$ rpki-client -vvf rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa File: 8109A2E65EA111EA879CA66DC4F9AE02.roa (raw, json) Hash identifier: 2j4qtY2NB4o4xIh+eTu9IqpJ1nrHSsrqDfHSIXATQH0= Subject key identifier: 22:39:84:52:7C:59:4A:3D:CA:09:1B:A8:16:23:23:DB:CA:41:A2:87 Certificate issuer: /CN=A914397B/serialNumber=B2BA4D275A498FB4646C7BC06E2623E16BE79058 Certificate serial: 0B0E Authority key identifier: B2:BA:4D:27:5A:49:8F:B4:64:6C:7B:C0:6E:26:23:E1:6B:E7:90:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa Signing time: Mon 02 Mar 2026 19:24:58 +0000 ROA not before: Mon 02 Mar 2026 19:24:57 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135124 IP address blocks: 103.135.172.0/22 maxlen: 22 103.135.172.0/23 maxlen: 23 103.135.172.0/24 maxlen: 24 103.135.173.0/24 maxlen: 24 103.135.174.0/23 maxlen: 23 103.135.174.0/24 maxlen: 24 103.135.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.crl rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2830 (0xb0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914397B, serialNumber=B2BA4D275A498FB4646C7BC06E2623E16BE79058 Validity Not Before: Mar 2 19:24:57 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a5e409-025a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dd:60:78:df:1e:18:3c:4c:ef:a5:f2:04:df: e7:8b:6f:54:2f:05:3e:0e:0a:be:9e:0e:dc:5b:47: 26:cc:bb:a2:10:ca:cf:0c:9f:7f:a9:a8:bd:01:47: 56:d0:cc:e3:00:77:bc:cf:f1:5e:f4:08:fb:fb:5e: 87:76:e5:ef:ee:21:ae:9c:fb:cc:f1:7a:62:a0:3f: 8a:d5:7e:d5:80:92:74:29:95:c6:d1:85:d5:57:15: 92:4f:bc:c9:e9:12:62:2d:51:0e:74:e6:48:ff:2d: 6e:0a:25:c1:9d:b7:0c:e7:82:bc:49:f8:98:cb:67: c8:ee:54:92:26:f5:ff:89:92:a1:dc:e9:49:83:7c: 54:e3:7f:e4:01:87:0b:4a:88:b4:7f:5b:04:a2:0a: 6a:f3:c3:ca:9c:4f:70:be:8d:4e:84:05:f2:65:48: f0:b3:71:ed:cd:9e:fc:45:27:8e:3f:bb:c5:d8:02: 73:f5:a0:40:6d:26:50:50:91:0f:38:88:2c:46:8c: 1f:ca:54:49:c0:6f:68:1e:d9:11:17:68:43:75:05: 53:25:85:59:f5:cc:25:a0:e1:e6:65:3b:04:3b:d5: ef:35:ef:2f:eb:34:50:dc:c8:0d:5e:87:80:d2:38: 8f:ac:d9:e1:2a:6c:13:e3:6a:9a:3e:5b:0f:c1:6c: 99:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:39:84:52:7C:59:4A:3D:CA:09:1B:A8:16:23:23:DB:CA:41:A2:87 X509v3 Authority Key Identifier: keyid:B2:BA:4D:27:5A:49:8F:B4:64:6C:7B:C0:6E:26:23:E1:6B:E7:90:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.172.