$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/586B33AEF44611EBA78C117AC4F9AE02.roa File: 586B33AEF44611EBA78C117AC4F9AE02.roa (raw, json) Hash identifier: fTK97vrMBpL2ZoSynxsGZ4U3KEvxzaz+0BewP/ZQJbc= Subject key identifier: A3:0D:27:61:F5:B9:C2:C1:3A:2B:07:41:30:C7:A5:78:C8:73:09:9F Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2284 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/586B33AEF44611EBA78C117AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:19:01 +0000 ROA not before: Thu 02 Oct 2025 16:13:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58436 IP address blocks: 43.230.24.0/24 maxlen: 24 43.230.25.0/24 maxlen: 24 43.255.124.0/22 maxlen: 24 45.125.196.0/22 maxlen: 22 103.5.151.0/24 maxlen: 24 103.11.143.0/24 maxlen: 24 103.11.150.0/24 maxlen: 24 103.11.151.0/24 maxlen: 24 103.16.16.0/24 maxlen: 24 103.16.17.0/24 maxlen: 24 103.16.18.0/24 maxlen: 24 103.16.19.0/24 maxlen: 24 103.194.76.0/22 maxlen: 24 124.6.56.0/22 maxlen: 24 2001:df0:24f::/48 maxlen: 48 2407:8100:1::/48 maxlen: 48 2407:8100:3::/48 maxlen: 48 2407:8100:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8836 (0x2284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 2 16:13:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48315-9e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:03:99:35:5e:14:2d:99:eb:fc:62:ac:ff:b1: 73:00:70:fa:64:1a:47:9a:ef:72:f1:95:83:1e:73: 68:5f:68:8c:4f:2f:1e:82:ed:a4:73:c1:82:ea:53: 1a:c0:98:fd:5a:2f:8f:6a:4f:84:91:f8:62:10:cb: 91:50:1f:5a:16:46:be:ab:63:73:4b:85:d2:6f:e3: 1f:8a:1c:74:74:c5:c9:2c:bc:9f:59:06:1e:06:4c: 3c:a3:e5:9a:8f:b1:74:b9:b6:58:a8:f5:2e:1d:9d: c6:f8:81:9b:01:1c:ea:22:7d:74:8e:31:e2:af:07: b0:62:02:7e:42:37:60:30:47:3a:bf:b3:2a:31:aa: 57:81:68:08:47:02:c0:70:31:7b:cd:20:81:6a:6f: 7b:a8:10:3b:8e:5b:60:b1:37:e8:f1:9d:80:90:52: 9f:8f:28:c5:e3:a9:f5:6d:19:a4:e0:2d:49:3e:41: 6f:c3:57:86:5b:3a:b0:46:b6:b4:ba:57:c8:7f:20: c7:40:e3:2f:64:78:cf:8d:1e:80:c5:16:47:90:2d: a3:36:3b:eb:b9:17:45:51:3c:36:8e:7f:f8:0e:32: 49:33:c7:a4:b5:4f:81:22:55:51:1d:7b:c9:86:fc: 0d:a0:36:7a:cf:16:7f:c9:03:75:c7:44:86:3f:b7: 1c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:0D:27:61:F5:B9:C2:C1:3A:2B:07:41:30:C7:A5:78:C8:73:09:9F X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/586B33AEF44611EBA78C117AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.24.0/23 43.255.124.0/22 