$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa File: 0589A4B8DF9511EDAAA7E22AC4F9AE02.roa (raw, json) Hash identifier: 8QW6SQzpdf8WqjCw4pnkX0HYCGVvI59bpneK0fchnuE= Subject key identifier: A5:27:A0:30:61:B8:F6:5C:D8:6F:61:4D:33:D0:DC:28:4E:6E:DF:71 Certificate issuer: /CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Certificate serial: 03F5 Authority key identifier: E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:10:35 +0000 ROA not before: Fri 27 Feb 2026 00:20:40 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135341 IP address blocks: 103.179.59.0/24 maxlen: 24 2400:d1a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1D, serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Validity Not Before: Feb 27 00:20:40 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a464fa-de32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:13:1e:74:eb:45:ee:bd:6d:66:10:55:f9: fd:e3:58:2a:5c:71:b2:6f:65:52:50:45:f6:6c:fb: a4:6f:45:f1:1f:05:ea:b8:c6:53:7a:d1:03:3f:b2: 6b:d7:c2:8f:71:75:4c:c9:ca:9f:f9:98:05:4e:81: 22:b2:8d:1d:39:3e:e3:bc:e6:24:9f:3e:73:ca:1a: b1:5c:5f:91:e4:a9:e5:1a:01:b5:cc:db:36:ba:67: 25:af:f6:07:d9:e1:ae:56:fb:6b:ff:6a:f3:19:46: d5:0f:55:0e:fc:f2:85:8c:19:82:55:b8:d3:7e:1c: 14:3a:7c:ca:f2:e6:8d:1e:d3:48:22:d4:c8:61:fe: 2a:a0:a7:ea:39:33:ef:39:28:fe:2a:67:e8:f1:f0: 22:0e:9a:dc:61:a3:d3:8b:38:39:65:92:0e:55:b8: 2b:a5:e0:12:c9:d5:ae:1c:fb:b0:3d:42:72:3c:15: c7:71:b8:3f:2a:9c:ac:a6:61:23:f3:61:8f:86:eb: 2e:bd:69:4b:59:97:ea:8b:88:2e:89:b6:40:ac:78: 28:11:7e:b8:53:69:c3:af:ad:1a:1d:d9:f1:b2:b3: 3c:49:07:ba:81:b5:93:90:6a:62:67:87:0a:57:d4: 34:c1:4c:47:f4:0b:90:77:5b:ca:bd:86:25:7f:9f: bc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:27:A0:30:61:B8:F6:5C:D8:6F:61:4D:33:D0:DC:28:4E:6E:DF:71 X509v3 Authority Key Identifier: keyid:E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.179.59.0/24 IPv6: 2400:d1a0:f000::/36 Signature Algorithm: sha256WithRSAEncryption 66:4b:8a:8c:cc:b7:3e:3e:01:59:09:9d:de:d0:48:3e:1d:b1: 0b:49:31:8a:ae:d3:a2:cb:b7:5b:31:8b:6e:a8:b7:00:69:56: 3e:95:66:a0:b1:de:69:93:48:50:2d:4b:5e:24:78:52:3d:e8: 27:1e:c3:98:f8:9f:fa:00:4a:bf:e4:c0:27:73:01:e8:91:09: 2c:10:aa:4a:dc:f2:7e:44:78:7c:af:a9:53:f6:bf:25:8f:49: fc:6a:cc:44:ff:ec:b8:6c:de:b1:5d:12:ff:db:c7:2e:23:8d: 2d:c0:bf:c6:94:01:1a:ef:2e:e4:ef:9d:f2:54:ab:32:15:c5: a7:45:db:e1:aa:ba:37:75:40:35:06:11:87:38:ee:e1:bb:3c: dd:a3:5d:3b:3c:b5:85:ce:03:d1:7e:e2:aa:89:cb:3c:4d:88: a9:dc:03:4d:7f:ea:2f:e0:b3:43:62:f9:77:24:66:59:01:0b: a3:b0:16:d0:45:28:ae:20:01:6e:db:38:2d:e8:26:14:81:2f: f6:fa:19:11:46:6c:9d:b9:ac:bf:af:d3:fe:a3:a2:c3:8e:61: 4e:a7:c3:f8:8e:57:24:ee:3c:64:ac:7c:90:0e:71:32:b3:14: c2:48:88:32:32:a2:be:d7:0f:e2:0f:4a:58:2f:17:85:32:c5: d8:49:d3:08 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUQxMTAvBgNVBAUTKEU0MjE0MkUzRTU4NDU3NjJEMEU4RDY4QjAyRkIxMEU4 NzVCQzZCRjIwHhcNMjYwMjI3MDAyMDQwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjRmYS1kZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YATHnTrRe69bWYQVfn941gqXHGyb2VSUEX2bPukb0XxHwXquMZTetEDP7Jr 18KPcXVMycqf+ZgFToEiso0dOT7jvOYknz5zyhqxXF+R5KnlGgG1zNs2umclr/YH 2eGuVvtr/2rzGUbVD1UO/PKFjBmCVbjTfhwUOnzK8uaNHtNIItTIYf4qoKfqOTPv OSj+Kmfo8fAiDprcYaPTizg5ZZIOVbgrpeASydWuHPuwPUJyPBXHcbg/KpyspmEj 82GPhusuvWlLWZfqi4guibZArHgoEX64U2nDr60aHdnxsrM8SQe6gbWTkGpiZ4cK V9Q0wUxH9AuQd1vKvYYlf5+82QIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFKUnoDBh uPZc2G9hTTPQ3ChObt9xMB8GA1UdIwQYMBaAFOQhQuPlhFdi0OjWiwL7EOh1vGvy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRC9CNDZFNDJEQUJC MUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYyTFE2TmFMQXZzUTZIVzhh X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDRkM0LVdFVjJMUTZOYUxBdnNRNkhXOGFfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRBMUQvQjQ2RTQyREFCQjFCMTFFQ0IwQUMwRjE0QzRGOUFFMDIvMDU4OUE0QjhE Rjk1MTFFREFBQTdFMjJBQzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQAZ7M7MA4EAgACMAgDBgQkANGg8DANBgkqhkiG9w0BAQsFAAOCAQEA ZkuKjMy3Pj4BWQmd3tBIPh2xC0kxiq7Tosu3WzGLbqi3AGlWPpVmoLHeaZNIUC1L XiR4Uj3oJx7DmPif+gBKv+TAJ3MB6JEJLBCqStzyfkR4fK+pU/a/JY9J/GrMRP/s uGzesV0S/9vHLiONLcC/xpQBGu8u5O+d8lSrMhXFp0Xb4aq6N3VANQYRhzju4bs8 3aNdOzy1hc4D0X7iqonLPE2IqdwDTX/qL+CzQ2L5dyRmWQELo7AW0EUoriABbts4 LegmFIEv9voZEUZsnbmsv6/T/qOiw45hTqfD+I5XJO48ZKx8kA5xMrMUwkiIMjKi vtcP4g9KWC8XhTLF2EnTCA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:49:56 2026 by rpki-client