$ rpki-client -vvf rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/513421B0E3AB11EF9C68465CC4F9AE02.roa File: 513421B0E3AB11EF9C68465CC4F9AE02.roa (raw, json) Hash identifier: D0GEA8Hwvgy327FVQRo8UrdiZ6su6qYeHtaXvrPJkes= Subject key identifier: 5B:C3:0D:41:7C:EB:CB:30:1F:B7:69:55:89:67:D7:AA:C0:8F:E5:82 Certificate issuer: /CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Certificate serial: 0CCD Authority key identifier: FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/513421B0E3AB11EF9C68465CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:54:05 +0000 ROA not before: Wed 24 Sep 2025 19:08:08 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138146 IP address blocks: 103.121.60.0/24 maxlen: 24 103.121.61.0/24 maxlen: 24 103.121.62.0/24 maxlen: 24 103.121.63.0/24 maxlen: 24 2403:6840::/32 maxlen: 40 2403:6840::/48 maxlen: 48 2403:6840:1::/48 maxlen: 48 2403:6840:2::/48 maxlen: 48 2403:6840:3::/48 maxlen: 48 2403:6840:4::/48 maxlen: 48 2403:6840:5::/48 maxlen: 48 2403:6840:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158840, serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Validity Not Before: Sep 24 19:08:08 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a444fd-21b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:73:51:3e:ac:12:32:fb:ab:ee:e4:30:32:b0: 16:00:5c:61:37:2e:d3:35:b1:ac:25:16:b8:70:82: 5b:f4:f9:46:6d:8b:35:3d:fb:a1:ab:86:d7:2c:c2: 03:21:7c:69:b2:4d:1d:8e:a8:ab:09:fb:0f:74:44: 40:a7:5b:c5:47:1b:aa:d6:bb:b8:25:ea:e5:6d:7c: ac:2e:47:2d:cf:03:ae:4a:e4:e8:f0:84:dc:48:08: 9c:20:22:39:76:bc:83:59:ec:0b:7a:9b:ea:d2:cd: 9f:c5:24:8f:89:a2:9b:90:77:c9:18:55:8d:df:2d: 60:43:2e:92:8b:67:f8:60:b2:a2:4c:12:17:e7:7b: 03:6f:44:37:e9:91:4a:41:5b:c5:55:ec:a2:43:f1: d6:df:26:42:11:4a:0b:14:32:c5:92:53:93:76:c7: 22:fc:1b:5f:17:2d:f8:66:f3:7f:c1:70:d2:8c:a5: 9b:e4:22:85:91:1a:6b:1d:f9:b7:e4:d2:a9:a9:ba: 87:4b:f4:1d:80:64:5a:f8:4d:97:0e:5d:de:38:a4: 94:ea:4e:60:cb:2a:12:d9:85:f5:d5:ed:d6:67:9c: fc:e8:6c:98:01:46:06:2a:fa:d4:b6:b5:ea:92:2d: 43:49:e8:df:68:2d:fe:02:8d:03:93:a4:71:75:22: fc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C3:0D:41:7C:EB:CB:30:1F:B7:69:55:89:67:D7:AA:C0:8F:E5:82 X509v3 Authority Key Identifier: keyid:FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/513421B0E3AB11EF9C68465CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.60.0/22 IPv6: 2403:6840::/32 Signature Algorithm: sha256WithRSAEncryption 