$ rpki-client -vvf rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/8FA08DC29C8511EDB3506E5AC4F9AE02.roa File: 8FA08DC29C8511EDB3506E5AC4F9AE02.roa (raw, json) Hash identifier: TaJdRiGSYLXxN+5sGdAd2EbJ36eAZlZPdEwMNT5EY+w= Subject key identifier: DD:56:12:F9:2C:A2:BC:CE:6C:D6:32:92:DB:DF:52:06:CD:CD:4B:D9 Certificate issuer: /CN=A91275A6/serialNumber=590FA3C67000E96985791E6355AD1F6DAD5C1876 Certificate serial: 024F Authority key identifier: 59:0F:A3:C6:70:00:E9:69:85:79:1E:63:55:AD:1F:6D:AD:5C:18:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/8FA08DC29C8511EDB3506E5AC4F9AE02.roa Signing time: Mon 02 Mar 2026 11:28:35 +0000 ROA not before: Sun 15 Feb 2026 02:22:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150732 IP address blocks: 103.75.138.0/23 maxlen: 23 103.75.138.0/24 maxlen: 24 103.75.139.0/24 maxlen: 24 2001:df1:dec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275A6, serialNumber=590FA3C67000E96985791E6355AD1F6DAD5C1876 Validity Not Before: Feb 15 02:22:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a57463-5ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7a:fa:5c:8f:08:6c:b0:73:92:64:d5:55:30: 8c:85:5f:98:d4:3c:b2:3c:b8:da:4e:c6:ec:de:f6: 33:43:5a:99:0f:7c:76:bf:3b:f0:e0:ed:ce:3c:d6: 7c:33:e3:b9:f8:e5:e5:84:44:3a:46:bd:bd:13:87: 1b:8f:9f:07:2a:69:65:d5:20:26:88:5a:26:96:46: 84:f7:4e:13:9f:40:88:57:35:bf:31:64:c3:31:62: 76:03:b5:23:69:c0:38:95:99:ba:0e:c0:e6:ac:16: d8:17:a8:3a:c1:11:f5:fc:b7:25:18:1d:20:04:86: 40:5d:66:be:88:af:04:f1:1c:5a:71:7f:1f:36:b0: 2f:ef:13:27:eb:48:b5:8b:ab:d9:b2:1b:9c:ba:a5: 10:72:c2:80:5e:f7:41:63:98:8c:3d:44:b1:65:94: b9:bb:be:fe:56:37:07:93:08:f6:82:22:b8:41:c1: 4d:44:94:97:70:81:c9:ce:35:55:cb:b9:5a:0a:8e: a8:3c:61:6c:97:af:4c:56:9c:88:e9:a7:b8:e7:6a: 4f:de:50:02:94:f6:97:d8:25:9b:aa:24:2f:a6:dd: 71:75:e6:9d:05:5f:e5:7d:8d:85:57:24:eb:66:c9: 2b:e0:d2:ef:f1:f2:e8:33:b7:0b:fd:2f:50:95:40: 8c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:56:12:F9:2C:A2:BC:CE:6C:D6:32:92:DB:DF:52:06:CD:CD:4B:D9 X509v3 Authority Key Identifier: keyid:59:0F:A3:C6:70:00:E9:69:85:79:1E:63:55:AD:1F:6D:AD:5C:18:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/8FA08DC29C8511EDB3506E5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.75.138.0/23 IPv6: 2001:df1:dec0::/48 Signature Algorithm: sha256WithRSAEncryption 9a:95:fb:ec:23:00:f3:0f:a3:54:31:01:f3:89:bf:ee:29:2e: