$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/B3789882F23211EC9A7DB924C4F9AE02.roa File: B3789882F23211EC9A7DB924C4F9AE02.roa (raw, json) Hash identifier: M7OYmQFL8/41ldtug+5JoOUb7vy7UyfuPrmsX/809jo= Subject key identifier: 3C:43:18:D3:75:7F:A8:B1:A9:A6:A5:20:23:60:C2:73:0E:CD:AB:70 Certificate issuer: /CN=A91ADE0A/serialNumber=46B4FF8DC9167A777D98D85F2F521DD1367073B3 Certificate serial: 0535 Authority key identifier: 46:B4:FF:8D:C9:16:7A:77:7D:98:D8:5F:2F:52:1D:D1:36:70:73:B3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RrT_jckWend9mNhfL1Id0TZwc7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/B3789882F23211EC9A7DB924C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:28:23 +0000 ROA not before: Fri 06 Feb 2026 16:13:22 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 133334 IP address blocks: 2.58.228.0/22 maxlen: 22 2.58.228.0/24 maxlen: 24 2.58.229.0/24 maxlen: 24 2.58.230.0/24 maxlen: 24 2.58.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/RrT_jckWend9mNhfL1Id0TZwc7M.crl rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/RrT_jckWend9mNhfL1Id0TZwc7M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RrT_jckWend9mNhfL1Id0TZwc7M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADE0A, serialNumber=46B4FF8DC9167A777D98D85F2F521DD1367073B3 Validity Not Before: Feb 6 16:13:22 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a45b17-438f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c5:77:45:7e:23:2c:3d:62:d5:66:d0:f5:54: 44:2c:53:a5:8a:99:db:37:63:68:b7:4b:b5:83:b8: 87:b0:ec:bb:6e:a6:54:b6:6f:38:92:ff:f5:a7:19: 14:0e:c4:c6:b2:4c:ef:e8:0b:39:62:40:a5:1f:61: 53:e1:78:75:c7:25:9e:b7:9e:79:0f:78:ce:0c:9e: e8:83:d9:f8:ad:bb:57:66:4c:b1:d4:d7:73:13:99: 9e:33:52:10:01:68:3b:4c:a3:45:c2:b2:5d:3e:bc: fb:39:94:63:22:5a:37:1e:68:ae:f5:08:04:75:92: 4d:94:14:21:6a:24:71:b0:64:fc:46:09:ea:5e:d3: 45:c4:e9:6c:95:1a:15:08:2d:cd:3a:da:a2:80:1e: 15:54:3e:94:2a:22:38:f1:ea:af:b0:df:77:b1:ad: 1a:7a:dc:58:74:37:9e:67:fa:18:d8:ca:a5:68:e7: c3:f0:b0:87:3a:f9:9e:56:4b:e7:cc:f6:b2:3a:7a: a8:ad:55:75:39:91:de:61:fd:b8:7e:2d:db:41:cc: ad:55:f0:9b:f8:89:5c:ff:90:f0:12:78:4f:79:17: a4:bf:a1:ee:92:9e:9d:d7:25:da:f8:ec:3d:f5:3c: cb:af:70:5b:86:80:4c:14:95:a7:7d:5c:3f:59:7a: e2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:43:18:D3:75:7F:A8:B1:A9:A6:A5:20:23:60:C2:73:0E:CD:AB:70 X509v3 Authority Key Identifier: keyid:46:B4:FF:8D:C9:16:7A:77:7D:98:D8:5F:2F:52:1D:D1:36:70:73:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/RrT_jckWend9mNhfL1Id0TZwc7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RrT_jckWend9mNhfL1Id0TZwc7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/43567EE43D2811ECBEF77C76C4F9AE02/B3789882F23211EC9A7DB924C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 