$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/959AC422557911EBBD21EB2FC4F9AE02.roa File: 959AC422557911EBBD21EB2FC4F9AE02.roa (raw, json) Hash identifier: 7D5czzXP+//E4+RhWIwHXv8l2H+/7gFJiEyQmF6T8lg= Subject key identifier: EB:17:EB:68:5F:CE:58:01:18:AA:CF:6F:E6:B5:D7:E0:F6:C3:4F:84 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B71 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/959AC422557911EBBD21EB2FC4F9AE02.roa Signing time: Sun 01 Mar 2026 21:12:51 +0000 ROA not before: Mon 24 Mar 2025 14:50:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17645 IP address blocks: 58.65.0.0/19 maxlen: 19 58.65.12.0/22 maxlen: 22 58.65.16.0/22 maxlen: 22 58.65.20.0/22 maxlen: 22 58.65.24.0/23 maxlen: 23 58.65.26.0/23 maxlen: 23 116.51.0.0/16 maxlen: 16 116.51.4.0/24 maxlen: 24 116.51.8.0/23 maxlen: 23 116.51.36.0/24 maxlen: 24 175.28.8.0/22 maxlen: 22 202.136.160.0/19 maxlen: 19 202.136.166.0/24 maxlen: 24 202.136.168.0/23 maxlen: 23 202.136.170.0/24 maxlen: 24 202.136.188.0/22 maxlen: 22 2402:2c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7025 (0x1b71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Mar 24 14:50:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4abd3-fc6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:e5:c7:89:c2:60:a3:24:3a:c4:32:15:18: 49:f7:a0:37:09:32:fc:f0:22:b2:79:e4:d5:04:c1: 29:37:15:1c:42:30:05:ee:5e:7f:32:96:62:27:2a: 1a:4d:41:9a:c2:22:32:58:cf:dc:dc:51:9b:7b:62: e8:69:6f:4c:05:0c:ed:7b:d7:f7:3e:f5:b2:7a:83: 71:d3:da:8e:3e:29:68:6a:a2:38:bf:27:63:a5:4b: 4b:be:1e:ca:33:d2:11:a9:77:8b:33:36:08:e0:b1: 08:04:0a:c6:58:41:1d:6c:2e:70:1f:65:24:2b:44: 53:4e:0f:e2:ba:cf:74:c7:35:8b:e8:31:89:2d:77: 5d:f2:70:ff:c7:59:4a:6e:54:04:c9:5d:ac:76:0c: c8:b3:8a:28:20:ad:7f:17:e0:93:6e:d0:0d:84:96: e7:5b:59:f7:be:dd:95:07:28:4b:92:e7:3f:f6:01: fb:85:64:9b:ae:95:a0:ec:19:97:27:03:bb:5a:c9: b6:90:d7:5f:d4:43:06:bd:25:7f:32:17:b6:e9:12: 15:44:35:f5:ae:84:94:76:b6:e7:8e:cb:9f:65:c5: 39:8e:60:45:d6:8e:62:dc:fa:f7:c0:95:1c:0c:42: cd:ec:99:68:24:fb:e8:c4:88:f9:3d:ff:0d:3a:f2: 91:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:17:EB:68:5F:CE:58:01:18:AA:CF:6F:E6:B5:D7:E0:F6:C3:4F:84 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/959AC422557911EBBD21EB2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.65.0.0/19 116.51.0.0/16 175.28.8.0/22 202.136.160.0/19 IPv6: 2402:2c00::/32 Signature Algorithm: sha256WithRSAEncryption a4:3b:26:b8:56:77:8f:b3:2d:69:8e:3a:7b:e2:d0:66:6c:0d: 13:3e:3d:ad:16:e6:89:28:b3:1b:42:bd:a6:54:be:23:29:6d: af:28:bb:57:b8:2f:b8:8b:e4:b7:28:2f:6d:95:f7:a6:9e:26: 4b:fd:b2:cb:8b:6e:08:a1:d4:d9:b0:36:9b:18:21:03:3b:15: 00:c7:3d:36:1f:df:54:0a:94:b0:ef:d6:54:da:ea:5d:01:2e: e2:a1:e9:bd:c3:19:fc:0c:0d:4f:50:7e:8f:c7:8e:fd:4a:47: cb:51:d5:b4:de:85:69:df:9d:8a:45:8b:9f:b6:bd:1a:10:a9: ce:b2:7f:66:85:e3:14:07:7e:d0:b8:9f:e3:1b:95:16:93:b2: 6a:ee:3f:d5:8e:e8:b6:ad:50:40:6b:f8:e8:39:d3:39:06:29: 84:48:3a:81:cb:5d:a7:66:9a:ee:85:5d:9d:29:3a:2c:e4:38: 1c:d5:2b:2f:3f:58:36:65:9c:72:8e:bc:b9:e4:9c:bd:ed:70: a9:e5:19:60:38:6e:57:27:ca:68:9d:0f:dc:ec:9c:d0:72:87: fa:6c:98:cf:c6:cb:0b:3d:38:35:52:ab:d8:3d:65:fd:29:3d: 64:ef:97:33:26:08:d3:2f:7a:06:0e:af:17:90:02:4f:9f:f8: 13:e7:5a:31 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICG3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjUwMzI0MTQ1MDM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWJkMy1mYzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy/lx4nCYKMkOsQyFRhJ96A3CTL88CKyeeTVBMEpNxUcQjAF7l5/MpZiJyoa TUGawiIyWM/c3FGbe2LoaW9MBQzte9f3PvWyeoNx09qOPiloaqI4vydjpUtLvh7K M9IRqXeLMzYI4LEIBArGWEEdbC5wH2UkK0RTTg/ius90xzWL6DGJLXdd8nD/x1lK blQEyV2sdgzIs4ooIK1/F+CTbtANhJbnW1n3vt2VByhLkuc/9gH7hWSbrpWg7BmX JwO7Wsm2kNdf1EMGvSV/Mhe26RIVRDX1roSUdrbnjsufZcU5jmBF1o5i3Pr3wJUc DELN7JloJPvoxIj5Pf8NOvKR5wIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFOsX62hf zlgBGKrPb+a11+D2w0+EMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZENUQvOURDQjY4RTAxRDg4MTFFMjk0Qjk1NUUxMDhCMDJDRDIvOTU5QUM0MjI1 NTc5MTFFQkJEMjFFQjJGQzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAd BAIAATAXAwQFOkEAAwMAdDMDBAKvHAgDBAXKiKAwDQQCAAIwBwMFACQCLAAwDQYJ KoZIhvcNAQELBQADggEBAKQ7JrhWd4+zLWmOOnvi0GZsDRM+Pa0W5okosxtCvaZU viMpba8ou1e4L7iL5LcoL22V96aeJkv9ssuLbgih1NmwNpsYIQM7FQDHPTYf31QK lLDv1lTa6l0BLuKh6b3DGfwMDU9Qfo/Hjv1KR8tR1bTehWnfnYpFi5+2vRoQqc6y f2aF4xQHftC4n+MblRaTsmruP9WO6LatUEBr+Og50zkGKYRIOoHLXadmmu6FXZ0p OizkOBzVKy8/WDZlnHKOvLnknL3tcKnlGWA4blcnymidD9zsnNByh/psmM/Gyws9 ODVSq9g9Zf0pPWTvlzMmCNMvegYOrxeQAk+f+BPnWjE= -----END CERTIFICATE-----Generated at Mon Mar 2 14:28:02 2026 by rpki-client