$ rpki-client -vvf rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/D7F98876520B11EE8B85DB63C4F9AE02.roa File: D7F98876520B11EE8B85DB63C4F9AE02.roa (raw, json) Hash identifier: z7p0+OVdZoseZJnnkb+p3x+0KYtYen6GAt+DwwbwBDs= Subject key identifier: CF:42:CF:15:1D:E1:90:27:74:D4:57:C7:89:0E:CC:EF:7E:23:81:74 Certificate issuer: /CN=A912D5C1/serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Certificate serial: 0D40 Authority key identifier: E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/D7F98876520B11EE8B85DB63C4F9AE02.roa Signing time: Wed 20 May 2026 18:21:55 +0000 ROA not before: Wed 20 May 2026 18:21:55 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139033 IP address blocks: 103.138.182.0/23 maxlen: 23 103.138.182.0/24 maxlen: 24 103.138.183.0/24 maxlen: 24 2404:d240::/32 maxlen: 36 2404:d240::/37 maxlen: 37 2404:d240:800::/37 maxlen: 37 2404:d240:1000::/37 maxlen: 37 2404:d240:1800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3392 (0xd40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D5C1, serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Validity Not Before: May 20 18:21:55 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a0dfbc3-d0f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:71:cb:9f:b5:c0:2e:ff:7a:8c:41:04:c9:0e: fd:70:0d:ee:8b:12:75:87:23:4a:31:4f:58:96:60: cf:d4:4a:c9:03:41:41:b3:2c:b5:83:e8:8f:f2:ae: 73:17:ed:14:69:d0:89:a9:fc:83:8f:f8:0e:57:60: 99:a9:96:f9:ef:44:87:f3:60:d9:d3:ab:d9:ff:e3: da:4e:2e:4b:0f:b7:30:03:6b:ff:ea:2f:1e:da:d6: 0e:a1:a1:fb:90:e2:82:cd:e6:a0:6b:5a:b4:de:05: 33:95:3d:c3:48:93:5f:a8:05:8c:21:4d:d5:86:a1: df:52:6f:56:e5:33:70:16:3a:1a:68:bc:4c:9b:95: 98:d1:d8:fb:22:e9:9d:0f:94:4a:c9:0b:dc:9f:b1: 2a:0b:01:f8:5c:18:03:a6:c9:f8:ee:2e:67:01:26: f1:e0:33:70:f0:60:d6:e8:5d:23:21:85:4d:fa:d1: 4a:49:c5:3b:cd:2a:21:59:f6:83:fe:85:db:b0:4f: a6:28:cc:60:67:4c:b8:65:65:a1:5e:aa:03:1d:d2: d5:08:d9:85:90:98:e9:2a:8c:20:40:56:9a:77:38: 9b:05:25:d1:e8:1a:12:b7:c3:57:1c:61:a5:00:98: e9:cf:54:ed:e8:3b:5c:28:8b:16:ee:dc:23:bf:3e: f6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:42:CF:15:1D:E1:90:27:74:D4:57:C7:89:0E:CC:EF:7E:23:81:74 X509v3 Authority Key Identifier: keyid:E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/D7F98876520B11EE8B85DB63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.182.0/23 IPv6: 2404:d240::/32 Signature Algorithm: sha256WithRSAEncryption 00:62:19:a5:8a:cb:01:73:11:0e:de:6c:53:b7:a4:bf:ca:5c: ec:95:ed:4d:a6:39:53:87:d9:65:e7:d6:db:5e:d1:cd:44:05: 51:ae:e6:1a:08:a7:38:0a:22:48:f5:b3:33:1c:41:b2:34:5b: 92:b6:ea:c5:4f:11:a7:43:19:d2:36:27:51:07:ef:2b:bf:eb: 20:96:85:a4:e6:df:56:8d:51:b9:26:fb:eb:cd:49:f1:d6:1f: 37:94:6c:7f:e2:78:c5:02:bf:c0:37:99:ba:93:21:2d:2d:7c: 98:86:33:1e:10:ab:9b:f0:f9:f3:5a:76:83:26:7a:d2:d0:de: 23:cf:3a:a1:d0:cb:49:da:aa:f5:38:f2:85:4a:e4:3c:6f:30: bd:34:ba:7e:92:9e:e4:28:4b:7e:ad:73:2e:1c:cd:38:a3:60: d6:0f:84:43:b6:42:ef:b0:0f:30:c6:44:b1:c5:2b:8f:95:c1: 96:74:18:8f:ea:79:9f:2a:8c:cd:64:e2:7d:ab:ed:a8:c6:89: 64:66:ca:0e:cb:d1:35:1c:4e:c3:8a:76:77:8f:5f:28:f2:30: 76:01:a9:45:8c:69:a6:3d:62:f4:79:87:cb:c9:70:c8:11:f0: eb:73:ff:01:fb:d3:87:d2:e3:17:b2:b5:f9:da:59:ec:dc:f6: 76:9a:09:45 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ1QzExMTAvBgNVBAUTKEU4MkQxMEQyREExQzk4QkY2OENBNEM2NDkxQjkwRkZE MEZBQjMzOTQwHhcNMjYwNTIwMTgyMTU1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBkZmJjMy1kMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHHLn7XALv96jEEEyQ79cA3uixJ1hyNKMU9YlmDP1ErJA0FBsyy1g+iP8q5z F+0UadCJqfyDj/gOV2CZqZb570SH82DZ06vZ/+PaTi5LD7cwA2v/6i8e2tYOoaH7 kOKCzeaga1q03gUzlT3DSJNfqAWMIU3VhqHfUm9W5TNwFjoaaLxMm5WY0dj7Iumd D5RKyQvcn7EqCwH4XBgDpsn47i5nASbx4DNw8GDW6F0jIYVN+tFKScU7zSohWfaD /oXbsE+mKMxgZ0y4ZWWhXqoDHdLVCNmFkJjpKowgQFaadzibBSXR6BoSt8NXHGGl AJjpz1Tt6DtcKIsW7twjvz725wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFM9CzxUd 4ZAndNRXx4kOzO9+I4F0MB8GA1UdIwQYMBaAFOgtENLaHJi/aMpMZJG5D/0PqzOU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDVDMS9CMDdEQ0I0NEZG Q0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21MOW95a3hra2JrUF9RLXJN NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZDMFEwdG9jbUw5b3lreGtrYmtQX1Etck01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ1QzEvQjA3RENCNDRGRkNDMTFFOUE1RTc5Nzg0QzRGOUFFMDIvRDdGOTg4NzY1 MjBCMTFFRThCODVEQjYzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4q2MA0EAgACMAcDBQAkBNJAMA0GCSqGSIb3DQEBCwUAA4IBAQAA YhmlissBcxEO3mxTt6S/ylzsle1NpjlTh9ll59bbXtHNRAVRruYaCKc4CiJI9bMz HEGyNFuSturFTxGnQxnSNidRB+8rv+sgloWk5t9WjVG5JvvrzUnx1h83lGx/4njF Ar/AN5m6kyEtLXyYhjMeEKub8PnzWnaDJnrS0N4jzzqh0MtJ2qr1OPKFSuQ8bzC9 NLp+kp7kKEt+rXMuHM04o2DWD4RDtkLvsA8wxkSxxSuPlcGWdBiP6nmfKozNZOJ9 q+2oxolkZsoOy9E1HE7DinZ3j18o8jB2AalFjGmmPWL0eYfLyXDIEfDrc/8B+9OH 0uMXsrX52lns3PZ2mglF -----END CERTIFICATE-----Generated at Sat Jun 13 09:52:34 2026 by rpki-client