$ rpki-client -vvf rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa File: D3B421A2366811F0A18FF40AC4F9AE02.roa (raw, json) Hash identifier: omkWE5Y2i4Y9rB60Umc+HfIUljZckcLxEOKEtjkJ+XM= Subject key identifier: 56:76:7B:53:88:01:75:11:FD:08:D8:67:C0:9B:87:06:D0:A9:B4:45 Certificate issuer: /CN=A916A703/serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Certificate serial: 078D Authority key identifier: 72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:40:35 +0000 ROA not before: Wed 21 May 2025 17:29:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139012 IP address blocks: 103.138.125.0/24 maxlen: 24 2404:cd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A703, serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Validity Not Before: May 21 17:29:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fb82-6e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fb:13:eb:b5:16:42:29:64:8c:d2:f2:10:7e: b5:80:95:ca:87:1c:3e:0e:03:41:2b:48:f1:a2:e5: 3a:5c:d2:04:6d:17:3a:36:f4:23:d6:c9:b7:e7:7a: 0f:e3:c7:ca:07:8b:83:4a:a3:f4:50:19:84:22:ad: e0:1e:8a:e4:03:62:32:97:ec:f9:47:93:ce:fe:8b: bf:fe:f2:2d:44:b3:8c:d5:59:bc:ae:33:90:74:dd: 50:1f:c7:d8:19:74:52:e7:88:04:c9:56:01:51:69: 32:8b:0b:83:f3:a4:5d:c2:28:07:e5:0a:c5:79:96: 0b:30:fd:23:86:ca:54:25:68:e0:b1:e9:5a:a0:51: b3:47:29:bc:d6:68:1a:98:59:e4:7a:1c:01:3c:8c: 49:8f:e8:bd:11:9d:2f:58:7b:ea:f8:72:f6:f6:fe: a6:88:28:b8:33:f6:87:10:c7:97:04:47:01:27:08: 46:06:07:9f:64:05:94:5c:3d:fe:c5:24:bf:32:62: 13:63:44:4b:6d:04:25:88:b4:c9:d8:d4:e5:0e:29: b1:f1:a7:06:ae:a2:49:87:c2:08:ff:bc:b7:87:8f: fb:d8:3f:0f:5f:7d:3f:52:7d:b9:c5:cd:b9:0d:ed: 5b:35:78:a5:6d:89:df:aa:73:b8:45:97:d2:52:68: 26:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:76:7B:53:88:01:75:11:FD:08:D8:67:C0:9B:87:06:D0:A9:B4:45 X509v3 Authority Key Identifier: keyid:72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.125.0/24 IPv6: 2404:cd40::/32 Signature Algorithm: sha256WithRSAEncryption 1c:b0:a5:ee:22:26:6b:d4:2a:56:b4:3f:1a:ba:47:f7:75:81: 4c:1c:ff:d5:0c:01:b1:a4:79:fd:c2:47:76:eb:f9:83:5a:2b: 8a:5e:94:2f:5e:9b:e3:2d:5b:e8:51:58:93:35:12:e4:c1:fb: bb:a8:90:2c:a1:1c:7a:64:43:11:5f:ce:52:58:5d:5f:91:32: 02:45:a0:2d:d7:c8:7b:25:19:6e:df:8c:16:8c:31:8f:40:80: f4:26:58:17:42:7e:1a:6d:f9:e5:2b:3b:1d:8c:41:ac:46:90: 16:e9:e3:b9:c9:dd:aa:97:7c:2d:bc:33:48:0d:e5:52:c8:65: 45:c7:03:81:85:47:43:1d:7f:de:72:8a:83:16:34:68:88:33: 05:08:d2:68:65:e7:e1:0b:eb:98:c4:b5:b1:70:6d:4a:53:7c: 19:e2:3a:f1:c1:cd:a3:05:af:b0:ad:f7:22:a7:de:ef:9f:21: a1:86:00:54:e5:62:a8:18:09:51:7a:c7:e6:9d:f4:de:76:ab: 91:b7:30:0b:7d:f2:d7:d4:25:cf:66:a3:88:a6:82:01:c9:c2: 7e:dd:23:e0:72:ae:eb:88:45:d0:ff:9d:10:65:62:f9:b9:c1: f8:93:1c:bc:b8:8f:ff:eb:3c:3e:2f:b6:04:d5:a9:ea:74:bb: ba:b7:73:28 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE3MDMxMTAvBgNVBAUTKDcyQTE5RjZCQUZBNkVFRUU2NkRDM0IxQTZDNjc4MjJF NTMzMENGNzgwHhcNMjUwNTIxMTcyOTM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmI4Mi02ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/sT67UWQilkjNLyEH61gJXKhxw+DgNBK0jxouU6XNIEbRc6NvQj1sm353oP 48fKB4uDSqP0UBmEIq3gHorkA2Iyl+z5R5PO/ou//vItRLOM1Vm8rjOQdN1QH8fY GXRS54gEyVYBUWkyiwuD86RdwigH5QrFeZYLMP0jhspUJWjgselaoFGzRym81mga mFnkehwBPIxJj+i9EZ0vWHvq+HL29v6miCi4M/aHEMeXBEcBJwhGBgefZAWUXD3+ xSS/MmITY0RLbQQliLTJ2NTlDimx8acGrqJJh8II/7y3h4/72D8PX30/Un25xc25 De1bNXilbYnfqnO4RZfSUmgm3QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFFZ2e1OI AXUR/QjYZ8CbhwbQqbRFMB8GA1UdIwQYMBaAFHKhn2uvpu7uZtw7Gmxngi5TMM94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTcwMy83QzgzQkRFQTQ5 MDMxMUVCODQ0N0IyNkJDNEY5QUUwMi9jcUdmYTYtbTd1NW0zRHNhYkdlQ0xsTXd6 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxR2ZhNi1tN3U1bTNEc2FiR2VDTGxNd3ozZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE3MDMvN0M4M0JERUE0OTAzMTFFQjg0NDdCMjZCQzRGOUFFMDIvRDNCNDIxQTIz NjY4MTFGMEExOEZGNDBBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZ4p9MA0EAgACMAcDBQAkBM1AMA0GCSqGSIb3DQEBCwUAA4IBAQAc sKXuIiZr1CpWtD8aukf3dYFMHP/VDAGxpHn9wkd26/mDWiuKXpQvXpvjLVvoUViT NRLkwfu7qJAsoRx6ZEMRX85SWF1fkTICRaAt18h7JRlu34wWjDGPQID0JlgXQn4a bfnlKzsdjEGsRpAW6eO5yd2ql3wtvDNIDeVSyGVFxwOBhUdDHX/ecoqDFjRoiDMF CNJoZefhC+uYxLWxcG1KU3wZ4jrxwc2jBa+wrfcip97vnyGhhgBU5WKoGAlResfm nfTedquRtzALffLX1CXPZqOIpoIBycJ+3SPgcq7riEXQ/50QZWL5ucH4kxy8uI// 6zw+L7YE1anqdLu6t3Mo -----END CERTIFICATE-----Generated at Mon Mar 2 13:41:06 2026 by rpki-client