$ rpki-client -vvf rpki.apnic.net/member_repository/A916537A/9619284E276A11F1A891B17FC2833773/58EE9E1227E311F1A1CB4281AA833773.roa File: 58EE9E1227E311F1A1CB4281AA833773.roa (raw, json) Hash identifier: yPIdqNt/dpH6aJ38rvENnZ/i7R2Mb/uLxcqBp1Vco0I= Subject key identifier: C8:98:1B:99:3E:6B:BC:71:9C:B4:30:BD:21:B0:90:DE:7F:EE:05:05 Certificate issuer: /CN=A916537A/serialNumber=D355034E39C00B3E772BEA0141A99BCE1427ADF4 Certificate serial: 2A Authority key identifier: D3:55:03:4E:39:C0:0B:3E:77:2B:EA:01:41:A9:9B:CE:14:27:AD:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/01UDTjnACz53K-oBQambzhQnrfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916537A/9619284E276A11F1A891B17FC2833773/58EE9E1227E311F1A1CB4281AA833773.roa Signing time: Tue 19 May 2026 09:42:02 +0000 ROA not before: Tue 19 May 2026 09:42:02 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 38809 IP address blocks: 162.145.0.0/17 maxlen: 22 162.145.128.0/17 maxlen: 17 162.145.252.0/22 maxlen: 22 164.97.0.0/16 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916537A/9619284E276A11F1A891B17FC2833773/01UDTjnACz53K-oBQambzhQnrfQ.crl rsync://rpki.apnic.net/member_repository/A916537A/9619284E276A11F1A891B17FC2833773/01UDTjnACz53K-oBQambzhQnrfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/01UDTjnACz53K-oBQambzhQnrfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 09:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916537A, serialNumber=D355034E39C00B3E772BEA0141A99BCE1427ADF4 Validity Not Before: May 19 09:42:02 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a0c306a-a776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:36:a1:8d:d1:8d:68:48:7d:a0:19:5d:fe: 4d:93:99:9a:fc:30:8a:b0:7c:e8:af:fd:12:c3:ab: 61:68:8e:bb:37:af:b9:dd:b5:87:9d:d9:68:13:4a: ca:f8:9c:e7:a1:ba:c8:29:49:85:c5:c9:5c:fd:a5: c7:87:0e:d7:0e:55:82:f8:81:e3:04:71:42:1f:e3: 98:e5:08:74:a0:18:81:6d:08:b2:bd:59:92:2e:52: d6:8a:7e:c0:d7:0d:e2:be:fd:2f:99:0e:97:06:7a: 8e:de:23:00:7f:19:f8:56:a8:32:ca:04:36:b3:b2: b6:4f:76:cd:5a:33:5f:3f:e1:b9:41:99:d2:29:da: 3b:00:5e:ee:06:fe:4a:64:0e:d0:1b:35:97:61:7b: 38:9e:a3:af:32:10:33:23:19:28:64:ad:7b:c5:27: a7:6a:64:11:5e:a1:c0:e7:ec:2e:c8:26:c2:85:6a: ef:f6:20:cd:23:5b:38:41:23:bc:8b:f3:2f:d8:51: aa:5d:8d:b1:79:d8:4b:a5:b8:a3:04:cf:40:03:50: b9:c7:e1:13:20:f9:d3:e4:9a:6f:85:07:77:75:e3: bb:84:0b:ef:6c:02:af:e9:ae:be:d3:4e:30:36:ed: 18:e7:86:5c:f1:9f:c2:bb:06:95:1d:e4:9d:cf:1a: 08:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:98:1B:99:3E:6B:BC:71:9C:B4:30:BD:21:B0:90:DE:7F:EE:05:05 X509v3 Authority Key Identifier: keyid:D3:55:03:4E:39:C0:0B:3E:77:2B:EA:01:41:A9:9B:CE:14:27:AD:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916537A/9619284E276A11F1A891B17FC2833773/01UDTjnACz53K-oBQambzhQnrfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/01UDTjnACz53K-oBQambzhQnrfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916537A/9619284E276A11F1A891B17FC2833773/58EE9E1227E311F1A1CB4281AA833773.roa sbgp-ipAddrBlock: critical IPv4: 162.145.0.0/16 164.