$ rpki-client -vvf rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa File: FD1CA67AAD5511EDBA936539C4F9AE02.roa (raw, json) Hash identifier: SIlYeSC6URo5Fl5Bgj3ErhZlHkdnw2xsHdMY3oYb6Ro= Subject key identifier: 00:CA:48:61:62:DF:FC:82:BC:C5:F8:ED:4D:39:0A:9E:46:70:44:5A Certificate issuer: /CN=A911C21E/serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Certificate serial: 0D00 Authority key identifier: 8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:28:58 +0000 ROA not before: Thu 30 Oct 2025 18:37:32 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138336 IP address blocks: 103.130.112.0/23 maxlen: 23 103.130.112.0/24 maxlen: 24 103.130.113.0/24 maxlen: 24 2403:b840::/32 maxlen: 32 2403:b840:1::/48 maxlen: 48 2403:b840:2::/48 maxlen: 48 2403:b840:3::/48 maxlen: 48 2403:b840:4::/48 maxlen: 48 2403:b840:5::/48 maxlen: 48 2403:b840:6::/48 maxlen: 48 2403:b840:7::/48 maxlen: 48 2403:b840:8::/48 maxlen: 48 2403:b840:9::/48 maxlen: 48 2403:b840:a::/48 maxlen: 48 2403:b840:b::/48 maxlen: 48 2403:b840:c::/48 maxlen: 48 2403:b840:d::/48 maxlen: 48 2403:b840:e::/48 maxlen: 48 2403:b840:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3328 (0xd00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C21E, serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Validity Not Before: Oct 30 18:37:32 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5747a-122f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:80:6d:df:00:2e:5f:05:75:db:a9:6e:2b:73: 98:66:05:e5:f1:30:4d:0e:e6:17:e1:9b:16:6e:b7: 61:c9:2c:78:f2:d4:c1:2c:37:d4:a8:c8:10:b8:58: 6d:93:0c:18:a5:77:fe:72:69:56:53:85:72:61:fa: 96:f5:8b:c0:e1:29:e1:d1:58:53:d5:bd:94:87:58: 9e:8d:c4:d0:97:3a:73:4a:db:a3:be:aa:cf:15:06: 65:9f:29:23:63:f4:4b:3e:a4:9c:fa:26:88:4f:11: c9:ed:f3:6d:45:8d:6a:6f:a5:ad:25:bd:a7:73:b3: a4:38:5f:6c:af:e2:08:23:a0:c1:4a:c9:0a:d3:cc: 6b:e9:16:e1:9c:59:a4:4a:9f:89:0a:bc:7f:b3:5b: d8:4e:3c:c7:43:6b:9e:e4:d3:97:27:04:e2:5d:d6: 7b:80:37:5f:84:0c:d6:1d:58:e7:2b:09:c8:fe:eb: cc:66:ae:28:63:b8:d4:ec:95:fc:a5:8e:68:78:f1: 2b:54:82:15:e5:b9:db:f3:20:bf:01:2e:84:de:3f: ba:cf:4e:7f:4a:f2:e9:0c:2f:b1:c6:77:3e:6b:26: 2d:2f:b8:c2:66:cc:62:72:e2:1a:8c:18:cb:4b:5a: 4a:64:1e:9b:82:ea:61:3c:c4:89:b3:e1:2e:63:47: d9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CA:48:61:62:DF:FC:82:BC:C5:F8:ED:4D:39:0A:9E:46:70:44:5A X509v3 Authority Key Identifier: keyid:8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.130.112.0/23 IPv6: 