$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8B58F72A7BF511F0BEBF8326C4F9AE02.roa File: 8B58F72A7BF511F0BEBF8326C4F9AE02.roa (raw, json) Hash identifier: g58X+cu42Kh2zFwQ2h9g38vEcazE0TvlqkeIHRWL2eA= Subject key identifier: 97:3A:E6:28:E7:98:28:75:9C:9B:CC:F5:C3:3B:7E:7E:1A:B0:86:59 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 73 Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8B58F72A7BF511F0BEBF8326C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:39:24 +0000 ROA not before: Fri 22 Aug 2025 02:11:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 64098 IP address blocks: 59.153.8.0/22 maxlen: 24 103.55.135.0/24 maxlen: 24 103.61.129.0/24 maxlen: 24 103.79.4.0/22 maxlen: 22 103.79.4.0/24 maxlen: 24 103.197.232.0/22 maxlen: 22 103.197.232.0/24 maxlen: 24 103.197.233.0/24 maxlen: 24 160.202.140.0/22 maxlen: 22 203.189.126.0/24 maxlen: 24 221.120.164.0/22 maxlen: 22 221.120.164.0/24 maxlen: 24 221.120.165.0/24 maxlen: 24 221.120.166.0/24 maxlen: 24 221.120.167.0/24 maxlen: 24 2400:1240::/32 maxlen: 32 2403:780::/32 maxlen: 32 2403:780:f::/48 maxlen: 48 2403:780:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 06:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Aug 22 02:11:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a584fc-4e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:16:31:f5:3f:03:6f:19:34:cc:31:88:71:b3: 3b:ba:02:66:69:f7:7a:c0:f6:07:0d:fd:48:9e:d0: ac:b7:dd:26:a8:a7:ba:94:b9:38:86:4d:52:ad:04: e7:c4:a6:62:b7:a7:0d:bf:f8:c4:a1:1e:66:72:25: f8:7f:2a:08:c6:36:b5:b3:98:aa:6b:7b:95:76:8c: 7e:a3:58:ed:f5:39:9a:71:cd:b9:59:2d:a6:fd:31: 36:4b:d4:0b:50:73:00:88:47:29:59:5e:4c:e6:c7: a0:4a:a3:05:73:90:79:eb:af:3c:97:91:74:46:52: d3:d9:dc:32:69:9b:5c:55:9e:b5:26:ef:29:a3:3b: 99:ef:65:46:37:54:80:89:cb:ef:df:d4:d0:4c:0d: 59:cd:68:79:e8:71:cc:e5:59:01:6e:11:d3:73:fe: e2:a9:be:66:cb:f0:c1:3e:c8:00:98:31:16:76:b5: 16:2e:7f:29:a8:69:eb:38:e9:4c:81:cc:cf:2e:f8: 03:b0:d7:0f:e9:9d:dc:f1:37:be:66:5b:94:ab:ee: b2:e3:62:b5:c0:b1:72:21:7e:4a:b4:59:a6:24:09: a8:14:5a:04:3b:08:aa:f8:dd:55:9f:2e:8e:45:bf: 91:4a:67:34:28:3c:bc:b3:ea:fa:6c:e0:c7:74:40: 0b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:3A:E6:28:E7:98:28:75:9C:9B:CC:F5:C3:3B:7E:7E:1A:B0:86:59 X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8B58F72A7BF511F0BEBF8326C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.153.8.0/22 