$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/2E53CDEC139C11EF8D2CFD84C4F9AE02.roa File: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (raw, json) Hash identifier: K/JHB0kgGnMjgxfsLnjs8wPyOdjkoMvMD7QLqxSgLT4= Subject key identifier: FF:93:FE:FB:A1:A3:63:ED:17:44:C1:90:EF:AC:58:6E:B6:86:85:B4 Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0ABD Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/2E53CDEC139C11EF8D2CFD84C4F9AE02.roa Signing time: Tue 10 Mar 2026 19:25:55 +0000 ROA not before: Tue 10 Mar 2026 19:25:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138964 IP address blocks: 103.137.200.0/22 maxlen: 22 103.137.200.0/24 maxlen: 24 103.137.201.0/24 maxlen: 24 103.137.202.0/24 maxlen: 24 103.137.203.0/24 maxlen: 24 2407:efc0::/32 maxlen: 32 2407:efc0::/33 maxlen: 40 2407:efc0::/48 maxlen: 48 2407:efc0:1::/48 maxlen: 48 2407:efc0:3::/48 maxlen: 48 2407:efc0:4::/48 maxlen: 48 2407:efc0:5::/48 maxlen: 48 2407:efc0:8000::/33 maxlen: 37 2407:efc0:8000::/34 maxlen: 40 2407:efc0:c000::/35 maxlen: 40 2407:efc0:e000::/36 maxlen: 40 2407:efc0:f000::/37 maxlen: 40 2407:efc0:f800::/38 maxlen: 38 2407:efc0:f800::/39 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2749 (0xabd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Mar 10 19:25:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69b07043-7d56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0b:48:03:be:7b:55:6f:86:ee:f8:64:a8:2d: 09:6b:6a:69:d0:eb:7a:8e:d7:22:35:02:10:ec:28: b4:50:e4:eb:71:6a:57:2f:d8:97:35:55:2f:a9:87: f7:5d:ef:fd:74:7c:6d:32:e3:e7:c9:6c:de:f9:07: 28:f7:56:f9:69:d1:02:4a:38:cd:93:c1:c3:c0:3c: af:63:c3:a3:fd:4b:fc:b0:a6:30:59:db:59:a5:90: 3f:ae:45:f3:9e:63:cd:87:20:ea:b9:7c:6a:3e:9c: 46:7b:4d:59:f5:db:31:dc:63:c7:0a:cb:99:c0:4d: 76:c3:35:a0:8b:89:e2:a2:0b:e1:d4:0e:b8:3a:7e: ec:e5:f4:db:59:4f:3e:6c:83:52:ad:48:9f:9f:76: c8:3b:54:7e:a8:ec:68:3f:2d:b7:bb:3e:af:9c:d3: 6e:99:01:2b:df:bf:81:68:77:0c:66:cb:a3:6e:bb: 33:30:9a:f5:07:dd:f5:ad:2b:c3:1b:c0:a8:d8:87: 05:f3:ed:ba:c0:a2:37:68:b3:27:ba:f6:c2:4c:93: cc:3c:b7:c4:aa:e6:5b:cd:4f:c2:f8:6c:8a:26:20: 1a:e4:f1:a1:66:31:da:2f:72:f3:05:af:9f:27:58: 9c:b0:57:e3:7f:37:f5:25:c2:d9:6e:cd:8b:3e:99: a3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:93:FE:FB:A1:A3:63:ED:17:44:C1:90:EF:AC:58:6E:B6:86:85:B4 X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/2E53CDEC139C11EF8D2CFD84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.200.0/22 IPv6: 2407:efc0::/32 Signature Algorithm: sha256WithRSAEncryption 91:d7:46:4b:d3:8a:25:12:7c:58:64:2e:17:b1:83:0c:d4:f3: de:c9:d7:31:69:0a:79:d6:a9:19:17:37:be:b2:41:37:46:0d: 33:fe:1c:22:45:d7:75:55:85:c6:5e:e7:84:8e:31:aa:a6:22: eb:0b:b7:7f:a9:0d:46:ab:bd:02:64:f6:8b:1b:f4:79:c2:18: b2:1f:60:97:9a:6a:1d:3c:f2:bf:d1:53:13:a9:f1:c0:29:e8: 66:0a:39:b8:80:1c:e5:1b:e9:a2:88:4b:5b:74:db:cc:28:0f: 4c:95:f5:48:e3:b1:20:62:0b:f2:44:eb:6b:18:08:5b:b2:bf: cd:b7:c8:c9:d0:db:c4:d3:b9:eb:c1:04:ee:56:24:f7:6a:77: c0:b2:52:cb:93:fb:95:df:70:54:cc:7d:4a:cc:0b:9a:ca:fe: 8a:e9:c6:c8:8f:ea:ec:94:46:7e:ee:b1:8c:ca:4c:63:4c:74: 62:ba:e2:56:6c:6a:46:e5:d3:e3:6e:0f:1f:f9:46:86:96:cf: 9b:d6:30:49:14:55:84:2c:b0:53:de:c3:fe:20:84:5f:94:3f: 19:02:07:22:94:01:eb:65:76:e2:53:a6:e5:9c:b1:fb:89:75: 43:e9:2b:69:84:64:79:f6:af:a3:b6:25:39:20:53:2d:51:f5: 47:27:93:c6 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjYwMzEwMTkyNTU1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIwNzA0My03ZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogtIA757VW+G7vhkqC0Ja2pp0Ot6jtciNQIQ7Ci0UOTrcWpXL9iXNVUvqYf3 Xe/9dHxtMuPnyWze+Qco91b5adECSjjNk8HDwDyvY8Oj/Uv8sKYwWdtZpZA/rkXz nmPNhyDquXxqPpxGe01Z9dsx3GPHCsuZwE12wzWgi4niogvh1A64On7s5fTbWU8+ bINSrUifn3bIO1R+qOxoPy23uz6vnNNumQEr37+BaHcMZsujbrszMJr1B931rSvD G8Co2IcF8+26wKI3aLMnuvbCTJPMPLfEquZbzU/C+GyKJiAa5PGhZjHaL3LzBa+f J1icsFfjfzf1JcLZbs2LPpmjKwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFP+T/vuh o2PtF0TBkO+sWG62hoW0MB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkMwMzkvQzI1RDAyRkU3ODlEMTFFQUJEQTZGMDVGQzRGOUFFMDIvMkU1M0NERUMx MzlDMTFFRjhEMkNGRDg0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4nIMA0EAgACMAcDBQAkB+/AMA0GCSqGSIb3DQEBCwUAA4IBAQCR 10ZL04olEnxYZC4XsYMM1PPeydcxaQp51qkZFze+skE3Rg0z/hwiRdd1VYXGXueE jjGqpiLrC7d/qQ1Gq70CZPaLG/R5whiyH2CXmmodPPK/0VMTqfHAKehmCjm4gBzl G+miiEtbdNvMKA9MlfVI47EgYgvyROtrGAhbsr/Nt8jJ0NvE07nrwQTuViT3anfA slLLk/uV33BUzH1KzAuayv6K6cbIj+rslEZ+7rGMykxjTHRiuuJWbGpG5dPjbg8f +UaGls+b1jBJFFWELLBT3sP+IIRflD8ZAgcilAHrZXbiU6blnLH7iXVD6StphGR5 9q+jtiU5IFMtUfVHJ5PG -----END CERTIFICATE-----Generated at Sat Mar 28 13:22:48 2026 by rpki-client