$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa File: C8D6C4CAD1EF11EAA9944238C4F9AE02.roa (raw, json) Hash identifier: K5B6HHyVQ+5YfTDkQKgqqzReSt6SI53NMwWOIIR2Lhc= Subject key identifier: D4:E7:B3:EC:D1:D2:2A:43:B7:25:26:0A:D4:8D:84:AA:FA:50:A5:08 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 26F4 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa Signing time: Tue 10 Mar 2026 17:22:31 +0000 ROA not before: Tue 10 Mar 2026 17:22:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139038 IP address blocks: 103.138.210.0/24 maxlen: 24 103.138.210.254/32 maxlen: 32 2001:df0:5580::/48 maxlen: 48 2001:df0:5580::/54 maxlen: 54 2001:df0:5580:800::/54 maxlen: 54 2001:df0:5580:1000::/52 maxlen: 52 2001:df0:5580:1000::/54 maxlen: 54 2001:df0:5580:2000::/52 maxlen: 52 2001:df0:5580:3000::/52 maxlen: 52 2001:df0:5580:7000::/52 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9972 (0x26f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Mar 10 17:22:31 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69b05357-8c6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:4f:fe:80:90:14:fd:b4:ed:84:ff:64:1e: 11:6a:98:eb:b9:00:a9:4a:31:40:06:9b:33:09:20: 30:a7:a8:36:af:a7:9b:f1:30:fb:dd:0e:80:3c:6f: 74:6e:e7:94:b4:86:5c:73:e2:3c:82:c0:20:b7:28: ff:4c:24:18:0c:b6:a8:01:fe:e9:c6:a9:46:e0:1a: 6d:43:90:a7:92:62:6b:d9:04:51:c9:80:e3:59:96: 78:21:7c:d7:4d:a5:72:8a:a7:71:26:fa:ae:76:9f: de:77:1f:a6:7c:28:73:ce:73:4d:0c:6d:3b:0c:f3: 4a:47:2e:46:7c:97:9c:6d:a1:b2:30:6d:30:3f:e9: 4f:6b:ad:4a:f2:f3:b7:e6:30:16:7f:64:ea:5a:0c: 6f:9e:01:aa:c3:4e:d0:4f:7b:eb:af:da:ce:58:e6: 70:6f:1e:cc:bb:4f:ed:e4:58:85:aa:b0:56:6d:41: 86:c5:d5:b6:b2:94:4b:4a:be:01:0f:72:d0:d5:3f: 51:b5:9d:77:d2:96:c5:30:3b:e8:c9:78:3e:84:3f: 85:c9:8b:f1:ee:5f:2a:3a:11:c7:f5:26:f5:ba:19: f7:ad:bc:51:08:d4:4f:20:a7:62:13:6d:d5:83:e5: ee:a9:b0:06:8a:51:78:06:2f:10:c6:4a:b8:9c:3f: 72:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E7:B3:EC:D1:D2:2A:43:B7:25:26:0A:D4:8D:84:AA:FA:50:A5:08 X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 IPv6: 2001:df0:5580::/48 Signature Algorithm: sha256WithRSAEncryption 75:16:e1:1d:60:06:fb:2c:4f:10:b8:eb:90:b8:6e:23:eb:bf: 73:4a:08:4f:e3:5d:e0:d6:c4:ec:f2:e2:8c:dd:92:f2:ff:1d: 76:c3:88:70:6e:64:e0:8f:ac:ef:c1:ff:85:01:db:c1:0c:60: 89:6c:08:7e:a1:c2:a3:48:65:16:77:a3:ce:f7:6c:68:4c:d5: 63:af:3a:01:b6:00:43:10:c2:2d:b4:8a:ad:66:b7:a7:45:f2: 53:c2:ea:19:c4:88:b9:46:77:36:ef:f7:af:c5:df:83:51:e3: bb:fa:80:d8:1c:30:a1:ac:73:67:39:d5:8e:fb:40:f9:78:c5: 23:f3:da:a5:24:5b:1d:22:e9:65:93:86:be:de:cb:e0:d9:ee: be:8a:0a:cd:68:ce:da:66:0f:40:ae:ec:b2:69:be:a2:00:11: e4:d6:c2:d9:b5:43:33:99:fb:f1:5c:e8:5c:9a:0f:57:6c:52: 70:6e:3a:e9:5d:51:1f:57:f7:3c:98:14:60:55:de:6a:b9:e7: cb:cc:37:fa:5a:b4:e5:af:7d:44:f1:52:e8:64:a7:e5:7a:62: 0e:9f:8d:a1:da:d9:68:47:23:86:0e:0c:c8:d3:e8:15:eb:ae: e9:6e:84:97:25:83:d5:13:fa:e3:09:c9:b7:f9:ab:db:a5:56: d1:55:ea:05 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICJvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjYwMzEwMTcyMjMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIwNTM1Ny04YzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN1P/oCQFP207YT/ZB4RapjruQCpSjFABpszCSAwp6g2r6eb8TD73Q6APG90 bueUtIZcc+I8gsAgtyj/TCQYDLaoAf7pxqlG4BptQ5CnkmJr2QRRyYDjWZZ4IXzX TaVyiqdxJvqudp/edx+mfChzznNNDG07DPNKRy5GfJecbaGyMG0wP+lPa61K8vO3 5jAWf2TqWgxvngGqw07QT3vrr9rOWOZwbx7Mu0/t5FiFqrBWbUGGxdW2spRLSr4B D3LQ1T9RtZ130pbFMDvoyXg+hD+FyYvx7l8qOhHH9Sb1uhn3rbxRCNRPIKdiE23V g+XuqbAGilF4Bi8Qxkq4nD9yrQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNTns+zR 0ipDtyUmCtSNhKr6UKUIMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvQzhENkM0Q0FE MUVGMTFFQUE5OTQ0MjM4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ4rSMA8EAgACMAkDBwAgAQ3wVYAwDQYJKoZIhvcNAQELBQADggEB AHUW4R1gBvssTxC465C4biPrv3NKCE/jXeDWxOzy4ozdkvL/HXbDiHBuZOCPrO/B /4UB28EMYIlsCH6hwqNIZRZ3o873bGhM1WOvOgG2AEMQwi20iq1mt6dF8lPC6hnE iLlGdzbv96/F34NR47v6gNgcMKGsc2c51Y77QPl4xSPz2qUkWx0i6WWThr7ey+DZ 7r6KCs1oztpmD0Cu7LJpvqIAEeTWwtm1QzOZ+/Fc6FyaD1dsUnBuOuldUR9X9zyY FGBV3mq558vMN/patOWvfUTxUuhkp+V6Yg6fjaHa2WhHI4YODMjT6BXrruluhJcl g9UT+uMJybf5q9ulVtFV6gU= -----END CERTIFICATE-----Generated at Thu Mar 26 04:28:44 2026 by rpki-client