$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/2958A208394011EF8BFF2329C4F9AE02.roa File: 2958A208394011EF8BFF2329C4F9AE02.roa (raw, json) Hash identifier: j8zPimmUKE8p8dATGQl7pSw0HZC2Oivbs1po3giv3uc= Subject key identifier: 5D:5E:55:F8:6C:8D:69:F8:90:DC:0F:60:92:07:5F:5E:00:BB:8B:06 Certificate issuer: /CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Certificate serial: 1A42 Authority key identifier: ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/2958A208394011EF8BFF2329C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:55:26 +0000 ROA not before: Sat 02 Aug 2025 16:55:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4620 IP address blocks: 43.255.56.0/24 maxlen: 24 203.78.149.0/24 maxlen: 24 203.78.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6722 (0x1a42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Validity Not Before: Aug 2 16:55:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4616e-00ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a0:af:ea:8f:59:eb:40:45:98:2b:9e:d2:8c: a4:dc:f3:a1:95:a6:4e:c7:4a:0a:86:cb:cb:f4:db: 88:bd:85:9a:41:b0:eb:27:de:d9:f9:f8:a9:38:8e: 5a:ca:9d:9d:6b:7e:f3:ba:82:dd:fd:a2:91:40:5f: 31:73:01:9f:e4:82:6e:f5:ff:54:21:3c:2f:23:d3: 0f:e7:e3:b2:09:22:d9:ff:b5:4c:dc:29:11:f5:80: bb:5f:d0:37:05:33:db:da:db:6a:5d:e1:e6:f9:38: 67:6e:f4:89:25:11:23:25:d4:f8:7e:ed:5a:ac:c9: a0:31:44:c9:ca:e9:79:13:93:24:4d:8a:63:16:c4: 14:c7:a8:35:bc:38:17:a2:1e:df:d2:5d:f1:8e:9a: af:8b:ef:37:ad:91:45:78:34:c7:91:49:43:e7:5e: 52:47:94:92:a4:f5:d5:57:3f:e9:36:6e:7f:ea:4e: 12:44:0a:a7:c5:f2:4a:36:81:fd:61:57:8d:16:92: 78:3e:42:5a:2c:a3:77:42:c3:09:1a:19:a4:e9:79: da:dd:45:07:c5:3e:8a:cd:56:7a:fa:43:7d:bf:2a: b7:93:ec:0e:5a:c3:43:88:16:1b:00:aa:42:f1:42: ea:c1:b9:42:84:39:5e:6f:81:78:87:30:9b:46:a0: f4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:5E:55:F8:6C:8D:69:F8:90:DC:0F:60:92:07:5F:5E:00:BB:8B:06 X509v3 Authority Key Identifier: keyid:ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/2958A208394011EF8BFF2329C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.255.56.0/24 203.78.149.0/24 203.78.151.0/24 Signature Algorithm: sha256WithRSAEncryption b8:7c:3c:c0:8d:13:5a:ad:b7:6a:76:b7:82:b1:8d:21:6a:c3: b0:63:24:b7:58:da:79:53:d5:61:57:37:78:1d:7f:d3:46:35: c4:a0:2b:fc:0d:cf:ef:43:65:2f:ed:78:d4:c1:e4:58:44:1c: 79:4f:5f:65:12:5a:5e:10:e6:b3:c2:4e:63:99:f4:cb:12:1e: 27:37:a5:45:7a:45:41:17:59:db:9e:34:81:25:ed:1f:6b:19: 74:fa:cc:12:ef:dc:67:0b:67:e7:aa:0e:4e:ad:22:b6:ba:0b: 3c:6f:8d:e5:31:cd:40:3a:02:d2:bd:91:2f:04:09:d2:3c:27: a4:2a:cb:8f:2c:5b:2c:70:80:85:1e:7d:64:61:d7:91:4d:6f: a6:8d:3b:71:fc:8d:ae:82:9e:5c:3d:63:ba:27:27:21:bf:fe: a3:a1:a8:2f:8f:ec:4e:51:34:39:fc:9a:03:7f:ba:90:63:7a: 54:1d:98:83:65:49:00:6b:62:cc:47:6e:85:44:95:4f:ab:c0: e9:58:a9:4f:9b:79:fb:99:f0:88:0b:23:78:64:ab:11:2b:0a: 72:ac:c1:cc:a7:0c:e9:a6:3c:11:05:95:cf:ac:33:35:c3:80: 58:67:53:2a:16:56:38:7c:11:e2:ec:0a:4f:d4:d3:93:9d:c5: 67:02:8b:ca -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKEVEMzY5NDIxOERDQjFFQUYzRDFBRjVDNkFCQzAzMUE2 REI3RTZDRTUwHhcNMjUwODAyMTY1NTA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjE2ZS0wMGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqCv6o9Z60BFmCue0oyk3POhlaZOx0oKhsvL9NuIvYWaQbDrJ97Z+fipOI5a yp2da37zuoLd/aKRQF8xcwGf5IJu9f9UITwvI9MP5+OyCSLZ/7VM3CkR9YC7X9A3 BTPb2ttqXeHm+ThnbvSJJREjJdT4fu1arMmgMUTJyul5E5MkTYpjFsQUx6g1vDgX oh7f0l3xjpqvi+83rZFFeDTHkUlD515SR5SSpPXVVz/pNm5/6k4SRAqnxfJKNoH9 YVeNFpJ4PkJaLKN3QsMJGhmk6Xna3UUHxT6KzVZ6+kN9vyq3k+wOWsNDiBYbAKpC 8ULqwblChDleb4F4hzCbRqD01wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFF1eVfhs jWn4kNwPYJIHX14Au4sGMB8GA1UdIwQYMBaAFO02lCGNyx6vPRr1xqvAMabbfmzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85RDIwMERCQzZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhxODlHdlhHcThBeHB0dC1i T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUYVVJWTNMSHE4OUd2WEdxOEF4cHR0LWJPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVBRjMvOUQyMDBEQkM2RDE4MTFFN0E4MTVEQTgwQzRGOUFFMDIvMjk1OEEyMDgz OTQwMTFFRjhCRkYyMzI5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAK/84AwQAy06VAwQAy06XMA0GCSqGSIb3DQEBCwUAA4IBAQC4fDzA jRNarbdqdreCsY0hasOwYyS3WNp5U9VhVzd4HX/TRjXEoCv8Dc/vQ2Uv7XjUweRY RBx5T19lElpeEOazwk5jmfTLEh4nN6VFekVBF1nbnjSBJe0faxl0+swS79xnC2fn qg5OrSK2ugs8b43lMc1AOgLSvZEvBAnSPCekKsuPLFsscICFHn1kYdeRTW+mjTtx /I2ugp5cPWO6Jychv/6joagvj+xOUTQ5/JoDf7qQY3pUHZiDZUkAa2LMR26FRJVP q8DpWKlPm3n7mfCICyN4ZKsRKwpyrMHMpwzppjwRBZXPrDM1w4BYZ1MqFlY4fBHi 7ApP1NOTncVnAovK -----END CERTIFICATE-----Generated at Mon Mar 2 14:30:00 2026 by rpki-client