$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/D6138A3C292A11EB9CEDCC26C4F9AE02.roa File: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (raw, json) Hash identifier: A+lqHHILRck/15Y7Xtw67As0ESAMbuZbfeWoqwALbWQ= Subject key identifier: 2F:66:B9:B4:6F:F1:B8:1D:33:67:2A:5B:82:21:BB:16:A3:89:44:BC Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 07DD Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/D6138A3C292A11EB9CEDCC26C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:26:23 +0000 ROA not before: Thu 30 Oct 2025 21:41:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55752 IP address blocks: 27.121.88.0/22 maxlen: 24 103.225.140.0/22 maxlen: 22 103.225.140.0/24 maxlen: 24 103.225.141.0/24 maxlen: 24 103.225.142.0/24 maxlen: 24 103.225.143.0/24 maxlen: 24 122.102.110.0/23 maxlen: 24 175.158.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78, serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: Oct 30 21:41:11 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4306e-473d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:70:ae:e4:07:7c:8f:22:97:76:97:e5:ba:fd: 93:8e:37:db:12:ed:0b:51:99:43:f4:a0:8f:cb:57: 59:8e:56:67:2f:b5:20:bc:e9:bb:9f:b8:52:cf:b2: 1c:ee:4f:96:34:86:e7:86:76:bb:63:83:47:46:53: 61:16:2f:64:79:f7:9f:9e:dc:f8:71:f7:22:0e:e7: 76:91:43:9c:ad:de:69:f2:24:9b:3b:25:a4:9f:51: f5:37:f7:48:ec:6a:41:fe:06:3f:17:17:5c:1e:5f: b6:86:6e:cd:33:6f:f6:04:bd:49:22:6b:88:58:0c: 7f:e3:b2:ee:53:86:1c:2c:62:c1:a2:bc:ff:9a:63: 09:46:b3:dc:96:6a:51:05:66:5e:03:87:85:41:8e: 05:20:14:49:d5:14:eb:6d:49:c2:18:69:57:f3:53: 98:a3:4e:b7:e6:53:18:55:d9:59:b0:aa:73:83:67: 5c:d8:d6:72:f1:24:12:43:f6:6e:f4:79:fe:e2:42: 8d:d6:09:bd:7b:ef:da:fd:ab:7f:f8:b2:d5:5d:51: a5:28:74:eb:06:11:66:35:c8:8c:c2:7a:e4:e8:a3: f3:14:64:a5:98:e9:93:eb:11:c3:d6:f0:54:0b:56: ca:34:c1:83:f1:a4:7a:8f:5f:90:1e:47:3a:45:e2: f1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:66:B9:B4:6F:F1:B8:1D:33:67:2A:5B:82:21:BB:16:A3:89:44:BC X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/D6138A3C292A11EB9CEDCC26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.121.88.0/22 103.225.140.0/22 122.102.110.0/23 175.158.108.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:e0:9e:72:63:3b:a4:88:ef:e5:30:2c:c9:0d:b1:7b:ca:2b: f2:0f:56:ff:f6:a8:54:d4:9e:d8:71:51:75:7f:bf:fe:0b:3a: b2:c6:2b:b9:ed:c6:9e:61:a9:f5:c2:4c:ec:02:51:77:36:34: 11:e0:40:26:e0:dd:f2:1a:af:13:df:ab:e6:1a:d2:bb:fb:ce: d7:27:05:7b:cd:73:dd:ba:e9:02:dd:51:94:23:b3:f7:19:3b: 3d:be:c3:15:62:4b:dd:f2:56:18:7f:91:85:d9:ec:9a:71:83: f9:16:2b:17:1c:ba:63:a6:94:14:88:6a:a5:fb:9b:a8:75:7b: 48:f7:20:c6:a4:39:26:75:8d:77:39:4f:10:de:be:77:26:4c: f3:41:4e:0e:f2:ab:3e:04:05:66:59:f1:eb:09:c4:3c:58:1d: 9f:ac:d7:3a:40:81:e3:cc:32:fd:61:3e:47:90:a2:70:71:99: d8:03:6d:9e:0c:13:30:6e:2a:1b:7a:5b:9f:37:46:d4:3d:5f: c5:1d:20:c1:8f:85:fc:ec:c5:78:a2:9d:c9:0e:a1:8f:03:92: db:4e:fe:1d:9c:f6:0c:7d:82:f4:2e:18:e6:8e:01:89:dd:65: 10:eb:27:81:07:b7:81:56:f0:c2:48:ae:17:94:72:eb:0a:4c: 4b:b3:1f:f0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjUxMDMwMjE0MTExWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzA2ZS00NzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13Cu5Ad8jyKXdpfluv2TjjfbEu0LUZlD9KCPy1dZjlZnL7UgvOm7n7hSz7Ic 7k+WNIbnhna7Y4NHRlNhFi9kefefntz4cfciDud2kUOcrd5p8iSbOyWkn1H1N/dI 7GpB/gY/FxdcHl+2hm7NM2/2BL1JImuIWAx/47LuU4YcLGLBorz/mmMJRrPclmpR BWZeA4eFQY4FIBRJ1RTrbUnCGGlX81OYo0635lMYVdlZsKpzg2dc2NZy8SQSQ/Zu 9Hn+4kKN1gm9e+/a/at/+LLVXVGlKHTrBhFmNciMwnrk6KPzFGSlmOmT6xHD1vBU C1bKNMGD8aR6j1+QHkc6ReLxlwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFC9mubRv 8bgdM2cqW4IhuxajiUS8MB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FFNzgvRjFGNEQzQ0UyOTI5MTFFQjk0RTM4RDI2QzRGOUFFMDIvRDYxMzhBM0My OTJBMTFFQjlDRURDQzI2QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCG3lYAwQCZ+GMAwQBemZuAwQCr55sMA0GCSqGSIb3DQEBCwUAA4IB AQA64J5yYzukiO/lMCzJDbF7yivyD1b/9qhU1J7YcVF1f7/+Czqyxiu57caeYan1 wkzsAlF3NjQR4EAm4N3yGq8T36vmGtK7+87XJwV7zXPduukC3VGUI7P3GTs9vsMV Ykvd8lYYf5GF2eyacYP5FisXHLpjppQUiGql+5uodXtI9yDGpDkmdY13OU8Q3r53 JkzzQU4O8qs+BAVmWfHrCcQ8WB2frNc6QIHjzDL9YT5HkKJwcZnYA22eDBMwbiob elufN0bUPV/FHSDBj4X87MV4op3JDqGPA5LbTv4dnPYMfYL0LhjmjgGJ3WUQ6yeB B7eBVvDCSK4XlHLrCkxLsx/w -----END CERTIFICATE-----Generated at Mon Mar 2 03:56:00 2026 by rpki-client