2403:b840::/32 Signature Algorithm: sha256WithRSAEncryption 89:7e:41:bf:58:42:a1:11:f4:58:2b:2e:ab:aa:cf:3b:f6:f4: 68:19:d6:21:8d:fd:d7:0e:34:85:54:26:21:54:a3:44:f6:a5: 05:ee:15:dc:02:1f:31:bc:ab:8c:46:03:01:f7:91:7d:a9:89: 2d:28:65:4b:1b:fe:3c:e8:43:af:6a:47:63:57:64:fc:70:0d: 45:bc:d8:4a:b6:eb:18:b3:e1:58:43:e0:2c:23:99:1a:a6:83: b3:06:22:be:e0:05:34:88:94:a6:f6:97:f0:9e:6f:a3:36:ce: 8c:e0:61:0f:eb:0b:9a:34:c4:c8:de:43:46:a7:27:58:a2:a2: a0:2d:a6:94:72:67:cd:4f:2a:af:8c:3a:64:ae:d0:d8:04:fd: c1:63:c6:eb:96:7a:a1:ce:a1:52:f1:da:58:56:a0:0e:da:a1: 59:fe:ba:99:b2:19:0f:0e:39:64:80:2e:cc:40:23:90:42:51: e8:e9:9f:7a:05:40:9d:fc:d9:98:91:20:80:18:16:28:b4:e9: e1:4e:fb:49:df:aa:85:e1:fa:a0:55:8c:6a:e6:f2:5c:6c:b9: d1:1b:70:64:b5:cc:1d:b7:16:18:12:19:58:20:bc:b5:35:ff: 7d:41:5a:91:35:d0:4e:fa:3d:e5:ec:1c:cc:85:4d:c5:70:70: 1c:50:a4:2f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyMUUxMTAvBgNVBAUTKDhCRTM4NzQ1NDZFOTBCQTgzMjM3MTc5RUU4OTMyMDEz QjJEOUY4NDAwHhcNMjUxMDMwMTgzNzMyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzQ3YS0xMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7oBt3wAuXwV126luK3OYZgXl8TBNDuYX4ZsWbrdhySx48tTBLDfUqMgQuFht kwwYpXf+cmlWU4VyYfqW9YvA4Snh0VhT1b2Uh1iejcTQlzpzStujvqrPFQZlnykj Y/RLPqSc+iaITxHJ7fNtRY1qb6WtJb2nc7OkOF9sr+III6DBSskK08xr6RbhnFmk Sp+JCrx/s1vYTjzHQ2ue5NOXJwTiXdZ7gDdfhAzWHVjnKwnI/uvMZq4oY7jU7JX8 pY5oePErVIIV5bnb8yC/AS6E3j+6z05/SvLpDC+xxnc+ayYtL7jCZsxicuIajBjL S1pKZB6bguphPMSJs+EuY0fZ6QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFADKSGFi 3/yCvMX47U05Cp5GcERaMB8GA1UdIwQYMBaAFIvjh0VG6QuoMjcXnuiTIBOy2fhA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzIxRS82MEMxODE1NDBC ODkxMUVBOEU1QUI3NUZDNEY5QUUwMi9pLU9IUlVicEM2Z3lOeGVlNkpNZ0U3TFot RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktT0hSVWJwQzZneU54ZWU2Sk1nRTdMWi1FQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyMUUvNjBDMTgxNTQwQjg5MTFFQThFNUFCNzVGQzRGOUFFMDIvRkQxQ0E2N0FB RDU1MTFFREJBOTM2NTM5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4JwMA0EAgACMAcDBQAkA7hAMA0GCSqGSIb3DQEBCwUAA4IBAQCJ fkG/WEKhEfRYKy6rqs879vRoGdYhjf3XDjSFVCYhVKNE9qUF7hXcAh8xvKuMRgMB 95F9qYktKGVLG/486EOvakdjV2T8cA1FvNhKtusYs+FYQ+AsI5kapoOzBiK+4AU0 iJSm9pfwnm+jNs6M4GEP6wuaNMTI3kNGpydYoqKgLaaUcmfNTyqvjDpkrtDYBP3B Y8brlnqhzqFS8dpYVqAO2qFZ/rqZshkPDjlkgC7MQCOQQlHo6Z96BUCd/NmYkSCA GBYotOnhTvtJ36qF4fqgVYxq5vJcbLnRG3BktcwdtxYYEhlYILy1Nf99QVqRNdBO +j3l7BzMhU3FcHAcUKQv -----END CERTIFICATE-----Generated at Mon Mar 2 15:50:42 2026 by rpki-client