$ rpki-client -vvf rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/7FE5F2CEDB9411E9832A463AC4F9AE02.roa File: 7FE5F2CEDB9411E9832A463AC4F9AE02.roa (raw, json) Hash identifier: 3sjWZooxRLY6I7soj41lsN2IJ+Dwn122aCRXMGhUs7g= Subject key identifier: 30:52:30:FC:D3:8E:85:65:33:FF:99:97:09:CC:43:80:8C:B9:E6:46 Certificate issuer: /CN=A912B4DB/serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Certificate serial: 352B Authority key identifier: 0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/7FE5F2CEDB9411E9832A463AC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:25:06 +0000 ROA not before: Wed 04 Jun 2025 15:51:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 56293 IP address blocks: 59.153.84.0/22 maxlen: 24 103.10.20.0/22 maxlen: 24 2400:db80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13611 (0x352b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B4DB, serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Validity Not Before: Jun 4 15:51:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42212-5bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:f8:39:9a:a9:6b:6e:bc:5a:d1:89:bc:5b: 99:83:5a:6a:f0:f6:1c:41:8e:19:8d:a0:3b:9c:a9: f6:fe:b0:91:0e:6d:31:ad:0b:00:e9:cc:39:d3:9b: 08:10:f2:a8:51:bf:28:bc:e5:89:e4:e5:a3:18:be: b7:fe:40:0a:90:3d:cd:f3:4d:df:37:7c:6d:e7:92: 88:2f:c3:07:5a:f9:8f:d1:2d:62:0f:76:bd:48:fa: 72:67:c3:17:54:db:24:02:17:f2:c4:67:ae:d8:80: 3a:78:4d:38:c2:8b:26:78:b0:cf:81:9e:89:46:a9: b0:76:88:3c:09:e1:39:89:06:23:3e:00:72:56:da: 0b:a7:c0:d2:e9:ee:d4:4a:51:d7:c0:97:cc:3d:ea: b0:df:3c:05:6c:0c:92:94:2c:8c:82:b0:bb:36:48: 94:2b:dd:9a:ae:f8:d3:2b:cd:cd:8d:7d:30:14:e0: 0b:e2:a4:f3:4b:69:2d:9a:93:56:a8:21:65:d4:f0: bc:89:8b:e6:73:e0:1f:d6:7c:c2:a9:28:8d:58:7d: b3:72:eb:ee:52:90:bf:e7:68:a2:6b:71:1f:07:ab: d3:2f:f2:ab:3f:36:7b:0d:c1:22:77:60:2a:ec:31: dc:05:b7:db:68:4f:39:8f:5b:22:bb:62:a8:33:81: 79:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:52:30:FC:D3:8E:85:65:33:FF:99:97:09:CC:43:80:8C:B9:E6:46 X509v3 Authority Key Identifier: keyid:0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/7FE5F2CEDB9411E9832A463AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.153.84.0/22 103.10.20.0/22 IPv6: 2400:db80::/32 Signature Algorithm: sha256WithRSAEncryption c3:9d:0c:df:0c:8b:1b:67:e8:0c:e0:53:89:0e:8a:08:dd:f6: 27:47:be:cb:49:10:18:e1:46:ff:46:b7:78:0a:77:1b:66:b1: 5e:0a:63:6d:76:94:81:12:db:05:5c:d0:11:2e:99:1f:32:09: c4:15:8f:90:99:bb:41:96:ac:3f:a8:26:89:7f:69:71:35:40: 69:de:72:10:6b:0d:f6:28:ba:2c:33:18:9e:bd:97:a2:02:1b: 71:cf:60:d6:2b:30:47:69:ed:02:02:42:55:81:75:27:bf:ad: 96:78:30:41:d2:f1:97:72:dc:23:9e:e0:f0:c4:01:2d:04:06: f5:99:60:bf:3a:78:4b:a5:86:69:37:c7:d7:1f:fb:bf:fe:ba: 80:77:ce:ae:a7:ea:ec:83:fc:58:7f:0c:9b:37:e7:b6:0c:9a: 94:5a:5d:f0:2f:42:7a:ec:59:b5:78:e0:bf:13:cd:2e:88:c3: a7:1b:e3:ed:11:96:be:a4:4a:f3:9d:e5:cd:03:55:c7:70:ab: 3c:60:97:89:93:79:ea:0a:0e:a9:88:d9:21:6c:37:38:21:a2: f2:05:7f:52:42:84:c8:d5:59:82:3e:86:68:08:67:75:58:4b: b9:28:4f:77:74:4b:83:9e:e9:99:59:37:ba:a0:12:8e:9f:bc: 2f:47:de:3f -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICNSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI0REIxMTAvBgNVBAUTKDBEQzVDRTRBMjk0RjJDOTM4MEE5MTM1RUUxRjA1MzA3 MjhBNENEQTYwHhcNMjUwNjA0MTU1MTAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjIxMi01YmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/b4OZqpa268WtGJvFuZg1pq8PYcQY4ZjaA7nKn2/rCRDm0xrQsA6cw505sI EPKoUb8ovOWJ5OWjGL63/kAKkD3N803fN3xt55KIL8MHWvmP0S1iD3a9SPpyZ8MX VNskAhfyxGeu2IA6eE04wosmeLDPgZ6JRqmwdog8CeE5iQYjPgByVtoLp8DS6e7U SlHXwJfMPeqw3zwFbAySlCyMgrC7NkiUK92arvjTK83NjX0wFOAL4qTzS2ktmpNW qCFl1PC8iYvmc+Af1nzCqSiNWH2zcuvuUpC/52iia3EfB6vTL/KrPzZ7DcEid2Aq 7DHcBbfbaE85j1siu2KoM4F5SQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFDBSMPzT joVlM/+ZlwnMQ4CMueZGMB8GA1UdIwQYMBaAFA3FzkopTyyTgKkTXuHwUwcopM2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjREQi81QzUwMjk2QzFE QTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExKT0FxUk5lNGZCVEJ5aWt6 YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjWE9TaWxQTEpPQXFSTmU0ZkJUQnlpa3phWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI0REIvNUM1MDI5NkMxREE4MTFFMkFCNkJBNkEyMDhCMDJDRDIvN0ZFNUYyQ0VE Qjk0MTFFOTgzMkE0NjNBQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCO5lUAwQCZwoUMA0EAgACMAcDBQAkANuAMA0GCSqGSIb3DQEBCwUA A4IBAQDDnQzfDIsbZ+gM4FOJDooI3fYnR77LSRAY4Ub/Rrd4CncbZrFeCmNtdpSB EtsFXNARLpkfMgnEFY+QmbtBlqw/qCaJf2lxNUBp3nIQaw32KLosMxievZeiAhtx z2DWKzBHae0CAkJVgXUnv62WeDBB0vGXctwjnuDwxAEtBAb1mWC/OnhLpYZpN8fX H/u//rqAd86up+rsg/xYfwybN+e2DJqUWl3wL0J67Fm1eOC/E80uiMOnG+PtEZa+ pErzneXNA1XHcKs8YJeJk3nqCg6piNkhbDc4IaLyBX9SQoTI1VmCPoZoCGd1WEu5 KE93dEuDnumZWTe6oBKOn7wvR94/ -----END CERTIFICATE-----Generated at Mon Mar 2 03:24:27 2026 by rpki-client