$ rpki-client -vvf rpki.apnic.net/member_repository/A913914F/B1AE8434F69311ECBA29042DC4F9AE02/DF78B598FF0311F092EDFD107EEE528E.roa File: DF78B598FF0311F092EDFD107EEE528E.roa (raw, json) Hash identifier: /u0i3Aeuiz5NTTMUVu/g+q7Yy+k6j1q8s7QD7jjHWC4= Subject key identifier: C4:7F:C8:A2:C2:BE:18:FD:00:D8:38:74:C5:0A:F8:1A:A9:D8:42:D9 Certificate issuer: /CN=A913914F/serialNumber=10E14B8CE5296312A8CD118EEAAF6DB7E46EA7DB Certificate serial: 036B Authority key identifier: 10:E1:4B:8C:E5:29:63:12:A8:CD:11:8E:EA:AF:6D:B7:E4:6E:A7:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOFLjOUpYxKozRGO6q9tt-Rup9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913914F/B1AE8434F69311ECBA29042DC4F9AE02/DF78B598FF0311F092EDFD107EEE528E.roa Signing time: Wed 25 Mar 2026 01:34:10 +0000 ROA not before: Wed 25 Mar 2026 01:34:10 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134736 IP address blocks: 59.153.108.0/22 maxlen: 22 59.153.108.0/24 maxlen: 24 59.153.109.0/24 maxlen: 24 59.153.110.0/24 maxlen: 24 59.153.111.0/24 maxlen: 24 103.198.148.0/22 maxlen: 22 103.198.148.0/24 maxlen: 24 103.198.149.0/24 maxlen: 24 103.198.150.0/24 maxlen: 24 103.198.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913914F/B1AE8434F69311ECBA29042DC4F9AE02/EOFLjOUpYxKozRGO6q9tt-Rup9s.crl rsync://rpki.apnic.net/member_repository/A913914F/B1AE8434F69311ECBA29042DC4F9AE02/EOFLjOUpYxKozRGO6q9tt-Rup9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOFLjOUpYxKozRGO6q9tt-Rup9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913914F, serialNumber=10E14B8CE5296312A8CD118EEAAF6DB7E46EA7DB Validity Not Before: Mar 25 01:34:10 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69c33b92-277b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a9:bd:f6:57:e7:a9:ce:17:7e:98:c4:5f:8c: 2e:ad:da:d4:a1:fb:66:4e:9b:65:67:8c:b7:5d:a4: 11:01:e1:ec:2a:fb:48:65:cd:67:c3:b7:71:78:75: 2c:02:55:bb:71:f6:f5:8c:0a:cd:0e:6b:de:bd:58: 1a:7b:83:a8:03:c3:97:a3:bc:4a:91:c6:a8:65:18: 8c:87:e6:ce:2d:16:a2:5e:52:19:30:d7:95:82:5a: 17:98:f4:7d:88:1d:d3:a3:a5:66:a4:3a:1d:24:60: a5:cb:6b:3d:c8:f2:2f:f0:43:fb:99:e8:03:40:41: fa:c8:77:bc:c8:4e:41:04:9e:a0:d7:86:61:32:21: 41:05:cd:b4:be:93:d6:84:50:8f:11:32:ee:eb:1d: 63:52:51:58:26:73:1b:c0:24:7d:2d:71:46:24:86: a3:31:c8:18:af:a2:68:0a:0e:e4:2d:cd:49:c6:32: 56:5e:fc:0f:4a:ac:c5:57:08:80:61:22:96:4d:6d: 67:d3:21:8b:ab:b6:8d:3e:ca:69:78:e0:be:f1:14: d0:de:8d:f5:5f:6f:18:ad:f8:9b:9b:77:54:70:41: 99:ef:ad:64:ad:aa:c4:77:c0:af:4b:41:29:85:8e: 70:ef:5b:0b:8e:e1:49:6c:22:27:3f:ac:a1:86:49: dc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7F:C8:A2:C2:BE:18:FD:00:D8:38:74:C5:0A:F8:1A:A9:D8:42:D9 X509v3 Authority Key Identifier: keyid:10:E1:4B:8C:E5:29:63:12:A8:CD:11:8E:EA:AF:6D:B7:E4:6E:A7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913914F/B1AE8434F69311ECBA29042DC4F9AE02/EOFLjOUpYxKozRGO6q9tt-Rup9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOFLjOUpYxKozRGO6q9tt-Rup9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913914F/B1AE8434F69311ECBA29042DC4F9AE02/DF78B598FF0311F092EDFD107EEE528E.roa sbgp-ipAddrBlock: critical IPv4: 59.153.108.0/22 103.198.148.0/22 Signature Algorithm: sha256WithRSAEncryption 38:96:25:f6:30:2f:d7:6d:77:6f:37:b9:a3:ba:d4:7d:0a:4c: af:fd:46:9c:82:11:fa:32:95:bd:90:a2:4b:5f:e7:3b:a6:18: 57:13:ca:14:9b:d2:6b:47:cd:2e:df:0f:38:9e:ff:c8:8c:57: 0d:35:a1:18:e7:0f:43:41:7f:4c:cc:50:90:ee:0c:de:34:5e: 80:76:a7:25:3b:9c:a6:ab:15:95:29:53:be:32:89:35:59:59: 7c:60:a8:b6:3f:e4:7b:c1:fc:f7:05:a7:12:df:1e:32:11:34: 16:72:57:af:5a:1b:00:da:7f:c7:30:c7:e6:e7:7c:97:7a:c1: 9e:21:b5:cd:32:ed:f6:c5:85:eb:7f:c6:2e:6d:66:f7:0e:ae: a0:65:d0:c5:2b:4a:70:61:51:46:4b:1c:d5:ed:76:da:17:10: 42:08:b7:15:c5:d6:51:52:27:cb:65:cf:7e:d7:13:7e:0b:1d: d2:3a:6d:df:b9:49:59:73:e8:0d:76:7b:84:c7:94:3f:fe:48: e0:32:86:a4:c1:ea:e8:76:e1:6f:ed:60:81:90:d2:c3:06:a1: e3:a5:86:d8:cf:33:a0:80:e2:af:09:db:60:6d:32:df:c2:2d: ee:49:61:3e:46:fc:5a:ca:dd:c4:69:53:1d:7e:36:8f:a1:a3: 87:86:00:d6 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkxNEYxMTAvBgNVBAUTKDEwRTE0QjhDRTUyOTYzMTJBOENEMTE4RUVBQUY2REI3 RTQ2RUE3REIwHhcNMjYwMzI1MDEzNDEwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWMzM2I5Mi0yNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKm99lfnqc4XfpjEX4wurdrUoftmTptlZ4y3XaQRAeHsKvtIZc1nw7dxeHUs AlW7cfb1jArNDmvevVgae4OoA8OXo7xKkcaoZRiMh+bOLRaiXlIZMNeVgloXmPR9 iB3To6VmpDodJGCly2s9yPIv8EP7megDQEH6yHe8yE5BBJ6g14ZhMiFBBc20vpPW hFCPETLu6x1jUlFYJnMbwCR9LXFGJIajMcgYr6JoCg7kLc1JxjJWXvwPSqzFVwiA YSKWTW1n0yGLq7aNPsppeOC+8RTQ3o31X28Yrfibm3dUcEGZ761krarEd8CvS0Ep hY5w71sLjuFJbCInP6yhhknc3wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMR/yKLC vhj9ANg4dMUK+Bqp2ELZMB8GA1UdIwQYMBaAFBDhS4zlKWMSqM0Rjuqvbbfkbqfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTE0Ri9CMUFFODQzNEY2 OTMxMUVDQkEyOTA0MkRDNEY5QUUwMi9FT0ZMak9VcFl4S296UkdPNnE5dHQtUnVw OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VPRkxqT1VwWXhLb3pSR082cTl0dC1SdXA5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkxNEYvQjFBRTg0MzRGNjkzMTFFQ0JBMjkwNDJEQzRGOUFFMDIvREY3OEI1OThG RjAzMTFGMDkyRURGRDEwN0VFRTUyOEUucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCO5lsAwQCZ8aUMA0GCSqGSIb3DQEBCwUAA4IBAQA4liX2MC/XbXdv N7mjutR9Ckyv/UacghH6MpW9kKJLX+c7phhXE8oUm9JrR80u3w84nv/IjFcNNaEY 5w9DQX9MzFCQ7gzeNF6AdqclO5ymqxWVKVO+Mok1WVl8YKi2P+R7wfz3BacS3x4y ETQWclevWhsA2n/HMMfm53yXesGeIbXNMu32xYXrf8YubWb3Dq6gZdDFK0pwYVFG SxzV7XbaFxBCCLcVxdZRUifLZc9+1xN+Cx3SOm3fuUlZc+gNdnuEx5Q//kjgMoak weroduFv7WCBkNLDBqHjpYbYzzOggOKvCdtgbTLfwi3uSWE+Rvxayt3EaVMdfjaP oaOHhgDW -----END CERTIFICATE-----Generated at Thu Mar 26 10:59:57 2026 by rpki-client