$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/3D3FCB5EC8F911EFA0603266C4F9AE02.roa File: 3D3FCB5EC8F911EFA0603266C4F9AE02.roa (raw, json) Hash identifier: LdZPN5g7VKOUsoMqUh+SkM+nJiYnZ4SZeWeIWiWxUuQ= Subject key identifier: 7C:39:01:41:96:90:09:FA:9F:B3:D2:0C:A0:3A:35:AE:EA:AC:0D:B0 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 049D Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/3D3FCB5EC8F911EFA0603266C4F9AE02.roa Signing time: Thu 11 Jun 2026 02:29:35 +0000 ROA not before: Thu 11 Jun 2026 02:29:35 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139042 IP address blocks: 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40:8000::/36 maxlen: 36 2407:3b40:b000::/36 maxlen: 36 2407:3b40:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720, serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: Jun 11 02:29:35 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2a1d8f-dc07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:e1:84:ac:94:9f:7e:ff:de:5f:08:cb:6e: 38:a5:c5:20:01:da:50:58:0b:a1:d2:ca:73:76:71: 69:fd:c8:bb:31:b6:c5:cb:4f:84:43:43:7d:7e:20: 7d:e0:6b:49:99:99:bc:fa:3b:fd:a7:cd:a5:b1:f6: d1:4d:00:c8:04:eb:4b:eb:00:d0:8a:ea:59:71:dc: d2:37:03:48:77:ab:71:b8:1e:a5:01:e4:6c:8e:39: 58:14:3e:df:0c:7f:17:f7:0c:27:25:47:b2:3c:a7: 72:51:09:49:ba:83:77:2b:56:95:3a:eb:35:69:81: 43:c7:30:f5:64:aa:4a:07:59:fb:3f:2a:ee:0c:f0: f8:42:83:8f:e2:eb:aa:b5:c6:31:f4:9e:09:8e:bf: ac:a7:32:20:a6:9c:4f:78:bf:f7:45:95:6a:83:68: 60:2a:5a:16:6c:08:15:2a:82:54:32:1b:ae:00:7e: ce:08:de:42:16:ae:73:09:e9:71:ac:31:13:b1:31: fd:b6:41:d1:cb:5f:07:0f:dc:4a:e3:e5:70:f1:3a: 2d:a9:33:34:6b:0c:b5:b0:61:3b:fe:38:fc:a2:34: 0d:b1:27:fe:c2:8e:b5:47:54:dd:1d:f9:88:43:f6: f2:af:69:65:5b:bf:a8:8f:3c:48:5a:a1:87:92:7d: b4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:39:01:41:96:90:09:FA:9F:B3:D2:0C:A0:3A:35:AE:EA:AC:0D:B0 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/3D3FCB5EC8F911EFA0603266C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.147.0/24 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 1f:7d:11:5b:69:38:b3:66:5d:9b:3f:ab:b1:c0:8c:46:89:3d: 9e:fc:dd:a9:00:22:62:cb:7d:96:0a:3a:5e:fb:ec:ac:c9:be: 31:06:7d:60:ad:eb:8e:09:78:d7:22:9a:9f:2a:1b:54:a3:fb: 04:ec:6d:de:d0:a5:c4:a4:6b:4d:07:ff:70:08:c0:03:46:d4: 63:54:ef:d3:28:b2:ba:75:d8:32:77:a0:04:de:e9:f2:1b:c5: 16:ea:c0:99:90:2a:02:89:45:d0:2a:0e:d6:d3:4e:28:ac:c1: 6b:5f:79:76:54:9a:d7:ef:e2:21:90:a1:ce:74:36:b2:38:ba: 0c:57:c3:8c:61:45:07:bb:4c:1f:b4:2a:65:a4:8c:38:4d:5d: fc:2a:11:1e:8d:26:bc:d9:99:e9:c8:02:20:e0:ff:7a:80:53: b0:56:4b:82:ff:78:6e:da:5f:24:ca:2a:06:b2:9a:6a:2b:8a: cf:89:f4:e7:49:b5:85:a2:cb:86:22:f3:62:a2:fa:6e:5f:e7: cd:2e:71:a0:7d:ae:6c:c1:c6:3b:bd:28:53:ac:9e:dd:80:d8: 6b:f2:63:8e:09:5c:e8:3a:c3:59:50:2d:a1:9b:04:17:42:2c: a5:2b:fd:8a:48:6f:cf:1d:e3:4c:5e:f9:d1:96:d1:75:49:e2: b6:1e:07:20 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjYwNjExMDIyOTM1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJhMWQ4Zi1kYzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+HhhKyUn37/3l8Iy244pcUgAdpQWAuh0spzdnFp/ci7MbbFy0+EQ0N9fiB9 4GtJmZm8+jv9p82lsfbRTQDIBOtL6wDQiupZcdzSNwNId6txuB6lAeRsjjlYFD7f DH8X9wwnJUeyPKdyUQlJuoN3K1aVOus1aYFDxzD1ZKpKB1n7PyruDPD4QoOP4uuq tcYx9J4Jjr+spzIgppxPeL/3RZVqg2hgKloWbAgVKoJUMhuuAH7OCN5CFq5zCelx rDETsTH9tkHRy18HD9xK4+Vw8TotqTM0awy1sGE7/jj8ojQNsSf+wo61R1TdHfmI Q/byr2llW7+ojzxIWqGHkn20hQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHw5AUGW kAn6n7PSDKA6Na7qrA2wMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvM0QzRkNCNUVD OEY5MTFFRkEwNjAzMjY2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZ4qTMA0EAgACMAcDBQAkBztAMA0GCSqGSIb3DQEBCwUAA4IBAQAf fRFbaTizZl2bP6uxwIxGiT2e/N2pACJiy32WCjpe++ysyb4xBn1greuOCXjXIpqf KhtUo/sE7G3e0KXEpGtNB/9wCMADRtRjVO/TKLK6ddgyd6AE3unyG8UW6sCZkCoC iUXQKg7W004orMFrX3l2VJrX7+IhkKHOdDayOLoMV8OMYUUHu0wftCplpIw4TV38 KhEejSa82ZnpyAIg4P96gFOwVkuC/3hu2l8kyioGsppqK4rPifTnSbWFosuGIvNi ovpuX+fNLnGgfa5swcY7vShTrJ7dgNhr8mOOCVzoOsNZUC2hmwQXQiylK/2KSG/P HeNMXvnRltF1SeK2Hgcg -----END CERTIFICATE-----Generated at Sat Jun 13 20:31:35 2026 by rpki-client