$ rpki-client -vvf rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/A4F1EAECC09211EC8950E57AC4F9AE02.roa File: A4F1EAECC09211EC8950E57AC4F9AE02.roa (raw, json) Hash identifier: bbFe9zajQ0g2zhaT+BLjCcFN40wGnYAdz85LZxbirZ8= Subject key identifier: D8:42:AF:92:43:F8:E5:8E:C9:6E:A0:93:DC:11:23:98:CB:63:AA:BE Certificate issuer: /CN=A915ABD7/serialNumber=DD8218C9B814AE85B9406536607250C7AAEEC809 Certificate serial: 03E1 Authority key identifier: DD:82:18:C9:B8:14:AE:85:B9:40:65:36:60:72:50:C7:AA:EE:C8:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/A4F1EAECC09211EC8950E57AC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:57:35 +0000 ROA not before: Fri 09 May 2025 01:14:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135325 IP address blocks: 103.186.138.0/23 maxlen: 23 103.186.138.0/24 maxlen: 24 103.186.139.0/24 maxlen: 24 2001:df0:a940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.crl rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915ABD7, serialNumber=DD8218C9B814AE85B9406536607250C7AAEEC809 Validity Not Before: May 9 01:14:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ff7f-d4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:74:7a:38:53:02:10:a7:ec:7d:29:74:34:cd: 30:60:ac:6e:9a:be:1c:21:b0:85:24:2e:09:92:54: da:3c:26:43:92:97:06:92:54:e5:3f:34:c0:23:38: 08:d6:8c:3c:db:b5:9d:ee:27:bc:49:39:65:64:fe: 3c:2f:03:e9:2b:c8:b7:68:40:db:a1:f7:3b:56:dd: 21:15:f2:5d:83:db:e4:e4:21:90:39:72:51:51:0b: 91:96:d8:cb:ef:d8:bd:d5:0e:c1:02:3d:ee:bf:e4: 31:3e:80:46:28:94:95:0b:a8:23:5f:83:04:b6:89: 16:de:83:dc:4a:f0:dc:bc:90:4a:0d:4d:29:c9:73: be:80:a5:4d:ca:93:42:78:a4:aa:39:f2:47:07:2b: 8f:23:bb:30:85:89:13:38:b5:6a:eb:ee:aa:41:f1: b5:8e:77:f0:02:55:3d:ed:ee:20:f9:a7:08:36:57: 77:dd:1a:c1:45:75:d5:00:64:6b:e1:6c:c7:1a:60: e1:51:da:74:b3:e5:6d:57:d4:43:49:72:3e:04:2b: 5b:37:cd:84:2c:c5:13:7b:7f:62:5a:01:82:86:b5: f5:47:da:2e:d0:63:da:ec:9c:d7:82:57:ba:07:7e: bd:39:7a:3b:c1:be:3c:86:5f:cc:b1:e3:98:1c:05: e1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:42:AF:92:43:F8:E5:8E:C9:6E:A0:93:DC:11:23:98:CB:63:AA:BE X509v3 Authority Key Identifier: keyid:DD:82:18:C9:B8:14:AE:85:B9:40:65:36:60:72:50:C7:AA:EE:C8:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/A4F1EAECC09211EC8950E57AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.138.0/23 IPv6: 2001:df0:a940::/48 Signature Algorithm: sha256WithRSAEncryption 