$ rpki-client -vvf rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/513D702E112511F081CC4E49C4F9AE02.roa File: 513D702E112511F081CC4E49C4F9AE02.roa (raw, json) Hash identifier: NH/K1DDvn5aeutjluyX6sIyhLYFZZaLzJygBEDC22+Y= Subject key identifier: 71:3F:59:0D:B9:E4:58:95:24:84:A7:62:0D:1A:A3:28:EB:ED:FA:25 Certificate issuer: /CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Certificate serial: 05DD Authority key identifier: 80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/513D702E112511F081CC4E49C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:58:37 +0000 ROA not before: Thu 04 Dec 2025 22:05:35 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138453 IP address blocks: 103.125.240.0/24 maxlen: 24 103.125.241.0/24 maxlen: 24 103.125.243.0/24 maxlen: 24 2403:fcc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BE00, serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Validity Not Before: Dec 4 22:05:35 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4541c-2304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:aa:c5:d0:dc:e3:c7:6d:64:dd:2b:a8:39:14: bd:2d:c8:59:c6:af:94:64:df:23:84:6f:ac:ac:21: 50:c5:a0:24:4b:37:c8:46:a3:22:3b:d6:96:b9:dc: d0:51:dc:03:d9:77:fb:4f:ec:95:8b:04:de:5b:ef: e0:fd:c3:0d:e9:53:de:e8:51:10:6c:de:a7:b9:34: bd:a7:92:54:1f:ad:db:78:9d:2c:d7:e5:3f:6d:d6: 46:b3:30:a3:2d:3e:e5:5e:98:bc:cc:34:d5:8b:a2: ce:5e:d2:f0:2f:ef:b4:0a:a3:63:d4:5a:e5:fb:97: a0:db:77:d1:0f:d6:15:32:fd:81:1a:70:dc:2b:5e: af:f3:c0:14:b8:a9:f3:f8:5a:09:7e:04:77:c5:5b: e6:2c:78:28:5b:be:d5:b4:72:8b:f0:1e:ad:31:94: fa:4a:ba:be:72:54:b1:01:54:f8:15:2d:05:9b:44: 77:45:15:13:73:6a:56:02:3e:a2:4c:f5:21:f3:68: 52:e6:42:d8:de:9a:8f:be:b2:37:b8:b9:31:a4:a5: 4e:a4:6a:33:85:60:15:d2:55:8d:d0:68:25:a2:b8: 3e:a0:d9:53:d1:91:fc:3b:9d:9f:f0:70:aa:2c:46: 81:8c:f4:d6:e0:04:37:1b:e6:77:fc:05:a2:1a:c1: 1a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3F:59:0D:B9:E4:58:95:24:84:A7:62:0D:1A:A3:28:EB:ED:FA:25 X509v3 Authority Key Identifier: keyid:80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/513D702E112511F081CC4E49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.125.240.0/23 103.125.243.0/24 IPv6: 2403:fcc0::/32 Signature Algorithm: sha256WithRSAEncryption ac:c6:e1:fa:6d:92:78:4c:d7:c4:3b:ed:c5:c3:bb:48:5c:df: 06:38:d8:90:1e:5a:a8:e2:8b:1e:e3:7f:a0:55:ba:05:5b:5b: 65:f6:5d:d6:7d:3d:ca:89:23:e7:bf:6d:1a:46:f1:04:15:ae: 9d:80:41:b2:59:e7:1f:ba:f6:db:c5:de:5a:0b:51:4b:0c:24: 17:d1:68:b4:25:b1:f0:4d:04:35:c2:c9:ef:4d:3b:89:25:1d: 41:a6:cd:68:ea:7e:02:94:78:6a:05:e9:79:60:b2:8a:ea:92: a8:8b:51:3c:7d:3b:f5:aa:69:ab:34:24:b0:0d:4e:20:1d:88: 0e:11:43:0d:2f:c0:75:3b:b2:ea:4a:67:96:86:2b:0e:81:f1: 38:25:0c:5e:0d:0e:2b:35:46:90:39:33:7e:4b:c5:b6:11:9f: 0f:46:80:74:8c:2b:43:e4:14:ec:68:6e:59:c8:12:52:4d:93: 9e:d7:9f:2d:6e:c4:16:8e:1b:9a:25:45:de:0f:5d:02:a8:0b: d6:63:89:82:f4:24:86:86:91:07:c9:02:59:81:5e:95:0b:1e: dd:cf:ba:0f:9c:f1:8a:ed:69:0b:15:ee:c8:df:3d:73:a7:0a: cd:1a:f5:35:19:fb:04:66:2a:a0:60:e9:2b:15:5a:c1:2b:cd: e7:6a:cf:a0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJFMDAxMTAvBgNVBAUTKDgwRUQyMEY3RkMwN0RFMEM5RjNDMUI4RTJBRTlDRDNG Q0U2RURCMjEwHhcNMjUxMjA0MjIwNTM1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTQxYy0yMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhqrF0Nzjx21k3SuoORS9LchZxq+UZN8jhG+srCFQxaAkSzfIRqMiO9aWudzQ UdwD2Xf7T+yViwTeW+/g/cMN6VPe6FEQbN6nuTS9p5JUH63beJ0s1+U/bdZGszCj LT7lXpi8zDTVi6LOXtLwL++0CqNj1Frl+5eg23fRD9YVMv2BGnDcK16v88AUuKnz +FoJfgR3xVvmLHgoW77VtHKL8B6tMZT6Srq+clSxAVT4FS0Fm0R3RRUTc2pWAj6i TPUh82hS5kLY3pqPvrI3uLkxpKVOpGozhWAV0lWN0Gglorg+oNlT0ZH8O52f8HCq LEaBjPTW4AQ3G+Z3/AWiGsEakwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFHE/WQ25 5FiVJISnYg0aoyjr7folMB8GA1UdIwQYMBaAFIDtIPf8B94MnzwbjirpzT/Obtsh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkUwMC8zRDBCMjEyQUY0 RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNneWZQQnVPS3VuTlA4NXUy eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPMGc5X3dIM2d5ZlBCdU9LdW5OUDg1dTJ5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJFMDAvM0QwQjIxMkFGNEZEMTFFQkE1MkNFMjExQzRGOUFFMDIvNTEzRDcwMkUx MTI1MTFGMDgxQ0M0RTQ5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ33wAwQAZ33zMA0EAgACMAcDBQAkA/zAMA0GCSqGSIb3DQEBCwUA A4IBAQCsxuH6bZJ4TNfEO+3Fw7tIXN8GONiQHlqo4ose43+gVboFW1tl9l3WfT3K iSPnv20aRvEEFa6dgEGyWecfuvbbxd5aC1FLDCQX0Wi0JbHwTQQ1wsnvTTuJJR1B ps1o6n4ClHhqBel5YLKK6pKoi1E8fTv1qmmrNCSwDU4gHYgOEUMNL8B1O7LqSmeW hisOgfE4JQxeDQ4rNUaQOTN+S8W2EZ8PRoB0jCtD5BTsaG5ZyBJSTZOe158tbsQW jhuaJUXeD10CqAvWY4mC9CSGhpEHyQJZgV6VCx7dz7oPnPGK7WkLFe7I3z1zpwrN GvU1GfsEZiqgYOkrFVrBK83nas+g -----END CERTIFICATE-----Generated at Mon Mar 2 16:07:23 2026 by rpki-client