$ rpki-client -vvf rpki.apnic.net/member_repository/A915FA57/8D880E523D4511F18272093AA2833773/5A303E7A3D4611F1994807ACA2833773.roa File: 5A303E7A3D4611F1994807ACA2833773.roa (raw, json) Hash identifier: 75E46ZIZqwC0x2k0YHhHlFPjqIaUQxrI06tnum4Jygk= Subject key identifier: 94:0F:26:A6:3A:0B:71:E5:63:BA:00:D2:42:8F:3E:53:37:5D:46:D4 Certificate issuer: /CN=A915FA57/serialNumber=831942291E5F45722B56FC4A9B6C0815FDA8B993 Certificate serial: 02 Authority key identifier: 83:19:42:29:1E:5F:45:72:2B:56:FC:4A:9B:6C:08:15:FD:A8:B9:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxlCKR5fRXIrVvxKm2wIFf2ouZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FA57/8D880E523D4511F18272093AA2833773/5A303E7A3D4611F1994807ACA2833773.roa Signing time: Tue 21 Apr 2026 05:53:00 +0000 ROA not before: Tue 21 Apr 2026 05:53:00 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63631 IP address blocks: 103.117.248.0/24 maxlen: 24 103.117.249.0/24 maxlen: 24 103.117.250.0/24 maxlen: 24 103.117.251.0/24 maxlen: 24 103.145.90.0/24 maxlen: 24 103.145.91.0/24 maxlen: 24 2403:22c0::/32 maxlen: 32 2405:7ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FA57/8D880E523D4511F18272093AA2833773/gxlCKR5fRXIrVvxKm2wIFf2ouZM.crl rsync://rpki.apnic.net/member_repository/A915FA57/8D880E523D4511F18272093AA2833773/gxlCKR5fRXIrVvxKm2wIFf2ouZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxlCKR5fRXIrVvxKm2wIFf2ouZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 09:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FA57, serialNumber=831942291E5F45722B56FC4A9B6C0815FDA8B993 Validity Not Before: Apr 21 05:53:00 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69e710bb-f72d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:b1:76:8f:03:f9:50:29:b6:75:d6:8b:f1: c9:38:23:19:96:47:c3:85:75:eb:c1:25:73:ca:68: 88:82:7e:c1:0a:69:00:58:75:23:6b:ef:79:75:18: 85:2d:58:0e:07:4f:1e:fa:84:a4:dc:38:1f:12:8f: fd:af:bd:c7:2f:8e:d1:21:7f:0f:9e:8c:26:3c:1e: 07:61:00:f1:cc:93:15:8d:61:fb:7a:33:b3:99:ac: b2:84:9e:82:e2:18:be:87:da:38:fd:29:e1:66:8a: 54:ca:fc:be:6f:99:ee:23:6c:7c:c9:22:ca:02:f3: 69:65:f7:34:61:2b:59:2b:9e:52:53:79:c0:fb:1e: f8:21:b3:63:4b:70:e6:ce:40:da:58:c9:6a:0f:42: 09:25:5c:47:21:ef:c6:1f:ff:1b:7e:38:ea:80:54: e0:f4:3f:3a:e7:9e:66:b9:4d:f2:dc:9c:97:39:d1: bf:70:be:be:01:b8:2c:80:fe:66:98:bd:cd:e2:75: ce:45:48:eb:56:ad:2a:6e:06:bf:ef:10:ac:d3:4c: d5:89:97:b8:32:f5:72:18:d5:65:49:87:11:44:21: 85:ab:cb:41:0e:2f:cf:0a:cf:37:ce:27:88:27:9a: 0c:c7:1a:79:3f:d4:a6:9d:ea:17:b3:0d:9d:33:db: c2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:0F:26:A6:3A:0B:71:E5:63:BA:00:D2:42:8F:3E:53:37:5D:46:D4 X509v3 Authority Key Identifier: keyid:83:19:42:29:1E:5F:45:72:2B:56:FC:4A:9B:6C:08:15:FD:A8:B9:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FA57/8D880E523D4511F18272093AA2833773/gxlCKR5fRXIrVvxKm2wIFf2ouZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxlCKR5fRXIrVvxKm2wIFf2ouZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FA57/8D880E523D4511F18272093AA2833773/5A303E7A3D4611F1994807ACA2833773.roa sbgp-ipAddrBlock: critical IPv4: 103.117.248.0/22 103.145.90.0/23 IPv6: 2403:22c0::/32 2405:7ec0::/32 Signature Algorithm: sha256WithRSAEncryption 24:20:cd:0b:52:5c:22:f3:85:5d:e5:07:ee:cb:68:a7:1e:f0: 31:f3:46:ac:a0:c6:3b:1f:c2:1d:ee:33:05:48:cf:dd:70:14: 3a:ce:0a:39:cf:69:e0:72:dd:0f:76:b5:37:8b:c1:3a:c1:16: 27:c1:70:71:e1:ab:ac:f7:57:03:03:31:a4:74:f7:60:20:7c: 06:15:8f:27:f8:5b:e5:f2:7b:32:d9:ff:fe:17:43:e6:00:e3: 80:68:b4:5a:f9:b0:bd:48:9d:c3:61:29:76:df:56:de:12:3b: b8:3f:51:53:61:2f:ee:70:9b:15:3f:ba:a6:96:02:4e:90:d3: c7:57:c7:cf:bb:24:4e:d3:ea:f2:5e:42:24:7a:c0:8f:27:07: 2a:94:32:3a:dc:6f:68:6f:d2:62:61:61:ef:cb:b0:6f:f8:e1: 93:b2:73:a0:74:16:63:db:9d:13:91:e7:e8:a8:50:17:c4:ed: a0:1e:aa:98:2d:7e:19:00:e7:64:62:ef:25:d0:e0:be:30:3d: ac:77:f9:09:f5:01:07:57:93:09:d3:9f:46:ea:1d:93:15:1b: a2:c6:44:86:59:8e:15:69:8e:08:35:66:2b:9b:55:b8:07:65: 5d:6f:c6:53:7a:0c:48:f8:d7:27:22:ae:de:70:1c:85:81:ed: 9a:44:8e:e1 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkE1NzExMC8GA1UEBRMoODMxOTQyMjkxRTVGNDU3MjJCNTZGQzRBOUI2QzA4MTVG REE4Qjk5MzAeFw0yNjA0MjEwNTUzMDBaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTcxMGJiLWY3MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6YLF2jwP5UCm2ddaL8ck4IxmWR8OFdevBJXPKaIiCfsEKaQBYdSNr73l1GIUt WA4HTx76hKTcOB8Sj/2vvccvjtEhfw+ejCY8HgdhAPHMkxWNYft6M7OZrLKEnoLi GL6H2jj9KeFmilTK/L5vme4jbHzJIsoC82ll9zRhK1krnlJTecD7Hvghs2NLcObO QNpYyWoPQgklXEch78Yf/xt+OOqAVOD0Pzrnnma5TfLcnJc50b9wvr4BuCyA/maY vc3idc5FSOtWrSpuBr/vEKzTTNWJl7gy9XIY1WVJhxFEIYWry0EOL88KzzfOJ4gn mgzHGnk/1Kad6hezDZ0z28IRAgMBAAGjggJ8MIICeDAdBgNVHQ4EFgQUlA8mpjoL ceVjugDSQo8+UzddRtQwHwYDVR0jBBgwFoAUgxlCKR5fRXIrVvxKm2wIFf2ouZMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGQTU3LzhEODgwRTUyM0Q0 NTExRjE4MjcyMDkzQUEyODMzNzczL2d4bENLUjVmUlhJclZ2eEttMndJRmYyb3Va TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3hsQ0tSNWZSWElyVnZ4S20yd0lGZjJvdVpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkE1Ny84RDg4MEU1MjNENDUxMUYxODI3MjA5M0FBMjgzMzc3My81QTMwM0U3QTNE NDYxMUYxOTk0ODA3QUNBMjgzMzc3My5yb2EwOwYIKwYBBQUHAQcBAf8ELDAqMBIE AgABMAwDBAJndfgDBAFnkVowFAQCAAIwDgMFACQDIsADBQAkBX7AMA0GCSqGSIb3 DQEBCwUAA4IBAQAkIM0LUlwi84Vd5Qfuy2inHvAx80asoMY7H8Id7jMFSM/dcBQ6 zgo5z2ngct0PdrU3i8E6wRYnwXBx4aus91cDAzGkdPdgIHwGFY8n+Fvl8nsy2f/+ F0PmAOOAaLRa+bC9SJ3DYSl231beEju4P1FTYS/ucJsVP7qmlgJOkNPHV8fPuyRO 0+ryXkIkesCPJwcqlDI63G9ob9JiYWHvy7Bv+OGTsnOgdBZj250TkefoqFAXxO2g HqqYLX4ZAOdkYu8l0OC+MD2sd/kJ9QEHV5MJ059G6h2TFRuixkSGWY4VaY4INWYr m1W4B2Vdb8ZTegxI+NcnIq7ecByFge2aRI7h -----END CERTIFICATE-----Generated at Wed May 13 13:42:11 2026 by rpki-client