$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5DD4/119C4AFE221711F1B1DF2100393D8C67/58020F1E221811F197C01364393D8C67.roa File: 58020F1E221811F197C01364393D8C67.roa (raw, json) Hash identifier: Q4n4wyg7Pq3awPq1N4He5jBYK2SnfPud4zLUgU3uA6k= Subject key identifier: 6F:31:65:D2:77:EE:92:EE:3F:03:F3:DD:74:08:31:EB:79:2D:9A:08 Certificate issuer: /CN=A91C5DD4/serialNumber=39BFFDE63D026202BDCAB03E80759AB62EA6DC59 Certificate serial: 02 Authority key identifier: 39:BF:FD:E6:3D:02:62:02:BD:CA:B0:3E:80:75:9A:B6:2E:A6:DC:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob_95j0CYgK9yrA-gHWati6m3Fk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5DD4/119C4AFE221711F1B1DF2100393D8C67/58020F1E221811F197C01364393D8C67.roa Signing time: Tue 17 Mar 2026 15:45:38 +0000 ROA not before: Tue 17 Mar 2026 15:45:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 140641 IP address blocks: 163.128.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5DD4/119C4AFE221711F1B1DF2100393D8C67/Ob_95j0CYgK9yrA-gHWati6m3Fk.crl rsync://rpki.apnic.net/member_repository/A91C5DD4/119C4AFE221711F1B1DF2100393D8C67/Ob_95j0CYgK9yrA-gHWati6m3Fk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob_95j0CYgK9yrA-gHWati6m3Fk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:22:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5DD4, serialNumber=39BFFDE63D026202BDCAB03E80759AB62EA6DC59 Validity Not Before: Mar 17 15:45:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69b97721-08b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:80:c6:be:ed:bb:a1:10:c6:2f:e3:2c:c6:f5: b9:fa:91:5a:44:d7:39:35:1c:dc:95:f0:15:d2:eb: d1:9c:6b:21:ca:52:fa:b3:c2:e6:a8:df:55:2f:70: ac:9d:34:1c:5d:52:7b:3c:1b:35:55:a2:6f:5d:9e: a3:6f:97:98:52:89:1f:1d:1f:a8:bf:f0:84:ca:0d: 6f:f3:92:33:9d:f1:b9:f7:b7:9d:56:f4:df:f8:74: ec:2c:7b:84:49:18:53:9a:86:3c:b6:59:a7:fc:68: 73:a4:10:9c:a8:a3:ad:2b:6c:76:fe:85:d0:9f:cd: fa:f2:7d:56:63:c9:66:41:8f:df:4f:43:d8:82:7f: 24:70:d1:6f:49:23:ee:99:8c:dd:ee:4c:8f:7b:11: f1:36:8d:7a:e6:fe:d4:88:e6:21:7d:97:b9:b1:16: 28:75:28:61:f4:69:73:94:ed:74:f9:3c:c3:61:17: c3:9a:75:8d:ba:12:a8:2a:25:eb:be:d8:20:ee:eb: ac:61:09:db:93:e9:d5:df:25:02:13:8c:33:60:51: 11:93:fa:ea:1b:d3:5f:29:a6:4d:68:54:6e:c9:97: 5d:63:38:3e:c2:d3:a5:8c:61:da:a5:28:fa:35:2b: 77:95:20:56:60:4d:ef:50:73:0a:da:a4:1c:3d:1c: 22:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:31:65:D2:77:EE:92:EE:3F:03:F3:DD:74:08:31:EB:79:2D:9A:08 X509v3 Authority Key Identifier: keyid:39:BF:FD:E6:3D:02:62:02:BD:CA:B0:3E:80:75:9A:B6:2E:A6:DC:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5DD4/119C4AFE221711F1B1DF2100393D8C67/Ob_95j0CYgK9yrA-gHWati6m3Fk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob_95j0CYgK9yrA-gHWati6m3Fk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5DD4/119C4AFE221711F1B1DF2100393D8C67/58020F1E221811F197C01364393D8C67.roa