$ rpki-client -vvf rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa File: D3B421A2366811F0A18FF40AC4F9AE02.roa (raw, json) Hash identifier: gnBhRZz6lqy+9fZ3prGW4rSWgd+luFMhY8LE1PUlSC8= Subject key identifier: 5B:C3:30:2A:DA:DE:0E:A0:D8:89:7B:4F:27:18:1F:55:19:F2:8A:B8 Certificate issuer: /CN=A916A703/serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Certificate serial: 07B6 Authority key identifier: 72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa Signing time: Tue 12 May 2026 22:26:29 +0000 ROA not before: Tue 12 May 2026 22:26:29 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139012 IP address blocks: 103.138.125.0/24 maxlen: 24 2404:cd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1974 (0x7b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A703, serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Validity Not Before: May 12 22:26:29 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a03a915-8e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:73:83:4f:c2:01:6f:ad:94:6c:a0:97:ac: 13:9b:f8:65:f9:02:c3:e4:ad:0c:eb:e6:3a:f8:c5: 3c:f5:8c:5c:9a:08:53:ba:37:13:8a:51:bb:f0:3e: a9:5d:ad:16:3e:c9:67:7a:a1:26:56:7d:71:23:eb: bb:33:f6:b0:a6:e0:99:64:0f:a0:a8:d9:18:9f:a1: d7:6a:77:29:da:1e:34:d2:af:5a:5f:bc:9a:18:47: 0e:40:4d:56:44:41:e2:79:7c:3b:8a:ab:52:8d:1e: 63:ff:e5:f2:f0:df:da:db:37:b4:d7:c1:2b:04:21: 23:77:ac:13:c7:48:8c:e2:dd:1d:9e:51:87:8e:cf: 05:57:1d:a2:a6:72:b8:d3:70:85:d5:fc:0a:ad:d4: b2:45:5b:8e:c2:23:e0:09:f6:92:a0:f1:43:fb:7a: a8:31:bc:8a:4c:a0:e7:f0:22:28:0c:7f:fa:c3:3a: e5:2e:81:5f:62:b6:95:64:5c:15:74:73:e3:e2:f2: a3:0a:c3:2b:2e:48:95:21:c0:c9:71:4b:ca:60:02: e0:90:44:b3:cc:b9:9c:9f:b6:c6:ec:08:d7:80:81: 5c:a4:77:19:62:df:68:a0:7c:d5:fd:f3:e8:ba:cd: 55:fb:79:7a:6a:37:65:fa:cd:7f:6d:e3:d5:aa:69: c6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C3:30:2A:DA:DE:0E:A0:D8:89:7B:4F:27:18:1F:55:19:F2:8A:B8 X509v3 Authority Key Identifier: keyid:72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.125.0/24 IPv6: 2404:cd40::/32 Signature Algorithm: sha256WithRSAEncryption a1:c1:a3:f9:58:c9:c8:41:1f:77:f9:61:4f:d6:70:23:c1:01: 5e:27:e4:2c:7b:e7:40:5a:8c:35:37:68:aa:2d:a6:27:aa:5f: 15:b0:67:89:b9:bf:03:26:66:0f:85:ed:84:37:08:92:64:aa: 92:33:01:ff:86:4d:31:7a:25:1b:a5:29:31:97:e9:b0:e8:e2: 4e:7c:4e:16:69:23:f5:c2:e4:3d:2a:02:cb:22:f1:31:33:c6: c1:ce:fd:fa:78:24:85:94:44:6d:2b:e4:a8:09:cb:b9:6f:76: 92:78:c1:f4:ca:04:2c:21:a0:c3:f0:26:4d:0e:11:70:0f:aa: a8:ed:55:2c:21:f4:d0:fe:ee:1f:6d:ea:ea:38:5d:0b:7a:e6: c6:b5:42:2d:31:2c:4a:9d:85:5a:f6:f4:e0:5f:18:57:e3:df: 0a:4c:e2:36:db:cb:84:95:f4:d3:55:e3:8c:0d:33:fe:dd:7c: b7:02:c5:94:04:15:2e:13:88:65:38:de:9a:7d:4c:d4:6d:25: 4d:41:a9:c4:04:1b:84:7b:b9:d1:04:83:16:d4:34:8b:ee:5f: b6:1f:1f:25:84:38:64:b1:52:7b:e9:aa:2d:32:a4:ef:0b:b9: 62:fc:20:ee:4c:5b:64:b5:59:b5:86:5b:94:8f:f9:f8:bb:ef: 98:e6:9a:5d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE3MDMxMTAvBgNVBAUTKDcyQTE5RjZCQUZBNkVFRUU2NkRDM0IxQTZDNjc4MjJF NTMzMENGNzgwHhcNMjYwNTEyMjIyNjI5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzYTkxNS04ZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrlzg0/CAW+tlGygl6wTm/hl+QLD5K0M6+Y6+MU89YxcmghTujcTilG78D6p Xa0WPslneqEmVn1xI+u7M/awpuCZZA+gqNkYn6HXancp2h400q9aX7yaGEcOQE1W REHieXw7iqtSjR5j/+Xy8N/a2ze018ErBCEjd6wTx0iM4t0dnlGHjs8FVx2ipnK4 03CF1fwKrdSyRVuOwiPgCfaSoPFD+3qoMbyKTKDn8CIoDH/6wzrlLoFfYraVZFwV dHPj4vKjCsMrLkiVIcDJcUvKYALgkESzzLmcn7bG7AjXgIFcpHcZYt9ooHzV/fPo us1V+3l6ajdl+s1/bePVqmnGVwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFFvDMCra 3g6g2Il7TycYH1UZ8oq4MB8GA1UdIwQYMBaAFHKhn2uvpu7uZtw7Gmxngi5TMM94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTcwMy83QzgzQkRFQTQ5 MDMxMUVCODQ0N0IyNkJDNEY5QUUwMi9jcUdmYTYtbTd1NW0zRHNhYkdlQ0xsTXd6 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxR2ZhNi1tN3U1bTNEc2FiR2VDTGxNd3ozZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE3MDMvN0M4M0JERUE0OTAzMTFFQjg0NDdCMjZCQzRGOUFFMDIvRDNCNDIxQTIz NjY4MTFGMEExOEZGNDBBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZ4p9MA0EAgACMAcDBQAkBM1AMA0GCSqGSIb3DQEBCwUAA4IBAQCh waP5WMnIQR93+WFP1nAjwQFeJ+Qse+dAWow1N2iqLaYnql8VsGeJub8DJmYPhe2E NwiSZKqSMwH/hk0xeiUbpSkxl+mw6OJOfE4WaSP1wuQ9KgLLIvExM8bBzv36eCSF lERtK+SoCcu5b3aSeMH0ygQsIaDD8CZNDhFwD6qo7VUsIfTQ/u4fberqOF0LeubG tUItMSxKnYVa9vTgXxhX498KTOI228uElfTTVeOMDTP+3Xy3AsWUBBUuE4hlON6a fUzUbSVNQanEBBuEe7nRBIMW1DSL7l+2Hx8lhDhksVJ76aotMqTvC7li/CDuTFtk tVm1hluUj/n4u++Y5ppd -----END CERTIFICATE-----Generated at Wed May 13 12:26:01 2026 by rpki-client