$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/72603CD6D28811EAB7D79A47C4F9AE02.roa File: 72603CD6D28811EAB7D79A47C4F9AE02.roa (raw, json) Hash identifier: R9VZPmnH58tfNqZqKQPswISeOvXhiF0XOkBwsgMhZbU= Subject key identifier: 74:85:8D:4F:55:D1:F9:D8:A8:27:13:8C:C8:A6:7A:27:1C:A6:8A:5F Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 08E1 Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/72603CD6D28811EAB7D79A47C4F9AE02.roa Signing time: Sat 28 Mar 2026 20:27:05 +0000 ROA not before: Sat 28 Mar 2026 20:27:05 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 55781 IP address blocks: 103.71.132.0/24 maxlen: 24 103.231.54.0/24 maxlen: 24 202.68.209.0/24 maxlen: 24 202.68.210.0/24 maxlen: 24 202.68.211.0/24 maxlen: 24 202.68.220.0/24 maxlen: 24 202.68.222.0/24 maxlen: 24 202.68.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Mar 28 20:27:05 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c83999-fc00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:90:f3:c3:50:23:1c:dc:e2:37:23:d6:2f:ef: 7a:e8:48:5d:7c:55:f2:f6:6f:35:af:c3:07:cd:6c: f7:53:5a:90:ab:75:70:c4:81:e1:91:f6:f5:78:32: 5a:a2:79:28:5c:80:cc:52:af:a0:76:55:b8:38:17: b7:d0:f6:3b:f7:77:42:c9:ea:7a:da:ed:4b:91:be: 64:45:a4:f6:f3:c5:47:c0:16:f8:f7:33:46:ca:2a: da:e3:72:c8:a4:92:b9:0e:ed:2c:bb:f3:75:1c:2f: 5b:d2:6e:1b:69:b5:d4:46:b7:34:d0:bd:6f:bb:af: f7:6b:01:de:79:ed:14:d4:7a:6b:e7:a3:ef:93:d7: 6c:bb:09:9f:21:00:a3:02:f2:f7:13:cf:39:73:c3: d0:fb:7f:ad:16:cd:44:cf:4f:93:72:12:34:4c:5d: 88:d3:ef:7a:2b:50:0a:9f:56:f8:7e:84:18:a4:68: 7e:92:f6:4b:ff:53:45:f1:b0:0e:38:fa:db:58:a6: 5b:26:72:66:14:66:61:0c:5c:a5:00:5d:ef:19:5a: d2:94:31:87:ce:00:26:83:ae:89:4d:6d:c3:eb:1b: 2f:cb:62:e7:82:bc:50:ec:b3:f5:fc:42:02:7c:7e: 5d:1f:e1:6c:34:68:c0:d7:7b:0f:bd:bf:e7:c6:61: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:85:8D:4F:55:D1:F9:D8:A8:27:13:8C:C8:A6:7A:27:1C:A6:8A:5F X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/72603CD6D28811EAB7D79A47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.71.132.0/24 103.231.54.0/24 202.68.209.0-202.68.211.255 202.68.220.0/24 202.68.222.0/23 Signature Algorithm: sha256WithRSAEncryption a3:ea:a3:ae:4b:70:14:97:8b:b2:c1:3d:be:c3:98:37:0c:0d: de:f5:ab:08:9d:27:4b:58:94:0e:5a:6f:13:82:a8:0a:ac:ba: d8:3a:16:d5:72:b5:07:27:c9:1b:a7:56:79:9b:2e:0f:ca:87: 4a:4b:b6:fd:2b:a4:c8:cf:14:55:48:6b:eb:14:43:63:9a:df: 24:09:3d:7a:4a:2b:86:05:71:30:b0:4d:76:5e:49:0a:47:16: ad:61:6d:52:51:c3:3b:81:51:51:33:06:fc:1a:a1:30:8d:76: 97:e5:c8:62:13:57:61:b5:78:6b:c5:a1:df:5e:c2:cb:d8:e4: f7:42:d4:2e:db:3e:9b:01:fc:36:be:d6:6c:a8:af:0f:1d:0f: b3:85:14:6a:bf:d9:6f:7a:2c:ab:ab:00:a3:ad:c9:b1:65:b4: d6:45:21:1d:b2:5c:4b:03:d5:0d:e3:75:22:be:73:06:95:78: d4:af:b3:d6:3d:93:0d:64:f8:ce:b7:be:02:d6:ca:57:db:d4: ca:9b:6b:53:94:1d:02:cc:49:d1:f7:99:01:ce:a7:d8:b2:27: 7d:1c:c0:b3:d1:27:48:c8:a3:ca:50:93:eb:05:0d:49:d9:53: 64:5f:9f:6a:0a:46:5a:48:e1:00:6a:94:39:a7:aa:1c:4e:e9: e3:2d:40:34 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjYwMzI4MjAyNzA1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4Mzk5OS1mYzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJDzw1AjHNziNyPWL+966EhdfFXy9m81r8MHzWz3U1qQq3VwxIHhkfb1eDJa onkoXIDMUq+gdlW4OBe30PY793dCyep62u1Lkb5kRaT288VHwBb49zNGyira43LI pJK5Du0su/N1HC9b0m4babXURrc00L1vu6/3awHeee0U1Hpr56Pvk9dsuwmfIQCj AvL3E885c8PQ+3+tFs1Ez0+TchI0TF2I0+96K1AKn1b4foQYpGh+kvZL/1NF8bAO OPrbWKZbJnJmFGZhDFylAF3vGVrSlDGHzgAmg66JTW3D6xsvy2LngrxQ7LP1/EIC fH5dH+FsNGjA13sPvb/nxmEywwIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFHSFjU9V 0fnYqCcTjMimeiccpopfMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQzRTgvM0YxRjBEREFEMjg3MTFFQTlFNzNFNjQ2QzRGOUFFMDIvNzI2MDNDRDZE Mjg4MTFFQUI3RDc5QTQ3QzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmAwQAZ0eEAwQAZ+c2MAwDBADKRNEDBALKRNADBADKRNwDBAHKRN4wDQYJ KoZIhvcNAQELBQADggEBAKPqo65LcBSXi7LBPb7DmDcMDd71qwidJ0tYlA5abxOC qAqsutg6FtVytQcnyRunVnmbLg/Kh0pLtv0rpMjPFFVIa+sUQ2Oa3yQJPXpKK4YF cTCwTXZeSQpHFq1hbVJRwzuBUVEzBvwaoTCNdpflyGITV2G1eGvFod9ewsvY5PdC 1C7bPpsB/Da+1myorw8dD7OFFGq/2W96LKurAKOtybFltNZFIR2yXEsD1Q3jdSK+ cwaVeNSvs9Y9kw1k+M63vgLWylfb1Mqba1OUHQLMSdH3mQHOp9iyJ30cwLPRJ0jI o8pQk+sFDUnZU2Rfn2oKRlpI4QBqlDmnqhxO6eMtQDQ= -----END CERTIFICATE-----Generated at Sat Apr 18 04:17:20 2026 by rpki-client