$ rpki-client -vvf rpki.apnic.net/member_repository/A917A468/CE4943768C3A11E3BA0EAD2C5911EA32/7C48D49CFFBE11EBB443B639C4F9AE02.roa File: 7C48D49CFFBE11EBB443B639C4F9AE02.roa (raw, json) Hash identifier: +t94iFYVFle4iAwdV9r/vikpX91f2m9dEDikvwztt2Q= Subject key identifier: EB:92:81:65:80:28:F2:A4:FF:2F:D9:24:86:73:03:3C:0D:91:A1:F9 Certificate issuer: /CN=A917A468/serialNumber=64351608EE2AEA074C9EFFAE908C612AE7DCD369 Certificate serial: 2E0A Authority key identifier: 64:35:16:08:EE:2A:EA:07:4C:9E:FF:AE:90:8C:61:2A:E7:DC:D3:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDUWCO4q6gdMnv-ukIxhKufc02k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A468/CE4943768C3A11E3BA0EAD2C5911EA32/7C48D49CFFBE11EBB443B639C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:26:00 +0000 ROA not before: Thu 06 Mar 2025 15:32:13 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132588 IP address blocks: 58.84.48.0/22 maxlen: 22 58.84.48.0/24 maxlen: 24 58.84.49.0/24 maxlen: 24 58.84.50.0/24 maxlen: 24 58.84.51.0/24 maxlen: 24 103.240.152.0/22 maxlen: 22 103.240.152.0/24 maxlen: 24 103.240.153.0/24 maxlen: 24 103.240.154.0/24 maxlen: 24 103.240.155.0/24 maxlen: 24 103.254.0.0/24 maxlen: 24 103.254.1.0/24 maxlen: 24 103.254.2.0/24 maxlen: 24 103.254.3.0/24 maxlen: 24 116.204.136.0/22 maxlen: 22 116.204.136.0/24 maxlen: 24 116.204.137.0/24 maxlen: 24 116.204.138.0/24 maxlen: 24 116.204.139.0/24 maxlen: 24 2406:2300::/32 maxlen: 32 2407:c100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A468/CE4943768C3A11E3BA0EAD2C5911EA32/ZDUWCO4q6gdMnv-ukIxhKufc02k.crl rsync://rpki.apnic.net/member_repository/A917A468/CE4943768C3A11E3BA0EAD2C5911EA32/ZDUWCO4q6gdMnv-ukIxhKufc02k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDUWCO4q6gdMnv-ukIxhKufc02k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:35:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11786 (0x2e0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A468, serialNumber=64351608EE2AEA074C9EFFAE908C612AE7DCD369 Validity Not Before: Mar 6 15:32:13 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42248-4bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f0:90:f5:81:8d:42:0f:4e:ab:2f:ac:0c:53: 14:54:11:64:72:b4:5b:6b:27:37:d7:93:84:bc:87: c2:36:84:59:9b:16:25:ac:8b:80:62:7e:c2:b3:33: b9:03:48:1f:79:47:a3:d2:fa:13:60:4a:fd:6d:7c: c7:0b:96:8e:2e:15:0b:40:19:b2:af:c7:fe:e9:98: 24:e1:a0:36:03:a6:7d:bd:c4:b0:6a:ff:81:18:1b: 8c:91:a9:98:9f:e2:08:50:73:b3:2b:db:16:30:a1: 81:9c:c3:2b:2d:80:78:a2:1d:15:5e:20:e0:85:33: b9:89:8e:62:95:ba:20:fb:5d:65:bb:55:ae:b6:a9: f9:70:fe:66:c1:11:84:05:ae:1f:f6:16:ee:e4:ee: 19:ba:d9:eb:b5:23:c5:e9:c1:3b:32:96:2c:a7:86: c7:9c:eb:27:2e:5b:86:be:f6:dd:61:dc:c8:3a:dc: 87:dc:a5:50:a5:bc:98:fa:82:6a:04:8c:e3:eb:d4: 77:57:53:c2:c8:50:8f:4c:ed:36:ed:b5:49:df:a6: 55:e6:27:55:9e:45:a2:b4:ea:f6:50:65:1c:bf:ed: 9e:33:7e:d3:67:80:b4:48:f4:fd:75:dc:58:e4:e6: 7a:15:90:8c:36:7a:63:8b:ac:e6:03:1b:18:7c:8b: 46:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:92:81:65:80:28:F2:A4:FF:2F:D9:24:86:73:03:3C:0D:91:A1:F9 X509v3 Authority Key Identifier: keyid:64:35:16:08:EE:2A:EA:07:4C:9E:FF:AE:90:8C:61:2A:E7:DC:D3:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A468/CE4943768C3A11E3BA0EAD2C5911EA32/ZDUWCO4q6gdMnv-ukIxhKufc02k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDUWCO4q6gdMnv-ukIxhKufc02k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A468/CE4943768C3A11E3BA0EAD2C5911EA32/7C48D49CFFBE11EBB443B639C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.84.48.0/22 103.240.152.0/22 103.254.0.0/22 116.204.136.0/22 IPv6: 2406:2300::/32 2407:c100::/32 Signature Algorithm: sha256WithRSAEncryption ee:e7:a0:39:3a:97:d3:fc:d3:fd:a2:8e:eb:9b:ce:21:55:40: cc:38:e7:ec:18:c7:0a:ab:8a:92:9b:97:eb:81:03:11:ba:a2: aa:80:53:21:64:2a:ce:a3:ba:70:1f:82:89:72:04:c5:ba:fb: 6f:17:9b:d1:fa:65:8d:66:58:15:da:76:8a:8b:24:ea:d4:2e: 5b:81:d1:63:a0:79:c2:b6:bc:c8:53:7d:d9:19:b1:a6:22:7e: e4:9d:1b:bc:56:9d:19:bb:33:15:1d:ae:ac:7f:04:fa:19:ab: 19:13:5a:ea:3b:a9:4b:da:ae:ed:e9:1b:48:8b:e3:45:e4:02: 76:e1:af:6f:5e:c6:39:3e:2f:32:02:18:e9:5c:10:58:c9:52: d5:c8:e1:56:a2:fb:e4:59:a7:73:39:d8:4c:fc:aa:18:6d:b1: d3:16:b2:c5:6d:58:08:e8:46:28:9c:72:5d:c3:8a:4e:27:c1: 30:62:28:24:ac:06:d5:4c:8b:d8:dc:9c:62:b1:e8:ab:af:9d: 30:f1:29:66:30:55:29:47:3e:ca:f6:af:95:d3:d8:8e:b9:30: e1:cf:7a:39:a0:59:57:05:8d:b6:4e:cf:ff:f1:f4:15:c4:8c: 7e:97:51:13:77:4d:8f:b0:5b:14:fb:c1:fa:86:20:8c:19:ad: 43:fe:18:3e -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICLgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NjgxMTAvBgNVBAUTKDY0MzUxNjA4RUUyQUVBMDc0QzlFRkZBRTkwOEM2MTJB RTdEQ0QzNjkwHhcNMjUwMzA2MTUzMjEzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjI0OC00YmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/CQ9YGNQg9Oqy+sDFMUVBFkcrRbayc315OEvIfCNoRZmxYlrIuAYn7CszO5 A0gfeUej0voTYEr9bXzHC5aOLhULQBmyr8f+6Zgk4aA2A6Z9vcSwav+BGBuMkamY n+IIUHOzK9sWMKGBnMMrLYB4oh0VXiDghTO5iY5ilbog+11lu1Wutqn5cP5mwRGE Ba4f9hbu5O4ZutnrtSPF6cE7MpYsp4bHnOsnLluGvvbdYdzIOtyH3KVQpbyY+oJq BIzj69R3V1PCyFCPTO027bVJ36ZV5idVnkWitOr2UGUcv+2eM37TZ4C0SPT9ddxY 5OZ6FZCMNnpji6zmAxsYfItGBQIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFOuSgWWA KPKk/y/ZJIZzAzwNkaH5MB8GA1UdIwQYMBaAFGQ1FgjuKuoHTJ7/rpCMYSrn3NNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ2OC9DRTQ5NDM3NjhD M0ExMUUzQkEwRUFEMkM1OTExRUEzMi9aRFVXQ080cTZnZE1udi11a0l4aEt1ZmMw MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pEVVdDTzRxNmdkTW52LXVrSXhoS3VmYzAyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0NjgvQ0U0OTQzNzY4QzNBMTFFM0JBMEVBRDJDNTkxMUVBMzIvN0M0OEQ0OUNG RkJFMTFFQkI0NDNCNjM5QzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjAe BAIAATAYAwQCOlQwAwQCZ/CYAwQCZ/4AAwQCdMyIMBQEAgACMA4DBQAkBiMAAwUA JAfBADANBgkqhkiG9w0BAQsFAAOCAQEA7uegOTqX0/zT/aKO65vOIVVAzDjn7BjH CquKkpuX64EDEbqiqoBTIWQqzqO6cB+CiXIExbr7bxeb0fpljWZYFdp2iosk6tQu W4HRY6B5wra8yFN92RmxpiJ+5J0bvFadGbszFR2urH8E+hmrGRNa6jupS9qu7ekb SIvjReQCduGvb17GOT4vMgIY6VwQWMlS1cjhVqL75FmncznYTPyqGG2x0xayxW1Y COhGKJxyXcOKTifBMGIoJKwG1UyL2NycYrHoq6+dMPEpZjBVKUc+yvavldPYjrkw 4c96OaBZVwWNtk7P//H0FcSMfpdRE3dNj7BbFPvB+oYgjBmtQ/4YPg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:14:03 2026 by rpki-client