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:01:62:e2:7f:6c:3e:3f:a3:da:bf:8f:be:56:9c:7e:67:3f: c3:58:c8:2e:25:99:39:99:ab:73:bc:29:ce:0a:5a:68:bb:2b: 51:bd:c3:91:97:fd:60:a9:6b:b6:00:02:8f:c9:62:dc:aa:0d: af:aa:7d:07:51:0f:23:4d:b6:7f:6f:4f:0f:d2:66:23:af:3a: 4f:f2:d7:e1:37:8a:be:cf:8c:4b:1c:f0:9a:a2:9c:48:15:e9: 95:de:6f:b2:00:9d:06:a8:6f:c2:89:63:4d:9d:69:98:0b:e7: 4d:c6:c2:92:26:62:fe:52:e2:fd:f1:c6:7c:ae:09:5d:8b:39: 13:48:9a:68:9d:72:e9:7a:64:9e:26:8c:ec:35:93:bd:36:71: 10:d1:1b:bd:c1:5f:b7:b2:67:94:87:1d:0c:ef:87:2c:94:73: 3b:69:a1:0c:89:8a:5f:46:87:6c:58:5b:b5:7b:6c:30:0a:42: 05:87:61:38:6b:d2:24:51:fe:2d:8c:4e:50:4f:42:16:c5:7a: da:a4:14:e5:93:4e:62:5a:6f:61:d1:d6:89:6a:45:92:5e:9e: 0b:92:74:10:23:4f:21:61:f1:93:10:db:23:7f:86:37:b5:86: 7c:18:ab:6c:31:fa:f0:cb:c1:36:d6:38:92:ce:68:34:13:10: 55:f2:c2:4a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM5N0IxMTAvBgNVBAUTKEIyQkE0RDI3NUE0OThGQjQ2NDZDN0JDMDZFMjYyM0Ux NkJFNzkwNTgwHhcNMjYwMzAyMTkyNDU3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZTQwOS0wMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA291geN8eGDxM76XyBN/ni29ULwU+Dgq+ng7cW0cmzLuiEMrPDJ9/qai9AUdW 0MzjAHe8z/Fe9Aj7+16HduXv7iGunPvM8XpioD+K1X7VgJJ0KZXG0YXVVxWST7zJ 6RJiLVEOdOZI/y1uCiXBnbcM54K8SfiYy2fI7lSSJvX/iZKh3OlJg3xU43/kAYcL Soi0f1sEogpq88PKnE9wvo1OhAXyZUjws3HtzZ78RSeOP7vF2AJz9aBAbSZQUJEP OIgsRowfylRJwG9oHtkRF2hDdQVTJYVZ9cwloOHmZTsEO9XvNe8v6zRQ3MgNXoeA 0jiPrNnhKmwT42qaPlsPwWyZLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCI5hFJ8 WUo9ygkbqBYjI9vKQaKHMB8GA1UdIwQYMBaAFLK6TSdaSY+0ZGx7wG4mI+Fr55BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mzk3Qi8wRTA0MDFBMjVF QTAxMUVBOUEyNjQ2NkJDNEY5QUUwMi9zcnBOSjFwSmo3UmtiSHZBYmlZajRXdm5r RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NycE5KMXBKajdSa2JIdkFiaVlqNFd2bmtGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDM5N0IvMEUwNDAxQTI1RUEwMTFFQTlBMjY0NjZCQzRGOUFFMDIvODEwOUEyRTY1 RUExMTFFQTg3OUNBNjZEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4esMA0GCSqGSIb3DQEBCwUAA4IBAQBMAWLif2w+P6Pav4++Vpx+ Zz/DWMguJZk5matzvCnOClpouytRvcORl/1gqWu2AAKPyWLcqg2vqn0HUQ8jTbZ/ b08P0mYjrzpP8tfhN4q+z4xLHPCaopxIFemV3m+yAJ0GqG/CiWNNnWmYC+dNxsKS JmL+UuL98cZ8rgldizkTSJponXLpemSeJozsNZO9NnEQ0Ru9wV+3smeUhx0M74cs lHM7aaEMiYpfRodsWFu1e2wwCkIFh2E4a9IkUf4tjE5QT0IWxXrapBTlk05iWm9h 0daJakWSXp4LknQQI08hYfGTENsjf4Y3tYZ8GKtsMfrwy8E21jiSzmg0ExBV8sJK -----END CERTIFICATE-----Generated at Fri Mar 27 05:21:24 2026 by rpki-client