54:03:c6:d1:5e:73:c5:77:83:f1:d3:ea:c0:80:7a:eb:ff:12: 5d:0a:ff:cc:20:7c:ea:c4:19:fc:7d:d4:44:41:f5:06:c8:bd: 15:66:38:cf:28:08:95:ca:c2:1f:a0:cc:c9:cf:03:44:66:d2: 4d:2f:f9:3f:ae:ba:f1:87:4d:5e:2e:33:03:03:3d:7b:cd:96: 16:da:8e:e7:d8:ae:ee:28:46:35:6a:fd:b2:63:c2:d6:84:4f: f4:91:7d:79:95:a7:ec:96:e0:64:0c:45:57:57:df:52:6a:e4: 36:c5:20:f3:13:81:47:ab:e5:16:bf:fa:01:ed:3b:b1:d7:b6: 3f:0e:d8:0d:a0:b1:94:13:08:79:2d:83:b6:06:94:1d:80:a0: 09:d0:aa:f1:60:14:70:05:ae:a9:d4:b2:b8:06:41:3e:ac:26: 64:67:fc:b8:35:59:ce:15:ef:02:9b:00:87:c6:6c:60:bf:d2: 80:52:cd:ae:88:d9:0d:98:c6:07:ae:51:44:ca:c3:89:58:c7: 5e:fd:ae:c9:46:dd:46:de:f1:d0:33:bf:a5:b2:17:fd:22:d7: 7e:8a:59:54:9a:68:2e:5e:e2:f4:32:cd:59:28:1f:ba:90:8a: eb:5e:30:46:c9:e9:5f:1a:13:61:36:72:14:2d:7d:98:b1:a6: b2:fc:ad:7f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFCRDcxMTAvBgNVBAUTKEREODIxOEM5QjgxNEFFODVCOTQwNjUzNjYwNzI1MEM3 QUFFRUM4MDkwHhcNMjUwNTA5MDExNDMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmY3Zi1kNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nR6OFMCEKfsfSl0NM0wYKxumr4cIbCFJC4JklTaPCZDkpcGklTlPzTAIzgI 1ow827Wd7ie8STllZP48LwPpK8i3aEDbofc7Vt0hFfJdg9vk5CGQOXJRUQuRltjL 79i91Q7BAj3uv+QxPoBGKJSVC6gjX4MEtokW3oPcSvDcvJBKDU0pyXO+gKVNypNC eKSqOfJHByuPI7swhYkTOLVq6+6qQfG1jnfwAlU97e4g+acINld33RrBRXXVAGRr 4WzHGmDhUdp0s+VtV9RDSXI+BCtbN82ELMUTe39iWgGChrX1R9ou0GPa7JzXgle6 B369OXo7wb48hl/MseOYHAXh/wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNhCr5JD +OWOyW6gk9wRI5jLY6q+MB8GA1UdIwQYMBaAFN2CGMm4FK6FuUBlNmByUMeq7sgJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUJENy81RjQ5QUE2OEJF QzQxMUVDODc4Q0MxNjZDNEY5QUUwMi8zWUlZeWJnVXJvVzVRR1UyWUhKUXg2cnV5 QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZSVl5YmdVcm9XNVFHVTJZSEpReDZydXlBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFCRDcvNUY0OUFBNjhCRUM0MTFFQzg3OENDMTY2QzRGOUFFMDIvQTRGMUVBRUND MDkyMTFFQzg5NTBFNTdBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7qKMA8EAgACMAkDBwAgAQ3wqUAwDQYJKoZIhvcNAQELBQADggEB AFQDxtFec8V3g/HT6sCAeuv/El0K/8wgfOrEGfx91ERB9QbIvRVmOM8oCJXKwh+g zMnPA0Rm0k0v+T+uuvGHTV4uMwMDPXvNlhbajufYru4oRjVq/bJjwtaET/SRfXmV p+yW4GQMRVdX31Jq5DbFIPMTgUer5Ra/+gHtO7HXtj8O2A2gsZQTCHktg7YGlB2A oAnQqvFgFHAFrqnUsrgGQT6sJmRn/Lg1Wc4V7wKbAIfGbGC/0oBSza6I2Q2Yxgeu UUTKw4lYx179rslG3Ube8dAzv6WyF/0i136KWVSaaC5e4vQyzVkoH7qQiuteMEbJ 6V8aE2E2chQtfZixprL8rX8= -----END CERTIFICATE-----Generated at Thu Mar 26 13:50:29 2026 by rpki-client