$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58DEB04A096E11F08A2F7049C4F9AE02.roa File: 58DEB04A096E11F08A2F7049C4F9AE02.roa (raw, json) Hash identifier: SD9PTrPBFfTmkEkwgEoWq3CLC7/e5y05ORNhVcpgFoA= Subject key identifier: 97:46:50:8E:69:49:0C:E3:81:1D:29:DE:A4:84:A4:E8:5B:3D:E0:DB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EB34 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58DEB04A096E11F08A2F7049C4F9AE02.roa Signing time: Sun 31 May 2026 17:50:20 +0000 ROA not before: Sun 31 May 2026 17:50:20 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 33480 IP address blocks: 202.162.234.0/24 maxlen: 24 202.162.235.0/24 maxlen: 24 202.162.236.0/24 maxlen: 24 202.162.237.0/24 maxlen: 24 202.162.238.0/24 maxlen: 24 202.162.239.0/24 maxlen: 24 202.162.240.0/24 maxlen: 24 202.162.241.0/24 maxlen: 24 202.162.242.0/24 maxlen: 24 202.162.243.0/24 maxlen: 24 202.162.244.0/24 maxlen: 24 202.162.245.0/24 maxlen: 24 202.162.246.0/24 maxlen: 24 202.162.247.0/24 maxlen: 24 202.162.248.0/24 maxlen: 24 202.162.250.0/24 maxlen: 24 202.162.251.0/24 maxlen: 24 202.162.252.0/24 maxlen: 24 202.162.253.0/24 maxlen: 24 202.162.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60212 (0xeb34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:50:20 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c74dc-7ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:d0:57:86:bf:83:04:48:83:77:c4:4d:80: 0e:44:90:0e:0d:fb:af:71:46:f2:52:5b:fd:9b:85: ec:6d:b1:9b:c1:c1:e3:8a:4f:c7:1d:64:19:2e:f4: 6e:e6:f3:9a:9d:91:12:ca:60:cd:4f:26:62:20:be: c7:f4:1b:77:47:68:01:12:be:6d:23:d8:65:0b:83: 51:7f:22:81:4e:de:dd:3a:0b:0b:00:50:ac:e0:e1: 1f:a3:c1:37:1c:1e:25:4f:d2:86:19:42:ff:ac:99: 72:87:90:d9:39:9b:ec:4b:cd:e6:c2:9c:d6:bd:82: 1d:f2:47:2d:f0:f9:07:b7:88:a8:95:05:dd:0f:14: 4b:62:07:38:46:97:19:92:b9:e2:ac:89:6b:8e:bf: c6:6b:4d:92:7e:df:17:18:58:05:7e:77:2a:75:93: ef:86:13:cc:03:6f:dc:4e:39:ee:45:e9:c1:2b:32: eb:ea:f6:2a:4e:c7:16:6f:a9:ea:0d:a1:ed:73:fc: f6:7e:e1:37:67:49:0b:a0:18:bc:5c:5c:64:a4:2f: af:a4:2d:e4:61:d0:84:ff:9f:20:50:28:ed:3f:77: f1:64:97:3d:74:f5:58:ec:dc:63:f7:28:b5:7a:9b: 37:35:7e:e1:52:4b:97:18:53:6f:cc:d8:cf:5b:a7: a3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:46:50:8E:69:49:0C:E3:81:1D:29:DE:A4:84:A4:E8:5B:3D:E0:DB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/58DEB04A096E11F08A2F7049C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.162.234.0-202.162.248.255 202.162.250.0-202.162.254.255 Signature Algorithm: sha256WithRSAEncryption ab:f6:4e:87:36:11:2e:d6:5e:30:2c:d7:c2:f7:76:2c:77:18: 4e:94:88:5f:1c:c6:75:3f:36:d4:57:80:5f:fa:59:1e:56:ed: a5:28:77:9b:27:d5:13:80:00:ba:7d:96:1c:39:cc:9b:87:75: e0:a7:cc:e9:ea:8c:33:27:7f:c1:a8:d8:f1:0c:ff:95:f3:1e: 24:72:72:a1:9d:2d:34:17:c8:8e:6c:a2:4a:5c:e6:32:97:7d: 31:3f:31:1c:30:31:40:1e:53:49:52:01:52:d3:15:d0:1f:cc: e6:05:0b:80:ce:cb:17:18:d2:b9:6e:f4:28:30:ed:79:64:15: 2c:e0:9d:6a:d9:68:0c:21:f0:44:2a:72:44:ce:8f:b1:52:26: 55:7b:c1:52:4d:c9:08:e0:f8:e6:cb:48:55:b0:4d:19:56:96: bf:13:aa:75:82:4c:87:93:89:28:c1:f5:89:a1:74:7d:45:fe: 4b:6c:3c:1a:6a:b2:fc:01:03:7a:40:13:77:09:ff:59:98:08: 4b:b7:b2:3b:82:2b:8d:3c:b1:4d:0c:b2:bd:c3:ec:35:88:7b: 08:75:c9:56:ff:9e:8d:a0:9b:ce:0b:de:03:6a:f4:ef:6d:36: d2:b3:3f:6f:5f:83:56:d8:41:9e:ff:bc:ed:aa:ae:99:00:7f: 41:d4:e8:78 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgIDAOs0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTAyMFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc0ZGMtN2NjZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBS0FeGv4MESIN3xE2ADkSQDg37r3FG8lJb/ZuF7G2xm8HB44pPxx1kGS70 bubzmp2REspgzU8mYiC+x/Qbd0doARK+bSPYZQuDUX8igU7e3ToLCwBQrODhH6PB NxweJU/ShhlC/6yZcoeQ2Tmb7EvN5sKc1r2CHfJHLfD5B7eIqJUF3Q8US2IHOEaX GZK54qyJa46/xmtNkn7fFxhYBX53KnWT74YTzANv3E457kXpwSsy6+r2Kk7HFm+p 6g2h7XP89n7hN2dJC6AYvFxcZKQvr6Qt5GHQhP+fIFAo7T938WSXPXT1WOzcY/co tXqbNzV+4VJLlxhTb8zYz1uno8kCAwEAAaOCAnYwggJyMB0GA1UdDgQWBBSXRlCO aUkM44EdKd6khKToWz3g2zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU4REVCMDRB MDk2RTExRjA4QTJGNzA0OUM0RjlBRTAyLnJvYTA1BggrBgEFBQcBBwEB/wQmMCQw IgQCAAEwHDAMAwQByqLqAwQAyqL4MAwDBAHKovoDBADKov4wDQYJKoZIhvcNAQEL BQADggEBAKv2Toc2ES7WXjAs18L3dix3GE6UiF8cxnU/NtRXgF/6WR5W7aUod5sn 1ROAALp9lhw5zJuHdeCnzOnqjDMnf8Go2PEM/5XzHiRycqGdLTQXyI5sokpc5jKX fTE/MRwwMUAeU0lSAVLTFdAfzOYFC4DOyxcY0rlu9Cgw7XlkFSzgnWrZaAwh8EQq ckTOj7FSJlV7wVJNyQjg+ObLSFWwTRlWlr8TqnWCTIeTiSjB9YmhdH1F/ktsPBpq svwBA3pAE3cJ/1mYCEu3sjuCK408sU0Msr3D7DWIewh1yVb/no2gm84L3gNq9O9t NtKzP29fg1bYQZ7/vO2qrpkAf0HU6Hg= -----END CERTIFICATE-----Generated at Sat Jun 13 23:41:06 2026 by rpki-client