$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/15812F82C4A111EBAE6C7F49C4F9AE02.roa File: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (raw, json) Hash identifier: 1rZWgbUmjxQN06CeOuGX07QdWjTq8x0pS2P/AZOZPKA= Subject key identifier: F1:EA:F4:9F:61:48:B3:B7:91:EF:52:88:9C:05:90:86:B8:24:A6:E3 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 2705 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/15812F82C4A111EBAE6C7F49C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:16:40 +0000 ROA not before: Fri 04 Jul 2025 16:23:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55430 IP address blocks: 58.146.128.0/18 maxlen: 24 58.182.0.0/16 maxlen: 24 59.189.0.0/16 maxlen: 24 103.234.104.0/22 maxlen: 24 116.86.0.0/15 maxlen: 24 116.88.0.0/16 maxlen: 24 116.89.0.0/17 maxlen: 24 150.107.128.0/22 maxlen: 24 202.156.0.0/16 maxlen: 24 218.186.0.0/16 maxlen: 24 218.212.0.0/16 maxlen: 24 222.164.0.0/16 maxlen: 24 222.165.0.0/17 maxlen: 24 2404:e800::/31 maxlen: 32 2404:e800::/40 maxlen: 48 2404:e800:100::/40 maxlen: 48 2404:e800:2000::/40 maxlen: 48 2404:e801:1000::/40 maxlen: 48 2404:e801:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9989 (0x2705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jul 4 16:23:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a51d38-70f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:86:a2:60:9b:61:3a:91:cd:12:02:c4:d1:4e: 6e:f0:5a:ba:96:83:30:cd:4f:df:d7:98:d5:91:67: a5:e8:30:44:59:b9:f2:82:60:d1:a7:be:66:8e:f4: f0:ba:10:ce:ed:2d:94:37:86:39:42:62:b6:aa:98: dd:bc:1c:b1:94:21:f3:84:43:99:ae:60:71:5e:b5: 1e:c5:ce:5c:82:fe:6e:73:84:ca:e7:a6:d1:02:c3: 6a:24:44:0e:79:e8:b5:65:8e:cd:4c:4e:2f:87:9e: 64:fe:4c:57:58:a3:bb:7e:d3:9b:f2:c1:c1:ab:37: f2:d7:26:b8:0c:40:e7:23:cb:76:69:5e:24:41:6b: a8:b3:86:00:bf:8e:4f:0f:61:2f:3a:a2:39:20:3a: b4:92:67:03:be:93:ff:8f:9e:b3:2f:56:6c:cf:f9: 18:ef:71:ca:b3:f4:a2:30:8e:cc:14:a3:80:64:21: 25:99:e1:7a:8c:35:cf:18:30:41:e9:cc:e1:bd:e0: 19:c4:8e:de:16:f8:3b:88:0e:fe:93:f8:27:6b:6e: 1e:16:fe:18:cd:26:20:ec:c5:0f:ef:0a:d2:5b:38: 46:c9:1c:8f:7a:39:b6:5b:23:fa:bf:0a:4a:06:78: 6c:d8:cd:3d:8d:95:eb:e8:98:b2:06:ce:60:b1:b6: ef:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EA:F4:9F:61:48:B3:B7:91:EF:52:88:9C:05:90:86:B8:24:A6:E3 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/15812F82C4A111EBAE6C7F49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.146.128.0/18 