$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa File: D34588789F8A11ECB8E03812C4F9AE02.roa (raw, json) Hash identifier: gjMlLG9inrD05My2q5iU/YjsCHlh2nPjTKBv8EkTjOc= Subject key identifier: 29:A7:77:B5:0F:37:AE:AC:85:EB:D7:6B:15:2A:67:A2:8B:BA:4E:53 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 103B Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa Signing time: Mon 26 Jan 2026 17:14:43 +0000 ROA not before: Mon 26 Jan 2026 17:14:43 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59249 IP address blocks: 58.84.33.0/24 maxlen: 24 58.84.34.0/24 maxlen: 24 58.84.35.0/24 maxlen: 24 103.197.49.0/24 maxlen: 24 103.254.94.0/24 maxlen: 24 103.254.167.0/24 maxlen: 24 2404:9d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 17:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4155 (0x103b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Jan 26 17:14:43 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6977a103-d488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:00:ae:66:b3:b3:40:63:c9:e4:47:9f:01:17: 56:cb:9c:25:17:83:eb:1b:f8:a8:92:bf:48:24:fe: 2e:7d:73:60:53:ec:2b:12:09:ca:bd:f6:7b:77:08: 55:ea:ae:46:d5:96:f0:2b:a2:1e:00:3c:51:ab:b5: 1b:fa:63:b1:55:f4:54:77:b4:2f:a0:38:af:20:c3: 18:eb:79:f6:55:89:e4:1a:73:07:0f:33:00:b3:86: 21:49:98:e9:57:96:df:e2:5c:59:e8:9a:f8:b8:d1: 43:54:4d:37:9f:ba:a3:29:84:eb:a1:15:f0:e0:41: 9b:e3:53:9c:4a:6f:7d:a8:d7:8c:c5:7f:b1:69:3c: f4:9e:53:17:5d:78:74:4d:28:e2:40:08:b9:5a:39: c2:02:db:44:08:23:83:9e:f0:8b:64:3b:c0:05:62: 88:6b:51:e5:9a:83:b4:dc:f2:9b:ba:13:9d:8f:86: f9:d8:e4:34:1c:05:66:57:f8:19:32:b0:cf:cc:d2: e0:d4:d8:38:c0:11:e7:bf:41:2d:cf:c9:16:d3:68: 61:03:b0:ae:a8:aa:47:3a:b9:ea:af:d8:ae:ed:31: d8:f3:18:45:93:5b:00:f4:cc:8d:6b:fc:7f:a3:9d: 3d:0e:b5:e5:01:02:76:d7:38:ee:3c:e1:50:89:15: 21:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A7:77:B5:0F:37:AE:AC:85:EB:D7:6B:15:2A:67:A2:8B:BA:4E:53 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.84.33.0-58.84.35.255 103.197.49.0/24 103.254.94.0/24 103.254.167.0/24 IPv6: 2404:9d80::/32 Signature Algorithm: sha256WithRSAEncryption 29:c5:87:82:bb:4a:63:d0:e6:51:8d:12:5a:4e:cd:03:62:e0: 7a:df:5f:86:4d:3f:c6:f3:61:bb:cd:af:53:11:1c:48:c6:37: a6:3b:86:d7:b7:d9:03:5a:23:95:c1:39:08:77:12:20:d6:9f: b0:80:c2:f5:35:d6:55:14:f0:4d:38:b4:38:7b:57:e0:00:62: fa:41:9d:a4:78:6d:34:37:94:75:a4:75:e9:97:b6:43:50:cf: 62:9e:d1:95:e7:c3:2f:34:54:44:a3:76:ab:07:85:6c:67:b4: f2:c6:5f:70:52:79:bb:ee:df:d7:11:40:73:95:00:bf:1f:86: bf:55:db:3b:3b:2a:70:88:e9:88:b7:ce:7f:b6:be:8c:87:bd: 93:85:01:28:25:64:e8:1c:5d:7b:cb:60:2f:b0:85:c2:01:0e: 39:bb:81:04:2b:87:a1:be:a5:09:da:a0:c0:23:43:60:b0:a7: d7:6d:30:d9:a3:dc:a1:96:61:9e:7a:c0:d4:38:e3:50:ec:a4: 19:ce:eb:a5:c6:c9:79:44:aa:a7:8d:5e:01:58:68:9b:0b:96: 25:2f:40:98:c7:58:01:a7:66:26:b6:78:2a:c1:27:ea:21:30: 0c:ef:c6:b9:59:ed:9a:41:f9:bc:83:d8:b1:e8:3b:7f:25:27: 94:70:dd:16 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICEDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjYwMTI2MTcxNDQzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTc3YTEwMy1kNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QCuZrOzQGPJ5EefARdWy5wlF4PrG/iokr9IJP4ufXNgU+wrEgnKvfZ7dwhV 6q5G1ZbwK6IeADxRq7Ub+mOxVfRUd7QvoDivIMMY63n2VYnkGnMHDzMAs4YhSZjp V5bf4lxZ6Jr4uNFDVE03n7qjKYTroRXw4EGb41OcSm99qNeMxX+xaTz0nlMXXXh0 TSjiQAi5WjnCAttECCODnvCLZDvABWKIa1HlmoO03PKbuhOdj4b52OQ0HAVmV/gZ MrDPzNLg1Ng4wBHnv0Etz8kW02hhA7CuqKpHOrnqr9iu7THY8xhFk1sA9MyNa/x/ o509DrXlAQJ21zjuPOFQiRUhGQIDAQABo4ICvjCCArowHQYDVR0OBBYEFCmnd7UP N66shevXaxUqZ6KLuk5TMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZBRDIvODM0QUM0Nzg1OUJGMTFFOTg5QjkzQjYzQzRGOUFFMDIvRDM0NTg4Nzg5 RjhBMTFFQ0I4RTAzODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCAwDAMEADpUIQMEAjpUIAMEAGfFMQMEAGf+XgMEAGf+pzANBAIA AjAHAwUAJASdgDANBgkqhkiG9w0BAQsFAAOCAQEAKcWHgrtKY9DmUY0SWk7NA2Lg et9fhk0/xvNhu82vUxEcSMY3pjuG17fZA1ojlcE5CHcSINafsIDC9TXWVRTwTTi0 OHtX4ABi+kGdpHhtNDeUdaR16Ze2Q1DPYp7RlefDLzRURKN2qweFbGe08sZfcFJ5 u+7f1xFAc5UAvx+Gv1XbOzsqcIjpiLfOf7a+jIe9k4UBKCVk6Bxde8tgL7CFwgEO ObuBBCuHob6lCdqgwCNDYLCn120w2aPcoZZhnnrA1DjjUOykGc7rpcbJeUSqp41e AVhomwuWJS9AmMdYAadmJrZ4KsEn6iEwDO/GuVntmkH5vIPYseg7fyUnlHDdFg== -----END CERTIFICATE-----Generated at Thu Feb 19 20:36:05 2026 by rpki-client