$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa File: 7A40B730E2D811EBAB97665DC4F9AE02.roa (raw, json) Hash identifier: CzoXjxwwafDE/0X1/IFRvm6Y/QHPkUJqqlhM2vR6GHQ= Subject key identifier: 70:99:C3:82:4A:22:C9:CE:51:62:B4:6C:1B:F8:A4:B5:F6:68:F4:59 Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0F48 Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:42:45 +0000 ROA not before: Tue 30 Dec 2025 18:14:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59238 IP address blocks: 103.253.132.0/23 maxlen: 24 2400:c540::/32 maxlen: 32 2400:c540::/47 maxlen: 48 2400:c540:2::/47 maxlen: 47 2400:c540:2::/48 maxlen: 48 2400:c540:4::/48 maxlen: 48 2400:c540:52::/48 maxlen: 48 2400:c540:53::/48 maxlen: 48 2400:c540:65::/48 maxlen: 48 2400:c540:80::/48 maxlen: 48 2400:c540:ba::/48 maxlen: 48 2400:c540:100::/48 maxlen: 48 2400:c540:110::/48 maxlen: 48 2400:c540:1cc::/48 maxlen: 48 2400:c540:200::/48 maxlen: 48 2400:c540:c000::/36 maxlen: 36 2400:c540:c036::/48 maxlen: 48 2400:c540:c276::/48 maxlen: 48 2400:c540:c344::/48 maxlen: 48 2400:c540:c392::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3912 (0xf48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E, serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: Dec 30 18:14:33 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46c85-a00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:63:de:a9:37:c1:e1:4d:9a:b9:a8:11:3f: 4b:e9:73:8b:46:a6:17:e8:a8:40:de:cf:4f:82:1a: e8:3b:d9:f4:8d:40:8b:63:c1:c0:fa:16:3b:c0:20: e7:79:4a:b2:93:f1:b1:d4:0b:d6:0b:57:bc:e3:ff: 2a:f4:5f:98:64:89:81:ff:66:0f:47:d2:36:47:44: 79:ba:3f:2b:1d:66:91:7f:63:67:fe:5f:12:a9:36: c4:b3:7f:53:50:c8:b8:aa:5f:80:05:48:bc:22:da: 95:bf:9b:b6:c1:95:de:14:48:d6:1f:98:5a:5a:a9: 57:5f:40:15:fe:2e:c6:03:d0:26:85:38:7d:73:28: 39:bc:a8:5f:76:24:88:19:5e:ef:29:db:85:7d:f8: 5a:3c:0b:1f:3b:e7:97:f6:ee:f3:85:97:69:84:f2: 34:e6:62:f3:b1:21:e5:a9:ee:c8:7b:10:e6:b5:5a: ca:2e:9e:56:86:b7:90:e3:dd:8b:08:7f:d2:63:ab: 12:67:9f:d4:00:3d:e3:33:b8:49:7c:06:1d:e3:5f: b4:d6:c5:89:5e:69:a9:6b:3e:6f:55:1b:12:8c:cb: 98:7f:c7:af:26:80:59:ee:02:67:93:eb:1d:1f:c9: ec:a7:70:12:13:b3:50:7e:1d:22:1e:4a:3f:1d:c2: 24:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:99:C3:82:4A:22:C9:CE:51:62:B4:6C:1B:F8:A4:B5:F6:68:F4:59 X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.253.132.0/23 IPv6: 2400:c540::/32 Signature Algorithm: sha256WithRSAEncryption 6b:7d:07:52:a6:e6:12:56:89:be:a9:18:c3:25:bc:7f:a3:85: 07:eb:d1:a4:b2:9a:f0:29:1c:c8:57:ed:b2:48:00:3a:0c:84: 6b:e8:a7:90:fe:d1:2b:da:5a:c1:2f:63:4f:49:9f:c5:36:c7: 03:2f:08:d3:5f:a2:9c:22:ee:99:c6:14:29:0a:f7:e5:bc:3e: fe:20:1a:a4:0c:ce:1b:1b:af:4e:1d:4e:f0:cf:5a:ab:d9:ea: 3b:3c:66:76:e7:23:4d:24:83:fd:16:8a:b9:cb:1e:0d:6c:e0: 17:64:33:ad:70:20:6e:3e:b1:3a:bc:ff:06:93:e4:2f:17:11: 4f:09:8f:52:95:0c:dd:83:95:2d:f8:50:09:21:72:f8:e8:e1: 86:f0:53:30:b2:92:8b:5a:4f:b7:e2:40:2a:ab:11:e5:e6:98: fb:4e:75:b2:90:b4:1a:20:1e:ca:39:81:aa:d4:bd:a6:62:d2: 19:db:e4:ec:61:fe:bd:87:57:d0:6a:e6:fe:84:6e:ef:03:5f: 31:ca:d8:1b:68:16:60:94:41:01:ca:54:dd:ae:ec:91:55:d3: c6:16:98:d5:5a:54:16:dc:dc:9e:09:88:6c:95:8a:2e:1f:27: 89:74:74:0d:f0:81:0f:96:51:26:b2:16:77:14:7a:38:0c:db: 5b:18:d5:b9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICD0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjUxMjMwMTgxNDMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmM4NS1hMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwflj3qk3weFNmrmoET9L6XOLRqYX6KhA3s9PghroO9n0jUCLY8HA+hY7wCDn eUqyk/Gx1AvWC1e84/8q9F+YZImB/2YPR9I2R0R5uj8rHWaRf2Nn/l8SqTbEs39T UMi4ql+ABUi8ItqVv5u2wZXeFEjWH5haWqlXX0AV/i7GA9AmhTh9cyg5vKhfdiSI GV7vKduFffhaPAsfO+eX9u7zhZdphPI05mLzsSHlqe7IexDmtVrKLp5WhreQ492L CH/SY6sSZ5/UAD3jM7hJfAYd41+01sWJXmmpaz5vVRsSjMuYf8evJoBZ7gJnk+sd H8nsp3ASE7NQfh0iHko/HcIkJwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHCZw4JK IsnOUWK0bBv4pLX2aPRZMB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVCNEUvQTI4NDNDMDg5NzE3MTFFOTg1RkNBQjE0QzRGOUFFMDIvN0E0MEI3MzBF MkQ4MTFFQkFCOTc2NjVEQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ/2EMA0EAgACMAcDBQAkAMVAMA0GCSqGSIb3DQEBCwUAA4IBAQBr fQdSpuYSVom+qRjDJbx/o4UH69GksprwKRzIV+2ySAA6DIRr6KeQ/tEr2lrBL2NP SZ/FNscDLwjTX6KcIu6ZxhQpCvflvD7+IBqkDM4bG69OHU7wz1qr2eo7PGZ25yNN JIP9Foq5yx4NbOAXZDOtcCBuPrE6vP8Gk+QvFxFPCY9SlQzdg5Ut+FAJIXL46OGG 8FMwspKLWk+34kAqqxHl5pj7TnWykLQaIB7KOYGq1L2mYtIZ2+TsYf69h1fQaub+ hG7vA18xytgbaBZglEEBylTdruyRVdPGFpjVWlQW3NyeCYhslYouHyeJdHQN8IEP llEmshZ3FHo4DNtbGNW5 -----END CERTIFICATE-----Generated at Thu Mar 26 08:29:33 2026 by rpki-client