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:cb:8f:b2:f0:12:f3:23:0c:4c:f4:8e:81:e8:03:09:c9:cb: 7d:aa:36:5b:74:6d:99:05:6e:fa:ef:6a:d1:79:a7:70:d7:8c: 09:66:f8:ba:a0:1d:03:9e:2e:a4:12:61:98:78:05:c3:49:4f: ac:5d:89:4f:d3:d3:9e:56:98:1d:46:0a:02:0f:ae:56:ab:3c: f2:6c:15:a3:30:65:0f:15:f5:ef:ea:11:78:d6:da:c3:d5:ab: de:db:f3:8d:21:2b:09:00:31:36:bc:e1:cb:30:07:b6:ca:89: a3:ab:98:97:21:84:31:59:36:f0:bf:8d:02:95:f7:04:3a:77: 10:86:b8:08:5a:a9:bd:1c:da:65:52:0a:6a:0d:e3:6f:ab:2f: ba:7a:75:be:ba:92:07:46:7f:9e:d7:d7:5c:20:a6:5e:48:7d: d3:8b:a9:89:fe:0d:be:28:a9:0b:3f:0e:fd:2e:91:13:57:8a: cd:c2:83:30:82:9b:8b:b4:10:32:77:da:f8:e3:7f:31:b0:6c: 04:4d:ab:7c:9f:ff:2d:8e:99:1c:7b:ad:c2:53:ed:44:11:5e: 4b:8e:c7:96:47:a7:42:2c:45:54:c9:b5:39:ae:22:de:64:23: ed:31:a2:c4:c6:d0:dc:82:88:bb:ce:84:bb:4f:ec:50:d0:b5: 1f:c7:fa:bd -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTM3QTExMC8GA1UEBRMoRDM1NTAzNEUzOUMwMEIzRTc3MkJFQTAxNDFBOTlCQ0Ux NDI3QURGNDAeFw0yNjA1MTkwOTQyMDJaFw0yNzA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMGMzMDZhLWE3NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6MDahjdGNaEh9oBld/k2TmZr8MIqwfOiv/RLDq2Fojrs3r7ndtYed2WgTSsr4 nOehusgpSYXFyVz9pceHDtcOVYL4geMEcUIf45jlCHSgGIFtCLK9WZIuUtaKfsDX DeK+/S+ZDpcGeo7eIwB/GfhWqDLKBDazsrZPds1aM18/4blBmdIp2jsAXu4G/kpk DtAbNZdhezieo68yEDMjGShkrXvFJ6dqZBFeocDn7C7IJsKFau/2IM0jWzhBI7yL 8y/YUapdjbF52EuluKMEz0ADULnH4RMg+dPkmm+FB3d147uEC+9sAq/prr7TTjA2 7Rjnhlzxn8K7BpUd5J3PGghLAgMBAAGjggJkMIICYDAdBgNVHQ4EFgQUyJgbmT5r vHGctDC9IbCQ3n/uBQUwHwYDVR0jBBgwFoAU01UDTjnACz53K+oBQambzhQnrfQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MzdBLzk2MTkyODRFMjc2 QTExRjFBODkxQjE3RkMyODMzNzczLzAxVURUam5BQ3o1M0stb0JRYW1iemhRbnJm US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDFVRFRqbkFDejUzSy1vQlFhbWJ6aFFucmZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTM3QS85NjE5Mjg0RTI3NkExMUYxQTg5MUIxN0ZDMjgzMzc3My81OEVFOUUxMjI3 RTMxMUYxQTFDQjQyODFBQTgzMzc3My5yb2EwIwYIKwYBBQUHAQcBAf8EFDASMBAE AgABMAoDAwCikQMDAKRhMA0GCSqGSIb3DQEBCwUAA4IBAQCBy4+y8BLzIwxM9I6B 6AMJyct9qjZbdG2ZBW7672rReadw14wJZvi6oB0Dni6kEmGYeAXDSU+sXYlP09Oe VpgdRgoCD65WqzzybBWjMGUPFfXv6hF41trD1ave2/ONISsJADE2vOHLMAe2yomj q5iXIYQxWTbwv40ClfcEOncQhrgIWqm9HNplUgpqDeNvqy+6enW+upIHRn+e19dc IKZeSH3Ti6mJ/g2+KKkLPw79LpETV4rNwoMwgpuLtBAyd9r4438xsGwETat8n/8t jpkce63CU+1EEV5LjseWR6dCLEVUybU5riLeZCPtMaLExtDcgoi7zoS7T+xQ0LUf x/q9 -----END CERTIFICATE-----Generated at Thu May 21 14:20:54 2026 by rpki-client