$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/DF8602D05E5B11ED994E491CC4F9AE02.roa File: DF8602D05E5B11ED994E491CC4F9AE02.roa (raw, json) Hash identifier: Aq2aXJwiDmleCL4Y5dXro6eaNkC/MLx9wlaLd0aot6I= Subject key identifier: D8:C3:CE:33:0A:58:02:3C:15:C6:C3:5D:40:B8:13:50:EA:41:FF:D1 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3615 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/DF8602D05E5B11ED994E491CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:23:43 +0000 ROA not before: Tue 04 Nov 2025 14:30:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38851 IP address blocks: 58.115.0.0/18 maxlen: 18 58.115.8.0/21 maxlen: 21 58.115.16.0/20 maxlen: 20 58.115.32.0/19 maxlen: 19 58.115.48.0/21 maxlen: 24 58.115.192.0/20 maxlen: 20 203.133.56.0/24 maxlen: 24 203.203.220.0/22 maxlen: 22 203.203.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13845 (0x3615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Nov 4 14:30:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4842f-a5ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1f:46:52:29:9e:51:16:10:a6:c3:fc:7f:51: f1:b5:44:5e:c1:f2:b6:dd:9b:6b:c6:55:e7:aa:07: 20:70:91:75:3a:be:a1:17:60:6e:36:8f:0a:e7:60: 59:77:1b:4d:08:db:f5:79:df:dd:aa:34:18:c9:8a: 20:d1:c9:9e:d7:b6:cf:95:fd:b7:61:a8:6c:c7:6c: 4f:62:d0:28:1b:ca:48:e1:ae:17:86:76:b6:c0:4f: 0d:2d:c3:60:8f:c6:70:e6:75:84:e2:50:73:57:84: b1:d9:38:68:bc:72:07:75:80:4c:36:00:75:18:e6: 8a:ba:1d:8e:d6:12:37:8b:c9:49:5c:25:0b:af:8a: e8:2f:63:19:db:09:c8:d9:49:44:4e:fe:42:17:a5: 5e:61:18:bf:73:ea:27:96:5a:81:f1:f8:ec:1d:0e: 6d:aa:3a:ea:ab:57:4b:3e:a7:1c:48:22:08:92:54: 5b:2c:51:a0:46:0d:65:18:a4:6c:fe:25:79:c1:99: 8b:6e:67:13:54:37:bb:89:c2:52:1e:5b:93:28:ad: 71:94:8d:7d:46:71:15:38:7c:72:86:a4:41:bb:05: 3d:b8:bd:75:90:99:21:9e:a1:31:62:60:e1:2a:4b: c1:77:01:54:0c:23:a1:7a:37:a0:48:73:a1:ed:93: 8e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C3:CE:33:0A:58:02:3C:15:C6:C3:5D:40:B8:13:50:EA:41:FF:D1 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/DF8602D05E5B11ED994E491CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.115.0.0/18 58.115.192.0/20 203.133.56.0/24 203.203.220.0-203.203.255.255 Signature Algorithm: sha256WithRSAEncryption 00:7b:a7:68:47:5e:c9:f4:eb:7c:fa:2a:cf:d8:b9:dc:3a:26: 53:8d:d6:6f:15:11:46:69:0a:c6:83:27:a4:a7:42:c6:03:7d: e9:db:8e:b3:19:a6:c1:e5:c9:8b:a2:69:c3:e2:39:39:e8:e0: 22:d8:54:42:39:9a:f7:18:27:8f:89:61:e4:f2:4f:dc:b6:ed: f9:5c:f2:73:8e:c5:82:32:fd:81:ba:be:c0:47:e4:e7:ff:70: 3b:e4:3f:88:8e:a8:2c:5a:32:51:f2:d7:45:64:6c:7b:48:28: 79:17:b8:5f:90:52:d0:df:40:e7:b7:0b:22:75:1d:7c:6b:b0: 7a:0b:c2:ed:b5:78:aa:7c:66:a2:53:81:03:92:24:54:56:5c: ed:0e:a4:1e:91:05:78:bf:79:04:ea:8d:27:32:51:cc:b0:9d: 0a:ef:75:4d:4d:7f:8e:b4:4b:49:98:67:3b:a0:67:de:27:3b: bb:fe:d9:2f:b3:db:6d:85:70:e6:d9:f9:06:fa:76:8f:b1:5c: 7f:57:fb:4b:00:76:7c:67:91:55:6b:fb:13:ec:94:22:00:c0: 78:f9:f5:de:16:ab:bf:c4:71:24:a9:99:50:a6:57:d0:ab:3d: fb:b4:56:75:bd:ad:b2:9a:5d:26:4c:cd:36:ec:c0:23:ef:08: 78:69:dc:11 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgICNhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMTA0MTQzMDIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQyZi1hNWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuB9GUimeURYQpsP8f1HxtURewfK23ZtrxlXnqgcgcJF1Or6hF2BuNo8K52BZ dxtNCNv1ed/dqjQYyYog0cme17bPlf23Yahsx2xPYtAoG8pI4a4Xhna2wE8NLcNg j8Zw5nWE4lBzV4Sx2ThovHIHdYBMNgB1GOaKuh2O1hI3i8lJXCULr4roL2MZ2wnI 2UlETv5CF6VeYRi/c+onllqB8fjsHQ5tqjrqq1dLPqccSCIIklRbLFGgRg1lGKRs /iV5wZmLbmcTVDe7icJSHluTKK1xlI19RnEVOHxyhqRBuwU9uL11kJkhnqExYmDh KkvBdwFUDCOhejegSHOh7ZOObQIDAQABo4ICeTCCAnUwHQYDVR0OBBYEFNjDzjMK WAI8FcbDXUC4E1DqQf/RMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvREY4NjAyRDA1 RTVCMTFFRDk5NEU0OTFDQzRGOUFFMDIucm9hMDgGCCsGAQUFBwEHAQH/BCkwJzAl BAIAATAfAwQGOnMAAwQEOnPAAwQAy4U4MAsDBALLy9wDAwLLyDANBgkqhkiG9w0B AQsFAAOCAQEAAHunaEdeyfTrfPoqz9i53DomU43WbxURRmkKxoMnpKdCxgN96duO sxmmweXJi6Jpw+I5OejgIthUQjma9xgnj4lh5PJP3Lbt+Vzyc47FgjL9gbq+wEfk 5/9wO+Q/iI6oLFoyUfLXRWRse0goeRe4X5BS0N9A57cLInUdfGuwegvC7bV4qnxm olOBA5IkVFZc7Q6kHpEFeL95BOqNJzJRzLCdCu91TU1/jrRLSZhnO6Bn3ic7u/7Z L7PbbYVw5tn5Bvp2j7Fcf1f7SwB2fGeRVWv7E+yUIgDAePn13harv8RxJKmZUKZX 0Ks9+7RWdb2tsppdJkzNNuzAI+8IeGncEQ== -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:39 2026 by rpki-client