sbgp-ipAddrBlock: critical IPv4: 163.128.64.0/23 Signature Algorithm: sha256WithRSAEncryption 23:88:ae:ff:56:4b:95:c0:5c:01:56:b8:47:4c:5f:70:ed:4f: a7:61:19:c1:49:48:2b:ed:f7:2e:e9:87:86:6f:c5:a5:06:73: ba:39:39:a3:fb:7e:50:3b:86:c6:e9:85:b0:42:28:78:d4:65: 50:6a:06:ae:32:ce:ac:fe:74:b4:52:ef:ee:e7:b8:e4:ca:d2: 38:17:79:5f:c6:2f:7d:7b:8b:c7:c2:78:82:7f:e0:71:36:73: f5:11:e8:84:cf:59:e4:9e:7b:93:3d:71:d6:5a:68:a1:df:cc: c4:5e:f4:9c:c3:76:ac:3b:b0:35:90:2c:fb:10:26:df:a6:45: 62:5a:5a:a8:d1:5b:fa:26:f1:34:4c:f4:91:76:65:9d:06:a6: b0:77:8d:2e:bb:a6:2e:ba:9d:63:63:72:5e:35:83:b7:f2:e7: 21:30:d0:5f:b0:3b:20:cc:6a:09:4e:3e:b1:5e:4f:05:db:39: 46:63:13:68:3e:dd:0c:1c:10:d4:85:cc:58:ed:d8:fd:ea:26: 05:e2:3d:fc:e9:3e:a0:47:be:e9:63:9f:e5:db:a4:9e:38:ef: e0:68:83:b6:be:57:2f:0a:e7:1e:8d:82:1d:6f:75:8a:26:69: 6e:a6:26:ad:4b:60:a6:85:d6:d2:c1:ea:27:68:15:57:bd:66: 83:ad:ea:5e -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NURENDExMC8GA1UEBRMoMzlCRkZERTYzRDAyNjIwMkJEQ0FCMDNFODA3NTlBQjYy RUE2REM1OTAeFw0yNjAzMTcxNTQ1MzhaFw0yNzA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Yjk3NzIxLTA4YjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCugMa+7buhEMYv4yzG9bn6kVpE1zk1HNyV8BXS69GcayHKUvqzwuao31UvcKyd NBxdUns8GzVVom9dnqNvl5hSiR8dH6i/8ITKDW/zkjOd8bn3t51W9N/4dOwse4RJ GFOahjy2Waf8aHOkEJyoo60rbHb+hdCfzfryfVZjyWZBj99PQ9iCfyRw0W9JI+6Z jN3uTI97EfE2jXrm/tSI5iF9l7mxFih1KGH0aXOU7XT5PMNhF8OadY26EqgqJeu+ 2CDu66xhCduT6dXfJQITjDNgURGT+uob018ppk1oVG7Jl11jOD7C06WMYdqlKPo1 K3eVIFZgTe9QcwrapBw9HCIPAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUbzFl0nfu ku4/A/PddAgx63ktmggwHwYDVR0jBBgwFoAUOb/95j0CYgK9yrA+gHWati6m3Fkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1REQ0LzExOUM0QUZFMjIx NzExRjFCMURGMjEwMDM5M0Q4QzY3L09iXzk1ajBDWWdLOXlyQS1nSFdhdGk2bTNG ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2JfOTVqMENZZ0s5eXJBLWdIV2F0aTZtM0ZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NURENC8xMTlDNEFGRTIyMTcxMUYxQjFERjIxMDAzOTNEOEM2Ny81ODAyMEYxRTIy MTgxMUYxOTdDMDEzNjQzOTNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGjgEAwDQYJKoZIhvcNAQELBQADggEBACOIrv9WS5XAXAFWuEdMX3Dt T6dhGcFJSCvt9y7ph4ZvxaUGc7o5OaP7flA7hsbphbBCKHjUZVBqBq4yzqz+dLRS 7+7nuOTK0jgXeV/GL317i8fCeIJ/4HE2c/UR6ITPWeSee5M9cdZaaKHfzMRe9JzD dqw7sDWQLPsQJt+mRWJaWqjRW/om8TRM9JF2ZZ0GprB3jS67pi66nWNjcl41g7fy 5yEw0F+wOyDMaglOPrFeTwXbOUZjE2g+3QwcENSFzFjt2P3qJgXiPfzpPqBHvulj n+XbpJ447+Bog7a+Vy8K5x6Ngh1vdYomaW6mJq1LYKaF1tLB6idoFVe9ZoOt6l4= -----END CERTIFICATE-----Generated at Thu Mar 26 09:20:01 2026 by rpki-client