$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa File: 59AD29B88C6B11EBA286C569C4F9AE02.roa (raw, json) Hash identifier: /3djo2Ukqx2+Z3wlrF/8g5IOUEmg/YGh8LjcBooZGKg= Subject key identifier: 5F:82:6A:1A:25:1F:49:14:01:63:2C:0B:85:59:33:50:ED:BF:9B:78 Certificate issuer: /CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Certificate serial: 06E5 Authority key identifier: EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:45:41 +0000 ROA not before: Wed 02 Jul 2025 23:02:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134788 IP address blocks: 103.62.152.0/22 maxlen: 22 103.62.152.0/24 maxlen: 24 103.62.153.0/24 maxlen: 24 103.62.154.0/24 maxlen: 24 103.62.155.0/24 maxlen: 24 2400:f2c0::/32 maxlen: 32 2400:f2c0::/36 maxlen: 36 2400:f2c0:1000::/36 maxlen: 36 2400:f2c0:2000::/36 maxlen: 36 2400:f2c0:3000::/36 maxlen: 36 2400:f2c0:4000::/36 maxlen: 36 2400:f2c0:5000::/36 maxlen: 36 2400:f2c0:6000::/36 maxlen: 36 2400:f2c0:7000::/36 maxlen: 36 2400:f2c0:8000::/36 maxlen: 36 2400:f2c0:9000::/36 maxlen: 36 2400:f2c0:a000::/36 maxlen: 36 2400:f2c0:b000::/36 maxlen: 36 2400:f2c0:c000::/36 maxlen: 36 2400:f2c0:d000::/36 maxlen: 36 2400:f2c0:e000::/36 maxlen: 36 2400:f2c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09A2, serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310 Validity Not Before: Jul 2 23:02:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40ac5-e3f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c6:6f:61:86:e3:6c:4f:af:e4:6f:58:93:6d: 76:d1:b3:79:e3:b3:15:8a:2a:0d:78:f7:2d:98:ef: a1:f1:76:93:7e:bb:9c:a3:c9:62:5b:5d:60:a6:ff: 42:c9:be:88:6f:a8:4d:e2:66:63:3f:41:99:a6:a0: e2:bb:c2:9a:a9:60:c8:9b:00:9f:24:9a:8c:b1:99: 17:8c:d5:bb:73:e0:d4:e2:bb:d1:ae:24:cd:2f:30: cb:42:b6:21:a0:46:6d:ee:59:2c:63:94:01:44:94: 0b:b9:7a:06:50:b8:d0:b8:d6:e0:8f:16:02:d7:56: f1:69:3f:c9:4f:34:0a:09:b3:14:9d:84:c1:1b:e2: 2b:48:d3:76:5d:16:3d:70:74:f9:26:6c:04:05:60: d1:15:7e:59:88:f0:ce:1e:91:7a:65:d1:1f:d8:26: d0:e7:2e:ea:10:8d:f8:86:ef:05:e7:9f:71:ae:d1: ca:cd:60:e8:c4:d5:11:43:ce:c4:32:c7:1b:db:d1: a0:90:b5:e8:13:88:74:07:06:b1:5c:b3:32:50:4d: 62:e3:db:f1:36:32:c9:93:ab:b3:9a:3d:ac:ea:80: 5d:00:c0:1c:27:95:c4:73:d2:13:be:49:ee:35:e4: 94:86:fd:e6:f0:5c:8a:5a:de:d8:5c:ec:cd:6c:80: 65:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:82:6A:1A:25:1F:49:14:01:63:2C:0B:85:59:33:50:ED:BF:9B:78 X509v3 Authority Key Identifier: keyid:EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.62.152.0/22 IPv6: 