$ rpki-client -vvf rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/58A9026623AD11EBB858645DC4F9AE02.roa File: 58A9026623AD11EBB858645DC4F9AE02.roa (raw, json) Hash identifier: 0hFA6XuaYz6WevZrdrxsbv5S97FiycT0LcClF12H6w8= Subject key identifier: 1E:A6:90:3F:AC:30:53:6D:AF:DD:2F:04:7F:2D:41:FF:AC:17:7B:74 Certificate issuer: /CN=A914BFE5/serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Certificate serial: 08A8 Authority key identifier: 78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/58A9026623AD11EBB858645DC4F9AE02.roa Signing time: Sun 08 Feb 2026 21:14:53 +0000 ROA not before: Sun 08 Feb 2026 21:14:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38880 IP address blocks: 103.152.248.0/24 maxlen: 24 103.152.249.0/24 maxlen: 24 119.252.176.0/24 maxlen: 24 119.252.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 20:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2216 (0x8a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BFE5, serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Validity Not Before: Feb 8 21:14:53 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6988fccd-5799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:da:b0:ad:d3:68:10:34:97:7f:4c:8b:88:6e: 9d:e0:47:93:94:ec:b7:c6:f5:f0:8f:8f:42:71:06: c0:45:dc:d0:a6:ed:96:e0:7e:77:55:52:29:36:0d: 75:4e:54:fa:40:8f:b2:d3:6a:2b:d8:32:f6:df:22: 8d:5f:f1:89:3b:02:a7:95:1c:a4:ce:6c:21:dd:ba: 50:8e:e4:51:38:d8:08:a9:a3:09:d0:33:7f:48:44: 95:89:71:b5:1f:1d:9d:a9:61:ad:7f:0f:17:e6:01: 6c:e3:3b:0b:c0:cc:a8:4c:c9:4f:7f:6a:77:bc:6d: 87:fd:b8:38:14:9d:5b:60:ae:a6:d4:74:e0:62:5b: 53:d4:0e:e8:29:16:1c:ba:ed:01:94:89:c3:6e:d1: 3d:15:55:3e:fa:49:4c:b9:a5:03:da:9b:10:6d:02: 83:ad:ae:dd:63:55:0d:8e:70:09:84:f1:07:04:72: 2a:c3:d9:9f:1b:98:91:89:01:fa:1b:dd:b6:1b:67: 02:46:a8:b3:38:48:c1:0b:e1:48:e7:11:6c:1e:28: 2a:5a:0e:3a:35:f9:0a:f9:24:97:60:cf:20:55:98: cf:85:5a:b7:8b:0e:41:15:c7:9b:d1:fe:40:12:e5: ac:55:88:7b:05:fd:68:74:0f:dd:d6:54:5e:3c:14: 31:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A6:90:3F:AC:30:53:6D:AF:DD:2F:04:7F:2D:41:FF:AC:17:7B:74 X509v3 Authority Key Identifier: keyid:78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/58A9026623AD11EBB858645DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.248.0/23 119.252.176.0/24 119.252.179.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:3a:6f:db:86:07:a7:16:4a:96:e2:ec:36:82:b5:c1:23:24: cf:4c:49:2f:af:fb:3d:ec:8e:b7:d4:dc:ac:6c:15:e2:7d:d2: 1a:02:c5:16:e0:84:90:34:ba:03:b8:a6:e3:d9:5c:ba:46:c3: ea:42:63:a2:49:f2:04:ca:66:8b:01:ca:9c:23:ac:1b:7a:64: 81:1c:b8:63:b4:3c:01:70:3a:e8:17:24:aa:88:11:de:d4:77: 55:91:e9:cf:50:5c:9e:ed:5e:34:42:cf:ed:67:f4:ab:3d:98: f0:a1:b9:7f:01:3c:3f:8f:9d:88:e5:ff:f2:55:6a:6e:ee:63: 93:b2:7a:28:ec:91:dd:f7:b0:51:f4:a5:55:49:dd:16:d4:c6: 03:ef:04:d4:76:04:fd:b2:c1:4b:39:e8:c0:0e:23:0e:e9:d5: 87:55:13:26:ff:c2:1d:d2:d7:f9:05:53:cc:c0:9b:bd:ae:48: 8a:ce:05:41:97:38:41:60:1b:68:53:69:ac:ed:d3:be:3b:f3: 2d:88:ed:39:35:2f:00:9b:51:b0:af:4e:17:70:24:05:63:3a: da:25:02:ae:58:f8:c3:dd:8f:95:bf:ee:1a:67:53:4b:76:7b: 30:98:bc:71:19:9a:64:db:83:ac:86:3e:bb:2b:ce:a6:0d:5a: 66:db:f1:56 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGRTUxMTAvBgNVBAUTKDc4QTk5NzdGRkI0N0FGM0VDMUU5NDZCQzEwRjgxMzc2 OTQ5RUJFQzIwHhcNMjYwMjA4MjExNDUzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTg4ZmNjZC01Nzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtqwrdNoEDSXf0yLiG6d4EeTlOy3xvXwj49CcQbARdzQpu2W4H53VVIpNg11 TlT6QI+y02or2DL23yKNX/GJOwKnlRykzmwh3bpQjuRRONgIqaMJ0DN/SESViXG1 Hx2dqWGtfw8X5gFs4zsLwMyoTMlPf2p3vG2H/bg4FJ1bYK6m1HTgYltT1A7oKRYc uu0BlInDbtE9FVU++klMuaUD2psQbQKDra7dY1UNjnAJhPEHBHIqw9mfG5iRiQH6 G922G2cCRqizOEjBC+FI5xFsHigqWg46NfkK+SSXYM8gVZjPhVq3iw5BFceb0f5A EuWsVYh7Bf1odA/d1lRePBQxoQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFB6mkD+s MFNtr90vBH8tQf+sF3t0MB8GA1UdIwQYMBaAFHipl3/7R68+welGvBD4E3aUnr7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkZFNS85REFGNDg2RURE RUIxMUVBQjMwRUQ5MjFDNEY5QUUwMi9lS21YZl90SHJ6N0I2VWE4RVBnVGRwU2V2 c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLbVhmX3RIcno3QjZVYThFUGdUZHBTZXZzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGRTUvOURBRjQ4NkVEREVCMTFFQUIzMEVEOTIxQzRGOUFFMDIvNThBOTAyNjYy M0FEMTFFQkI4NTg2NDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnmPgDBAB3/LADBAB3/LMwDQYJKoZIhvcNAQELBQADggEB ADs6b9uGB6cWSpbi7DaCtcEjJM9MSS+v+z3sjrfU3KxsFeJ90hoCxRbghJA0ugO4 puPZXLpGw+pCY6JJ8gTKZosBypwjrBt6ZIEcuGO0PAFwOugXJKqIEd7Ud1WR6c9Q XJ7tXjRCz+1n9Ks9mPChuX8BPD+PnYjl//JVam7uY5Oyeijskd33sFH0pVVJ3RbU xgPvBNR2BP2ywUs56MAOIw7p1YdVEyb/wh3S1/kFU8zAm72uSIrOBUGXOEFgG2hT aazt07478y2I7Tk1LwCbUbCvThdwJAVjOtolAq5Y+MPdj5W/7hpnU0t2ezCYvHEZ mmTbg6yGPrsrzqYNWmbb8VY= -----END CERTIFICATE-----Generated at Fri Feb 20 01:33:56 2026 by rpki-client