbbkGyXUadctbc+VdY6lJu2lwrTgiDYqa6HQ3Y= Subject key identifier: AB:08:30:DE:F1:9B:49:76:E6:2A:80:24:84:50:B0:43:50:CC:A5:87 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 1051 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:37:27 +0000 ROA not before: Mon 26 Jan 2026 17:14:43 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59249 IP address blocks: 58.84.33.0/24 maxlen: 24 58.84.34.0/24 maxlen: 24 58.84.35.0/24 maxlen: 24 103.197.49.0/24 maxlen: 24 103.254.94.0/24 maxlen: 24 103.254.167.0/24 maxlen: 24 2404:9d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4177 (0x1051) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Jan 26 17:14:43 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44f27-78a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:f1:5d:7a:e6:5c:0e:1d:5b:8b:d1:51:30: 8a:54:cc:a0:2e:45:47:d2:5e:5e:a7:f1:3e:20:fe: 57:90:c2:03:7c:d8:89:a7:f8:6c:0f:73:87:a8:17: 9b:3c:62:47:e1:a8:e0:a6:6f:36:fd:62:6f:e2:4d: b7:db:2c:7b:eb:e3:8f:64:da:8a:95:30:45:3b:74: d0:6e:59:89:b6:04:ae:e1:5d:a6:b2:3a:a1:1e:ef: a0:40:0a:bb:cb:33:79:73:24:d8:6f:08:fb:bf:76: 15:f9:c6:32:f9:45:71:f9:27:70:5b:13:7f:9e:3a: 2d:4c:45:cb:8e:c3:6e:1e:ff:fd:6a:e6:74:0d:3e: 79:ab:e0:9d:71:10:cd:d5:ca:2c:c9:2c:21:4b:78: 9f:06:1a:38:e2:9a:5f:75:a5:3c:26:ce:9b:43:02: 5b:05:66:10:14:23:48:4f:aa:6b:b0:44:fe:31:7c: 77:f3:45:a3:da:ab:bc:57:bb:58:6c:35:50:25:21: a6:34:61:f7:fc:f9:ed:84:e1:c0:ca:8d:08:d1:f2: ca:36:94:a2:c7:f1:17:51:0f:c8:d0:1b:51:48:e7: 26:7b:03:30:ba:c9:54:72:d5:81:4f:29:cf:36:98: 43:8d:58:af:68:05:83:9b:ca:59:bf:c3:b9:04:af: 18:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:08:30:DE:F1:9B:49:76:E6:2A:80:24:84:50:B0:43:50:CC:A5:87 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.84.33.0-58.84.35.255 103.197.49.0/24 103.254.94.0/24 103.254.167.0/24 IPv6: 2404:9d80::/32 Signature Algorithm: sha256WithRSAEncryption 50:a7:80:55:55:a9:f9:87:ec:ff:b8:03:c2:b6:43:bb:a9:08: 02:70:74:a6:e0:d9:ad:f5:d3:93:b7:89:23:22:0f:a0:7e:83: 69:6c:65:3b:df:70:6e:21:d1:0f:5c:e0:ea:97:d2:56:10:65: 5c:36:b5:be:5c:7e:f3:b1:5a:f7:93:ca:1c:85:80:ac:12:4d: 3f:d1:84:1c:5c:36:9e:59:9a:9c:f4:be:a9:a4:90:87:dd:9b: a1:6f:98:b5:ca:21:02:a7:72:ca:74:0e:9d:79:45:d4:bc:23: 1a:00:ae:71:b8:af:66:6b:be:84:07:50:1a:1d:a7:54:98:2f: ee:86:52:a1:17:65:3f:52:ff:5e:8c:9d:32:0f:44:d6:4b:2d: 9a:7e:b7:93:c9:f5:b0:4b:fe:cf:83:bd:53:26:ec:6a:e1:40: ff:7f:05:51:0d:95:1d:eb:db:c9:9c:ed:60:f2:3f:30:cd:8b: 1f:40:b3:86:c0:8e:bb:5e:04:ac:4d:4d:d6:44:3a:d3:fd:be: c7:99:49:67:38:6b:d5:72:7b:1a:5d:5d:00:2f:90:94:f3:79: cc:0e:df:26:05:14:cb:e2:3b:a5:fe:9c:27:ba:20:d8:4e:23: 1d:06:d3:00:32:a8:42:ba:e8:76:9b:ab:d7:26:7e:56:7f:92: f9:89:90:d6 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgICEFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjYwMTI2MTcxNDQzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGYyNy03OGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7jxXXrmXA4dW4vRUTCKVMygLkVH0l5ep/E+IP5XkMIDfNiJp/hsD3OHqBeb PGJH4ajgpm82/WJv4k232yx76+OPZNqKlTBFO3TQblmJtgSu4V2msjqhHu+gQAq7 yzN5cyTYbwj7v3YV+cYy+UVx+SdwWxN/njotTEXLjsNuHv/9auZ0DT55q+CdcRDN 1cosySwhS3ifBho44ppfdaU8Js6bQwJbBWYQFCNIT6prsET+MXx380Wj2qu8V7tY bDVQJSGmNGH3/PnthOHAyo0I0fLKNpSix/EXUQ/I0BtRSOcmewMwuslUctWBTynP NphDjVivaAWDm8pZv8O5BK8YEwIDAQABo4ICiTCCAoUwHQYDVR0OBBYEFKsIMN7x m0l25iqAJIRQsENQzKWHMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZBRDIvODM0QUM0Nzg1OUJGMTFFOTg5QjkzQjYzQzRGOUFFMDIvRDM0NTg4Nzg5 RjhBMTFFQ0I4RTAzODEyQzRGOUFFMDIucm9hMEgGCCsGAQUFBwEHAQH/BDkwNzAm BAIAATAgMAwDBAA6VCEDBAI6VCADBABnxTEDBABn/l4DBABn/qcwDQQCAAIwBwMF ACQEnYAwDQYJKoZIhvcNAQELBQADggEBAFCngFVVqfmH7P+4A8K2Q7upCAJwdKbg 2a3105O3iSMiD6B+g2lsZTvfcG4h0Q9c4OqX0lYQZVw2tb5cfvOxWveTyhyFgKwS TT/RhBxcNp5Zmpz0vqmkkIfdm6FvmLXKIQKncsp0Dp15RdS8IxoArnG4r2ZrvoQH UBodp1SYL+6GUqEXZT9S/16MnTIPRNZLLZp+t5PJ9bBL/s+DvVMm7GrhQP9/BVEN lR3r28mc7WDyPzDNix9As4bAjrteBKxNTdZEOtP9vseZSWc4a9VyexpdXQAvkJTz ecwO3yYFFMviO6X+nCe6INhOIx0G0wAyqEK66Habq9cmflZ/kvmJkNY= -----END CERTIFICATE-----Generated at Mon Mar 2 06:26:44 2026 by rpki-client