$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/D73D7F9A4F5C11F1A1CF9B1EC3833773.roa File: D73D7F9A4F5C11F1A1CF9B1EC3833773.roa (raw, json) Hash identifier: LsF8bIIMFOCcGprQVrGHhL56CpMqQ2fHf3ivIoU2OIg= Subject key identifier: 5A:1E:96:03:BE:86:4B:31:7E:15:63:C4:C4:5D:4B:5C:37:2B:BD:AB Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 2371 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/D73D7F9A4F5C11F1A1CF9B1EC3833773.roa Signing time: Sun 17 May 2026 05:53:28 +0000 ROA not before: Sun 17 May 2026 05:53:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134128 IP address blocks: 59.153.28.0/23 maxlen: 23 59.153.28.0/24 maxlen: 24 103.54.148.0/22 maxlen: 22 2402:3b80::/32 maxlen: 32 2402:3b80::/48 maxlen: 48 2402:3b80:1::/48 maxlen: 48 2402:3b80:2::/48 maxlen: 48 2402:3b80:3::/48 maxlen: 48 2402:3b80:4::/48 maxlen: 48 2402:3b80:5::/48 maxlen: 48 2402:3b80:6::/48 maxlen: 48 2402:3b80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9073 (0x2371) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: May 17 05:53:28 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6a0957d8-46b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:71:25:50:de:f5:6b:f6:e1:ea:cc:4c:86:09: 8d:c5:2e:b1:8e:51:79:31:c8:73:03:a8:51:92:40: dd:01:9c:08:03:ae:1a:af:0f:bc:9f:33:01:80:c0: fd:cf:7b:ba:74:75:b9:d3:ef:57:bc:7a:ef:46:8f: 27:ef:80:c8:54:d4:34:b3:a1:a7:9e:c4:d0:5e:49: b9:5b:02:41:91:5f:f8:c8:e3:99:1e:59:6a:0e:62: 23:a0:49:89:37:36:05:33:9c:6f:4d:f5:b3:03:cd: e7:1c:d0:88:41:11:14:0d:15:81:e7:d4:20:2e:d0: 93:22:d9:3c:2a:45:20:c1:15:0c:36:5a:b6:d3:62: 88:30:0f:b4:aa:7f:f4:68:80:10:19:b9:a4:76:f1: bd:63:81:bd:87:86:c6:64:42:d6:0a:9a:c6:df:c0: dd:34:08:cc:b3:ee:49:48:ea:9e:d3:4f:12:a9:85: 68:1c:56:e7:1f:54:d8:48:78:a6:58:f9:76:ca:ca: 54:46:fb:6d:e8:27:67:ec:26:98:d6:81:e5:76:ff: 79:77:a0:56:11:34:34:70:cc:e4:c5:05:ff:39:fe: 96:53:02:54:3f:84:b4:62:64:00:a9:da:63:de:7d: d5:fc:0a:c7:c5:cb:76:d4:cf:a7:69:ee:b5:b6:76: 70:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1E:96:03:BE:86:4B:31:7E:15:63:C4:C4:5D:4B:5C:37:2B:BD:AB X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/D73D7F9A4F5C11F1A1CF9B1EC3833773.roa sbgp-ipAddrBlock: critical IPv4: 59.153.28.0/23 103.54.148.0/22 IPv6: 2402:3b80::/32 Signature Algorithm: sha256WithRSAEncryption 75:d6:1b:1b:f2:7f:d6:0e:96:ce:82:9e:56:6c:0a:07:9e:c8: 1e:10:c0:a6:98:2f:55:a9:65:85:cf:38:f9:fe:cf:60:d7:a7: 0e:f6:7a:f3:e2:9b:6a:08:a6:ac:f0:85:c8:46:c8:33:e5:4a: aa:f4:04:72:aa:60:bd:c6:3c:c9:5f:2f:16:6d:8e:c1:c7:ae: dd:93:24:19:17:9b:46:38:8e:46:70:d4:21:20:07:f6:5b:b0: 8f:4b:47:b2:1a:a8:3e:42:41:4b:2d:fe:2d:e1:18:99:95:30: 07:a1:f9:89:74:16:88:85:01:a7:f2:de:3d:4b:7c:1b:95:26: fd:07:fb:85:65:98:4a:23:12:a3:1d:ac:9d:14:bf:21:19:7c: b5:24:a4:2b:18:af:a9:92:a8:02:05:fc:4e:f2:19:44:e0:57: bf:43:e4:5c:c5:00:fe:09:4d:66:41:b8:bc:7a:93:c4:6d:ad: c1:de:c0:fa:84:c8:71:5e:5e:92:f6:18:cf:4c:75:5a:70:1b: 46:65:db:fb:cb:f4:08:f5:cd:73:5f:b0:85:67:2f:d2:d7:59: 63:01:65:9a:a0:22:bd:a0:f4:ef:7e:7b:94:67:27:41:54:d9: bb:89:f7:05:1e:3b:90:0b:9d:8a:13:04:3a:b7:ad:8e:da:b9: d0:cb:ed:0a -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICI3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjYwNTE3MDU1MzI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA5NTdkOC00NmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnElUN71a/bh6sxMhgmNxS6xjlF5MchzA6hRkkDdAZwIA64arw+8nzMBgMD9 z3u6dHW50+9XvHrvRo8n74DIVNQ0s6GnnsTQXkm5WwJBkV/4yOOZHllqDmIjoEmJ NzYFM5xvTfWzA83nHNCIQREUDRWB59QgLtCTItk8KkUgwRUMNlq202KIMA+0qn/0 aIAQGbmkdvG9Y4G9h4bGZELWCprG38DdNAjMs+5JSOqe008SqYVoHFbnH1TYSHim WPl2yspURvtt6Cdn7CaY1oHldv95d6BWETQ0cMzkxQX/Of6WUwJUP4S0YmQAqdpj 3n3V/ArHxct21M+nae61tnZwnQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFFoelgO+ hksxfhVjxMRdS1w3K72rMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvRDczRDdGOUE0 RjVDMTFGMUExQ0Y5QjFFQzM4MzM3NzMucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBO5kcAwQCZzaUMA0EAgACMAcDBQAkAjuAMA0GCSqGSIb3DQEBCwUA A4IBAQB11hsb8n/WDpbOgp5WbAoHnsgeEMCmmC9VqWWFzzj5/s9g16cO9nrz4ptq CKas8IXIRsgz5Uqq9ARyqmC9xjzJXy8WbY7Bx67dkyQZF5tGOI5GcNQhIAf2W7CP S0eyGqg+QkFLLf4t4RiZlTAHofmJdBaIhQGn8t49S3wblSb9B/uFZZhKIxKjHayd FL8hGXy1JKQrGK+pkqgCBfxO8hlE4Fe/Q+RcxQD+CU1mQbi8epPEba3B3sD6hMhx Xl6S9hjPTHVacBtGZdv7y/QI9c1zX7CFZy/S11ljAWWaoCK9oPTvfnuUZydBVNm7 ifcFHjuQC52KEwQ6t62O2rnQy+0K -----END CERTIFICATE-----Generated at Thu May 21 10:16:26 2026 by rpki-client