58.182.0.0/16 59.189.0.0/16 103.234.104.0/22 116.86.0.0-116.89.127.255 150.107.128.0/22 202.156.0.0/16 218.186.0.0/16 218.212.0.0/16 222.164.0.0-222.165.127.255 IPv6: 2404:e800::/31 Signature Algorithm: sha256WithRSAEncryption 31:fa:a3:d9:0f:28:13:bf:1c:cc:65:5b:34:7c:c8:4f:8f:f8: 80:bf:2e:ea:81:b5:68:b4:b9:cd:c4:87:06:f0:24:f2:5e:2a: b1:e3:9a:79:a3:ac:26:21:47:ec:d2:0c:1b:88:e2:30:59:10: 72:d4:3c:bb:0e:3c:14:cd:7a:5e:09:92:59:99:e3:bb:b4:8c: b6:85:d1:d5:ca:f7:9a:74:32:78:a4:1e:c8:5b:d6:56:d0:7c: e7:fc:dc:6e:c8:45:35:04:bd:70:89:52:47:79:87:77:db:2c: dd:51:fb:ac:0f:9e:de:0b:32:d5:04:92:bf:ac:0c:a8:58:78: b4:09:2f:96:ba:a3:f6:cf:18:7a:77:ab:70:64:cf:a0:b4:cb: 39:27:f0:9d:1d:87:2e:44:da:51:3f:00:cf:37:01:8c:8a:01: 2e:f5:dc:b3:df:6a:6c:7d:db:03:42:d2:d0:32:f0:66:01:f6: cf:88:92:27:e5:bb:37:0a:51:d5:75:f9:bd:bf:a1:1b:29:d5: 27:c5:53:48:25:1a:c2:a9:3e:8d:5b:0a:33:c6:cd:66:98:3b: 89:ac:0b:34:c9:2a:f9:a8:6f:0e:b4:db:34:47:88:d8:66:23: bc:45:41:f7:fc:8c:be:f0:2b:4e:8d:45:d5:db:6f:96:f5:37: 86:c5:07:1e -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICJwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjUwNzA0MTYyMzAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWQzOC03MGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4aiYJthOpHNEgLE0U5u8Fq6loMwzU/f15jVkWel6DBEWbnygmDRp75mjvTw uhDO7S2UN4Y5QmK2qpjdvByxlCHzhEOZrmBxXrUexc5cgv5uc4TK56bRAsNqJEQO eei1ZY7NTE4vh55k/kxXWKO7ftOb8sHBqzfy1ya4DEDnI8t2aV4kQWuos4YAv45P D2EvOqI5IDq0kmcDvpP/j56zL1Zsz/kY73HKs/SiMI7MFKOAZCElmeF6jDXPGDBB 6czhveAZxI7eFvg7iA7+k/gna24eFv4YzSYg7MUP7wrSWzhGyRyPejm2WyP6vwpK Bnhs2M09jZXr6JiyBs5gsbbvMQIDAQABo4ICrjCCAqowHQYDVR0OBBYEFPHq9J9h SLO3ke9SiJwFkIa4JKbjMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVFNTMvMzg1MTE4NDA0NTg4MTFFNTlCMkQ4MzcxQzRGOUFFMDIvMTU4MTJGODJD NEExMTFFQkFFNkM3RjQ5QzRGOUFFMDIucm9hMG0GCCsGAQUFBwEHAQH/BF4wXDBL BAIAATBFAwQGOpKAAwMAOrYDAwA7vQMEAmfqaDALAwMBdFYDBAd0WQADBAKWa4AD AwDKnAMDANq6AwMA2tQwCwMDAt6kAwQH3qUAMA0EAgACMAcDBQEkBOgAMA0GCSqG SIb3DQEBCwUAA4IBAQAx+qPZDygTvxzMZVs0fMhPj/iAvy7qgbVotLnNxIcG8CTy Xiqx45p5o6wmIUfs0gwbiOIwWRBy1Dy7DjwUzXpeCZJZmeO7tIy2hdHVyveadDJ4 pB7IW9ZW0Hzn/NxuyEU1BL1wiVJHeYd32yzdUfusD57eCzLVBJK/rAyoWHi0CS+W uqP2zxh6d6twZM+gtMs5J/CdHYcuRNpRPwDPNwGMigEu9dyz32psfdsDQtLQMvBm AfbPiJIn5bs3ClHVdfm9v6EbKdUnxVNIJRrCqT6NWwozxs1mmDuJrAs0ySr5qG8O tNs0R4jYZiO8RUH3/Iy+8CtOjUXV22+W9TeGxQce -----END CERTIFICATE-----Generated at Fri Mar 27 02:03:12 2026 by rpki-client