2400:f2c0::/32 Signature Algorithm: sha256WithRSAEncryption 08:88:74:d3:6e:76:cc:11:cf:ad:8a:59:4a:8e:51:e1:00:e9: 09:6e:3a:fa:81:79:6c:4c:d8:fe:6a:f5:3c:a0:63:6e:1e:40: 27:2b:c8:ef:4e:b2:de:a7:fc:9c:78:54:47:06:28:78:41:68: 51:9c:22:4f:f5:e6:5c:dc:01:48:d0:b7:2b:bd:9d:95:22:0f: 36:8d:83:54:0e:aa:16:23:82:07:17:5d:42:d5:fe:80:14:4b: 0f:61:a8:f4:1c:52:2e:d1:85:d1:d0:28:8c:c0:e2:c2:87:1e: 07:b9:a0:14:4a:da:74:b6:61:37:8a:97:47:0f:5a:41:2d:a8: e2:1f:31:a5:c2:32:e5:74:13:ce:ab:10:0b:ca:05:a2:15:ca: 90:af:f8:1e:11:8b:d0:cf:b8:a2:74:e7:f7:87:04:b7:ee:ba: 2e:66:ec:91:df:1b:7e:48:ec:22:33:84:24:a2:75:13:b4:ac: db:4a:51:6f:6e:61:63:da:dc:0b:23:cb:f1:05:a5:df:54:8a: 61:f5:03:b1:e7:d6:25:ee:76:67:7c:5e:73:c1:02:67:bd:b3: c8:fd:41:61:c6:f1:bd:fd:ea:f3:c4:b3:d7:69:0e:9e:6c:e4: ab:77:9f:81:d0:9e:4e:de:bb:31:76:55:1a:3e:ff:44:30:b1: 26:e2:a5:32 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QTIxMTAvBgNVBAUTKEVGQzU4MkIyQTNDQjJDMTBFOEEzMTY1NkU3OEYwNEJD RDVCQzUzMTAwHhcNMjUwNzAyMjMwMjQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGFjNS1lM2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8ZvYYbjbE+v5G9Yk2120bN547MViioNePctmO+h8XaTfruco8liW11gpv9C yb6Ib6hN4mZjP0GZpqDiu8KaqWDImwCfJJqMsZkXjNW7c+DU4rvRriTNLzDLQrYh oEZt7lksY5QBRJQLuXoGULjQuNbgjxYC11bxaT/JTzQKCbMUnYTBG+IrSNN2XRY9 cHT5JmwEBWDRFX5ZiPDOHpF6ZdEf2CbQ5y7qEI34hu8F559xrtHKzWDoxNURQ87E Mscb29GgkLXoE4h0BwaxXLMyUE1i49vxNjLJk6uzmj2s6oBdAMAcJ5XEc9ITvknu NeSUhv3m8FyKWt7YXOzNbIBlLQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFF+Cahol H0kUAWMsC4VZM1Dtv5t4MB8GA1UdIwQYMBaAFO/FgrKjyywQ6KMWVuePBLzVvFMQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlBMi8xRkVCNUEyMDhD NkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExCRG9veFpXNTQ4RXZOVzhV eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4V0NzcVBMTEJEb294Wlc1NDhFdk5XOFV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA5QTIvMUZFQjVBMjA4QzZBMTFFQjk4REVERDY4QzRGOUFFMDIvNTlBRDI5Qjg4 QzZCMTFFQkEyODZDNTY5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZz6YMA0EAgACMAcDBQAkAPLAMA0GCSqGSIb3DQEBCwUAA4IBAQAI iHTTbnbMEc+tillKjlHhAOkJbjr6gXlsTNj+avU8oGNuHkAnK8jvTrLep/yceFRH Bih4QWhRnCJP9eZc3AFI0LcrvZ2VIg82jYNUDqoWI4IHF11C1f6AFEsPYaj0HFIu 0YXR0CiMwOLChx4HuaAUStp0tmE3ipdHD1pBLajiHzGlwjLldBPOqxALygWiFcqQ r/geEYvQz7iidOf3hwS37rouZuyR3xt+SOwiM4QkonUTtKzbSlFvbmFj2twLI8vx BaXfVIph9QOx59Yl7nZnfF5zwQJnvbPI/UFhxvG9/erzxLPXaQ6ebOSrd5+B0J5O 3rsxdlUaPv9EMLEm4qUy -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:09 2026 by rpki-client