$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/6558775AE7D811EF8D280E2FC4F9AE02.roa File: 6558775AE7D811EF8D280E2FC4F9AE02.roa (raw, json) Hash identifier: TEd4/aWDB1KLW6JK30VIuFWcMe+qda12gGy9MUlfqhE= Subject key identifier: CA:9B:EC:81:91:33:D6:20:B7:E6:65:EF:87:A5:40:D4:25:3B:19:32 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0FB7 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/6558775AE7D811EF8D280E2FC4F9AE02.roa Signing time: Wed 04 Mar 2026 08:33:58 +0000 ROA not before: Wed 04 Mar 2026 08:33:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138985 IP address blocks: 43.247.121.0/24 maxlen: 24 103.20.134.0/24 maxlen: 24 103.20.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 19:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4023 (0xfb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Mar 4 08:33:58 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a7ee76-5b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:38:7d:b3:9e:fc:d5:83:41:ac:61:3b:ff:b3: 7a:07:e7:e6:fc:83:6f:53:5d:e8:93:c9:b0:c0:4a: 35:11:54:e2:a7:ae:aa:c7:11:89:80:f4:76:63:13: 8f:c8:8e:3f:1e:5f:c6:36:6a:d3:4e:fa:d6:c7:5b: 14:24:e3:01:2f:a1:6b:d4:96:fe:3b:3c:c8:a5:21: 6c:a9:88:90:5a:d7:16:9d:36:c4:53:de:db:55:b9: d2:82:b2:b5:8a:34:9f:ea:b9:9b:ff:35:eb:6b:50: 99:fa:55:81:fc:05:8e:29:b2:a9:7a:32:de:99:27: 10:6a:d0:fb:7b:42:62:e6:1c:fd:27:4c:e7:97:6d: 58:6b:83:de:29:ae:4d:b8:59:8e:f7:e0:7a:18:99: 33:90:17:b9:77:ce:e9:bf:20:5a:77:a9:92:2c:52: 41:4d:6a:0a:17:2e:be:85:f0:2e:de:e6:6a:4c:e0: 7a:a1:e7:11:4c:dc:ae:ad:fd:a7:11:7b:e7:ca:fe: 7d:d6:0c:2f:d1:0e:29:2c:ae:c1:3e:16:52:35:48: a8:17:10:fd:c5:a3:7d:df:7c:54:e4:42:e5:fe:9d: e3:91:59:59:d8:30:ad:f6:8d:0c:8d:37:9c:7b:6a: c4:0a:a9:35:a5:1e:fa:c9:4d:3d:b2:3b:2f:ca:82: e1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9B:EC:81:91:33:D6:20:B7:E6:65:EF:87:A5:40:D4:25:3B:19:32 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/6558775AE7D811EF8D280E2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.247.121.0/24 103.20.134.0/23 Signature Algorithm: sha256WithRSAEncryption 71:ff:6d:97:a2:fa:aa:87:ea:5d:d7:ed:82:89:d0:84:8d:01: 0f:43:fd:21:23:08:b0:82:03:1f:e1:1e:a8:cb:00:0f:cb:e9: 8e:05:b7:ae:a3:31:5f:5c:01:36:c4:37:d3:66:dc:23:28:87: 94:cb:0c:77:2e:4a:c4:e4:95:0b:e1:a8:47:4e:45:3f:a8:54: e7:b0:33:3b:bb:94:84:e5:4f:4d:df:a6:26:14:f2:7a:ed:3f: 06:54:2a:fc:f5:8a:02:a9:a3:85:0e:70:a3:61:62:04:e1:5c: f3:b8:de:89:03:62:0e:af:94:f4:5a:df:05:17:71:b6:fe:2b: 57:05:89:b0:1e:76:93:5b:5d:82:42:be:12:90:ff:f8:ac:40: 42:c2:32:97:c0:ae:90:98:ac:f6:ff:41:c9:fb:29:4c:f7:3c: aa:8e:53:ca:bf:aa:c2:1e:0f:5f:9d:9e:84:6b:2c:15:f5:2a: 46:dd:c0:70:fd:d3:d0:9f:2c:80:82:1d:4c:11:77:96:18:e1: ec:fc:c8:14:4c:e6:4b:00:11:2d:ce:97:65:79:2b:78:e4:08: 6c:b3:ae:50:5a:75:b6:62:3c:f0:f1:fc:b0:60:28:48:e9:e2: b6:e5:86:c6:e3:57:50:91:45:84:f7:e3:d0:f2:67:12:ba:5c: 4e:c0:81:c9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICD7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjYwMzA0MDgzMzU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE3ZWU3Ni01YjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTh9s5781YNBrGE7/7N6B+fm/INvU13ok8mwwEo1EVTip66qxxGJgPR2YxOP yI4/Hl/GNmrTTvrWx1sUJOMBL6Fr1Jb+OzzIpSFsqYiQWtcWnTbEU97bVbnSgrK1 ijSf6rmb/zXra1CZ+lWB/AWOKbKpejLemScQatD7e0Ji5hz9J0znl21Ya4PeKa5N uFmO9+B6GJkzkBe5d87pvyBad6mSLFJBTWoKFy6+hfAu3uZqTOB6oecRTNyurf2n EXvnyv591gwv0Q4pLK7BPhZSNUioFxD9xaN933xU5ELl/p3jkVlZ2DCt9o0MjTec e2rECqk1pR76yU09sjsvyoLhlwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMqb7IGR M9Ygt+Zl74elQNQlOxkyMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNjU1ODc3NUFF N0Q4MTFFRjhEMjgwRTJGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK/d5AwQBZxSGMA0GCSqGSIb3DQEBCwUAA4IBAQBx/22Xovqqh+pd 1+2CidCEjQEPQ/0hIwiwggMf4R6oywAPy+mOBbeuozFfXAE2xDfTZtwjKIeUywx3 LkrE5JUL4ahHTkU/qFTnsDM7u5SE5U9N36YmFPJ67T8GVCr89YoCqaOFDnCjYWIE 4VzzuN6JA2IOr5T0Wt8FF3G2/itXBYmwHnaTW12CQr4SkP/4rEBCwjKXwK6QmKz2 /0HJ+ylM9zyqjlPKv6rCHg9fnZ6EaywV9SpG3cBw/dPQnyyAgh1MEXeWGOHs/MgU TOZLABEtzpdleSt45Ahss65QWnW2Yjzw8fywYChI6eK25YbG41dQkUWE9+PQ8mcS ulxOwIHJ -----END CERTIFICATE-----Generated at Fri Mar 13 19:34:54 2026 by rpki-client