$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/58A1565020E711F19CC84E688AEE528E.roa File: 58A1565020E711F19CC84E688AEE528E.roa (raw, json) Hash identifier: 0yKYPlVxJjwyMvurUmCkidN4rIU8FxKPZNApymflK/Y= Subject key identifier: 11:53:9A:09:B7:F7:5F:77:C7:B2:F2:BB:15:C5:B1:76:F7:E4:B0:C6 Certificate issuer: /CN=A917047F/serialNumber=44560607D997AA4B0A73AA57C6F635343DD018D6 Certificate serial: 04 Authority key identifier: 44:56:06:07:D9:97:AA:4B:0A:73:AA:57:C6:F6:35:34:3D:D0:18:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RFYGB9mXqksKc6pXxvY1ND3QGNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/58A1565020E711F19CC84E688AEE528E.roa Signing time: Mon 16 Mar 2026 09:31:03 +0000 ROA not before: Mon 16 Mar 2026 09:31:03 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135323 IP address blocks: 103.215.128.0/22 maxlen: 22 103.215.128.0/24 maxlen: 24 103.215.129.0/24 maxlen: 24 103.215.130.0/24 maxlen: 24 103.215.131.0/24 maxlen: 24 202.58.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/RFYGB9mXqksKc6pXxvY1ND3QGNY.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/RFYGB9mXqksKc6pXxvY1ND3QGNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RFYGB9mXqksKc6pXxvY1ND3QGNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=44560607D997AA4B0A73AA57C6F635343DD018D6 Validity Not Before: Mar 16 09:31:03 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69b7cdd7-e364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:61:93:bb:79:62:88:fd:0c:18:cd:f1:7d: b7:d9:f8:cc:dd:c6:9f:31:7a:65:fd:2a:a6:41:6c: 8b:d5:6a:74:ad:fc:e6:5d:ba:b4:57:9a:74:6d:40: 6e:a4:79:1d:c2:59:69:71:4d:35:f7:6f:2e:fb:7b: c3:2c:14:76:39:bc:ff:3d:55:37:d6:ff:99:02:7f: 61:58:7e:e2:f4:28:d4:ca:8b:3a:96:65:7f:1d:73: 10:10:10:d5:66:c3:8a:fd:6f:ae:5f:f1:4d:d0:39: 52:ff:be:aa:ce:55:11:c2:10:61:d3:a1:8e:5f:93: bf:6a:b6:41:ff:83:d4:12:ff:42:dd:d4:9f:6a:93: c0:04:01:43:09:d0:56:db:e4:04:86:37:30:11:4a: b5:51:26:68:99:0d:58:4e:1c:35:48:a0:4c:6b:96: d5:bd:b5:4f:09:3c:46:f6:c3:b9:48:2e:b8:c1:c8: 90:31:2a:05:d0:b0:0a:c9:ec:66:d7:5d:9e:47:50: 24:aa:e3:fd:43:03:9d:f4:f2:03:14:a1:ff:c6:98: fb:21:ac:dd:0e:c2:c5:dc:ac:d8:8a:91:4d:62:8d: bb:dd:1d:55:bf:e9:3d:f9:db:5c:74:d5:76:dd:98: 65:35:dc:4d:e2:34:d0:d7:ac:f4:2a:cb:e6:9c:e4: 2d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:53:9A:09:B7:F7:5F:77:C7:B2:F2:BB:15:C5:B1:76:F7:E4:B0:C6 X509v3 Authority Key Identifier: keyid:44:56:06:07:D9:97:AA:4B:0A:73:AA:57:C6:F6:35:34:3D:D0:18:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/RFYGB9mXqksKc6pXxvY1ND3QGNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RFYGB9mXqksKc6pXxvY1ND3QGNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/58A1565020E711F19CC84E688AEE528E.roa sbgp-ipAddrBlock: critical IPv4: 103.215.128.0/22 202.58.233.