$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C2E/A44847B824D811F1971FE104AC833773/BEBA0144251011F1AF69A29DBE833773.roa File: BEBA0144251011F1AF69A29DBE833773.roa (raw, json) Hash identifier: Y8leGHlEV79dvYZJq7U0DpvFPz+K4oSaAR6kvoNnWIM= Subject key identifier: 38:7E:01:3D:45:5D:14:89:91:5B:F6:3F:1C:04:50:06:04:67:F7:AE Certificate issuer: /CN=A91D1C2E/serialNumber=40C855900EBEB4DDEE119C808E459AAFDF75B584 Certificate serial: 18 Authority key identifier: 40:C8:55:90:0E:BE:B4:DD:EE:11:9C:80:8E:45:9A:AF:DF:75:B5:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMhVkA6-tN3uEZyAjkWar991tYQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C2E/A44847B824D811F1971FE104AC833773/BEBA0144251011F1AF69A29DBE833773.roa Signing time: Sat 21 Mar 2026 10:35:32 +0000 ROA not before: Sat 21 Mar 2026 10:35:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133139 IP address blocks: 58.97.148.0/24 maxlen: 24 58.97.150.0/24 maxlen: 24 58.97.151.0/24 maxlen: 24 58.97.152.0/24 maxlen: 24 58.97.153.0/24 maxlen: 24 58.97.154.0/24 maxlen: 24 58.97.156.0/22 maxlen: 24 202.86.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C2E/A44847B824D811F1971FE104AC833773/QMhVkA6-tN3uEZyAjkWar991tYQ.crl rsync://rpki.apnic.net/member_repository/A91D1C2E/A44847B824D811F1971FE104AC833773/QMhVkA6-tN3uEZyAjkWar991tYQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMhVkA6-tN3uEZyAjkWar991tYQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C2E, serialNumber=40C855900EBEB4DDEE119C808E459AAFDF75B584 Validity Not Before: Mar 21 10:35:32 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69be7474-3ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8f:b0:4d:6c:7b:78:c7:4b:ea:d2:66:4d:ce: 85:fd:31:a6:73:0e:ed:81:e1:ab:b2:45:4c:a1:f6: c8:5a:5c:f0:5c:cc:3d:9f:04:d8:f5:f1:8e:fb:ad: ee:da:07:b7:01:33:54:87:c4:d7:6b:da:12:33:7b: 46:9d:9f:c6:bb:91:42:e4:76:f7:a4:52:43:e7:b5: b9:19:a9:f7:4d:33:3a:bc:a2:b9:c8:fd:8b:f5:a2: 6b:72:10:41:2c:0f:89:39:b2:e4:8f:ab:be:e5:5d: 88:4c:22:b8:09:63:c5:7f:95:d6:0e:b7:42:fd:f1: 71:36:23:c6:06:5e:22:ae:98:2f:04:4c:29:4f:0b: 70:9d:42:83:b7:5b:b6:2e:84:fb:27:c5:fa:89:a6: 40:99:2a:0b:95:7f:bc:c7:da:e1:54:e7:67:a7:b1: 73:96:f1:91:b5:fd:c2:12:60:f2:c6:d4:86:5e:b3: 51:82:51:12:36:30:1c:89:5f:82:22:91:d4:a7:d4: 40:1e:e5:c3:f0:9e:ca:85:a1:d2:75:d4:6d:a3:a9: 39:21:e8:52:16:2b:61:2a:8f:1e:66:6c:2d:37:c6: c1:4b:2f:22:7e:d6:f4:2e:be:b3:a6:9d:00:b7:8f: 73:bc:8e:90:49:28:9b:ff:e6:99:f9:a9:80:bc:5b: 00:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7E:01:3D:45:5D:14:89:91:5B:F6:3F:1C:04:50:06:04:67:F7:AE X509v3 Authority Key Identifier: