$ rpki-client -vvf rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa File: 58AEC9929C0F11EA9CC4217CC4F9AE02.roa (raw, json) Hash identifier: 1lJZiaXN2+jlJbSyyyT2ZVc0TvKSt6+Hz3K+SpWk1T8= Subject key identifier: 58:4F:5A:8F:89:BE:22:B7:56:94:5D:FC:81:72:94:15:7B:F8:8B:49 Certificate issuer: /CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Certificate serial: 0CE3 Authority key identifier: 9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:35:36 +0000 ROA not before: Sun 28 Sep 2025 18:49:06 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24342 IP address blocks: 103.97.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3299 (0xce3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91856C4, serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Validity Not Before: Sep 28 18:49:06 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a45cc8-9499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:ce:26:77:e0:62:29:61:0f:ea:04:4b:bb: c9:b3:62:0a:d2:ea:5e:48:46:98:1a:0b:c7:50:88: e5:ba:78:57:47:bb:e8:9e:ca:4d:9f:25:f5:27:2c: fa:36:81:e9:a4:21:46:03:dd:5f:2b:5a:75:7b:3e: 57:49:36:8d:2d:30:f4:d4:60:28:65:66:63:47:a4: d4:e5:f2:92:49:ea:a3:95:ab:91:9b:e6:a5:20:4d: e3:36:64:68:80:03:a1:e1:9e:c4:a9:b2:c6:5e:03: 91:3e:2e:cb:5e:b6:b6:cc:5d:b7:54:19:94:3f:95: 82:d1:97:0d:21:4b:f7:fa:d9:c1:ca:b0:8f:ea:7c: 63:d2:96:43:88:e6:f4:e5:d6:e0:72:70:fd:3f:aa: 9e:52:86:b3:f1:77:fb:f4:c8:2f:7f:0d:6d:61:e2: 8e:63:ad:c9:b8:6b:ae:26:7c:a2:2d:fb:10:d6:51: bc:fd:07:0e:8c:8b:34:0e:1e:5f:46:b0:93:68:72: 41:ca:0f:92:de:97:86:21:d0:75:5c:98:4d:49:19: 78:59:db:1f:8a:09:7a:32:e8:85:f2:b8:f5:0e:16: 43:24:c7:b1:29:8f:06:e5:9b:f7:25:ac:af:3e:86: b3:f7:de:10:68:d9:89:37:07:92:48:a8:ba:5d:bd: a0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:4F:5A:8F:89:BE:22:B7:56:94:5D:FC:81:72:94:15:7B:F8:8B:49 X509v3 Authority Key Identifier: keyid:9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption aa:9d:11:58:c9:8a:19:e1:fc:db:79:b6:d7:ec:34:ae:0b:5b: db:97:5b:7e:96:6c:5f:f8:29:56:bc:a8:62:8c:10:c3:b5:7c: 21:66:76:38:e5:66:8d:14:12:ee:3a:c8:22:59:1f:86:59:25: 9d:4b:7b:12:d0:2c:bd:43:f2:d7:e2:8d:fa:ba:8a:e3:4b:66: 48:82:1e:04:6f:ad:60:21:48:08:6d:47:47:aa:d9:7a:c8:c0: 65:92:f6:99:f2:bb:c1:e8:41:98:3b:d4:41:4b:ce:c9:e4:24: 93:3c:2f:ed:10:07:38:97:7a:8c:e2:b5:a8:c1:b6:b6:6c:12: 28:cc:9c:8c:4a:07:27:da:7e:53:c7:95:fa:bd:24:ac:f4:29: 40:57:70:df:cc:d2:c6:de:63:65:39:93:b1:87:80:ba:5f:49: 56:aa:91:93:08:eb:16:f8:bb:a6:34:f2:10:0e:7b:53:a9:e6: 3d:9f:00:2c:a8:27:e5:b6:1c:96:73:9c:f3:6d:0f:81:59:ac: 46:ac:b3:63:e4:3c:50:16:ff:49:b0:fb:eb:83:28:2f:3a:5f: 53:94:8d:f1:04:69:bf:bb:a4:e8:8f:23:30:7e:5b:48:35:eb: ae:d9:ec:96:d9:ca:2b:5c:db:c9:e3:dc:59:a5:8f:29:f2:6e: c3:1e:58:f3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2QzQxMTAvBgNVBAUTKDlBOUMzMUJEODc5NjczODY5QjNDOEYwNTU5NkU4ODE1 NTgyRjExRDAwHhcNMjUwOTI4MTg0OTA2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWNjOC05NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzPOJnfgYilhD+oES7vJs2IK0upeSEaYGgvHUIjlunhXR7vonspNnyX1Jyz6 NoHppCFGA91fK1p1ez5XSTaNLTD01GAoZWZjR6TU5fKSSeqjlauRm+alIE3jNmRo gAOh4Z7EqbLGXgORPi7LXra2zF23VBmUP5WC0ZcNIUv3+tnByrCP6nxj0pZDiOb0 5dbgcnD9P6qeUoaz8Xf79Mgvfw1tYeKOY63JuGuuJnyiLfsQ1lG8/QcOjIs0Dh5f RrCTaHJByg+S3peGIdB1XJhNSRl4Wdsfigl6MuiF8rj1DhZDJMexKY8G5Zv3Jayv Poaz994QaNmJNweSSKi6Xb2g4QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFhPWo+J viK3VpRd/IFylBV7+ItJMB8GA1UdIwQYMBaAFJqcMb2HlnOGmzyPBVluiBVYLxHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTZDNC9BM0JBRDhFMjA0 RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0YWJQSThGV1c2SUZWZ3ZF ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21wd3h2WWVXYzRhYlBJOEZXVzZJRlZndkVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2QzQvQTNCQUQ4RTIwNEZGMTFFQTkzRUU5QTIzQzRGOUFFMDIvNThBRUM5OTI5 QzBGMTFFQTlDQzQyMTdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ2F4MA0GCSqGSIb3DQEBCwUAA4IBAQCqnRFYyYoZ4fzbebbX7DSu C1vbl1t+lmxf+ClWvKhijBDDtXwhZnY45WaNFBLuOsgiWR+GWSWdS3sS0Cy9Q/LX 4o36uorjS2ZIgh4Eb61gIUgIbUdHqtl6yMBlkvaZ8rvB6EGYO9RBS87J5CSTPC/t EAc4l3qM4rWowba2bBIozJyMSgcn2n5Tx5X6vSSs9ClAV3DfzNLG3mNlOZOxh4C6 X0lWqpGTCOsW+LumNPIQDntTqeY9nwAsqCflthyWc5zzbQ+BWaxGrLNj5DxQFv9J sPvrgygvOl9TlI3xBGm/u6TojyMwfltINeuu2eyW2corXNvJ49xZpY8p8m7DHljz -----END CERTIFICATE-----Generated at Mon Mar 2 07:46:25 2026 by rpki-client