$ rpki-client -vvf rpki.apnic.net/member_repository/A916ED7C/4B5BC71C9EAC11ECA06BC10BC4F9AE02/0D54E8A013BE11F18FF7A3AA093D8C67.roa File: 0D54E8A013BE11F18FF7A3AA093D8C67.roa (raw, json) Hash identifier: mMlvSedTSWczJVb5q3/hjibs4eqLFUD0ZZ9STQ9AQOU= Subject key identifier: 6A:1A:4A:69:66:F9:00:F6:69:40:02:FE:EF:64:34:6E:24:1C:A4:CB Certificate issuer: /CN=A916ED7C/serialNumber=655B0426EA34B19746EC1D3BDCB1B37674DFA1EC Certificate serial: 042C Authority key identifier: 65:5B:04:26:EA:34:B1:97:46:EC:1D:3B:DC:B1:B3:76:74:DF:A1:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVsEJuo0sZdG7B073LGzdnTfoew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916ED7C/4B5BC71C9EAC11ECA06BC10BC4F9AE02/0D54E8A013BE11F18FF7A3AA093D8C67.roa Signing time: Sun 01 Mar 2026 14:24:03 +0000 ROA not before: Fri 27 Feb 2026 09:24:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134687 IP address blocks: 103.136.108.0/24 maxlen: 24 103.136.110.0/24 maxlen: 24 103.136.111.0/24 maxlen: 24 2404:9140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916ED7C/4B5BC71C9EAC11ECA06BC10BC4F9AE02/ZVsEJuo0sZdG7B073LGzdnTfoew.crl rsync://rpki.apnic.net/member_repository/A916ED7C/4B5BC71C9EAC11ECA06BC10BC4F9AE02/ZVsEJuo0sZdG7B073LGzdnTfoew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVsEJuo0sZdG7B073LGzdnTfoew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1068 (0x42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916ED7C, serialNumber=655B0426EA34B19746EC1D3BDCB1B37674DFA1EC Validity Not Before: Feb 27 09:24:01 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a44c02-36e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:34:50:50:53:4f:f4:c3:dc:9b:ea:4b:22:d1: 7a:ba:ec:ab:32:94:70:cc:4a:c7:ee:b3:a7:a2:1b: 14:60:34:f9:be:32:47:70:3f:a4:42:94:10:e7:1b: 20:7d:a0:65:ce:a6:a5:09:25:0c:f8:e1:00:c3:9c: a5:96:11:ad:81:bd:7e:5f:50:ba:dd:e8:71:e5:56: 9b:eb:b5:9f:98:84:5e:58:6c:18:7f:18:32:2d:4a: 68:47:aa:81:05:e7:95:c1:b3:b6:5a:4f:3a:e0:0f: af:e7:c5:c9:81:66:35:d9:0d:87:d6:f1:4d:2d:53: c6:22:3e:e8:66:0c:f2:ad:a9:c6:de:d4:e1:82:2f: a7:ef:bd:00:f5:24:62:57:47:e2:a2:c7:91:51:e8: d4:21:db:9f:7e:87:ba:07:fc:1a:2c:b0:71:76:2e: e9:8e:4c:5f:10:09:d5:48:21:b1:a4:0c:67:31:a0: 52:5e:89:cc:dc:e1:2d:7e:5b:81:ac:f0:f3:2c:70: 12:5f:05:52:ca:7c:fd:9d:d0:8f:42:51:fc:77:bd: d8:a4:9c:cd:22:b3:a9:ec:1d:f3:70:45:2d:b2:f1: 6e:b9:55:d4:cb:ee:a5:74:32:1a:f5:98:b2:ca:e6: 77:2a:34:f3:d6:1d:2e:55:39:3b:4f:00:f2:2d:15: ff:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:1A:4A:69:66:F9:00:F6:69:40:02:FE:EF:64:34:6E:24:1C:A4:CB X509v3 Authority Key Identifier: keyid:65:5B:04:26:EA:34:B1:97:46:EC:1D:3B:DC:B1:B3:76:74:DF:A1:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916ED7C/4B5BC71C9EAC11ECA06BC10BC4F9AE02/ZVsEJuo0sZdG7B073LGzdnTfoew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVsEJuo0sZdG7B073LGzdnTfoew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ED7C/4B5BC71C9EAC11ECA06BC10BC4F9AE02/0D54E8A013BE11F18FF7A3AA093D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.136.108.0/24 103.136.110.0/23 IPv6: 2404:9140::/48 Signature Algorithm: sha256WithRSAEncryption a4:bb:59:8b:ed:db:6d:81:51:d4:9d:cf:8a:e8:b7:fc:c1:3a: 06:21:b1:b6:60:c5:08:29:c3:7b:9f:03:80:82:9f:6b:8b:12: 21:c5:69:24:44:ca:04:f1:25:df:0c:b1:32:8d:85:54:bf:e4: 68:1b:a7:68:b4:6b:ef:41:e8:71:74:5a:b0:03:31:3b:be:e0: c9:5b:63:57:7c:94:7a:15:5e:fd:f4:d2:d3:d2:91:c2:3b:79: b1:87:62:61:1b:7a:c5:8e:85:ba:55:f7:96:fa:c4:fc:11:4a: 5d:b9:9b:eb:b8:cd:66:b2:51:94:4b:30:a1:ce:c2:e7:dd:75: d5:39:70:fd:da:b3:36:2d:79:d0:d8:9d:33:f6:63:d3:6e:c0: e5:a2:39:0a:95:66:d7:9e:c9:5d:4d:29:a6:e2:70:e6:27:f5: ec:36:cb:d1:73:4c:9b:42:37:89:38:44:c2:83:8d:52:b0:9f: de:85:d5:c6:12:4b:9a:e2:10:01:0c:90:c8:05:53:14:0b:d0: d9:e4:d3:91:2b:dd:16:bb:23:93:01:ff:fe:4f:80:98:dd:25: ac:4f:88:0e:a5:01:f5:66:d7:e6:f6:27:cc:d9:51:72:33:66: 71:d7:72:85:14:36:ec:b5:64:86:77:6f:1b:26:41:fb:59:50: 94:52:7a:3b -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEN0MxMTAvBgNVBAUTKDY1NUIwNDI2RUEzNEIxOTc0NkVDMUQzQkRDQjFCMzc2 NzRERkExRUMwHhcNMjYwMjI3MDkyNDAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGMwMi0zNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDRQUFNP9MPcm+pLItF6uuyrMpRwzErH7rOnohsUYDT5vjJHcD+kQpQQ5xsg faBlzqalCSUM+OEAw5yllhGtgb1+X1C63ehx5Vab67WfmIReWGwYfxgyLUpoR6qB BeeVwbO2Wk864A+v58XJgWY12Q2H1vFNLVPGIj7oZgzyranG3tThgi+n770A9SRi V0fioseRUejUIduffoe6B/waLLBxdi7pjkxfEAnVSCGxpAxnMaBSXonM3OEtfluB rPDzLHASXwVSynz9ndCPQlH8d73YpJzNIrOp7B3zcEUtsvFuuVXUy+6ldDIa9Ziy yuZ3KjTz1h0uVTk7TwDyLRX/gwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFGoaSmlm +QD2aUAC/u9kNG4kHKTLMB8GA1UdIwQYMBaAFGVbBCbqNLGXRuwdO9yxs3Z036Hs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUQ3Qy80QjVCQzcxQzlF QUMxMUVDQTA2QkMxMEJDNEY5QUUwMi9aVnNFSnVvMHNaZEc3QjA3M0xHemRuVGZv ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWc0VKdW8wc1pkRzdCMDczTEd6ZG5UZm9ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVEN0MvNEI1QkM3MUM5RUFDMTFFQ0EwNkJDMTBCQzRGOUFFMDIvMEQ1NEU4QTAx M0JFMTFGMThGRjdBM0FBMDkzRDhDNjcucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ4hsAwQBZ4huMA8EAgACMAkDBwAkBJFAAAAwDQYJKoZIhvcNAQEL BQADggEBAKS7WYvt222BUdSdz4rot/zBOgYhsbZgxQgpw3ufA4CCn2uLEiHFaSRE ygTxJd8MsTKNhVS/5Ggbp2i0a+9B6HF0WrADMTu+4MlbY1d8lHoVXv300tPSkcI7 ebGHYmEbesWOhbpV95b6xPwRSl25m+u4zWayUZRLMKHOwufdddU5cP3aszYtedDY nTP2Y9NuwOWiOQqVZteeyV1NKabicOYn9ew2y9FzTJtCN4k4RMKDjVKwn96F1cYS S5riEAEMkMgFUxQL0Nnk05Er3Ra7I5MB//5PgJjdJaxPiA6lAfVm1+b2J8zZUXIz ZnHXcoUUNuy1ZIZ3bxsmQftZUJRSejs= -----END CERTIFICATE-----Generated at Mon Mar 2 10:35:21 2026 by rpki-client