103.55.135.0/24 103.61.129.0/24 103.79.4.0/22 103.197.232.0/22 160.202.140.0/22 203.189.126.0/24 221.120.164.0/22 IPv6: 2400:1240::/32 2403:780::/32 Signature Algorithm: sha256WithRSAEncryption 1d:30:ee:53:e9:c8:f5:64:25:90:c4:80:5e:97:53:9f:c5:48: 41:5a:48:0b:ba:3f:a6:9c:9e:28:1f:1d:f8:02:e3:38:91:01: 59:4e:42:d3:2d:80:1d:b3:77:cb:46:ed:5e:a3:eb:eb:52:76: 0b:c9:1e:78:38:8a:0c:80:c5:d5:ab:3c:d4:88:b2:b6:70:d1: ff:45:19:66:54:71:6d:96:20:ea:75:3e:a8:1b:90:db:6d:ce: 96:dc:bc:44:9e:1d:86:20:2e:ee:7c:45:08:42:eb:0b:72:ca: 18:14:fd:a3:bc:51:c6:81:67:90:ab:70:95:23:87:bf:a7:ad: 06:44:0b:ca:7b:65:59:81:2c:5b:53:25:f7:cb:10:9a:3e:ef: e3:a1:77:75:69:c2:15:0b:bd:d2:2b:c9:86:5f:98:07:c2:ac: 0d:ef:7e:6e:7c:89:e7:9c:3a:4d:75:f8:be:05:22:6d:6c:c0: ee:9b:29:de:e7:ce:56:92:8c:0b:14:55:cc:ef:1e:b3:63:ca: 7e:08:17:91:4b:7b:b2:21:bc:ba:bc:a5:88:5b:7e:68:fc:5c: 62:3a:cc:b1:05:d9:52:d7:f8:65:81:19:12:e3:69:ba:9a:a2: 3b:b6:f0:0e:56:10:14:85:97:b4:f7:09:56:63:a0:ce:6c:ec: 0a:a4:68:56 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNTA4MjIwMjExNTBaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4NGZjLTRlNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTFjH1PwNvGTTMMYhxszu6AmZp93rA9gcN/Uie0Ky33Saop7qUuTiGTVKtBOfE pmK3pw2/+MShHmZyJfh/KgjGNrWzmKpre5V2jH6jWO31OZpxzblZLab9MTZL1AtQ cwCIRylZXkzmx6BKowVzkHnrrzyXkXRGUtPZ3DJpm1xVnrUm7ymjO5nvZUY3VICJ y+/f1NBMDVnNaHnocczlWQFuEdNz/uKpvmbL8ME+yACYMRZ2tRYufymoaes46UyB zM8u+AOw1w/pndzxN75mW5Sr7rLjYrXAsXIhfkq0WaYkCagUWgQ7CKr43VWfLo5F v5FKZzQoPLyz6vps4Md0QAtHAgMBAAGjggKgMIICnDAdBgNVHQ4EFgQUlzrmKOeY KHWcm8z1wzt+fhqwhlkwHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDU4OC9CRjdENUU3NjdCRjMxMUYwQTA1RkFEODJDNEY5QUUwMi84QjU4RjcyQTdC RjUxMUYwQkVCRjgzMjZDNEY5QUUwMi5yb2EwXwYIKwYBBQUHAQcBAf8EUDBOMDYE AgABMDADBAI7mQgDBABnN4cDBABnPYEDBAJnTwQDBAJnxegDBAKgyowDBADLvX4D BALdeKQwFAQCAAIwDgMFACQAEkADBQAkAweAMA0GCSqGSIb3DQEBCwUAA4IBAQAd MO5T6cj1ZCWQxIBel1OfxUhBWkgLuj+mnJ4oHx34AuM4kQFZTkLTLYAds3fLRu1e o+vrUnYLyR54OIoMgMXVqzzUiLK2cNH/RRlmVHFtliDqdT6oG5Dbbc6W3LxEnh2G IC7ufEUIQusLcsoYFP2jvFHGgWeQq3CVI4e/p60GRAvKe2VZgSxbUyX3yxCaPu/j oXd1acIVC73SK8mGX5gHwqwN735ufInnnDpNdfi+BSJtbMDumyne585WkowLFFXM 7x6zY8p+CBeRS3uyIby6vKWIW35o/FxiOsyxBdlS1/hlgRkS42m6mqI7tvAOVhAU hZe09wlWY6DObOwKpGhW -----END CERTIFICATE-----Generated at Sun Mar 15 01:14:44 2026 by rpki-client