$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/59F7EF4E0A4611ECAE818D54C4F9AE02.roa File: 59F7EF4E0A4611ECAE818D54C4F9AE02.roa (raw, json) Hash identifier: 83NmbAy2cIXc5RFQjEGxhaLUliH4l24y6tTy7l/cCdI= Subject key identifier: 83:D9:B7:A2:E1:AA:28:37:C2:E9:E6:BF:D2:24:B4:26:C6:4E:F4:E8 Certificate issuer: /CN=A91A5F82/serialNumber=7447B2835EACB88AC48727CB726BB87B97BA778A Certificate serial: 0864 Authority key identifier: 74:47:B2:83:5E:AC:B8:8A:C4:87:27:CB:72:6B:B8:7B:97:BA:77:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/59F7EF4E0A4611ECAE818D54C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:51:24 +0000 ROA not before: Tue 16 Sep 2025 21:32:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4845 IP address blocks: 202.165.128.0/19 maxlen: 19 202.165.128.0/20 maxlen: 24 202.165.144.0/20 maxlen: 24 2400:7000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.crl rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:29:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5F82, serialNumber=7447B2835EACB88AC48727CB726BB87B97BA778A Validity Not Before: Sep 16 21:32:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4526c-3107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:66:15:49:50:27:fe:cd:5c:27:a7:2f:44:94: 34:29:75:8d:9f:1c:bf:f1:9c:35:5d:fe:1e:60:7e: 55:4a:da:69:47:90:68:91:6c:a6:75:18:b8:50:9e: 99:30:37:08:f9:a4:b5:7c:76:32:ab:57:ab:da:ff: ca:a0:30:5f:37:35:e7:25:d8:31:e1:06:88:31:26: 4c:6f:6c:61:63:da:2e:5d:9b:ea:8d:33:c5:70:3a: d5:13:3b:76:46:09:10:7a:03:47:47:18:99:7c:03: ef:a2:2d:9e:cf:b2:8f:6e:1e:08:d5:fd:27:89:8b: c5:46:a5:f2:89:fa:71:27:d9:d2:13:5b:2e:fd:b7: fc:60:e1:fe:70:03:6e:ff:60:8a:55:f4:6b:d9:e6: de:a7:fc:54:89:c3:a6:e7:ef:7f:1a:82:2d:80:6b: 8c:d5:b2:50:db:af:f7:e7:5c:3f:c8:86:a6:01:6c: 04:a1:11:4b:59:c4:e6:4e:4d:b8:1a:86:ab:bf:a9: 2e:fe:e1:0d:be:dc:07:c7:99:3c:16:67:4c:73:d4: 14:98:e1:83:a2:cc:29:1b:fd:ae:5b:4a:41:73:0a: c4:9c:f1:ce:50:70:e4:81:e6:66:f2:aa:f4:3c:db: 6b:9c:05:60:4f:90:f4:6b:05:61:1b:11:1b:7a:b9: e6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D9:B7:A2:E1:AA:28:37:C2:E9:E6:BF:D2:24:B4:26:C6:4E:F4:E8 X509v3 Authority Key Identifier: keyid:74:47:B2:83:5E:AC:B8:8A:C4:87:27:CB:72:6B:B8:7B:97:BA:77:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/59F7EF4E0A4611ECAE818D54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.165.128.0/19 IPv6: 2400:7000::/32 Signature Algorithm: sha256WithRSAEncryption 