$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa File: 46C5452E0DD711EF85707821C4F9AE02.roa (raw, json) Hash identifier: VXncP0PhzyqKm2QEziAfAuVtMG/akEU8trZDQTOKPw8= Subject key identifier: EE:E8:55:02:E7:41:B6:20:0E:83:34:1A:A4:E4:A2:81:42:17:FA:87 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0C8C Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:50:22 +0000 ROA not before: Fri 27 Feb 2026 09:00:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 58504 IP address blocks: 103.28.84.0/22 maxlen: 22 103.28.84.0/24 maxlen: 24 103.28.85.0/24 maxlen: 24 103.28.86.0/24 maxlen: 24 103.28.87.0/24 maxlen: 24 150.107.204.0/22 maxlen: 22 150.107.204.0/24 maxlen: 24 150.107.205.0/24 maxlen: 24 150.107.206.0/24 maxlen: 24 150.107.207.0/24 maxlen: 24 2406:b700::/32 maxlen: 32 2406:b700::/48 maxlen: 48 2406:b700:2::/48 maxlen: 48 2406:b700:3::/48 maxlen: 48 2406:b700:4::/48 maxlen: 48 2406:b700:5::/48 maxlen: 48 2406:b700:6::/48 maxlen: 48 2406:b700:7::/48 maxlen: 48 2406:b700:8::/48 maxlen: 48 2406:b700:a::/48 maxlen: 48 2406:b700:b::/48 maxlen: 48 2406:b700:c::/48 maxlen: 48 2406:b700:d::/48 maxlen: 48 2406:b700:e::/48 maxlen: 48 2406:b700:f::/48 maxlen: 48 2406:b700:10::/48 maxlen: 48 2406:b700:11::/48 maxlen: 48 2406:b700:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3212 (0xc8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Feb 27 09:00:50 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47c5e-d383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:cd:62:d6:6c:45:0c:a6:ab:29:1f:9c:b4:3d: 66:0d:7c:58:d0:71:3b:15:1b:0c:82:e5:02:3c:dc: 58:9c:7f:ec:f2:1d:4a:c8:78:0a:eb:08:cb:c9:9f: 52:9c:cb:38:97:9f:98:80:1b:3a:87:a5:15:f9:c7: 7f:6c:40:a2:55:28:0b:0e:15:76:23:48:3b:00:2b: d0:e2:0d:08:fe:b1:9e:19:e8:b7:df:de:4d:e1:83: c5:c4:0e:85:c4:c3:b8:d7:3a:0f:aa:08:b7:6d:af: 81:c3:3c:b1:3b:3e:a3:ea:11:50:8d:5b:9a:cb:e6: 3f:44:2b:6a:6b:b6:49:9b:9b:c5:a0:6e:2a:c6:0e: 3b:1e:e5:02:a9:ee:7e:9c:80:73:30:fb:0f:fa:a6: bd:9c:de:bc:70:62:0e:0b:58:b3:8b:5e:49:36:a5: ab:28:1d:b3:cb:d9:d5:94:34:f3:37:14:4a:19:5b: 90:05:d4:bd:c2:08:1c:19:69:16:0a:58:15:03:91: f5:47:b5:8f:a7:1c:2c:00:74:b5:d9:3b:51:0a:3d: 9c:33:47:27:32:72:6e:1f:e4:7f:e9:47:de:22:0b: 01:70:59:43:85:15:41:68:3d:19:53:32:c8:41:ef: 6e:c3:cb:5e:51:12:e1:a2:5a:31:8b:28:cc:01:67: 94:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E8:55:02:E7:41:B6:20:0E:83:34:1A:A4:E4:A2:81:42:17:FA:87 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.28.84.0/22 150.107.204.0/22 IPv6: 2406:b700::/32 Signature Algorithm: sha256WithRSAEncryption 9d:d1:92:88:1f:19:db:36:3b:9b:cf:bf:b4:f9:62:05:d7:8d: f3:ef:1e:92:58:4e:35:6a:31:be:1e:e2:97:ce:a0:a8:f6:2f: c6:83:87:04:5a:83:cf:f4:1b:15:b7:f0:d9:62:27:10:d7:28: e1:30:f1:50:1d:be:67:71:10:fe:b7:45:e1:5e:f5:cf:a5:42: 52:04:b4:00:41:c9:81:0b:3b:82:bc:0e:e0:7b:26:87:9f:72: 74:43:49:bd:72:2d:f5:7c:38:38:5a:f5:68:5b:a7:06:70:89: 2d:94:9e:1b:aa:6f:be:fa:28:a4:37:23:a9:44:20:76:b2:f4: ea:2b:c5:6a:53:45:ee:5a:ee:ba:49:f7:7c:f0:b9:28:71:af: 92:40:81:1e:f1:84:34:44:2b:49:c0:2e:22:5e:00:00:80:7f: be:d7:ab:80:0b:85:ad:95:68:09:b0:b0:27:0c:14:81:5a:1f: 2f:9b:18:26:72:67:04:c0:a3:8d:e5:9f:46:26:d8:d5:fc:7c: 34:2a:6d:95:d1:98:89:87:15:b5:21:63:c4:19:0a:6f:50:81: 4c:16:20:6a:27:9e:da:7c:ac:93:e4:e6:a8:63:8b:a4:9e:29: 3b:4b:ff:b7:9d:52:44:3c:b5:41:e4:2c:6e:9f:80:ad:97:04: 4a:9d:fd:77 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjYwMjI3MDkwMDUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M1ZS1kMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiM1i1mxFDKarKR+ctD1mDXxY0HE7FRsMguUCPNxYnH/s8h1KyHgK6wjLyZ9S nMs4l5+YgBs6h6UV+cd/bECiVSgLDhV2I0g7ACvQ4g0I/rGeGei3395N4YPFxA6F xMO41zoPqgi3ba+BwzyxOz6j6hFQjVuay+Y/RCtqa7ZJm5vFoG4qxg47HuUCqe5+ nIBzMPsP+qa9nN68cGIOC1izi15JNqWrKB2zy9nVlDTzNxRKGVuQBdS9wggcGWkW ClgVA5H1R7WPpxwsAHS12TtRCj2cM0cnMnJuH+R/6UfeIgsBcFlDhRVBaD0ZUzLI Qe9uw8teURLholoxiyjMAWeUlQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFO7oVQLn QbYgDoM0GqTkooFCF/qHMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwMUUvNzg1RDdFRDIxQzA4MTFFQTg1NzZCMTUxQzRGOUFFMDIvNDZDNTQ1MkUw REQ3MTFFRjg1NzA3ODIxQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZxxUAwQClmvMMA0EAgACMAcDBQAkBrcAMA0GCSqGSIb3DQEBCwUA A4IBAQCd0ZKIHxnbNjubz7+0+WIF143z7x6SWE41ajG+HuKXzqCo9i/Gg4cEWoPP 9BsVt/DZYicQ1yjhMPFQHb5ncRD+t0XhXvXPpUJSBLQAQcmBCzuCvA7geyaHn3J0 Q0m9ci31fDg4WvVoW6cGcIktlJ4bqm+++iikNyOpRCB2svTqK8VqU0XuWu66Sfd8 8Lkoca+SQIEe8YQ0RCtJwC4iXgAAgH++16uAC4WtlWgJsLAnDBSBWh8vmxgmcmcE wKON5Z9GJtjV/Hw0Km2V0ZiJhxW1IWPEGQpvUIFMFiBqJ57afKyT5OaoY4uknik7 S/+3nVJEPLVB5Cxun4CtlwRKnf13 -----END CERTIFICATE-----Generated at Mon Mar 2 10:13:57 2026 by rpki-client