$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/588BD7269A1211E8B97A623AC4F9AE02.roa File: 588BD7269A1211E8B97A623AC4F9AE02.roa (raw, json) Hash identifier: WIHf/g57A92kBt+M1v/6HUGwLpZi39D8KAuOlAkvShg= Subject key identifier: 07:C1:0D:0E:94:C5:7E:64:F7:96:27:DB:0F:BA:BB:8D:DF:35:6E:E3 Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 352F Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/588BD7269A1211E8B97A623AC4F9AE02.roa Signing time: Sat 14 Mar 2026 15:13:29 +0000 ROA not before: Sat 14 Mar 2026 15:13:29 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 45770 IP address blocks: 203.14.183.0/24 maxlen: 24 2001:df0:96::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13615 (0x352f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Mar 14 15:13:29 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69b57b19-b455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:c5:b8:a8:76:44:f5:80:1a:28:e6:d2:c8: 99:7e:77:72:66:cc:f9:93:26:23:25:08:e0:4b:36: 94:9e:44:ef:ba:89:25:ca:21:ca:f8:c5:19:49:95: f9:22:5c:dc:9b:b2:49:c8:3d:7e:bc:cc:15:12:59: 1b:67:d9:56:ef:16:6e:fa:52:53:32:b7:22:69:4c: ad:89:72:09:a8:29:af:b8:f1:d3:79:d9:ec:4d:96: 7e:d1:cb:bc:1c:28:d5:c7:d6:ab:27:5e:8b:3b:bd: 7f:bd:47:b7:38:7a:a3:a9:8d:bd:f0:94:08:b9:2b: fd:34:b8:3d:ff:64:af:a9:6f:93:a0:a9:d3:a8:57: f4:fc:6b:22:96:00:84:aa:77:9e:d4:57:dc:37:1b: 1e:fc:7a:ff:76:2e:0c:b1:ca:38:e7:2e:1c:14:ba: 85:c6:b6:a8:5d:cb:ce:2e:b1:01:3b:5a:9d:90:8d: 3f:01:ea:20:22:d2:c2:7a:54:0f:11:26:da:99:e8: b4:16:3a:fb:eb:e8:a6:c1:84:5c:8b:95:8a:a5:af: 01:d3:76:14:84:64:09:90:96:1b:a8:71:c1:cf:f9: 25:34:01:3c:4d:cf:83:e8:bc:fe:a1:f1:de:2d:c8: bb:84:bf:e3:ff:d6:34:cb:6c:a4:aa:02:41:0a:fa: 91:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C1:0D:0E:94:C5:7E:64:F7:96:27:DB:0F:BA:BB:8D:DF:35:6E:E3 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/588BD7269A1211E8B97A623AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.14.183.0/24 IPv6: 2001:df0:96::/48 Signature Algorithm: sha256WithRSAEncryption 6b:48:e8:f5:4f:d3:ec:5d:1f:99:89:90:d7:db:88:50:53:9f: e5:f1:39:dd:b5:3d:17:b9:fa:41:5e:5b:95:82:ff:28:d8:f9: f8:38:92:8a:ee:58:40:a7:a0:4b:09:57:c4:14:7b:8a:d3:47: 5f:c8:c3:9c:2a:a1:bf:b9:f8:13:98:d2:25:65:4f:25:9b:c6: d0:0f:77:5c:cd:0c:fb:a0:7d:da:2e:c2:48:60:94:c3:c0:80: 58:9a:4a:6f:47:9e:a6:7b:29:39:8e:c7:d7:21:7c:0b:2a:9c: 39:18:ab:b4:81:ca:dc:a4:e8:f5:89:ed:7a:8f:db:70:57:92: 51:24:1e:34:ba:8d:51:f6:3f:d5:38:77:f4:1e:65:a9:1a:0e: 5a:d6:71:9b:a1:8b:07:cd:2b:39:72:de:3f:54:cb:03:bf:41: a3:5c:b3:5e:78:52:3f:3b:33:e4:d9:95:b0:00:7d:d8:04:43: ed:8f:f9:1b:e1:90:58:a7:31:d7:d1:22:58:b1:13:52:5d:89: ac:e8:d3:5d:3a:0c:f0:9e:f0:6d:fd:69:91:29:da:7e:39:eb: 2a:9b:3c:12:7d:18:29:5a:7d:2b:6a:a0:07:24:b5:32:e7:7d: a0:bc:f3:5c:d5:9e:44:f0:6f:58:8b:54:1c:d9:35:27:de:ce: 1e:c6:cd:f8 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICNS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjYwMzE0MTUxMzI5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWI1N2IxOS1iNDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXbFuKh2RPWAGijm0siZfndyZsz5kyYjJQjgSzaUnkTvuoklyiHK+MUZSZX5 Ilzcm7JJyD1+vMwVElkbZ9lW7xZu+lJTMrciaUytiXIJqCmvuPHTednsTZZ+0cu8 HCjVx9arJ16LO71/vUe3OHqjqY298JQIuSv9NLg9/2SvqW+ToKnTqFf0/GsilgCE qnee1FfcNxse/Hr/di4Msco45y4cFLqFxraoXcvOLrEBO1qdkI0/AeogItLCelQP ESbamei0Fjr76+imwYRci5WKpa8B03YUhGQJkJYbqHHBz/klNAE8Tc+D6Lz+ofHe Lci7hL/j/9Y0y2ykqgJBCvqRNQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAfBDQ6U xX5k95Yn2w+6u43fNW7jMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEYyRUMvRDU4QTIyNkMxRDlDMTFFMjlCQzNCMjhCMDhCMDJDRDIvNTg4QkQ3MjY5 QTEyMTFFOEI5N0E2MjNBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyw63MA8EAgACMAkDBwAgAQ3wAJYwDQYJKoZIhvcNAQELBQADggEB AGtI6PVP0+xdH5mJkNfbiFBTn+XxOd21PRe5+kFeW5WC/yjY+fg4koruWECnoEsJ V8QUe4rTR1/Iw5wqob+5+BOY0iVlTyWbxtAPd1zNDPugfdouwkhglMPAgFiaSm9H nqZ7KTmOx9chfAsqnDkYq7SBytyk6PWJ7XqP23BXklEkHjS6jVH2P9U4d/QeZaka DlrWcZuhiwfNKzly3j9UywO/QaNcs154Uj87M+TZlbAAfdgEQ+2P+RvhkFinMdfR IlixE1Jdiazo0106DPCe8G39aZEp2n456yqbPBJ9GClafStqoAcktTLnfaC881zV nkTwb1iLVBzZNSfezh7Gzfg= -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:20 2026 by rpki-client