$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa File: 6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa (raw, json) Hash identifier: lAd+PgcGeFDGTjptoapRnfl8XzUDLaaYmp3jSP8Z9jk= Subject key identifier: B5:20:53:C2:1D:74:3D:33:A1:A4:60:63:EC:36:F3:C1:59:52:76:14 Certificate issuer: /CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886 Certificate serial: 0CAC Authority key identifier: 59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa Signing time: Wed 18 Mar 2026 08:21:56 +0000 ROA not before: Wed 18 Mar 2026 08:21:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139026 IP address blocks: 103.138.164.0/23 maxlen: 23 103.138.164.0/24 maxlen: 24 103.138.164.212/30 maxlen: 30 103.138.165.0/24 maxlen: 24 103.138.165.32/29 maxlen: 29 2001:df0:4480::/48 maxlen: 48 2400:a7e0::/32 maxlen: 32 2400:a7e0::/33 maxlen: 33 2400:a7e0::/34 maxlen: 34 2400:a7e0::/38 maxlen: 38 2400:a7e0:400::/38 maxlen: 38 2400:a7e0:800::/38 maxlen: 38 2400:a7e0:c00::/38 maxlen: 38 2400:a7e0:4000::/34 maxlen: 34 2400:a7e0:8000::/33 maxlen: 33 2400:a7e0:8000::/34 maxlen: 34 2400:a7e0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.crl rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7E85, serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886 Validity Not Before: Mar 18 08:21:56 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69ba60a3-2e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5d:b7:6a:3b:01:9a:79:9b:a3:13:68:ae:19: de:91:03:bd:62:8e:58:61:e2:26:08:22:4f:fe:c6: 43:d4:8b:b9:4d:4c:6c:1c:57:46:31:d6:1d:16:e9: cd:6f:09:3b:15:dc:33:f5:2c:cc:72:1d:b0:59:64: 6c:e5:d5:bc:cc:5c:6b:94:5d:1f:3e:d6:2e:bd:31: 06:92:9a:ad:94:72:45:6a:16:1a:77:7e:e6:b7:40: d9:bb:51:c5:c2:76:86:77:cc:5f:c0:0c:6d:7b:52: bd:af:14:eb:9b:42:f5:f3:ba:ee:95:47:74:50:c7: 06:3e:fa:c3:77:76:2d:f9:ba:03:e5:7f:40:48:58: 9b:98:63:51:4f:60:c0:8c:4f:1b:28:c1:a6:28:28: 97:d3:1e:cb:cb:72:39:e6:5a:c8:25:35:fe:29:82: ce:d1:7c:48:55:33:30:56:75:79:3e:3d:5c:08:ce: 52:c5:b0:d2:73:33:0f:1f:eb:80:be:41:6c:a1:57: 87:3e:8c:50:dd:f9:76:64:51:10:16:0b:b6:14:5c: 40:94:58:86:74:f7:29:26:f6:a3:83:b9:1c:3f:33: 75:0f:be:1c:44:16:b5:a5:4b:31:9c:b6:bd:31:8d: 44:5c:34:c4:db:91:62:50:e0:5c:55:d2:07:ff:95: 72:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:20:53:C2:1D:74:3D:33:A1:A4:60:63:EC:36:F3:C1:59:52:76:14 X509v3 Authority Key Identifier: keyid:59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/6AFD06C0EB8B11EEA2DC1E49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.164.0/23 IPv6: 