$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/05449490E17B11EC93AB7473C4F9AE02.roa File: 05449490E17B11EC93AB7473C4F9AE02.roa (raw, json) Hash identifier: 8Pao0AT8dxW6T4CwAgWpHWpXxG/CEjpNqpmyQLKWTcA= Subject key identifier: 83:E2:D0:D8:6C:11:B8:00:E0:97:06:C5:16:BA:E0:BA:60:2D:C9:0C Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 102A Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/05449490E17B11EC93AB7473C4F9AE02.roa Signing time: Thu 30 Apr 2026 18:21:27 +0000 ROA not before: Thu 30 Apr 2026 18:21:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 139924 IP address blocks: 103.138.158.0/23 maxlen: 23 103.138.158.0/24 maxlen: 24 103.138.159.0/24 maxlen: 24 2407:98c0::/32 maxlen: 32 2407:98c0::/48 maxlen: 48 2407:98c0:1::/48 maxlen: 48 2407:98c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4138 (0x102a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Apr 30 18:21:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f39da7-8fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b8:4d:d2:3c:ce:df:22:04:d4:33:9e:91:11: 35:6c:1c:98:b8:87:49:c6:7d:ed:85:68:9a:b8:b7: 68:d9:0d:d0:71:3e:5f:ba:be:56:e4:3e:de:83:9b: 38:f5:fd:92:f7:18:10:2f:f2:b1:28:c3:c3:0b:1b: 1b:4e:aa:a7:af:61:e8:cd:65:9a:4a:c9:9f:85:d3: c1:e7:d5:5e:de:e3:ac:04:52:42:c1:2e:6e:a1:f5: df:bd:37:a2:0c:8e:48:cb:d1:2d:4d:ed:ef:e8:d1: e0:81:72:f5:81:d0:08:08:61:6e:9f:88:1b:91:bf: 68:24:e3:33:e2:5d:ac:71:52:d9:7c:31:97:23:d3: e3:24:d6:92:f4:92:ad:d1:2f:7d:f9:e9:2d:f9:c8: 09:4a:5d:d2:5f:f7:91:ea:03:80:ed:76:07:21:66: 02:ea:a4:84:fc:6c:f0:28:5a:33:9b:5e:8c:c9:ab: 5d:75:7d:bf:4b:59:d2:03:ca:60:5d:e9:e1:4f:0d: cc:31:4f:92:0f:ed:56:19:d2:c7:c2:4f:8e:8d:31: fe:ba:54:65:75:30:f5:d3:d5:c6:12:00:35:77:09: ef:96:82:3b:cd:dd:cb:0b:74:bc:da:4b:89:8e:47: 53:93:d1:bf:fa:23:bf:5e:41:b4:c7:72:4f:5a:4a: b4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E2:D0:D8:6C:11:B8:00:E0:97:06:C5:16:BA:E0:BA:60:2D:C9:0C X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/05449490E17B11EC93AB7473C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.158.0/23 IPv6: 2407:98c0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:ea:ae:45:aa:22:4a:b5:f1:b0:3f:2a:f5:62:07:17:41:2c: 47:8f:a3:cc:6a:cb:e3:1c:92:fc:cf:ac:d8:a8:e1:1c:28:2e: ba:d9:2b:83:85:01:32:99:85:56:d5:c6:ad:ce:46:2a:5f:9a: 05:24:64:bf:59:b1:83:81:dc:e0:ce:ac:6c:9d:53:df:ff:af: ae:62:38:54:e9:14:af:94:2c:fb:ab:42:88:17:ed:e3:56:c5: 4a:6f:ef:14:a1:8f:7c:ce:b4:ab:5e:cf:59:8c:5d:00:92:90: 3f:5c:3b:3a:7e:19:34:54:bb:14:6c:f1:80:ed:9a:ca:a1:5f: 03:c3:72:dd:8b:67:08:5c:74:6e:e7:99:f5:f8:45:68:80:14: ef:ea:2a:cb:53:81:82:12:bd:15:a9:ee:40:5e:6a:b4:1b:f3: 97:a1:fc:de:d6:73:ef:7d:74:e1:8d:33:be:48:8f:99:c6:d8: 6c:65:b7:95:d9:8d:92:96:6f:7a:ce:e2:4d:ad:40:e4:1a:d6: 47:95:8a:b3:95:bf:f2:56:ce:f2:77:f9:50:9b:0a:78:ad:05: ba:25:f6:23:f8:cd:84:10:04:ce:b4:f2:fd:e7:f1:d6:d2:1e: 7b:f1:df:c1:83:fd:84:81:2d:84:26:c3:07:a4:86:a7:32:2a: f0:d3:27:f7 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICECowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjYwNDMwMTgyMTI3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzOWRhNy04ZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rhN0jzO3yIE1DOekRE1bByYuIdJxn3thWiauLdo2Q3QcT5fur5W5D7eg5s4 9f2S9xgQL/KxKMPDCxsbTqqnr2HozWWaSsmfhdPB59Ve3uOsBFJCwS5uofXfvTei DI5Iy9EtTe3v6NHggXL1gdAICGFun4gbkb9oJOMz4l2scVLZfDGXI9PjJNaS9JKt 0S99+ekt+cgJSl3SX/eR6gOA7XYHIWYC6qSE/GzwKFozm16MyatddX2/S1nSA8pg XenhTw3MMU+SD+1WGdLHwk+OjTH+ulRldTD109XGEgA1dwnvloI7zd3LC3S82kuJ jkdTk9G/+iO/XkG0x3JPWkq0VwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIPi0Nhs EbgA4JcGxRa64LpgLckMMB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIyRUUvMUY0MTFGNTg2QzIxMTFFOUI3NkZBOTA5QzRGOUFFMDIvMDU0NDk0OTBF MTdCMTFFQzkzQUI3NDczQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4qeMA0EAgACMAcDBQAkB5jAMA0GCSqGSIb3DQEBCwUAA4IBAQA7 6q5FqiJKtfGwPyr1YgcXQSxHj6PMasvjHJL8z6zYqOEcKC662SuDhQEymYVW1cat zkYqX5oFJGS/WbGDgdzgzqxsnVPf/6+uYjhU6RSvlCz7q0KIF+3jVsVKb+8UoY98 zrSrXs9ZjF0AkpA/XDs6fhk0VLsUbPGA7ZrKoV8Dw3Ldi2cIXHRu55n1+EVogBTv 6irLU4GCEr0Vqe5AXmq0G/OXofze1nPvfXThjTO+SI+ZxthsZbeV2Y2Slm96zuJN rUDkGtZHlYqzlb/yVs7yd/lQmwp4rQW6JfYj+M2EEATOtPL95/HW0h578d/Bg/2E gS2EJsMHpIanMirw0yf3 -----END CERTIFICATE-----Generated at Wed May 13 09:25:26 2026 by rpki-client