$ rpki-client -vvf rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/D7F98876520B11EE8B85DB63C4F9AE02.roa File: D7F98876520B11EE8B85DB63C4F9AE02.roa (raw, json) Hash identifier: Q0TiMFa8tUssNISe0Ku0sJXnlAQzZvxq6YnX7JI1uME= Subject key identifier: D3:19:D6:85:72:0D:1A:D2:F9:55:4D:C5:05:2E:85:C7:5E:8B:CB:4B Certificate issuer: /CN=A912D5C1/serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Certificate serial: 0D13 Authority key identifier: E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/D7F98876520B11EE8B85DB63C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:22:42 +0000 ROA not before: Sat 24 May 2025 18:42:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139033 IP address blocks: 103.138.182.0/23 maxlen: 23 103.138.182.0/24 maxlen: 24 103.138.183.0/24 maxlen: 24 2404:d240::/32 maxlen: 36 2404:d240::/37 maxlen: 37 2404:d240:800::/37 maxlen: 37 2404:d240:1000::/37 maxlen: 37 2404:d240:1800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3347 (0xd13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D5C1, serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Validity Not Before: May 24 18:42:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40562-6293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6d:2d:e5:63:df:9b:e3:90:46:2e:ca:56:30: 40:d8:8c:f2:2d:22:68:ef:db:cb:09:bf:9f:1a:13: ba:56:86:9d:fe:32:66:92:8f:f8:85:14:7b:45:61: ff:95:df:3f:85:e3:69:94:ce:50:b6:b8:4a:e9:36: c5:a8:45:ab:c2:56:df:d9:86:10:24:04:6f:fc:89: 52:bb:b5:e8:1e:80:3b:9a:86:2f:70:01:2f:30:49: d1:5f:b1:3e:e6:e9:93:7b:72:ed:ee:9a:86:03:ee: e3:4d:ca:75:d1:ca:9a:17:71:00:90:73:43:20:67: 07:69:92:63:8e:60:42:df:dd:57:e1:96:94:55:dd: 22:2e:44:31:35:ef:62:ad:b8:a4:a5:3d:71:6b:d8: 66:29:01:fe:ac:d7:ba:50:6f:81:7f:70:ed:bd:7a: 12:db:fa:15:c9:9d:18:22:2b:fc:ef:5e:50:ec:a1: b4:c8:d2:45:33:6d:48:76:12:3b:c4:ed:fa:e4:f2: 33:a7:b6:4c:95:58:c2:18:67:32:75:17:2b:58:79: bd:ea:00:f8:95:87:96:f3:f3:20:bc:e5:f3:4d:4f: 4b:c5:47:cb:6d:90:60:a1:a1:7e:6f:a3:ff:c0:ca: e5:89:af:fe:cf:e3:4a:8b:97:6f:2d:57:38:86:26: 7b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:19:D6:85:72:0D:1A:D2:F9:55:4D:C5:05:2E:85:C7:5E:8B:CB:4B X509v3 Authority Key Identifier: keyid:E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/D7F98876520B11EE8B85DB63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.182.0/23 IPv6: 2404:d240::/32 Signature Algorithm: sha256WithRSAEncryption bc:6a:54:7f:50:1a:12:f7:c3:61:a0:cb:83:77:2b:fa:de:68: a5:87:85:a3:38:da:b4:81:fd:db:70:a1:c4:9d:4e:60:69:a7: b8:0b:da:a6:8e:2c:98:6b:cd:68:b5:51:70:a1:fc:ab:9f:b5: d7:e2:bd:15:5f:dc:02:27:6d:2e:5a:55:5a:44:19:1d:f5:00: 6d:36:b9:7d:2b:da:f9:11:6b:be:88:33:c3:1f:b9:56:54:97: 7f:72:de:52:ef:ba:b8:77:34:f1:38:d1:93:4b:64:c0:0d:09: bc:6c:01:20:f9:3f:89:ae:cf:a7:2b:cd:c1:58:0e:c3:62:84: e4:46:58:90:1c:f3:80:21:ae:38:6b:92:74:32:db:7e:33:11: 6b:cd:c6:3c:38:98:d2:d4:d8:a5:e7:ba:81:68:05:b8:07:e8: 94:ac:20:04:e0:85:5b:25:02:e3:a0:1b:6f:79:35:01:3e:b6: 08:66:2c:ce:62:cd:02:5f:99:35:a5:97:05:16:0c:9a:de:1f: de:e8:c2:27:47:8d:73:95:34:ad:1b:4e:ed:ab:e6:5c:d9:0a: 11:be:6b:97:59:d2:84:ee:6e:49:64:fa:2d:7f:a5:54:02:63: 5c:f4:8f:a1:a1:05:05:64:2a:cd:4e:d7:f7:2d:17:dd:f4:a6: 14:32:fa:66 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ1QzExMTAvBgNVBAUTKEU4MkQxMEQyREExQzk4QkY2OENBNEM2NDkxQjkwRkZE MEZBQjMzOTQwHhcNMjUwNTI0MTg0MjEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDU2Mi02MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G0t5WPfm+OQRi7KVjBA2IzyLSJo79vLCb+fGhO6Voad/jJmko/4hRR7RWH/ ld8/heNplM5QtrhK6TbFqEWrwlbf2YYQJARv/IlSu7XoHoA7moYvcAEvMEnRX7E+ 5umTe3Lt7pqGA+7jTcp10cqaF3EAkHNDIGcHaZJjjmBC391X4ZaUVd0iLkQxNe9i rbikpT1xa9hmKQH+rNe6UG+Bf3DtvXoS2/oVyZ0YIiv8715Q7KG0yNJFM21IdhI7 xO365PIzp7ZMlVjCGGcydRcrWHm96gD4lYeW8/MgvOXzTU9LxUfLbZBgoaF+b6P/ wMrlia/+z+NKi5dvLVc4hiZ7WQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFNMZ1oVy DRrS+VVNxQUuhcdei8tLMB8GA1UdIwQYMBaAFOgtENLaHJi/aMpMZJG5D/0PqzOU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDVDMS9CMDdEQ0I0NEZG Q0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21MOW95a3hra2JrUF9RLXJN NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZDMFEwdG9jbUw5b3lreGtrYmtQX1Etck01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ1QzEvQjA3RENCNDRGRkNDMTFFOUE1RTc5Nzg0QzRGOUFFMDIvRDdGOTg4NzY1 MjBCMTFFRThCODVEQjYzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4q2MA0EAgACMAcDBQAkBNJAMA0GCSqGSIb3DQEBCwUAA4IBAQC8 alR/UBoS98NhoMuDdyv63milh4WjONq0gf3bcKHEnU5gaae4C9qmjiyYa81otVFw ofyrn7XX4r0VX9wCJ20uWlVaRBkd9QBtNrl9K9r5EWu+iDPDH7lWVJd/ct5S77q4 dzTxONGTS2TADQm8bAEg+T+Jrs+nK83BWA7DYoTkRliQHPOAIa44a5J0Mtt+MxFr zcY8OJjS1Nil57qBaAW4B+iUrCAE4IVbJQLjoBtveTUBPrYIZizOYs0CX5k1pZcF Fgya3h/e6MInR41zlTStG07tq+Zc2QoRvmuXWdKE7m5JZPotf6VUAmNc9I+hoQUF ZCrNTtf3LRfd9KYUMvpm -----END CERTIFICATE-----Generated at Sat Mar 28 12:09:57 2026 by rpki-client