$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa File: 99B6039C215311EA86E1E020C4F9AE02.roa (raw, json) Hash identifier: IG0t1VHluhfPiafs+6si8BI2lajDC2N00y2Pwi8hIl8= Subject key identifier: A5:66:73:3B:1E:FC:B1:E1:89:41:78:EB:5E:62:59:C0:6D:20:72:61 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 1112 Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa Signing time: Fri 08 May 2026 17:22:09 +0000 ROA not before: Fri 08 May 2026 17:22:09 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 9825 IP address blocks: 202.59.208.0/22 maxlen: 22 202.59.208.0/24 maxlen: 24 202.59.209.0/24 maxlen: 24 202.59.210.0/24 maxlen: 24 202.59.211.0/24 maxlen: 24 2001:de8:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4370 (0x1112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: May 8 17:22:09 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69fe1bc1-a22e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:86:4f:67:8c:3b:3f:46:a5:c7:ed:d4:34:7e: 28:58:bb:47:3c:80:76:28:de:47:b2:80:00:4b:0f: f7:f6:13:0f:b5:2b:13:97:65:5b:50:e2:9f:7f:4b: f7:f6:32:38:05:50:66:7f:b2:cf:d0:ba:8c:2b:b3: 19:19:3d:98:d6:a3:7c:a2:00:65:36:04:a6:bb:af: 7c:25:27:ba:ef:82:94:b7:51:e3:42:94:bd:39:ef: c7:2e:19:fa:00:3c:95:b2:fc:d9:44:46:df:c4:5a: bb:5e:08:5e:53:70:35:11:51:bb:dc:e9:3f:06:18: bc:b0:2e:4b:fc:a4:07:97:7d:1f:4e:e2:f6:e3:b4: 56:21:4c:c1:4b:38:a8:05:31:d3:8d:a6:49:67:a0: 45:02:81:da:ce:49:41:89:9b:cd:43:6d:e3:3c:32: 51:9f:6c:6f:74:a1:7b:34:d8:11:e9:73:62:83:62: 46:e1:79:4d:20:ac:42:da:ee:a1:09:26:b2:07:ac: 10:47:9b:2d:e8:d1:1c:bd:a1:d2:9a:74:b5:84:dc: 00:f8:a3:48:fa:54:4a:bf:ea:56:ba:b8:58:0c:3f: fa:eb:f2:42:e1:1c:a4:65:be:2f:a0:ad:42:46:71: f4:1b:0e:fe:b4:68:d8:9b:71:03:53:38:52:c1:82: 38:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:66:73:3B:1E:FC:B1:E1:89:41:78:EB:5E:62:59:C0:6D:20:72:61 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.59.208.0/22 IPv6: 2001:de8:b::/48 Signature Algorithm: sha256WithRSAEncryption 92:87:ab:c7:5c:8d:1a:04:fe:f0:45:f4:22:e6:49:8b:09:1f: cd:7e:b9:a3:65:bd:1d:6b:2f:9a:9d:a3:0e:82:bc:c2:3d:4b: f3:76:32:10:ff:c1:0d:f4:53:88:6b:ef:1c:65:6f:0e:87:6f: 9a:a7:0d:0c:25:8f:cd:33:1b:0d:45:9b:4f:41:a2:36:39:a1: f4:1c:ec:e8:b8:da:a0:c1:3f:5e:8b:65:d4:2d:64:36:71:c7: 5f:98:63:e5:a3:9c:d1:7e:84:d2:1b:10:5d:46:b2:3b:eb:04: 6a:40:07:8d:56:2d:4f:67:1d:6a:18:1d:f2:dc:12:c3:7f:61: 27:40:48:e1:e8:e9:d8:2a:e2:09:0c:fc:c2:cb:20:d8:29:7c: 25:43:c3:f2:f5:0c:1a:f1:22:d9:08:94:81:3a:38:12:d1:f9: 42:04:fa:17:1d:67:9b:2d:61:4e:b5:98:61:33:de:0c:42:27: 6d:e9:f5:8c:f7:f7:e4:a8:73:32:4f:60:51:79:0c:9f:c6:4e: 9d:df:e3:c8:53:53:d6:4d:a7:90:45:52:05:ab:ed:fb:d6:22: 81:b5:12:47:bf:74:e0:62:f2:26:c2:8e:25:6d:76:d4:dc:c1: 1b:3c:51:2d:f8:bb:2b:69:fc:e8:71:fc:91:11:c9:c3:4a:4d: c0:6d:17:fd -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICERIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjYwNTA4MTcyMjA5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZlMWJjMS1hMjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIZPZ4w7P0alx+3UNH4oWLtHPIB2KN5HsoAASw/39hMPtSsTl2VbUOKff0v3 9jI4BVBmf7LP0LqMK7MZGT2Y1qN8ogBlNgSmu698JSe674KUt1HjQpS9Oe/HLhn6 ADyVsvzZREbfxFq7XgheU3A1EVG73Ok/Bhi8sC5L/KQHl30fTuL247RWIUzBSzio BTHTjaZJZ6BFAoHazklBiZvNQ23jPDJRn2xvdKF7NNgR6XNig2JG4XlNIKxC2u6h CSayB6wQR5st6NEcvaHSmnS1hNwA+KNI+lRKv+pWurhYDD/66/JC4RykZb4voK1C RnH0Gw7+tGjYm3EDUzhSwYI4KQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKVmczse /LHhiUF4615iWcBtIHJhMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEzNkIvRjdDODdFODQzQTdCMTFFOUFDQkM2QTE4QzRGOUFFMDIvOTlCNjAzOUMy MTUzMTFFQTg2RTFFMDIwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCyjvQMA8EAgACMAkDBwAgAQ3oAAswDQYJKoZIhvcNAQELBQADggEB AJKHq8dcjRoE/vBF9CLmSYsJH81+uaNlvR1rL5qdow6CvMI9S/N2MhD/wQ30U4hr 7xxlbw6Hb5qnDQwlj80zGw1Fm09BojY5ofQc7Oi42qDBP16LZdQtZDZxx1+YY+Wj nNF+hNIbEF1GsjvrBGpAB41WLU9nHWoYHfLcEsN/YSdASOHo6dgq4gkM/MLLINgp fCVDw/L1DBrxItkIlIE6OBLR+UIE+hcdZ5stYU61mGEz3gxCJ23p9Yz39+SoczJP YFF5DJ/GTp3f48hTU9ZNp5BFUgWr7fvWIoG1Eke/dOBi8ibCjiVtdtTcwRs8US34 uytp/Ohx/JERycNKTcBtF/0= -----END CERTIFICATE-----Generated at Wed May 13 11:45:02 2026 by rpki-client