2.58.228.0/22 Signature Algorithm: sha256WithRSAEncryption a3:2a:9c:ba:4a:73:7d:20:bc:01:aa:d7:e5:60:ca:34:61:e6: f6:78:3d:da:53:05:ba:ba:b0:a6:25:5c:7e:6c:df:7e:ae:e8: f0:b3:da:70:85:3f:b7:eb:a1:20:2d:45:39:73:df:0c:52:14: 54:43:7a:e5:51:09:24:6b:e3:21:8d:88:62:d9:5d:88:c3:6d: d3:a1:63:ac:95:88:39:b7:32:c6:af:c2:c6:a7:89:f0:2d:2d: 0a:57:20:6c:7d:89:2e:d6:9f:fb:f6:76:c0:aa:87:2e:a1:74: 9c:13:04:b4:68:4d:f2:05:37:b5:53:bd:41:e2:22:68:c0:92: 3a:f8:3f:0c:32:e1:1c:4c:da:bf:2e:f1:88:21:b3:46:ac:ca: 01:3d:c6:b5:ec:f1:25:82:8a:97:96:0b:23:0d:ad:af:ac:04: 5d:42:5b:43:be:99:32:6d:d3:90:fc:5f:69:2b:b6:7d:81:53: 58:24:4d:86:ef:84:84:ae:25:46:b3:75:8b:c0:fb:45:c2:88: 92:ca:27:17:4f:06:60:06:92:a5:89:87:3c:a9:45:0c:86:00: 64:4a:46:02:35:ae:af:a6:96:4c:55:e3:e2:2d:9f:d5:1f:50: 93:3c:70:2f:5b:5a:f7:48:b9:81:a1:a6:c5:4d:ee:da:1c:5b: b7:e9:45:83 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURFMEExMTAvBgNVBAUTKDQ2QjRGRjhEQzkxNjdBNzc3RDk4RDg1RjJGNTIxREQx MzY3MDczQjMwHhcNMjYwMjA2MTYxMzIyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWIxNy00MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MV3RX4jLD1i1WbQ9VRELFOlipnbN2Not0u1g7iHsOy7bqZUtm84kv/1pxkU DsTGskzv6As5YkClH2FT4Xh1xyWet555D3jODJ7og9n4rbtXZkyx1NdzE5meM1IQ AWg7TKNFwrJdPrz7OZRjIlo3Hmiu9QgEdZJNlBQhaiRxsGT8RgnqXtNFxOlslRoV CC3NOtqigB4VVD6UKiI48eqvsN93sa0aetxYdDeeZ/oY2MqlaOfD8LCHOvmeVkvn zPayOnqorVV1OZHeYf24fi3bQcytVfCb+Ilc/5DwEnhPeRekv6Hukp6d1yXa+Ow9 9TzLr3BbhoBMFJWnfVw/WXriLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDxDGNN1 f6ixqaalICNgwnMOzatwMB8GA1UdIwQYMBaAFEa0/43JFnp3fZjYXy9SHdE2cHOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREUwQS80MzU2N0VFNDNE MjgxMUVDQkVGNzdDNzZDNEY5QUUwMi9SclRfamNrV2VuZDltTmhmTDFJZDBUWndj N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JyVF9qY2tXZW5kOW1OaGZMMUlkMFRad2M3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURFMEEvNDM1NjdFRTQzRDI4MTFFQ0JFRjc3Qzc2QzRGOUFFMDIvQjM3ODk4ODJG MjMyMTFFQzlBN0RCOTI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCAjrkMA0GCSqGSIb3DQEBCwUAA4IBAQCjKpy6SnN9ILwBqtflYMo0 Yeb2eD3aUwW6urCmJVx+bN9+rujws9pwhT+366EgLUU5c98MUhRUQ3rlUQkka+Mh jYhi2V2Iw23ToWOslYg5tzLGr8LGp4nwLS0KVyBsfYku1p/79nbAqocuoXScEwS0 aE3yBTe1U71B4iJowJI6+D8MMuEcTNq/LvGIIbNGrMoBPca17PElgoqXlgsjDa2v rARdQltDvpkybdOQ/F9pK7Z9gVNYJE2G74SEriVGs3WLwPtFwoiSyicXTwZgBpKl iYc8qUUMhgBkSkYCNa6vppZMVePiLZ/VH1CTPHAvW1r3SLmBoabFTe7aHFu36UWD -----END CERTIFICATE-----Generated at Fri Mar 27 00:43:05 2026 by rpki-client