bb:29:09:1b:0b:5f:47:65:8d:a5:0f:14:61:28:5d:f1:b5:f6: 60:e8:fa:63:8b:2d:6c:f7:13:78:c9:ae:82:b2:38:21:83:d5: 4a:01:93:e5:c9:a7:dd:21:cf:00:c5:a1:13:13:24:d2:d8:46: e1:7a:39:47:ac:cb:06:17:48:c3:ca:0d:a3:ec:d5:f4:43:c1: e5:b2:29:1f:6b:ef:40:f6:0e:71:79:f0:4f:d1:4f:c9:ba:59: 7e:c1:37:b3:03:58:01:c8:ee:e4:33:c3:8d:ab:bd:17:5c:58: 6d:bf:c3:83:54:8b:87:6c:df:ca:40:d1:cc:88:ce:87:fc:1d: da:d3:be:4a:13:47:e4:cb:19:fa:9e:40:d7:90:55:24:1e:9b: 5c:18:d0:4d:17:f8:2b:91:29:6f:39:8b:1e:fd:3a:13:92:9c: 67:67:43:db:1b:c1:aa:8c:1f:dc:c5:ee:b9:c6:48:90:16:cb: 43:59:14:44:86:c4:86:3a:9d:ae:57:16:80:d3:a4:a5:33:fd: 72:40:95:8a:14:eb:6f:74:82:93:0b:3b:dc:96:72:a0:f7:0c: cb:52:d1:cd:6d:6f:14:10:57:f0:31:c5:53:94:8a:d3:9f:a4: ef:19:63:3e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1QTYxMTAvBgNVBAUTKDU5MEZBM0M2NzAwMEU5Njk4NTc5MUU2MzU1QUQxRjZE QUQ1QzE4NzYwHhcNMjYwMjE1MDIyMjM5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzQ2My01ZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Xr6XI8IbLBzkmTVVTCMhV+Y1DyyPLjaTsbs3vYzQ1qZD3x2vzvw4O3OPNZ8 M+O5+OXlhEQ6Rr29E4cbj58HKmll1SAmiFomlkaE904Tn0CIVzW/MWTDMWJ2A7Uj acA4lZm6DsDmrBbYF6g6wRH1/LclGB0gBIZAXWa+iK8E8RxacX8fNrAv7xMn60i1 i6vZshucuqUQcsKAXvdBY5iMPUSxZZS5u77+VjcHkwj2giK4QcFNRJSXcIHJzjVV y7laCo6oPGFsl69MVpyI6ae452pP3lAClPaX2CWbqiQvpt1xdeadBV/lfY2FVyTr Zskr4NLv8fLoM7cL/S9QlUCMnwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFN1WEvks orzObNYyktvfUgbNzUvZMB8GA1UdIwQYMBaAFFkPo8ZwAOlphXkeY1WtH22tXBh2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVBNi9DQTg2OTQ0QTlD NUQxMUVEOTdCM0Y1NDhDNEY5QUUwMi9XUS1qeG5BQTZXbUZlUjVqVmEwZmJhMWNH SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dRLWp4bkFBNldtRmVSNWpWYTBmYmExY0dIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1QTYvQ0E4Njk0NEE5QzVEMTFFRDk3QjNGNTQ4QzRGOUFFMDIvOEZBMDhEQzI5 Qzg1MTFFREIzNTA2RTVBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ0uKMA8EAgACMAkDBwAgAQ3x3sAwDQYJKoZIhvcNAQELBQADggEB AJqV++wjAPMPo1QxAfOJv+4pLrspCRsLX0dljaUPFGEoXfG19mDo+mOLLWz3E3jJ roKyOCGD1UoBk+XJp90hzwDFoRMTJNLYRuF6OUesywYXSMPKDaPs1fRDweWyKR9r 70D2DnF58E/RT8m6WX7BN7MDWAHI7uQzw42rvRdcWG2/w4NUi4ds38pA0cyIzof8 HdrTvkoTR+TLGfqeQNeQVSQem1wY0E0X+CuRKW85ix79OhOSnGdnQ9sbwaqMH9zF 7rnGSJAWy0NZFESGxIY6na5XFoDTpKUz/XJAlYoU6290gpMLO9yWcqD3DMtS0c1t bxQQV/AxxVOUitOfpO8ZYz4= -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:35 2026 by rpki-client