45.125.196.0/22 103.5.151.0/24 103.11.143.0/24 103.11.150.0/23 103.16.16.0/22 103.194.76.0/22 124.6.56.0/22 IPv6: 2001:df0:24f::/48 2407:8100:1::/48 2407:8100:3::/48 2407:8100:6::/48 Signature Algorithm: sha256WithRSAEncryption 00:6f:c5:80:23:bc:2a:14:c7:8b:27:e7:f6:23:e2:57:d7:eb: d4:19:f2:7d:ba:70:c9:42:93:6b:c3:a2:c9:2b:47:35:65:b9: 40:a9:a6:b3:2a:d6:35:94:76:e7:04:ba:63:c8:fe:29:d1:97: 6e:1c:90:22:fc:59:f1:f4:3c:fe:da:2b:9f:45:d0:92:7f:6d: b1:94:b4:28:20:84:64:24:d0:2e:89:6f:f6:5b:fe:37:6d:bc: f6:33:08:ec:d5:ed:b4:0c:01:b4:ab:61:e3:24:05:38:a2:01: 6c:06:dd:c1:08:18:36:0e:4d:13:0e:7c:fb:34:81:07:28:d1: f5:8f:fe:5a:73:69:69:d8:61:7c:a8:cd:b9:3d:3d:3a:f2:0c: 2a:2c:89:c1:9e:12:9f:ea:ef:27:02:8a:35:73:82:d7:a6:98: 5d:6c:ef:9c:4f:0b:de:45:9a:74:bd:c9:b4:89:fc:34:02:f0: e8:64:c2:f7:54:d9:70:c2:35:b8:09:d2:da:32:98:cf:f1:db: 1a:4c:d7:a3:78:b9:66:2c:39:08:21:2f:9e:d2:c4:49:65:58: 68:ff:2a:df:a3:fc:2f:f9:8e:d7:a9:87:45:86:84:e8:66:3e: e7:ea:20:55:bf:6e:8d:9a:d6:a0:28:b0:7f:48:c5:5c:b8:3a: 4c:5f:ad:1a -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICIoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMDAyMTYxMzQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODMxNS05ZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwOZNV4ULZnr/GKs/7FzAHD6ZBpHmu9y8ZWDHnNoX2iMTy8egu2kc8GC6lMa wJj9Wi+Pak+EkfhiEMuRUB9aFka+q2NzS4XSb+Mfihx0dMXJLLyfWQYeBkw8o+Wa j7F0ubZYqPUuHZ3G+IGbARzqIn10jjHirwewYgJ+QjdgMEc6v7MqMapXgWgIRwLA cDF7zSCBam97qBA7jltgsTfo8Z2AkFKfjyjF46n1bRmk4C1JPkFvw1eGWzqwRra0 ulfIfyDHQOMvZHjPjR6AxRZHkC2jNjvruRdFUTw2jn/4DjJJM8ektU+BIlVRHXvJ hvwNoDZ6zxZ/yQN1x0SGP7ccowIDAQABo4ICvDCCArgwHQYDVR0OBBYEFKMNJ2H1 ucLBOisHQTDHpXjIcwmfMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNTg2QjMzQUVG NDQ2MTFFQkE3OEMxMTdBQzRGOUFFMDIucm9hMHsGCCsGAQUFBwEHAQH/BGwwajA8 BAIAATA2AwQBK+YYAwQCK/98AwQCLX3EAwQAZwWXAwQAZwuPAwQBZwuWAwQCZxAQ AwQCZ8JMAwQCfAY4MCoEAgACMCQDBwAgAQ3wAk8DBwAkB4EAAAEDBwAkB4EAAAMD BwAkB4EAAAYwDQYJKoZIhvcNAQELBQADggEBAABvxYAjvCoUx4sn5/Yj4lfX69QZ 8n26cMlCk2vDoskrRzVluUCpprMq1jWUducEumPI/inRl24ckCL8WfH0PP7aK59F 0JJ/bbGUtCgghGQk0C6Jb/Zb/jdtvPYzCOzV7bQMAbSrYeMkBTiiAWwG3cEIGDYO TRMOfPs0gQco0fWP/lpzaWnYYXyozbk9PTryDCosicGeEp/q7ycCijVzgtemmF1s 75xPC95FmnS9ybSJ/DQC8OhkwvdU2XDCNbgJ0toymM/x2xpM16N4uWYsOQghL57S xEllWGj/Kt+j/C/5jteph0WGhOhmPufqIFW/bo2a1qAosH9IxVy4OkxfrRo= -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:55 2026 by rpki-client