$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/258F8662BBDF11ED8CE89144C4F9AE02.roa File: 258F8662BBDF11ED8CE89144C4F9AE02.roa (raw, json) Hash identifier: 9GKBxAqwPTAO+hWMiV5oav3VDxVKz2FMAbeDwl8q3ik= Subject key identifier: 70:15:36:B4:0B:75:E2:B0:44:5E:B5:A5:91:2E:83:46:A9:F1:F1:B5 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 1061 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/258F8662BBDF11ED8CE89144C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:05:50 +0000 ROA not before: Tue 18 Nov 2025 16:35:04 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 54415 IP address blocks: 103.99.168.0/24 maxlen: 24 2401:b140::/48 maxlen: 48 2401:b140:1::/48 maxlen: 48 2401:b140:2::/48 maxlen: 48 2401:b140:3::/48 maxlen: 48 2401:b140:4::/48 maxlen: 48 2401:b140:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4193 (0x1061) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Nov 18 16:35:04 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48e0e-3a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:90:99:3d:c4:88:ae:f2:dd:b9:7e:6a:7a:8f: 64:65:40:92:32:5d:85:4d:4c:ab:1c:96:c4:ec:f8: 61:2c:5e:01:d9:6c:9f:1a:d3:8f:23:01:f6:da:b7: 48:be:b2:b6:3e:ab:82:95:cf:4f:33:4d:c6:f2:5d: aa:be:10:9e:d6:5f:32:a2:0d:a7:7b:af:b0:c9:51: d8:11:69:3e:d1:e1:a1:11:6f:db:65:64:30:5b:58: 32:3e:7e:78:8c:f2:71:bd:dd:05:86:8d:18:f8:b3: 2c:d9:79:4e:23:77:03:fe:40:c9:9c:a0:0f:39:44: e5:96:be:8e:15:f1:2a:c1:e7:6f:c7:a6:c4:ee:5d: c6:ba:84:7f:3b:da:39:6a:fa:96:c4:24:5b:87:7d: 2a:02:bc:c2:8e:59:42:33:22:ce:ea:d0:de:de:ab: a9:7b:a4:99:78:10:40:bf:fe:1e:77:52:e2:58:ae: 1d:27:7f:94:89:72:ad:03:55:6a:13:af:67:d0:ba: 0b:7c:5e:9c:5a:d0:ac:cf:94:8b:df:cd:63:fe:a9: 2f:38:70:1f:8c:ba:03:d1:d0:2a:e1:ae:9b:89:5e: 4f:a3:da:70:8e:ba:d1:44:9f:32:30:42:a6:e4:b5: fe:1e:44:eb:50:9d:ae:2f:66:91:5e:df:51:8f:b4: 44:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:15:36:B4:0B:75:E2:B0:44:5E:B5:A5:91:2E:83:46:A9:F1:F1:B5 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/258F8662BBDF11ED8CE89144C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.168.0/24 IPv6: 2401:b140::-2401:b140:5:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 24:c1:7c:5d:a0:81:22:82:9e:28:b1:7f:9c:4f:a3:a0:7b:60: 67:0e:d1:f2:37:4d:43:22:c1:8d:e2:35:ba:25:e9:b7:c7:1a: 6b:87:22:23:62:ed:f9:4d:a9:54:71:7e:61:56:fd:d8:e9:5a: 0c:44:d1:7c:41:db:67:fa:48:1f:51:72:ee:90:53:e3:e4:9e: bd:28:ac:7b:bd:82:13:26:f7:65:ca:0e:a7:6d:82:c7:6b:be: 6b:13:2b:24:95:c7:80:32:3f:c1:a8:15:6e:2b:8e:65:2b:cc: 77:e9:07:d6:88:03:ad:fb:25:a3:99:b7:82:a3:3b:10:66:5b: 64:fc:37:56:86:3f:07:db:f8:c3:c5:8a:da:12:da:d7:61:d9: 0b:05:61:96:85:33:78:a5:3a:06:ee:db:11:ad:ba:e6:29:fa: c5:ea:93:a0:ee:87:a3:29:a7:37:f6:86:ef:aa:6b:0d:47:87: b7:7c:15:e7:7f:0a:8d:26:e3:e5:23:cd:6b:6b:7e:e9:3f:a5: 87:b8:2b:c8:ce:62:1c:33:f6:72:89:39:d4:3e:ee:d8:2a:9c: 4c:5b:45:0f:0a:5c:d9:c7:07:91:64:d0:48:23:56:80:55:a6: a2:44:47:17:f4:71:f1:bd:d7:4a:39:15:08:89:1f:50:45:0e: c0:90:24:8f -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICEGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUxMTE4MTYzNTA0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGUwZS0zYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7JCZPcSIrvLduX5qeo9kZUCSMl2FTUyrHJbE7PhhLF4B2WyfGtOPIwH22rdI vrK2PquClc9PM03G8l2qvhCe1l8yog2ne6+wyVHYEWk+0eGhEW/bZWQwW1gyPn54 jPJxvd0Fho0Y+LMs2XlOI3cD/kDJnKAPOUTllr6OFfEqwedvx6bE7l3GuoR/O9o5 avqWxCRbh30qArzCjllCMyLO6tDe3qupe6SZeBBAv/4ed1LiWK4dJ3+UiXKtA1Vq E69n0LoLfF6cWtCsz5SL381j/qkvOHAfjLoD0dAq4a6biV5Po9pwjrrRRJ8yMEKm 5LX+HkTrUJ2uL2aRXt9Rj7REFwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFHAVNrQL deKwRF61pZEug0ap8fG1MB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVGNUUvRjM4RENGOEExMDZCMTFFOEI4Q0EwMjBCQzRGOUFFMDIvMjU4Rjg2NjJC QkRGMTFFRDhDRTg5MTQ0QzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQAZ2OoMBgEAgACMBIwEAMFBiQBsUADBwEkAbFAAAQwDQYJKoZIhvcN AQELBQADggEBACTBfF2ggSKCniixf5xPo6B7YGcO0fI3TUMiwY3iNbol6bfHGmuH IiNi7flNqVRxfmFW/djpWgxE0XxB22f6SB9Rcu6QU+Pknr0orHu9ghMm92XKDqdt gsdrvmsTKySVx4AyP8GoFW4rjmUrzHfpB9aIA637JaOZt4KjOxBmW2T8N1aGPwfb +MPFitoS2tdh2QsFYZaFM3ilOgbu2xGtuuYp+sXqk6Duh6Mppzf2hu+qaw1Hh7d8 Fed/Co0m4+UjzWtrfuk/pYe4K8jOYhwz9nKJOdQ+7tgqnExbRQ8KXNnHB5Fk0Egj VoBVpqJERxf0cfG910o5FQiJH1BFDsCQJI8= -----END CERTIFICATE-----Generated at Mon Mar 2 06:22:30 2026 by rpki-client