$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/213F506AEF8A11F08E686F05616F56BC.roa File: 213F506AEF8A11F08E686F05616F56BC.roa (raw, json) Hash identifier: 02tv6cOkGOuSyZXehvyyp5NaQDiEvRUARO4y4tn1Nj4= Subject key identifier: 1E:3A:EA:22:62:AE:B7:D7:32:B4:A6:EF:9C:75:1B:41:13:D3:87:03 Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 2366 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/213F506AEF8A11F08E686F05616F56BC.roa Signing time: Fri 08 May 2026 18:13:54 +0000 ROA not before: Fri 08 May 2026 18:13:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134128 IP address blocks: 59.153.28.0/23 maxlen: 23 59.153.28.0/24 maxlen: 24 103.54.148.0/23 maxlen: 23 103.54.148.0/24 maxlen: 24 103.54.149.0/24 maxlen: 24 2402:3b80::/32 maxlen: 32 2402:3b80::/48 maxlen: 48 2402:3b80:1::/48 maxlen: 48 2402:3b80:2::/48 maxlen: 48 2402:3b80:3::/48 maxlen: 48 2402:3b80:4::/48 maxlen: 48 2402:3b80:5::/48 maxlen: 48 2402:3b80:6::/48 maxlen: 48 2402:3b80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9062 (0x2366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: May 8 18:13:54 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69fe27e2-d243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ef:bc:fa:79:4e:5c:1d:92:f5:0c:8c:f6:e9: a8:ec:8b:8d:86:98:6d:84:b3:cb:c6:8a:1d:b4:da: 9c:3d:77:af:32:4c:1a:59:44:94:1f:4b:23:d7:b1: bc:b5:b3:6e:6b:a8:fe:d3:c1:46:7c:b3:d2:ff:d0: 34:1b:b5:1f:da:c7:72:2e:7a:aa:6a:e0:af:26:4a: da:28:c9:df:a1:7d:d7:4e:bc:93:5c:d7:27:b3:84: 73:24:5e:88:07:a2:75:ce:51:dc:36:f3:11:00:df: b7:ae:0a:84:d4:30:69:3d:02:88:52:ff:01:1c:27: ea:a1:60:43:81:07:84:77:1f:47:f7:1c:06:43:bb: d2:47:99:8d:a5:6a:6d:61:c9:25:b8:80:f0:b2:67: 89:de:38:15:fa:c0:e2:96:84:ae:03:ef:2f:93:50: 13:dc:84:13:68:ad:5f:b0:60:1b:16:97:83:e0:5e: 8e:14:72:53:f1:50:a2:ae:02:c1:9d:33:17:01:ba: 62:4e:97:ee:2c:32:1c:cc:5b:0b:af:18:ca:3c:93: 42:af:07:40:a6:09:a1:ed:81:e4:75:fb:16:af:31: a9:99:76:19:44:16:c0:4a:d9:41:f8:f4:5c:79:73: b7:06:26:f2:38:70:1c:43:1e:fb:0c:92:73:0f:02: 7d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:3A:EA:22:62:AE:B7:D7:32:B4:A6:EF:9C:75:1B:41:13:D3:87:03 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/213F506AEF8A11F08E686F05616F56BC.roa sbgp-ipAddrBlock: critical IPv4: 59.153.28.0/23 103.54.148.0/23 IPv6: 2402:3b80::/32 Signature Algorithm: sha256WithRSAEncryption b5:a0:5e:62:ef:b3:8e:6a:8b:51:52:53:a9:58:a8:0c:51:95: 3d:60:c7:6e:2d:59:57:04:7f:63:5f:69:1c:37:61:bf:ba:7c: 74:5b:ce:55:d7:76:59:f7:e4:4c:b5:1d:84:ec:1d:7c:e8:0e: df:2b:2a:af:87:4d:59:6c:96:b3:74:03:0c:e7:1f:24:e7:6d: 41:ec:b8:61:83:51:78:ec:51:62:c2:c9:d2:39:e2:23:f6:14: cb:80:dc:6f:5a:53:56:82:c0:85:2a:c2:2e:bf:25:e6:83:41: e5:ca:02:bd:51:0e:68:b8:37:b1:ff:24:54:df:56:a1:1d:65: bf:7b:d3:55:c4:23:0a:dc:2b:a7:1e:9f:71:02:c1:d4:8b:35: ec:e5:ab:0e:64:62:2e:17:be:6d:53:e0:06:a5:22:f1:09:4a: ef:35:c7:35:79:34:d0:50:2c:e9:1a:27:2f:df:24:e2:28:f3: 16:2e:9a:c2:b0:7a:cf:a0:e2:45:1c:67:6f:85:57:f8:69:33: 2c:c3:72:8b:5b:ad:44:8a:65:fe:88:56:6c:80:1a:89:22:bb: c3:f0:1b:ff:c5:db:60:1e:a5:5d:63:1f:48:be:dc:1f:1a:81: 1b:34:78:af:c8:05:f0:92:a9:ca:a2:d4:18:b3:c9:61:d0:1e: 38:8e:bf:8c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICI2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjYwNTA4MTgxMzU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZlMjdlMi1kMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAle+8+nlOXB2S9QyM9umo7IuNhphthLPLxoodtNqcPXevMkwaWUSUH0sj17G8 tbNua6j+08FGfLPS/9A0G7Uf2sdyLnqqauCvJkraKMnfoX3XTryTXNcns4RzJF6I B6J1zlHcNvMRAN+3rgqE1DBpPQKIUv8BHCfqoWBDgQeEdx9H9xwGQ7vSR5mNpWpt YckluIDwsmeJ3jgV+sDiloSuA+8vk1AT3IQTaK1fsGAbFpeD4F6OFHJT8VCirgLB nTMXAbpiTpfuLDIczFsLrxjKPJNCrwdApgmh7YHkdfsWrzGpmXYZRBbAStlB+PRc eXO3BibyOHAcQx77DJJzDwJ93QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFB466iJi rrfXMrSm75x1G0ET04cDMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvMjEzRjUwNkFF RjhBMTFGMDhFNjg2RjA1NjE2RjU2QkMucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBO5kcAwQBZzaUMA0EAgACMAcDBQAkAjuAMA0GCSqGSIb3DQEBCwUA A4IBAQC1oF5i77OOaotRUlOpWKgMUZU9YMduLVlXBH9jX2kcN2G/unx0W85V13ZZ 9+RMtR2E7B186A7fKyqvh01ZbJazdAMM5x8k521B7Lhhg1F47FFiwsnSOeIj9hTL gNxvWlNWgsCFKsIuvyXmg0HlygK9UQ5ouDex/yRU31ahHWW/e9NVxCMK3CunHp9x AsHUizXs5asOZGIuF75tU+AGpSLxCUrvNcc1eTTQUCzpGicv3yTiKPMWLprCsHrP oOJFHGdvhVf4aTMsw3KLW61EimX+iFZsgBqJIrvD8Bv/xdtgHqVdYx9IvtwfGoEb NHivyAXwkqnKotQYs8lh0B44jr+M -----END CERTIFICATE-----Generated at Wed May 13 05:39:45 2026 by rpki-client