6e:10:28:f2:95:56:51:8a:cf:fd:01:61:72:3c:49:aa:f6:8e: ef:07:fb:0d:b7:48:b9:ac:9b:2b:d3:c4:7d:b8:7f:f1:d0:35: ce:c7:7d:68:73:e8:79:ec:16:fb:81:ad:b4:0b:85:a3:c1:57: 70:57:5d:a4:dc:5b:09:25:de:50:dc:c8:7e:f8:a5:09:56:ba: 62:a8:1d:4b:dd:f2:db:ee:45:86:ef:44:af:60:a5:18:99:42: df:7b:63:cf:7b:58:e7:cb:55:e2:d9:88:57:c2:81:81:1e:f6: 46:a4:24:16:0c:e3:56:0e:02:dc:c0:79:76:e4:c6:82:a8:2a: c0:b2:45:c2:5e:f9:3b:d4:8b:e3:f4:73:ff:08:15:12:50:91: e3:77:47:f1:6c:e4:eb:b5:e6:74:a6:27:6c:42:fd:db:f7:c2: 00:69:54:05:cf:ea:f5:1b:4a:e0:22:4b:67:3b:af:4c:0b:de: 5c:db:24:76:d2:6a:ee:6f:d5:5e:2a:4b:aa:2c:a7:3d:23:47: 81:e4:d6:3b:81:2b:3e:e3:7c:20:ad:bd:e5:5f:04:0d:1d:34: 8c:5a:7d:2a:9f:3b:2b:b0:e0:bc:fc:1a:10:a8:d4:75:1a:57: 5d:71:1b:e6:e4:06:45:a8:b6:61:98:97:f5:cd:f0:4c:d6:65: a9:e5:65:a5 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NDAxMTAvBgNVBAUTKEZBRTYyMDFDNjY2MzkyMzQwQkVFMTM4RUQ0MTc5OUJB ODZEQUE2ODgwHhcNMjUwOTI0MTkwODA4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDRmZC0yMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3NRPqwSMvur7uQwMrAWAFxhNy7TNbGsJRa4cIJb9PlGbYs1Pfuhq4bXLMID IXxpsk0djqirCfsPdERAp1vFRxuq1ru4JerlbXysLkctzwOuSuTo8ITcSAicICI5 dryDWewLepvq0s2fxSSPiaKbkHfJGFWN3y1gQy6Si2f4YLKiTBIX53sDb0Q36ZFK QVvFVeyiQ/HW3yZCEUoLFDLFklOTdsci/BtfFy34ZvN/wXDSjKWb5CKFkRprHfm3 5NKpqbqHS/QdgGRa+E2XDl3eOKSU6k5gyyoS2YX11e3WZ5z86GyYAUYGKvrUtrXq ki1DSejfaC3+Ao0Dk6RxdSL8NQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFFvDDUF8 68swH7dpVYln16rAj+WCMB8GA1UdIwQYMBaAFPrmIBxmY5I0C+4TjtQXmbqG2qaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg0MC82MTc3MzMyQTBC ODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtqUUw3aE9PMUJlWnVvYmFw b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy11WWdIR1pqa2pRTDdoT08xQmVadW9iYXBvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg4NDAvNjE3NzMzMkEwQjgyMTFFQTgwNDExNTRCQzRGOUFFMDIvNTEzNDIxQjBF M0FCMTFFRjlDNjg0NjVDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3k8MA0EAgACMAcDBQAkA2hAMA0GCSqGSIb3DQEBCwUAA4IBAQBu ECjylVZRis/9AWFyPEmq9o7vB/sNt0i5rJsr08R9uH/x0DXOx31oc+h57Bb7ga20 C4WjwVdwV12k3FsJJd5Q3Mh++KUJVrpiqB1L3fLb7kWG70SvYKUYmULfe2PPe1jn y1Xi2YhXwoGBHvZGpCQWDONWDgLcwHl25MaCqCrAskXCXvk71Ivj9HP/CBUSUJHj d0fxbOTrteZ0pidsQv3b98IAaVQFz+r1G0rgIktnO69MC95c2yR20mrub9VeKkuq LKc9I0eB5NY7gSs+43wgrb3lXwQNHTSMWn0qnzsrsOC8/BoQqNR1GlddcRvm5AZF qLZhmJf1zfBM1mWp5WWl -----END CERTIFICATE-----Generated at Mon Mar 2 17:42:36 2026 by rpki-client