$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58A89B282A6A11F0AEF7CB2EC4F9AE02.roa File: 58A89B282A6A11F0AEF7CB2EC4F9AE02.roa (raw, json) Hash identifier: Uztf0+B6kMa5s6iqr/slFlrdSctByXPMRDdGmfkJdmY= Subject key identifier: EA:37:B4:2F:05:AE:40:61:D5:42:00:7B:D0:13:7B:3E:F6:FF:A4:43 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DABC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58A89B282A6A11F0AEF7CB2EC4F9AE02.roa Signing time: Sun 01 Mar 2026 23:05:18 +0000 ROA not before: Fri 02 Jan 2026 06:07:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151175 IP address blocks: 103.204.0.0/23 maxlen: 24 2400:ff20::/32 maxlen: 32 2400:ff20::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55996 (0xdabc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 2 06:07:03 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c62e-5d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e9:83:af:c6:b5:98:e2:a7:6d:d9:7b:44:15: 55:9e:04:04:0d:c8:2d:f0:80:37:62:a5:cc:06:9d: b8:10:7e:6f:4b:ee:50:a6:df:5d:5c:73:28:2c:25: b7:09:4d:23:c2:4f:3d:77:e9:d2:8b:49:f8:1f:7d: 2e:43:e5:0d:7f:c3:94:96:c0:b7:61:c9:54:f0:97: 49:2d:e1:aa:56:39:46:0c:2e:c4:6d:22:3a:09:2c: 2f:8e:38:32:de:12:91:0d:ad:8d:5c:4e:8a:78:50: 59:f1:6b:49:97:a7:4f:34:fe:a3:ba:54:a1:49:4a: 2c:d9:b7:7d:a9:35:8b:68:6d:97:91:20:4a:75:4d: 3b:83:73:be:c9:35:58:25:48:6c:dd:3e:c8:14:af: 14:36:ec:30:0e:18:52:15:b8:69:c8:f3:50:1c:4b: 06:d2:16:cd:7e:17:21:b1:14:46:24:91:e3:06:d0: fe:87:4c:03:4a:f8:09:8e:62:74:28:aa:d5:c9:98: 99:ab:e5:bc:04:e9:67:6b:e0:fd:8f:ae:82:a3:29: df:3d:99:e8:a2:77:09:88:7f:71:e9:40:d6:c0:54: b9:b7:e8:07:dd:cb:98:cd:1f:2b:09:4a:81:fb:e1: 1f:7b:bd:67:61:65:51:8e:86:29:84:d2:94:53:b1: a9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:37:B4:2F:05:AE:40:61:D5:42:00:7B:D0:13:7B:3E:F6:FF:A4:43 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58A89B282A6A11F0AEF7CB2EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.0.0/23 IPv6: 2400:ff20::/32 Signature Algorithm: sha256WithRSAEncryption 89:33:08:3c:87:09:df:57:82:b1:25:3e:b4:67:f5:4a:95:e6: 65:50:7a:a6:4c:e7:da:a7:b8:31:75:d4:f9:d3:9b:57:a3:3f: f0:e2:8b:78:fe:60:31:eb:db:ab:af:0a:01:3b:0c:d5:cb:83: 72:00:48:6b:87:b0:39:18:a1:e1:ae:c6:c9:c7:37:2c:b9:f0: da:c7:66:bd:99:83:8b:95:5b:e8:30:6d:fa:ff:e8:c9:9a:37: 4a:68:e1:3e:49:31:b4:26:bb:60:f8:28:c8:cf:18:f1:1f:b1: 9a:89:a2:79:f2:44:0c:e4:66:00:13:23:c0:39:cf:49:e7:b5: d9:ae:cf:b1:08:6e:98:d3:51:9b:e9:8b:76:03:34:04:c1:82: 7f:f2:29:bf:32:9f:ee:52:66:07:92:ad:e1:5e:ce:92:c8:d0: 79:de:72:f1:72:00:7d:96:93:3a:06:82:7f:80:71:8b:c7:52: 98:b2:5c:89:fc:14:0f:9b:d9:95:4a:2e:09:a1:25:10:a8:19: 4c:b5:f1:82:b3:1a:7a:2a:70:2b:c7:d0:0b:fe:58:8a:25:71: 06:f8:c1:55:35:45:ac:c1:ee:37:42:3a:7b:af:72:7a:25:fb: 4c:7e:5b:19:3c:24:82:bd:2f:13:3d:56:db:c6:b1:27:54:45: 3b:bb:c8:22 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDANq8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEwMjA2MDcwM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM2MmUtNWQ4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANXpg6/GtZjip23Ze0QVVZ4EBA3ILfCAN2KlzAaduBB+b0vuUKbfXVxzKCwl twlNI8JPPXfp0otJ+B99LkPlDX/DlJbAt2HJVPCXSS3hqlY5RgwuxG0iOgksL444 Mt4SkQ2tjVxOinhQWfFrSZenTzT+o7pUoUlKLNm3fak1i2htl5EgSnVNO4Nzvsk1 WCVIbN0+yBSvFDbsMA4YUhW4acjzUBxLBtIWzX4XIbEURiSR4wbQ/odMA0r4CY5i dCiq1cmYmavlvATpZ2vg/Y+ugqMp3z2Z6KJ3CYh/celA1sBUubfoB93LmM0fKwlK gfvhH3u9Z2FlUY6GKYTSlFOxqf8CAwEAAaOCAm8wggJrMB0GA1UdDgQWBBTqN7Qv Ba5AYdVCAHvQE3s+9v+kQzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU4QTg5QjI4 MkE2QTExRjBBRUY3Q0IyRUM0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWfMADANBAIAAjAHAwUAJAD/IDANBgkqhkiG9w0BAQsFAAOCAQEA iTMIPIcJ31eCsSU+tGf1SpXmZVB6pkzn2qe4MXXU+dObV6M/8OKLeP5gMevbq68K ATsM1cuDcgBIa4ewORih4a7Gycc3LLnw2sdmvZmDi5Vb6DBt+v/oyZo3SmjhPkkx tCa7YPgoyM8Y8R+xmomiefJEDORmABMjwDnPSee12a7PsQhumNNRm+mLdgM0BMGC f/IpvzKf7lJmB5Kt4V7OksjQed5y8XIAfZaTOgaCf4Bxi8dSmLJcifwUD5vZlUou CaElEKgZTLXxgrMaeipwK8fQC/5YiiVxBvjBVTVFrMHuN0I6e69yeiX7TH5bGTwk gr0vEz1W28axJ1RFO7vIIg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:06 2026 by rpki-client