$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/58F54538023A11F1A52751391D3D8C67.roa File: 58F54538023A11F1A52751391D3D8C67.roa (raw, json) Hash identifier: z1uio79TPLowMm0kT18AE7ic1OAaktv6my41QeEIQto= Subject key identifier: E0:94:F6:8E:9F:62:0E:AD:08:EA:A1:63:A0:F0:B2:8A:DE:D5:86:8C Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 0BBD Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/58F54538023A11F1A52751391D3D8C67.roa Signing time: Sun 01 Mar 2026 18:17:47 +0000 ROA not before: Thu 05 Feb 2026 02:30:13 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58807 IP address blocks: 223.118.32.0/24 maxlen: 24 223.119.8.0/21 maxlen: 21 223.119.8.0/22 maxlen: 24 223.119.12.0/22 maxlen: 24 223.119.26.0/23 maxlen: 24 223.119.28.0/23 maxlen: 24 223.119.32.0/24 maxlen: 24 223.119.34.0/24 maxlen: 24 223.119.35.0/24 maxlen: 24 223.119.36.0/24 maxlen: 24 223.119.37.0/24 maxlen: 24 223.119.74.0/23 maxlen: 24 223.119.88.0/23 maxlen: 24 223.119.100.0/24 maxlen: 24 223.119.192.0/24 maxlen: 24 223.119.252.0/23 maxlen: 23 223.119.252.0/24 maxlen: 24 223.119.253.0/24 maxlen: 24 2402:4f00:f000::/36 maxlen: 36 2402:4f00:f000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3005 (0xbbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF, serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Feb 5 02:30:13 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a482cb-1253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:ad:bc:30:58:19:ca:13:c5:58:91:c7:2e: 93:30:34:1f:6b:ac:62:1e:5f:e6:bb:0b:2f:c8:e8: 2a:57:ab:d8:48:af:42:6f:f5:30:cf:d0:76:23:f2: 30:51:bc:28:4f:68:56:3b:51:d0:24:3f:ce:49:6b: f7:e7:69:80:f8:bf:59:97:e4:b3:a3:5b:08:fd:c5: a8:b6:e1:8b:89:e0:58:1d:da:52:b6:09:eb:28:72: 9f:1a:5d:0b:04:65:50:54:80:3f:38:19:ca:05:1f: 9d:95:b7:e7:54:ff:c2:1d:dc:61:c8:90:cc:08:22: a6:9e:43:fb:8f:a0:62:79:11:9b:00:cc:e9:f5:3e: e4:23:d8:83:70:f3:db:dc:99:71:e1:c4:79:ed:c2: 62:08:31:41:9c:f3:c9:ab:3e:ac:60:c5:ea:46:b1: e8:49:6a:29:50:d3:87:28:0d:a7:45:d8:3b:e1:aa: 26:2b:2c:90:9e:0e:36:a1:28:90:f1:87:3e:00:42: c8:5e:70:38:ff:c1:70:a4:99:35:2b:26:15:b3:7f: 71:fc:c7:bf:11:7c:08:16:0b:5b:b4:27:5c:67:ec: 66:59:2c:18:6f:b2:42:6a:d7:5b:74:2a:c3:cb:c7: c8:f2:29:c6:e1:f5:91:44:4a:f0:18:0d:36:a6:e3: 26:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:94:F6:8E:9F:62:0E:AD:08:EA:A1:63:A0:F0:B2:8A:DE:D5:86:8C X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/58F54538023A11F1A52751391D3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 