
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa
File: 59AD29B88C6B11EBA286C569C4F9AE02.roa (raw, json)
Hash identifier: vS2qYZ+QeT1a2lImFnP46NAdUoYwyyW9Hg5/8irmqJg=
Subject key identifier: A0:31:46:10:6C:0A:AA:0B:0F:CA:D8:D6:62:95:83:29:75:C0:9F:80
Certificate issuer: /CN=A91D09A2/serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310
Certificate serial: 0727
Authority key identifier: EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa
Signing time: Tue 30 Jun 2026 23:27:38 +0000
ROA not before: Tue 30 Jun 2026 23:27:38 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 134788
IP address blocks: 103.62.152.0/22 maxlen: 22
103.62.152.0/24 maxlen: 24
103.62.153.0/24 maxlen: 24
103.62.154.0/24 maxlen: 24
103.62.155.0/24 maxlen: 24
2400:f2c0::/32 maxlen: 32
2400:f2c0::/36 maxlen: 36
2400:f2c0:1000::/36 maxlen: 36
2400:f2c0:2000::/36 maxlen: 36
2400:f2c0:3000::/36 maxlen: 36
2400:f2c0:4000::/36 maxlen: 36
2400:f2c0:5000::/36 maxlen: 36
2400:f2c0:6000::/36 maxlen: 36
2400:f2c0:7000::/36 maxlen: 36
2400:f2c0:8000::/36 maxlen: 36
2400:f2c0:9000::/36 maxlen: 36
2400:f2c0:a000::/36 maxlen: 36
2400:f2c0:b000::/36 maxlen: 36
2400:f2c0:c000::/36 maxlen: 36
2400:f2c0:d000::/36 maxlen: 36
2400:f2c0:e000::/36 maxlen: 36
2400:f2c0:f000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl
rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 22:24:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1831 (0x727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D09A2, serialNumber=EFC582B2A3CB2C10E8A31656E78F04BCD5BC5310
Validity
Not Before: Jun 30 23:27:38 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a4450e9-9997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:52:85:ac:12:36:bc:6a:04:69:76:3b:20:0b:
25:3e:e7:82:8d:c9:8e:2c:3e:a3:04:de:cd:ff:ec:
d2:ae:fd:25:53:29:45:ab:a0:f1:f8:81:dc:96:83:
54:fb:3a:8d:09:6b:ae:83:61:ef:57:54:2b:e2:30:
71:5d:0f:d7:b3:4b:17:df:3b:9a:ec:a2:b5:d7:24:
64:c8:90:eb:3c:da:84:31:32:1d:99:67:7d:58:14:
76:2c:27:09:19:fc:03:c4:0b:0e:e2:f6:22:1a:c5:
8a:7d:c3:66:06:04:87:35:2d:52:da:83:02:1a:0e:
8c:17:58:ed:e4:19:af:c4:49:29:46:f4:38:b3:a8:
89:5a:a7:ba:be:3a:01:a5:45:7f:5f:01:63:14:11:
70:6d:98:6c:ab:4f:85:4a:0d:4b:b7:d5:68:df:b0:
a4:a6:95:10:fb:9f:83:6c:8b:7c:b6:e6:e8:c9:36:
47:7e:22:c3:f7:e2:0f:a7:16:20:01:88:6d:2d:af:
0d:2d:66:68:23:0d:fb:0f:3f:96:1f:47:12:bf:9b:
29:7f:03:7b:17:ed:ad:39:0d:bf:1b:65:ba:9d:69:
ee:c3:3d:b0:76:33:5f:fb:3a:fb:9e:6b:0c:0c:42:
e2:b8:90:bc:ec:dc:a9:d0:ce:61:47:13:dc:1d:de:
af:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:31:46:10:6C:0A:AA:0B:0F:CA:D8:D6:62:95:83:29:75:C0:9F:80
X509v3 Authority Key Identifier:
