$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa File: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (raw, json) Hash identifier: dSogrThDaTv5OfuEsTdAc58TXHTFJalbVz+Qm6Tm1wU= Subject key identifier: 2F:22:02:EC:09:6B:F5:5C:AF:51:C3:36:5D:1D:FA:41:04:F2:02:29 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08ED Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:15 +0000 ROA not before: Thu 22 May 2025 20:57:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150774 IP address blocks: 103.138.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 22 20:57:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42f3b-c2f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:33:d6:b8:e5:f5:db:ff:10:f0:c6:bc:cb:f8: da:24:8b:30:24:bf:75:c0:d9:56:6f:27:44:7a:16: 94:1f:a7:e1:18:1e:6f:21:ec:89:a5:63:11:21:f5: 21:7b:f7:d9:b1:7b:e8:0d:2a:2b:1f:28:f0:50:0c: c2:61:65:27:19:e0:84:ac:cf:99:89:dd:85:3f:bc: 7c:d0:d4:95:0e:b3:8c:21:47:d2:ee:bb:b7:e8:ad: dd:fa:2c:cc:10:91:59:5d:14:c9:99:38:80:a6:44: f0:bf:38:c1:7b:2e:55:51:7b:b3:88:3e:b8:cb:fa: 22:c4:84:fc:c6:e3:a8:73:e1:17:62:24:48:ea:a9: 81:e9:81:9e:e2:cc:3e:b3:a0:29:ab:6f:4e:ef:d2: 69:6c:1e:17:de:3c:89:0e:da:31:18:4e:1e:84:f7: 2a:1c:1d:ed:23:83:57:1e:a0:10:d3:62:f3:8c:e4: 1c:29:e6:9c:02:31:a1:e7:8d:3a:88:a1:33:bf:f5: 3d:10:7c:8f:67:37:3a:a7:d4:d6:ca:c5:7d:15:74: f3:e7:4a:f5:c7:4c:64:02:30:a0:f3:8e:c6:15:bd: b1:f4:c7:51:a1:4e:0a:8a:c1:26:fa:b1:86:86:2c: 19:1d:95:ee:b1:12:b2:ec:31:b3:21:a1:24:a8:ee: 8d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:22:02:EC:09:6B:F5:5C:AF:51:C3:36:5D:1D:FA:41:04:F2:02:29 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.215.0/24 Signature Algorithm: sha256WithRSAEncryption 38:a4:89:4c:ae:8a:af:32:91:7a:37:c4:4e:5b:26:8b:5c:fe: 70:fc:f9:f9:e3:d5:e1:f3:11:93:34:87:24:76:3e:b1:f2:ae: c2:2e:4e:cd:60:d2:ee:93:3e:99:22:12:ae:cb:cd:f5:5f:15: dc:34:6a:05:7d:62:98:e8:7c:5b:55:7d:10:ae:d5:d4:c2:2c: 34:98:f9:40:09:cd:7b:82:5f:3b:94:6a:fa:e8:f1:03:d1:34: 29:f8:2e:52:dc:15:e4:e5:5a:cd:68:74:d5:da:df:e5:0c:a2: 6a:7e:3c:77:f7:b3:4c:c9:2f:1e:13:31:80:e2:a4:4d:71:30: ff:4a:23:a9:50:50:ed:b8:4f:34:55:bc:bc:23:d6:f8:e1:16: 87:35:07:ca:de:ee:2b:2e:e7:4f:64:c8:41:82:2f:65:3e:1e: ae:c3:6e:10:02:f6:a2:c6:06:c1:93:56:82:86:86:12:4d:25: 8a:f0:ec:92:90:41:b9:5c:a8:a8:b4:67:aa:d7:b1:f6:bc:28: 83:8c:47:c3:93:8f:32:63:c3:5a:46:6d:48:71:57:77:3d:73: ce:9b:1d:44:db:95:f1:d7:82:78:98:73:bc:d8:b9:51:49:6c: 01:06:d3:e4:39:81:e8:c0:1f:bd:06:b2:fe:ff:35:31:9c:bc: 8c:ef:84:38 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNTIyMjA1NzU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmYzYi1jMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTPWuOX12/8Q8Ma8y/jaJIswJL91wNlWbydEehaUH6fhGB5vIeyJpWMRIfUh e/fZsXvoDSorHyjwUAzCYWUnGeCErM+Zid2FP7x80NSVDrOMIUfS7ru36K3d+izM EJFZXRTJmTiApkTwvzjBey5VUXuziD64y/oixIT8xuOoc+EXYiRI6qmB6YGe4sw+ s6Apq29O79JpbB4X3jyJDtoxGE4ehPcqHB3tI4NXHqAQ02LzjOQcKeacAjGh5406 iKEzv/U9EHyPZzc6p9TWysV9FXTz50r1x0xkAjCg847GFb2x9MdRoU4KisEm+rGG hiwZHZXusRKy7DGzIaEkqO6NxQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC8iAuwJ a/Vcr1HDNl0d+kEE8gIpMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvM0MzRjIxQkFE NkYwMTFFRTlCMzhCNjdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4rXMA0GCSqGSIb3DQEBCwUAA4IBAQA4pIlMroqvMpF6N8ROWyaL XP5w/Pn549Xh8xGTNIckdj6x8q7CLk7NYNLukz6ZIhKuy831XxXcNGoFfWKY6Hxb VX0QrtXUwiw0mPlACc17gl87lGr66PED0TQp+C5S3BXk5VrNaHTV2t/lDKJqfjx3 97NMyS8eEzGA4qRNcTD/SiOpUFDtuE80Vby8I9b44RaHNQfK3u4rLudPZMhBgi9l Ph6uw24QAvaixgbBk1aChoYSTSWK8OySkEG5XKiotGeq17H2vCiDjEfDk48yY8Na Rm1IcVd3PXPOmx1E25Xx14J4mHO82LlRSWwBBtPkOYHowB+9BrL+/zUxnLyM74Q4 -----END CERTIFICATE-----Generated at Thu Mar 26 18:53:44 2026 by rpki-client