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:09:9f:90:c7:c8:1a:48:79:53:a1:64:c6:34:74:a5:1b:50: 43:de:de:23:bf:45:9c:10:8f:c9:9e:a9:25:23:7b:2a:07:2d: 47:9f:47:db:9b:fa:3a:63:c2:96:c4:80:cc:40:c2:5f:d8:13: 57:2f:e1:52:f3:06:d9:5c:b6:4e:6e:00:1f:5c:10:37:aa:40: e0:a4:13:0f:c8:a0:c2:b2:8a:d9:0f:e4:96:37:c6:e4:41:2c: ef:c9:dd:dd:77:af:7a:d2:52:8f:09:fe:a1:0e:12:ba:09:1c: f2:3b:a1:bf:ea:09:1e:50:18:18:23:9f:ca:5f:66:5b:32:6e: 93:69:46:61:18:af:59:d4:ab:15:26:79:31:2f:c5:e0:fc:0d: c1:bb:e8:cb:50:d1:4e:51:57:b5:b8:1d:13:3f:6d:bb:70:e1: e5:0b:e1:26:2f:53:52:ad:12:db:00:a9:a4:53:aa:0b:23:b0: 9d:c3:51:b8:6d:39:ad:e6:29:41:a9:05:31:6c:78:c9:e8:00: 2d:7f:d5:c7:a1:06:2e:e0:b0:be:c8:7c:cd:eb:49:8a:cf:c0: d3:08:59:aa:34:13:19:e0:4c:d3:16:e2:be:b6:df:ff:19:ec: 73:08:82:9a:5b:bf:dd:ac:8a:61:cd:74:ef:bf:63:15:d5:e5: 80:64:8b:0f -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDQ3RjExMC8GA1UEBRMoNDQ1NjA2MDdEOTk3QUE0QjBBNzNBQTU3QzZGNjM1MzQz REQwMThENjAeFw0yNjAzMTYwOTMxMDNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjdjZGQ3LWUzNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGfWGTu3liiP0MGM3xfbfZ+Mzdxp8xemX9KqZBbIvVanSt/OZdurRXmnRtQG6k eR3CWWlxTTX3by77e8MsFHY5vP89VTfW/5kCf2FYfuL0KNTKizqWZX8dcxAQENVm w4r9b65f8U3QOVL/vqrOVRHCEGHToY5fk79qtkH/g9QS/0Ld1J9qk8AEAUMJ0Fbb 5ASGNzARSrVRJmiZDVhOHDVIoExrltW9tU8JPEb2w7lILrjByJAxKgXQsArJ7GbX XZ5HUCSq4/1DA5308gMUof/GmPshrN0OwsXcrNiKkU1ijbvdHVW/6T3521x01Xbd mGU13E3iNNDXrPQqy+ac5C2NAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUEVOaCbf3 X3fHsvK7FcWxdvfksMYwHwYDVR0jBBgwFoAURFYGB9mXqksKc6pXxvY1ND3QGNYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNDdGL0ZENzJERTE0QTNB OTExRTk5Rjc1Nzc3QkM0RjlBRTAyL1JGWUdCOW1YcWtzS2M2cFh4dlkxTkQzUUdO WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUkZZR0I5bVhxa3NLYzZwWHh2WTFORDNRR05ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi81OEExNTY1MDIw RTcxMUYxOUNDODRFNjg4QUVFNTI4RS5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAJn14ADBADKOukwDQYJKoZIhvcNAQELBQADggEBAHoJn5DHyBpIeVOh ZMY0dKUbUEPe3iO/RZwQj8meqSUjeyoHLUefR9ub+jpjwpbEgMxAwl/YE1cv4VLz Btlctk5uAB9cEDeqQOCkEw/IoMKyitkP5JY3xuRBLO/J3d13r3rSUo8J/qEOEroJ HPI7ob/qCR5QGBgjn8pfZlsybpNpRmEYr1nUqxUmeTEvxeD8DcG76MtQ0U5RV7W4 HRM/bbtw4eUL4SYvU1KtEtsAqaRTqgsjsJ3DUbhtOa3mKUGpBTFseMnoAC1/1ceh Bi7gsL7IfM3rSYrPwNMIWao0ExngTNMW4r623/8Z7HMIgppbv92simHNdO+/YxXV 5YBkiw8= -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:20 2026 by rpki-client