$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E23C1886EF8811F0B6CFCA01616F56BC.roa File: E23C1886EF8811F0B6CFCA01616F56BC.roa (raw, json) Hash identifier: hyVjQ/ybV11665cH/1oRipAj/sBN9cWklhwxNFtgIuo= Subject key identifier: 93:D8:4B:16:A3:02:6D:9E:0C:71:E9:01:F8:F5:2D:04:A2:DB:D5:AA Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 2335 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E23C1886EF8811F0B6CFCA01616F56BC.roa Signing time: Sun 01 Mar 2026 18:43:34 +0000 ROA not before: Mon 12 Jan 2026 07:32:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151635 IP address blocks: 59.153.28.0/23 maxlen: 23 59.153.28.0/24 maxlen: 24 59.153.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9013 (0x2335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Jan 12 07:32:44 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a488d5-23d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:f6:b9:54:13:85:fb:31:4f:e6:79:d9:6e: 69:10:12:76:5c:d6:40:1a:68:d9:71:3c:31:24:1c: d1:e1:ae:63:e1:e3:e3:86:5e:31:1a:df:c0:03:56: f7:c3:6e:ce:7e:9c:0c:9d:49:c9:f4:0c:32:1e:90: 5f:5b:6f:b0:e8:03:6c:4d:13:37:29:af:ff:12:cf: 69:83:92:b5:60:5d:8f:8f:51:3b:77:73:90:a6:53: d5:87:a6:f8:5f:51:cd:ad:48:28:0f:01:8b:6b:40: 41:d7:1e:07:9f:93:cf:ae:d7:02:3b:83:44:b0:0c: ca:00:55:d1:f2:8a:f3:26:64:27:e9:db:4e:a6:03: f4:f5:f9:62:f0:bc:dd:82:46:84:7f:a1:61:66:36: b9:e6:42:15:17:80:e2:11:e4:49:5f:64:92:96:d1: 9b:13:5f:da:2d:58:52:ea:be:f1:37:91:21:d2:e4: 81:9f:0a:60:51:c3:b6:8c:43:d2:20:88:df:c8:ab: 7b:a5:a7:80:7e:67:43:78:ae:1a:f1:b7:4a:a7:95: 01:5e:bf:2c:6d:c2:a8:4b:90:d6:7e:30:d8:ca:68: 23:ea:35:75:98:3e:fb:7d:95:cf:bd:2e:70:59:69: 0a:b4:c7:c6:b3:d9:20:59:8e:06:00:4a:4e:d5:95: 6e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D8:4B:16:A3:02:6D:9E:0C:71:E9:01:F8:F5:2D:04:A2:DB:D5:AA X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E23C1886EF8811F0B6CFCA01616F56BC.roa sbgp-ipAddrBlock: critical IPv4: 59.153.28.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:1c:28:69:2b:17:c6:2d:94:4d:a9:64:38:14:45:08:6e:7f: bc:85:33:09:a8:a6:3a:fd:13:10:09:68:d0:83:57:4b:c2:b8: 4d:f6:69:27:92:45:f3:0b:d3:ce:da:21:dc:1c:a3:3c:56:77: c1:9a:23:20:93:24:c6:5d:b5:42:c1:d5:c3:3b:93:62:57:9f: 8c:a1:ba:59:25:f6:5a:b3:60:ad:b6:63:b2:0f:c8:bf:ee:62: f6:4c:3a:b0:8d:d5:5b:1c:fd:45:81:5c:bf:fe:28:a7:2c:fc: 59:ed:81:0a:d1:71:29:2c:a3:b4:4b:94:23:e9:38:47:74:d4: 6e:5e:d7:f1:2d:18:46:b3:30:63:dd:7c:e0:08:94:63:4b:16: 9e:16:82:09:ae:c1:a8:19:3e:46:72:4a:c5:3e:b0:f8:37:d0: 4a:19:eb:b4:57:c1:e0:5b:ef:44:8a:d1:96:3e:cc:76:23:23: 66:97:3d:cb:f2:54:92:cd:e7:de:a7:14:c4:a2:ff:f3:43:09: 8a:b5:fd:55:2e:61:08:25:64:10:fe:b5:9e:4d:47:bf:ef:6b: 68:8c:40:8c:41:0d:e0:1d:90:47:03:ab:51:7d:3c:79:07:ec: 66:5e:39:5b:00:d5:25:e2:2b:a6:7e:0b:41:e0:38:42:2d:a5: 23:b0:f3:e8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjYwMTEyMDczMjQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODhkNS0yM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7v2uVQThfsxT+Z52W5pEBJ2XNZAGmjZcTwxJBzR4a5j4ePjhl4xGt/AA1b3 w27OfpwMnUnJ9AwyHpBfW2+w6ANsTRM3Ka//Es9pg5K1YF2Pj1E7d3OQplPVh6b4 X1HNrUgoDwGLa0BB1x4Hn5PPrtcCO4NEsAzKAFXR8orzJmQn6dtOpgP09fli8Lzd gkaEf6FhZja55kIVF4DiEeRJX2SSltGbE1/aLVhS6r7xN5Eh0uSBnwpgUcO2jEPS IIjfyKt7paeAfmdDeK4a8bdKp5UBXr8sbcKoS5DWfjDYymgj6jV1mD77fZXPvS5w WWkKtMfGs9kgWY4GAEpO1ZVupwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJPYSxaj Am2eDHHpAfj1LQSi29WqMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvRTIzQzE4ODZF Rjg4MTFGMEI2Q0ZDQTAxNjE2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBO5kcMA0GCSqGSIb3DQEBCwUAA4IBAQBsHChpKxfGLZRNqWQ4FEUI bn+8hTMJqKY6/RMQCWjQg1dLwrhN9mknkkXzC9PO2iHcHKM8VnfBmiMgkyTGXbVC wdXDO5NiV5+MobpZJfZas2CttmOyD8i/7mL2TDqwjdVbHP1FgVy//iinLPxZ7YEK 0XEpLKO0S5Qj6ThHdNRuXtfxLRhGszBj3XzgCJRjSxaeFoIJrsGoGT5GckrFPrD4 N9BKGeu0V8HgW+9EitGWPsx2IyNmlz3L8lSSzefepxTEov/zQwmKtf1VLmEIJWQQ /rWeTUe/72tojECMQQ3gHZBHA6tRfTx5B+xmXjlbANUl4iumfgtB4DhCLaUjsPPo -----END CERTIFICATE-----Generated at Mon Mar 2 11:13:37 2026 by rpki-client