$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa File: 99B6039C215311EA86E1E020C4F9AE02.roa (raw, json) Hash identifier: xBQzJokUINHvwXbjCEGs5dFY9Pxy3Whg47fTfEwk4/Q= Subject key identifier: 18:84:CA:59:66:26:2C:A5:13:57:C4:59:70:DA:BE:2F:6D:C7:EC:63 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 10EB Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:33:09 +0000 ROA not before: Mon 12 May 2025 17:49:53 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9825 IP address blocks: 202.59.208.0/22 maxlen: 22 202.59.208.0/24 maxlen: 24 202.59.209.0/24 maxlen: 24 202.59.210.0/24 maxlen: 24 202.59.211.0/24 maxlen: 24 2001:de8:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4331 (0x10eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: May 12 17:49:53 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a45c35-6e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:7f:e4:cf:8b:ad:08:19:89:8a:2f:71:03:68: 60:85:2c:54:07:24:e5:3f:98:b7:f0:f3:db:44:1f: df:2e:72:9b:36:33:e7:55:83:1f:c8:96:05:c4:57: fa:3c:f6:8c:97:03:4e:e0:97:06:bd:8c:f7:c0:2b: d0:1b:6d:79:aa:d0:4a:88:b1:33:17:1b:23:a1:bb: 86:3d:f6:f1:d1:e7:f8:18:ff:ed:02:9d:62:2d:f2: fc:bc:43:59:3c:40:5d:71:18:5c:c1:c0:1d:97:62: 96:99:38:98:d7:c7:02:83:e7:48:31:02:29:2a:98: 8a:9b:56:99:99:ed:10:1e:95:da:d2:f8:b2:e6:e4: 05:9c:3b:c6:98:d2:f9:57:62:98:61:a7:a9:4d:f3: 5d:5c:3a:de:35:ac:5b:8a:9d:29:55:43:38:9e:77: 75:2b:72:48:2b:f8:d9:84:11:34:a4:fa:84:90:fb: 0e:e5:7c:5f:34:71:ce:54:f8:ef:ae:7f:cb:30:bc: 0e:52:f2:5e:b7:c3:12:b6:19:16:95:15:d6:ab:94: ea:c0:ef:f9:ce:6a:d0:88:e7:68:82:98:e0:e3:01: 71:1b:6a:66:e9:70:14:e1:6c:d2:ad:d9:87:27:11: b3:7b:4f:47:78:bb:8b:62:0e:71:7a:3a:b0:74:4b: 76:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:84:CA:59:66:26:2C:A5:13:57:C4:59:70:DA:BE:2F:6D:C7:EC:63 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.59.208.0/22 IPv6: 2001:de8:b::/48 Signature Algorithm: sha256WithRSAEncryption 6a:c4:c5:9d:2c:23:47:4b:4a:59:68:b7:a4:1b:ac:68:50:65: f8:87:b8:46:2f:a5:38:ff:9d:89:ab:af:97:a6:c2:da:39:60: 93:c7:ec:fd:a3:0c:6b:a4:eb:58:58:05:09:05:ab:2c:27:12: 93:c7:22:08:5a:76:64:5e:4e:d1:10:a5:92:0e:09:69:30:f5: 5f:e1:65:4d:7c:15:92:a6:c8:4a:4f:cf:5e:99:5e:29:16:86: 4d:15:25:8d:cf:0a:8b:73:d0:10:6d:69:bd:0f:d2:39:85:d0: 9a:d3:47:00:93:05:18:02:b3:a9:00:49:01:d9:7b:59:ba:cc: 18:1e:40:0d:fd:64:14:13:f5:62:19:b0:ed:e6:1a:7f:42:ee: 63:32:1b:c5:ed:e2:a5:d7:7d:24:5b:5f:c4:7a:0f:d3:72:ad: 1d:f8:02:b8:f7:2e:ae:1e:2f:e8:50:37:f1:e9:35:2b:56:ad: 69:e0:b9:f0:33:af:55:86:82:d4:05:9e:c5:79:5b:a1:9c:e9: fe:bc:02:7e:db:1b:d8:1a:b5:76:a2:d1:70:18:3e:86:62:28: c4:66:e3:c8:c9:f4:72:e5:29:04:a8:72:12:ee:01:e0:40:d6: 30:9c:9c:34:c8:73:25:df:b8:bd:68:4b:44:4a:2f:63:b4:f9: 9e:d8:91:02 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICEOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjUwNTEyMTc0OTUzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWMzNS02ZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3/kz4utCBmJii9xA2hghSxUByTlP5i38PPbRB/fLnKbNjPnVYMfyJYFxFf6 PPaMlwNO4JcGvYz3wCvQG215qtBKiLEzFxsjobuGPfbx0ef4GP/tAp1iLfL8vENZ PEBdcRhcwcAdl2KWmTiY18cCg+dIMQIpKpiKm1aZme0QHpXa0viy5uQFnDvGmNL5 V2KYYaepTfNdXDreNaxbip0pVUM4nnd1K3JIK/jZhBE0pPqEkPsO5XxfNHHOVPjv rn/LMLwOUvJet8MSthkWlRXWq5TqwO/5zmrQiOdogpjg4wFxG2pm6XAU4WzSrdmH JxGze09HeLuLYg5xejqwdEt2XQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFBiEyllm JiylE1fEWXDavi9tx+xjMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEzNkIvRjdDODdFODQzQTdCMTFFOUFDQkM2QTE4QzRGOUFFMDIvOTlCNjAzOUMy MTUzMTFFQTg2RTFFMDIwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCyjvQMA8EAgACMAkDBwAgAQ3oAAswDQYJKoZIhvcNAQELBQADggEB AGrExZ0sI0dLSllot6QbrGhQZfiHuEYvpTj/nYmrr5emwto5YJPH7P2jDGuk61hY BQkFqywnEpPHIghadmReTtEQpZIOCWkw9V/hZU18FZKmyEpPz16ZXikWhk0VJY3P Cotz0BBtab0P0jmF0JrTRwCTBRgCs6kASQHZe1m6zBgeQA39ZBQT9WIZsO3mGn9C 7mMyG8Xt4qXXfSRbX8R6D9NyrR34Arj3Lq4eL+hQN/HpNStWrWngufAzr1WGgtQF nsV5W6Gc6f68An7bG9gatXai0XAYPoZiKMRm48jJ9HLlKQSochLuAeBA1jCcnDTI cyXfuL1oS0RKL2O0+Z7YkQI= -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:44 2026 by rpki-client