67:f6:bc:9e:cb:cb:f6:f0:2f:25:33:a3:0a:15:34:94:40:64: 0f:ee:3b:51:81:35:c3:8c:06:9b:ae:99:0a:90:09:4d:ab:e4: b7:98:d5:00:96:18:cc:57:c8:a1:87:6e:42:e5:d3:ca:bc:44: 8d:7d:c5:ae:3e:3d:1d:b0:37:30:96:ea:4c:ab:f8:25:08:54: 6c:3d:00:40:46:39:4a:7b:c5:27:7b:9f:1d:12:a7:b7:e7:99: 6d:90:45:d9:42:8b:20:65:f1:db:7b:31:3c:f6:9a:41:4b:52: c2:dd:68:16:bc:82:69:f9:ee:af:b0:6a:7b:ae:67:3f:23:c3: 4f:a2:4e:54:86:32:ce:20:2f:cb:8e:af:d9:5e:20:92:33:1d: c2:0b:6d:0e:da:4f:e2:f7:3e:fc:0b:db:71:99:3a:1b:ab:6b: 33:1e:a9:f2:c2:b6:20:85:6b:30:db:0b:1e:d4:7c:d4:1e:35: c9:05:b1:8a:d4:4c:13:b5:a5:49:4e:b9:14:58:1c:e3:da:e1: 80:c5:36:5e:23:6d:98:5c:8b:08:e3:1d:fb:ac:3f:57:4a:4e: e1:bd:91:6d:cc:4d:ef:6d:a2:e2:78:35:29:e9:3f:54:2e:f0: 68:44:52:e8:95:82:db:f5:56:49:4b:7e:93:94:a0:cc:7b:1a: 3d:74:6d:7f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVGODIxMTAvBgNVBAUTKDc0NDdCMjgzNUVBQ0I4OEFDNDg3MjdDQjcyNkJCODdC OTdCQTc3OEEwHhcNMjUwOTE2MjEzMjExWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTI2Yy0zMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2YVSVAn/s1cJ6cvRJQ0KXWNnxy/8Zw1Xf4eYH5VStppR5BokWymdRi4UJ6Z MDcI+aS1fHYyq1er2v/KoDBfNzXnJdgx4QaIMSZMb2xhY9ouXZvqjTPFcDrVEzt2 RgkQegNHRxiZfAPvoi2ez7KPbh4I1f0niYvFRqXyifpxJ9nSE1su/bf8YOH+cANu /2CKVfRr2ebep/xUicOm5+9/GoItgGuM1bJQ26/351w/yIamAWwEoRFLWcTmTk24 Goarv6ku/uENvtwHx5k8FmdMc9QUmOGDoswpG/2uW0pBcwrEnPHOUHDkgeZm8qr0 PNtrnAVgT5D0awVhGxEbernm6wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIPZt6Lh qig3wunmv9IktCbGTvToMB8GA1UdIwQYMBaAFHRHsoNerLiKxIcny3JruHuXuneK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUY4Mi8zMTA3QjNFQ0Y3 QzUxMUVBQkMzNDk1MEFDNEY5QUUwMi9kRWV5ZzE2c3VJckVoeWZMY211NGU1ZTZk NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RFZXlnMTZzdUlyRWh5ZkxjbXU0ZTVlNmQ0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVGODIvMzEwN0IzRUNGN0M1MTFFQUJDMzQ5NTBBQzRGOUFFMDIvNTlGN0VGNEUw QTQ2MTFFQ0FFODE4RDU0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQFyqWAMA0EAgACMAcDBQAkAHAAMA0GCSqGSIb3DQEBCwUAA4IBAQBn 9ryey8v28C8lM6MKFTSUQGQP7jtRgTXDjAabrpkKkAlNq+S3mNUAlhjMV8ihh25C 5dPKvESNfcWuPj0dsDcwlupMq/glCFRsPQBARjlKe8Une58dEqe355ltkEXZQosg ZfHbezE89ppBS1LC3WgWvIJp+e6vsGp7rmc/I8NPok5UhjLOIC/Ljq/ZXiCSMx3C C20O2k/i9z78C9txmTobq2szHqnywrYghWsw2wse1HzUHjXJBbGK1EwTtaVJTrkU WBzj2uGAxTZeI22YXIsI4x37rD9XSk7hvZFtzE3vbaLieDUp6T9ULvBoRFLolYLb 9VZJS36TlKDMexo9dG1/ -----END CERTIFICATE-----Generated at Thu Mar 26 14:51:49 2026 by rpki-client