$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/1004D41ED21D11E992825429C4F9AE02.roa File: 1004D41ED21D11E992825429C4F9AE02.roa (raw, json) Hash identifier: eVq60p4Ks0G6yiB97mD631D9+9qg1L6YfgKt4510Uec= Subject key identifier: 26:46:BC:22:6E:18:D8:34:E2:50:1D:F8:2D:82:54:4D:0F:D9:6F:73 Certificate issuer: /CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Certificate serial: 0DE1 Authority key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/1004D41ED21D11E992825429C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:21:50 +0000 ROA not before: Thu 22 May 2025 18:21:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136379 IP address blocks: 103.138.192.0/24 maxlen: 24 103.138.193.0/24 maxlen: 24 2001:df0:5080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3553 (0xde1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804 Validity Not Before: May 22 18:21:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4052e-fa7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5b:da:08:77:53:db:f8:fe:d4:ca:00:78:6b: f0:9e:76:5d:75:fc:92:c9:15:f0:47:56:c3:a8:a0: fd:55:91:b7:f0:8e:d8:aa:e5:b2:85:f1:81:2a:b4: 5d:5b:7c:82:29:f0:11:e7:d1:c1:ba:d1:c9:6f:0f: 70:e2:7e:41:29:77:e1:c1:27:2f:39:9c:a1:38:c1: 97:45:ee:68:e6:80:fc:03:b9:a1:43:17:56:ed:b2: ec:39:0f:e1:4c:9f:13:3b:3e:24:00:e5:7b:b0:0c: 5b:7b:7f:be:0c:cb:be:0d:11:b2:f0:fd:9e:e0:90: 10:12:e9:60:1e:46:87:b4:c0:d2:2e:fa:3d:70:b0: b5:49:ba:b7:58:15:c8:db:7e:39:d5:55:d6:5b:78: ad:ca:f0:f5:55:f3:79:3a:a4:f9:c1:d8:31:b5:fe: 90:da:48:fd:fc:70:e6:ec:74:50:4a:a9:36:87:88: d3:84:ea:b6:ad:8c:41:e5:14:c6:89:6d:cc:f1:fd: d2:cc:a8:3b:97:69:9a:fd:08:91:91:ea:3c:ff:80: 9f:ee:dd:11:fe:26:41:9e:86:45:07:82:1b:eb:6f: a9:04:9a:35:a1:35:2e:33:80:6f:b6:af:06:13:7c: 02:25:80:f7:d9:5d:7e:eb:62:80:9b:77:6f:2b:58: 8d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:46:BC:22:6E:18:D8:34:E2:50:1D:F8:2D:82:54:4D:0F:D9:6F:73 X509v3 Authority Key Identifier: keyid:EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/1004D41ED21D11E992825429C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.192.0/23 IPv6: 2001:df0:5080::/48 Signature Algorithm: sha256WithRSAEncryption 8f:27:1d:fb:93:de:27:c2:4e:90:2e:ef:9e:80:f8:91:8b:9f: 65:56:b8:a3:7c:75:f9:fb:5f:90:c9:7e:86:b9:b5:7c:0b:b3: ee:aa:b9:06:07:1b:59:ca:cc:14:39:db:c9:3d:c3:8f:9e:8f: 08:56:75:e4:38:57:a7:42:fe:df:a3:8f:52:85:cb:40:28:6d: bc:46:42:31:7c:33:79:a2:b1:45:22:75:b0:4a:40:47:62:f7: a3:f9:03:b7:f7:80:f4:21:6c:13:cf:f4:7c:1b:21:24:9f:2c: e1:12:8e:3d:95:ef:e9:08:03:c5:b7:b3:62:c6:85:50:8c:7b: 03:7d:fe:86:af:60:38:d1:b8:45:ac:c4:43:d8:af:7d:da:22: 75:1a:1b:fc:cd:d0:7c:78:96:93:4f:de:d1:46:1f:9b:32:27: 1f:ef:57:d6:4d:b4:43:b6:6f:f6:df:11:3f:46:1a:f7:d1:f5: 19:e6:69:91:e9:d3:e8:5a:cd:60:eb:82:78:6b:21:34:d4:d9: f8:37:25:1b:c2:0a:de:dc:a3:b4:0b:86:5c:64:ef:18:36:60: 99:b5:2c:94:cd:49:ae:91:07:6e:24:bc:9e:a9:0a:ef:fd:fb: 02:b9:ef:7c:fc:de:de:3d:e3:2b:00:eb:b7:6a:5c:f3:e7:23: 95:ca:e7:c0 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5QzAxMTAvBgNVBAUTKEVGQ0YwNTJEOTg5MjkyQ0VCMTA1MDkxMjlDOERFMjAz RDQ5RjY4MDQwHhcNMjUwNTIyMTgyMTI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDUyZS1mYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41vaCHdT2/j+1MoAeGvwnnZddfySyRXwR1bDqKD9VZG38I7YquWyhfGBKrRd W3yCKfAR59HButHJbw9w4n5BKXfhwScvOZyhOMGXRe5o5oD8A7mhQxdW7bLsOQ/h TJ8TOz4kAOV7sAxbe3++DMu+DRGy8P2e4JAQEulgHkaHtMDSLvo9cLC1Sbq3WBXI 23451VXWW3ityvD1VfN5OqT5wdgxtf6Q2kj9/HDm7HRQSqk2h4jThOq2rYxB5RTG iW3M8f3SzKg7l2ma/QiRkeo8/4Cf7t0R/iZBnoZFB4Ib62+pBJo1oTUuM4Bvtq8G E3wCJYD32V1+62KAm3dvK1iNFQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCZGvCJu GNg04lAd+C2CVE0P2W9zMB8GA1UdIwQYMBaAFO/PBS2YkpLOsQUJEpyN4gPUn2gE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjlDMC9EMzY0RjBDQ0Qy MUExMUU5ODNGOUU1MjRDNEY5QUUwMi83ODhGTFppU2tzNnhCUWtTbkkzaUE5U2Zh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OEZMWmlTa3M2eEJRa1NuSTNpQTlTZmFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI5QzAvRDM2NEYwQ0NEMjFBMTFFOTgzRjlFNTI0QzRGOUFFMDIvMTAwNEQ0MUVE MjFEMTFFOTkyODI1NDI5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4rAMA8EAgACMAkDBwAgAQ3wUIAwDQYJKoZIhvcNAQELBQADggEB AI8nHfuT3ifCTpAu756A+JGLn2VWuKN8dfn7X5DJfoa5tXwLs+6quQYHG1nKzBQ5 28k9w4+ejwhWdeQ4V6dC/t+jj1KFy0AobbxGQjF8M3misUUidbBKQEdi96P5A7f3 gPQhbBPP9HwbISSfLOESjj2V7+kIA8W3s2LGhVCMewN9/oavYDjRuEWsxEPYr33a InUaG/zN0Hx4lpNP3tFGH5syJx/vV9ZNtEO2b/bfET9GGvfR9RnmaZHp0+hazWDr gnhrITTU2fg3JRvCCt7co7QLhlxk7xg2YJm1LJTNSa6RB24kvJ6pCu/9+wK573z8 3t494ysA67dqXPPnI5XK58A= -----END CERTIFICATE-----Generated at Thu Mar 26 07:20:14 2026 by rpki-client