keyid:40:C8:55:90:0E:BE:B4:DD:EE:11:9C:80:8E:45:9A:AF:DF:75:B5:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C2E/A44847B824D811F1971FE104AC833773/QMhVkA6-tN3uEZyAjkWar991tYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMhVkA6-tN3uEZyAjkWar991tYQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C2E/A44847B824D811F1971FE104AC833773/BEBA0144251011F1AF69A29DBE833773.roa sbgp-ipAddrBlock: critical IPv4: 58.97.148.0/24 58.97.150.0-58.97.154.255 58.97.156.0/22 202.86.24.0/21 Signature Algorithm: sha256WithRSAEncryption 0d:44:31:74:ad:49:cd:75:6d:a4:00:a3:fc:dc:ec:ad:49:84: a7:a3:0b:3d:61:9c:83:b1:2a:10:b8:e7:be:93:78:4c:e3:9f: 55:47:78:d8:b7:2a:ce:d6:2d:cd:d3:86:88:c1:e6:6e:e1:6d: 8d:b8:2d:60:da:bd:d4:13:5a:d2:52:75:15:db:89:47:c2:4c: 02:3b:d0:a1:a5:29:0c:bc:ff:f3:17:1a:4b:f6:05:d3:c6:37: 64:96:66:49:ee:d1:fa:5e:6a:73:c7:5c:7c:de:87:8c:36:b1: 73:1f:ec:91:ed:a7:1f:62:f8:19:d0:ed:b5:54:c8:66:b8:66: 95:71:c6:46:4a:5b:fc:40:09:e9:9b:37:6c:65:00:86:e4:b1: 47:05:57:97:ac:1d:0b:d5:9d:4e:4a:1e:cf:52:9a:3c:15:1c: be:53:79:50:e7:ba:66:0f:00:fe:04:85:a9:7c:68:22:64:d5: 15:88:89:02:5c:1d:09:eb:2f:7d:8a:d0:fb:9d:82:ee:c4:6d: f7:3e:37:62:f6:d6:07:d5:2c:f6:44:b7:b1:8e:f7:71:48:41: ac:cd:5c:7f:de:00:1b:a8:b4:d4:81:9d:4e:bd:bf:fc:08:17: 47:cd:89:ee:c5:cc:a2:58:13:8a:c4:a2:6f:3e:27:58:24:db: 8e:09:0e:93 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MUMyRTExMC8GA1UEBRMoNDBDODU1OTAwRUJFQjREREVFMTE5QzgwOEU0NTlBQUZE Rjc1QjU4NDAeFw0yNjAzMjExMDM1MzJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YmU3NDc0LTNhZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlj7BNbHt4x0vq0mZNzoX9MaZzDu2B4auyRUyh9shaXPBczD2fBNj18Y77re7a B7cBM1SHxNdr2hIze0adn8a7kULkdvekUkPntbkZqfdNMzq8ornI/Yv1omtyEEEs D4k5suSPq77lXYhMIrgJY8V/ldYOt0L98XE2I8YGXiKumC8ETClPC3CdQoO3W7Yu hPsnxfqJpkCZKguVf7zH2uFU52ensXOW8ZG1/cISYPLG1IZes1GCURI2MByJX4Ii kdSn1EAe5cPwnsqFodJ11G2jqTkh6FIWK2Eqjx5mbC03xsFLLyJ+1vQuvrOmnQC3 j3O8jpBJKJv/5pn5qYC8WwCtAgMBAAGjggJ6MIICdjAdBgNVHQ4EFgQUOH4BPUVd FImRW/Y/HARQBgRn964wHwYDVR0jBBgwFoAUQMhVkA6+tN3uEZyAjkWar991tYQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxQzJFL0E0NDg0N0I4MjRE ODExRjE5NzFGRTEwNEFDODMzNzczL1FNaFZrQTYtdE4zdUVaeUFqa1dhcjk5MXRZ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUU1oVmtBNi10TjN1RVp5QWprV2FyOTkxdFlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUMyRS9BNDQ4NDdCODI0RDgxMUYxOTcxRkUxMDRBQzgzMzc3My9CRUJBMDE0NDI1 MTAxMUYxQUY2OUEyOURCRTgzMzc3My5yb2EwOQYIKwYBBQUHAQcBAf8EKjAoMCYE AgABMCADBAA6YZQwDAMEATphlgMEADphmgMEAjphnAMEA8pWGDANBgkqhkiG9w0B AQsFAAOCAQEADUQxdK1JzXVtpACj/NzsrUmEp6MLPWGcg7EqELjnvpN4TOOfVUd4 2LcqztYtzdOGiMHmbuFtjbgtYNq91BNa0lJ1FduJR8JMAjvQoaUpDLz/8xcaS/YF 08Y3ZJZmSe7R+l5qc8dcfN6HjDaxcx/ske2nH2L4GdDttVTIZrhmlXHGRkpb/EAJ 6Zs3bGUAhuSxRwVXl6wdC9WdTkoez1KaPBUcvlN5UOe6Zg8A/gSFqXxoImTVFYiJ AlwdCesvfYrQ+52C7sRt9z43YvbWB9Us9kS3sY73cUhBrM1cf94AG6i01IGdTr2/ /AgXR82J7sXMolgTisSibz4nWCTbjgkOkw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:55:49 2026 by rpki-client