2001:df0:4480::/48 2400:a7e0::/32 Signature Algorithm: sha256WithRSAEncryption 70:ad:93:75:0d:9b:af:6e:ea:77:28:37:e6:e8:0f:f8:fb:9c: 3b:ee:73:56:66:23:2b:34:5a:a0:cf:c8:37:41:52:71:97:bc: b6:78:18:5e:1c:0c:72:ca:d1:0c:15:87:46:0a:3f:1d:11:c1: 5b:a5:26:c9:00:a1:57:94:8b:12:d4:11:12:7b:75:98:5a:65: 38:4f:04:15:55:81:05:c8:3d:9f:ee:33:9c:68:79:43:fd:8a: c3:9c:2b:d7:37:2d:23:66:cb:8b:56:3b:55:45:e9:1f:23:c4: d5:42:24:73:e1:e7:50:32:63:b3:c9:bc:e4:32:1f:9b:f8:c1: c4:53:e9:99:f0:41:c3:68:66:6d:ef:ac:f9:81:c1:fb:e5:5c: 09:0b:4b:d8:62:d5:a0:9c:82:fa:e7:b9:10:20:ce:44:81:f0: 21:64:1c:64:47:5b:42:ea:84:c2:cb:9f:9f:26:8a:84:15:af: 89:41:e8:eb:cd:42:fa:eb:b0:0b:7d:28:21:88:e7:25:71:ec: f4:3a:46:03:b7:cd:66:5a:98:13:4a:7d:bc:66:a5:d0:97:94: 19:16:7b:78:d4:5b:97:0b:0a:75:19:83:27:a5:b6:ed:0b:79: 26:04:1e:18:a3:db:97:99:ae:55:ef:f8:15:81:c4:fa:1a:bc: a4:23:5d:e3 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdFODUxMTAvBgNVBAUTKDU5Njg1MkQ1Mjk5NEZCQjY3QTYzNzlBQjFFMEFGNTE0 NTUzRUU4ODYwHhcNMjYwMzE4MDgyMTU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJhNjBhMy0yZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl23ajsBmnmboxNorhnekQO9Yo5YYeImCCJP/sZD1Iu5TUxsHFdGMdYdFunN bwk7Fdwz9SzMch2wWWRs5dW8zFxrlF0fPtYuvTEGkpqtlHJFahYad37mt0DZu1HF wnaGd8xfwAxte1K9rxTrm0L187rulUd0UMcGPvrDd3Yt+boD5X9ASFibmGNRT2DA jE8bKMGmKCiX0x7Ly3I55lrIJTX+KYLO0XxIVTMwVnV5Pj1cCM5SxbDSczMPH+uA vkFsoVeHPoxQ3fl2ZFEQFgu2FFxAlFiGdPcpJvajg7kcPzN1D74cRBa1pUsxnLa9 MY1EXDTE25FiUOBcVdIH/5VyTwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFLUgU8Id dD0zoaRgY+w288FZUnYUMB8GA1UdIwQYMBaAFFloUtUplPu2emN5qx4K9RRVPuiG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0U4NS9CMkUwRTVBRTFD MzQxMUVBQThFMjVBNUNDNEY5QUUwMi9XV2hTMVNtVS03WjZZM21ySGdyMUZGVS02 SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dXaFMxU21VLTdaNlkzbXJIZ3IxRkZVLTZJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdFODUvQjJFMEU1QUUxQzM0MTFFQUE4RTI1QTVDQzRGOUFFMDIvNkFGRDA2QzBF QjhCMTFFRUEyREMxRTQ5QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAM BAIAATAGAwQBZ4qkMBYEAgACMBADBwAgAQ3wRIADBQAkAKfgMA0GCSqGSIb3DQEB CwUAA4IBAQBwrZN1DZuvbup3KDfm6A/4+5w77nNWZiMrNFqgz8g3QVJxl7y2eBhe HAxyytEMFYdGCj8dEcFbpSbJAKFXlIsS1BESe3WYWmU4TwQVVYEFyD2f7jOcaHlD /YrDnCvXNy0jZsuLVjtVRekfI8TVQiRz4edQMmOzybzkMh+b+MHEU+mZ8EHDaGZt 76z5gcH75VwJC0vYYtWgnIL657kQIM5EgfAhZBxkR1tC6oTCy5+fJoqEFa+JQejr zUL667ALfSghiOclcez0OkYDt81mWpgTSn28ZqXQl5QZFnt41FuXCwp1GYMnpbbt C3kmBB4Yo9uXma5V7/gVgcT6GrykI13j -----END CERTIFICATE-----Generated at Fri Mar 27 08:16:09 2026 by rpki-client