keyid:EF:C5:82:B2:A3:CB:2C:10:E8:A3:16:56:E7:8F:04:BC:D5:BC:53:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/78WCsqPLLBDooxZW548EvNW8UxA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/78WCsqPLLBDooxZW548EvNW8UxA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09A2/1FEB5A208C6A11EB98DEDD68C4F9AE02/59AD29B88C6B11EBA286C569C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.62.152.0/22
IPv6:
2400:f2c0::/32
Signature Algorithm: sha256WithRSAEncryption
1c:d4:d8:7f:b5:5c:a2:c6:d4:15:6d:42:97:a9:bb:2b:a3:68:
1c:57:00:28:e9:3e:3b:52:ba:d3:fa:98:30:a6:15:10:d3:8a:
b4:88:4d:2e:75:4d:c8:31:24:09:57:90:27:15:7f:85:03:55:
fa:88:c3:34:4b:f8:a6:eb:f9:4b:88:ad:77:11:3d:20:a2:ad:
3d:ed:54:f2:cc:10:26:f7:1b:9f:f3:7e:53:44:31:48:46:d0:
a2:85:9c:a4:fe:ad:9a:6e:cc:a7:ce:42:ba:8c:95:ac:15:85:
75:54:40:35:78:a1:b3:ee:50:ee:f1:22:a7:fa:3e:63:b5:20:
28:1c:ab:cf:cb:a4:95:11:08:76:30:a6:d3:6e:be:84:15:c4:
da:4d:0b:8e:ae:b5:7f:34:9c:bf:43:4c:40:ed:d8:8d:89:91:
97:d0:4a:21:0d:64:f5:eb:d0:a2:6c:f3:95:65:0d:89:ab:89:
7b:9d:2a:54:b5:33:8c:b5:53:9d:b7:c2:a0:ba:55:6d:00:62:
fa:4f:53:ad:5d:6c:88:08:d2:dd:a9:71:0d:81:00:70:2e:d5:
43:32:d5:d5:35:52:24:73:55:a9:0f:fa:51:78:d3:ef:9b:3a:
ac:aa:69:b3:c9:09:7b:93:15:a5:1b:57:78:75:a8:e7:88:e6:
cb:c2:25:fc
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgICBycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDA5QTIxMTAvBgNVBAUTKEVGQzU4MkIyQTNDQjJDMTBFOEEzMTY1NkU3OEYwNEJD
RDVCQzUzMTAwHhcNMjYwNjMwMjMyNzM4WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTQ0NTBlOS05OTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqVKFrBI2vGoEaXY7IAslPueCjcmOLD6jBN7N/+zSrv0lUylFq6Dx+IHcloNU
+zqNCWuug2HvV1Qr4jBxXQ/Xs0sX3zua7KK11yRkyJDrPNqEMTIdmWd9WBR2LCcJ
GfwDxAsO4vYiGsWKfcNmBgSHNS1S2oMCGg6MF1jt5BmvxEkpRvQ4s6iJWqe6vjoB
pUV/XwFjFBFwbZhsq0+FSg1Lt9Vo37CkppUQ+5+DbIt8tuboyTZHfiLD9+IPpxYg
AYhtLa8NLWZoIw37Dz+WH0cSv5spfwN7F+2tOQ2/G2W6nWnuwz2wdjNf+zr7nmsM
DELiuJC87Nyp0M5hRxPcHd6vKwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFKAxRhBs
CqoLD8rY1mKVgyl1wJ+AMB8GA1UdIwQYMBaAFO/FgrKjyywQ6KMWVuePBLzVvFMQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlBMi8xRkVCNUEyMDhD
NkExMUVCOThERURENjhDNEY5QUUwMi83OFdDc3FQTExCRG9veFpXNTQ4RXZOVzhV
eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzc4V0NzcVBMTEJEb294Wlc1NDhFdk5XOFV4QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RDA5QTIvMUZFQjVBMjA4QzZBMTFFQjk4REVERDY4QzRGOUFFMDIvNTlBRDI5Qjg4
QzZCMTFFQkEyODZDNTY5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM
BAIAATAGAwQCZz6YMA0EAgACMAcDBQAkAPLAMA0GCSqGSIb3DQEBCwUAA4IBAQAc
1Nh/tVyixtQVbUKXqbsro2gcVwAo6T47UrrT+pgwphUQ04q0iE0udU3IMSQJV5An
FX+FA1X6iMM0S/im6/lLiK13ET0goq097VTyzBAm9xuf835TRDFIRtCihZyk/q2a
bsynzkK6jJWsFYV1VEA1eKGz7lDu8SKn+j5jtSAoHKvPy6SVEQh2MKbTbr6EFcTa
TQuOrrV/NJy/Q0xA7diNiZGX0EohDWT169CibPOVZQ2Jq4l7nSpUtTOMtVOdt8Kg
ulVtAGL6T1OtXWyICNLdqXENgQBwLtVDMtXVNVIkc1WpD/pReNPvmzqsqmmzyQl7
kxWlG1d4dajniObLwiX8
-----END CERTIFICATE-----
Generated at Sat Jul 18 16:44:21 2026 by rpki-client