$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa File: 324967826D8D11EE9883B985C4F9AE02.roa (raw, json) Hash identifier: I3CV8R8JGtpiIrmhiv//LYOhFj9TnYsmGUGXq3RqClQ= Subject key identifier: CA:EF:AB:6A:9C:E7:BE:BF:54:4E:12:0A:D5:BB:CE:59:B7:0C:81:16 Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 020A Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa Signing time: Tue 02 Jun 2026 18:21:11 +0000 ROA not before: Tue 02 Jun 2026 18:21:11 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 139053 IP address blocks: 103.138.250.0/24 maxlen: 24 103.138.251.0/24 maxlen: 24 2001:df0:5e80::/48 maxlen: 48 2402:ba0::/32 maxlen: 32 2402:ba0::/48 maxlen: 48 2402:ba0:a::/48 maxlen: 48 2402:ba0:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Jun 2 18:21:11 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a1f1f17-b705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a9:42:7b:64:bf:91:f4:d4:52:d0:cc:ad:15: 71:fc:19:70:80:59:b4:07:ce:fb:1f:ef:eb:15:b5: a3:54:e5:1d:ea:53:f2:f6:41:dc:da:68:97:00:88: 4d:2e:2c:6b:0f:b0:c6:52:48:91:dc:7c:6e:8d:a6: c5:f0:e5:bd:17:32:53:ba:71:62:c3:b2:11:9d:61: 3c:a6:15:75:d0:08:4b:02:41:43:3c:f5:1c:f9:10: e3:71:99:e6:49:83:4a:20:8a:4b:60:6a:30:bb:92: f5:a4:1e:6f:e9:0a:b5:a3:9b:f0:6b:8a:59:0d:36: db:23:90:67:91:0a:36:63:97:54:84:12:e1:30:1f: c1:aa:71:ed:b0:94:12:0b:e3:2d:2e:f3:9e:d5:da: 79:73:4e:9e:33:e9:90:29:65:95:00:b7:7a:3f:e8: 1b:fe:0b:0f:ec:09:fe:81:7c:f8:ca:7a:60:a0:7e: 84:b8:7f:18:bb:8b:7c:3e:c9:55:30:9e:86:8e:ca: 7c:4e:b0:fb:72:5e:37:6c:3c:fd:31:e4:e9:ad:f3: 5f:8c:35:17:24:04:83:41:12:16:84:a9:f3:56:5d: e2:1a:7b:60:da:d5:f2:1f:d2:61:70:14:5a:34:02: 7e:57:47:27:d1:57:60:28:66:13:04:50:a4:11:78: 2c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EF:AB:6A:9C:E7:BE:BF:54:4E:12:0A:D5:BB:CE:59:B7:0C:81:16 X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.250.0/23 IPv6: 2001:df0:5e80::/48 2402:ba0::/32 Signature Algorithm: sha256WithRSAEncryption a8:01:17:d0:bd:32:d7:55:05:1c:b1:86:cd:aa:14:2e:5e:4b: 98:d4:c4:e4:8a:51:11:6e:0e:cb:95:7d:10:74:5a:d0:fb:96: 25:76:f8:d0:85:50:d3:8f:54:c7:96:6f:e0:87:67:1c:b3:33: dd:b3:70:43:7a:3f:49:07:7c:d4:f4:91:01:a6:29:fe:aa:37: 21:2d:34:9f:52:ed:ff:57:1f:38:34:e5:5e:c4:64:89:a4:3b: b5:46:15:4f:9a:ed:b2:13:38:25:6c:42:1b:c0:44:e4:fe:06: 33:99:6e:60:1e:ea:9c:c5:a0:c4:a0:f0:38:2f:79:b6:38:bb: 04:f6:a3:69:bc:70:7b:43:0d:4e:41:bc:4d:dd:b6:ab:b5:4c: 76:1f:83:41:10:8d:71:32:37:fc:40:3f:0f:ca:d8:3e:7b:a2: 02:ec:e5:f8:ca:a5:22:4b:8d:53:23:dc:15:99:83:f6:56:92: 6c:45:9a:e7:9b:0c:01:91:d9:8e:cb:7b:82:0a:b5:bd:f2:2f: 61:6a:9f:06:de:ed:ca:15:5a:f8:e4:3d:cd:fd:66:c8:c5:34: c0:90:e6:94:60:f5:60:90:ad:b2:1a:f6:b1:9d:c4:2c:f3:0d: 99:c4:79:5d:d1:de:df:13:89:42:94:c7:72:c7:b8:31:93:4a: ed:90:5c:fb -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjYwNjAyMTgyMTExWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFmMWYxNy1iNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6lCe2S/kfTUUtDMrRVx/BlwgFm0B877H+/rFbWjVOUd6lPy9kHc2miXAIhN LixrD7DGUkiR3HxujabF8OW9FzJTunFiw7IRnWE8phV10AhLAkFDPPUc+RDjcZnm SYNKIIpLYGowu5L1pB5v6Qq1o5vwa4pZDTbbI5BnkQo2Y5dUhBLhMB/BqnHtsJQS C+MtLvOe1dp5c06eM+mQKWWVALd6P+gb/gsP7An+gXz4ynpgoH6EuH8Yu4t8PslV MJ6Gjsp8TrD7cl43bDz9MeTprfNfjDUXJASDQRIWhKnzVl3iGntg2tXyH9JhcBRa NAJ+V0cn0VdgKGYTBFCkEXgsQQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFMrvq2qc 576/VE4SCtW7zlm3DIEWMB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkREODIvMTk3RjlEOTI5MUUyMTFFOTk3Njg4OTBFQzRGOUFFMDIvMzI0OTY3ODI2 RDhEMTFFRTk4ODNCOTg1QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAM BAIAATAGAwQBZ4r6MBYEAgACMBADBwAgAQ3wXoADBQAkAgugMA0GCSqGSIb3DQEB CwUAA4IBAQCoARfQvTLXVQUcsYbNqhQuXkuY1MTkilERbg7LlX0QdFrQ+5YldvjQ hVDTj1THlm/gh2ccszPds3BDej9JB3zU9JEBpin+qjchLTSfUu3/Vx84NOVexGSJ pDu1RhVPmu2yEzglbEIbwETk/gYzmW5gHuqcxaDEoPA4L3m2OLsE9qNpvHB7Qw1O QbxN3bartUx2H4NBEI1xMjf8QD8Pytg+e6IC7OX4yqUiS41TI9wVmYP2VpJsRZrn mwwBkdmOy3uCCrW98i9hap8G3u3KFVr45D3N/WbIxTTAkOaUYPVgkK2yGvaxncQs 8w2ZxHld0d7fE4lClMdyx7gxk0rtkFz7 -----END CERTIFICATE-----Generated at Sat Jun 13 10:33:17 2026 by rpki-client