223.118.32.0/24 223.119.8.0/21 223.119.26.0-223.119.29.255 223.119.32.0/24 223.119.34.0-223.119.37.255 223.119.74.0/23 223.119.88.0/23 223.119.100.0/24 223.119.192.0/24 223.119.252.0/23 IPv6: 2402:4f00:f000::/36 Signature Algorithm: sha256WithRSAEncryption 2d:e8:69:91:3e:9c:9e:30:51:b2:66:02:38:72:f1:95:a0:ef: bb:5f:46:42:4d:4c:fc:9b:ec:d9:9c:44:7c:e8:09:84:c9:e4: f3:53:19:87:01:fb:9f:53:dd:da:b5:4d:81:b9:a0:cb:d5:28: fc:45:84:1c:a1:49:54:b7:33:dc:c1:78:09:f6:23:15:cc:f3: 65:24:fb:3b:b8:87:1d:d3:0d:fb:21:f6:99:f7:91:e5:a4:19: 92:e3:ef:6b:dc:8c:d2:2c:4d:c3:da:a7:02:b8:ba:e2:d0:5e: 1c:5c:19:c3:d1:a8:f7:d4:70:f3:7e:82:0c:b7:7b:55:85:2f: 87:4d:ac:b9:12:50:c3:95:be:24:7a:a5:cd:a0:b8:4f:8a:38: 0c:9f:a0:56:46:3e:2f:b8:68:b7:69:0a:ff:ce:f2:9c:8c:81: d9:1b:6b:60:15:56:15:d4:c4:62:e6:58:a5:58:76:4b:07:ad: c4:c4:93:82:f0:89:06:a1:a1:d4:2e:57:6e:50:8e:9d:78:35: 3e:67:bb:69:69:31:d4:57:bd:5b:f3:cd:24:de:5b:d8:14:ca: 9c:14:90:60:f8:67:2d:75:a7:48:ae:ec:23:d0:65:92:79:70: 31:e0:30:38:2e:a1:f6:49:f9:27:01:0d:f1:a0:1a:61:58:29: 8f:78:af:55 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICC70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjYwMjA1MDIzMDEzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODJjYi0xMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs06tvDBYGcoTxViRxy6TMDQfa6xiHl/muwsvyOgqV6vYSK9Cb/Uwz9B2I/Iw UbwoT2hWO1HQJD/OSWv352mA+L9Zl+Szo1sI/cWotuGLieBYHdpStgnrKHKfGl0L BGVQVIA/OBnKBR+dlbfnVP/CHdxhyJDMCCKmnkP7j6BieRGbAMzp9T7kI9iDcPPb 3Jlx4cR57cJiCDFBnPPJqz6sYMXqRrHoSWopUNOHKA2nRdg74aomKyyQng42oSiQ 8Yc+AELIXnA4/8FwpJk1KyYVs39x/Me/EXwIFgtbtCdcZ+xmWSwYb7JCatdbdCrD y8fI8inG4fWRRErwGA02puMmVQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFOCU9o6f Yg6tCOqhY6Dwsore1YaMMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvNThGNTQ1Mzgw MjNBMTFGMUE1Mjc1MTM5MUQzRDhDNjcucm9hMHUGCCsGAQUFBwEHAQH/BGYwZDBS BAIAATBMAwQA33YgAwQD33cIMAwDBAHfdxoDBAHfdxwDBADfdyAwDAMEAd93IgME Ad93JAMEAd93SgMEAd93WAMEAN93ZAMEAN93wAMEAd93/DAOBAIAAjAIAwYEJAJP APAwDQYJKoZIhvcNAQELBQADggEBAC3oaZE+nJ4wUbJmAjhy8ZWg77tfRkJNTPyb 7NmcRHzoCYTJ5PNTGYcB+59T3dq1TYG5oMvVKPxFhByhSVS3M9zBeAn2IxXM82Uk +zu4hx3TDfsh9pn3keWkGZLj72vcjNIsTcPapwK4uuLQXhxcGcPRqPfUcPN+ggy3 e1WFL4dNrLkSUMOVviR6pc2guE+KOAyfoFZGPi+4aLdpCv/O8pyMgdkba2AVVhXU xGLmWKVYdksHrcTEk4LwiQahodQuV25Qjp14NT5nu2lpMdRXvVvzzSTeW9gUypwU kGD4Zy11p0iu7CPQZZJ5cDHgMDguofZJ+ScBDfGgGmFYKY94r1U= -----END CERTIFICATE-----Generated at Mon Mar 2 07:36:32 2026 by rpki-client