$ rpki-client -vvf rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/58699F5EB4E411F0AEF0381FC4F9AE02.roa File: 58699F5EB4E411F0AEF0381FC4F9AE02.roa (raw, json) Hash identifier: SjCwwc0/l3mFASjbgIcuYJLD81TjGrpnKmBVX4rmehQ= Subject key identifier: 16:1B:76:C1:7B:44:FC:11:05:AE:AD:F4:A7:5A:C6:E4:B7:67:BB:83 Certificate issuer: /CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Certificate serial: 03A6 Authority key identifier: 6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/58699F5EB4E411F0AEF0381FC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:02:20 +0000 ROA not before: Wed 29 Oct 2025 16:28:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132073 IP address blocks: 103.186.52.0/24 maxlen: 24 2001:df0:a140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917624C, serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Validity Not Before: Oct 29 16:28:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42acc-2e0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:25:aa:4a:fc:9f:99:02:f9:2c:47:d0:f9: 47:07:8e:e2:7d:54:19:07:ef:b0:e0:5e:c9:cf:9b: ca:ee:2f:2d:12:99:97:27:0d:45:80:24:03:ac:59: ae:a4:92:0d:ab:1c:54:85:df:d1:13:c8:58:06:0d: 7e:ca:b6:5c:1d:cb:90:7a:68:cb:99:08:ea:b9:37: 40:7f:d7:1d:fb:f3:17:89:f4:ca:35:55:13:7d:00: 1f:ef:39:d8:f9:46:a4:b2:5c:c3:0b:ac:0e:3d:bf: 37:4a:3f:ca:60:91:3a:02:71:92:aa:e0:20:7d:a8: 0a:51:a0:9a:ec:12:5d:8d:88:67:91:af:cd:e1:14: 2d:87:58:05:3c:58:6e:1a:dd:59:22:6b:ed:3b:01: 15:2d:df:c6:44:ad:8f:6e:57:a2:33:b7:6d:87:81: 98:38:c2:5b:3e:6a:7b:ea:2d:18:c1:3b:e9:37:2c: 1b:c3:28:03:55:55:0a:1d:1b:fa:c8:09:af:c2:18: 5d:c3:04:68:cb:50:c6:9a:81:b1:5e:b5:ac:79:4d: 29:62:76:30:f4:85:d4:0b:d8:a2:fa:65:6a:e4:bc: d1:51:c6:6a:d4:94:b7:8b:9b:f8:fd:cc:05:d7:6e: a6:6e:7b:ea:b7:20:b8:7e:3e:3c:61:d7:f6:db:56: 79:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:1B:76:C1:7B:44:FC:11:05:AE:AD:F4:A7:5A:C6:E4:B7:67:BB:83 X509v3 Authority Key Identifier: keyid:6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/58699F5EB4E411F0AEF0381FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.52.0/24 IPv6: 2001:df0:a140::/48 Signature Algorithm: sha256WithRSAEncryption ba:7e:1c:7e:90:65:ec:03:6f:9c:6c:1b:71:a8:fc:26:4c:65: b2:b0:78:3c:1c:29:64:32:26:9e:74:da:e5:be:47:5a:b6:9c: 81:5f:86:2b:5f:0f:77:57:26:ff:f0:34:33:cc:06:32:79:18: 9d:77:b3:29:01:7f:57:14:b8:84:38:e2:44:e4:c7:c8:c6:7d: b4:e1:07:92:2b:ae:aa:4b:06:04:40:44:9b:b3:24:68:de:da: 90:e9:3e:58:df:4d:fc:25:1a:57:bf:cb:ed:cb:91:54:17:0b: d2:45:8f:8e:e4:ca:4d:8c:5f:84:46:95:f7:50:3c:75:a5:e5: 63:28:f1:76:cd:24:a2:f7:44:2a:73:60:85:6b:ce:b2:98:57: dd:fe:aa:56:07:b7:79:c1:31:b0:44:18:b0:6f:01:b3:e9:39: bf:6a:af:7c:59:19:84:a1:95:63:a6:ee:6e:2d:4d:64:c5:9c: ae:6d:20:6f:70:37:f2:18:d6:fa:0a:1d:0a:cb:b0:62:b8:dc: 2e:3a:4f:59:b8:a4:ff:2b:c3:8c:29:2b:85:d6:ca:27:e7:00: d1:e8:bd:ee:3a:f4:c7:19:2e:c8:28:22:1d:86:a3:b6:08:c9: ff:d3:6b:3f:cd:aa:0d:90:e4:44:07:58:2a:59:af:7f:5f:3a: b0:8d:fd:59 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYyNEMxMTAvBgNVBAUTKDZEODBGRUI1MTc4MEY3RjEwNkU2MTkwREMzRTJFRTdD RTc0RUVGQkIwHhcNMjUxMDI5MTYyODQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmFjYy0yZTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxIlqkr8n5kC+SxH0PlHB47ifVQZB++w4F7Jz5vK7i8tEpmXJw1FgCQDrFmu pJINqxxUhd/RE8hYBg1+yrZcHcuQemjLmQjquTdAf9cd+/MXifTKNVUTfQAf7znY +UakslzDC6wOPb83Sj/KYJE6AnGSquAgfagKUaCa7BJdjYhnka/N4RQth1gFPFhu Gt1ZImvtOwEVLd/GRK2PbleiM7dth4GYOMJbPmp76i0YwTvpNywbwygDVVUKHRv6 yAmvwhhdwwRoy1DGmoGxXrWseU0pYnYw9IXUC9ii+mVq5LzRUcZq1JS3i5v4/cwF 126mbnvqtyC4fj48Ydf221Z5wQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFBYbdsF7 RPwRBa6t9KdaxuS3Z7uDMB8GA1UdIwQYMBaAFG2A/rUXgPfxBuYZDcPi7nznTu+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjI0Qy9CQjUwRDlEMEQw NkMxMUVDQjJBQUFBMzdDNEY5QUUwMi9iWUQtdFJlQTlfRUc1aGtOdy1MdWZPZE83 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JZRC10UmVBOV9FRzVoa053LUx1Zk9kTzc3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYyNEMvQkI1MEQ5RDBEMDZDMTFFQ0IyQUFBQTM3QzRGOUFFMDIvNTg2OTlGNUVC NEU0MTFGMEFFRjAzODFGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ7o0MA8EAgACMAkDBwAgAQ3woUAwDQYJKoZIhvcNAQELBQADggEB ALp+HH6QZewDb5xsG3Go/CZMZbKweDwcKWQyJp502uW+R1q2nIFfhitfD3dXJv/w NDPMBjJ5GJ13sykBf1cUuIQ44kTkx8jGfbThB5IrrqpLBgRARJuzJGje2pDpPljf TfwlGle/y+3LkVQXC9JFj47kyk2MX4RGlfdQPHWl5WMo8XbNJKL3RCpzYIVrzrKY V93+qlYHt3nBMbBEGLBvAbPpOb9qr3xZGYShlWOm7m4tTWTFnK5tIG9wN/IY1voK HQrLsGK43C46T1m4pP8rw4wpK4XWyifnANHove469McZLsgoIh2Go7YIyf/Taz/N qg2Q5EQHWCpZr39fOrCN/Vk= -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:06 2026 by rpki-client