$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/62BA539C48ED11EDBC251337C4F9AE02.roa File: 62BA539C48ED11EDBC251337C4F9AE02.roa (raw, json) Hash identifier: 6dBwoytRH7N2p3z59t26vsmmZ8suypwfNSdSsbkrs/U= Subject key identifier: 34:B3:EA:6D:7F:7C:23:3C:F7:54:39:97:80:01:BE:F0:52:F6:BF:9F Certificate issuer: /CN=A91E3FD3/serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65 Certificate serial: 0DE5 Authority key identifier: 2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/62BA539C48ED11EDBC251337C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:50:44 +0000 ROA not before: Thu 30 Oct 2025 18:06:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138338 IP address blocks: 103.130.168.0/22 maxlen: 22 103.130.168.0/24 maxlen: 24 103.130.169.0/24 maxlen: 24 103.130.170.0/24 maxlen: 24 103.130.171.0/24 maxlen: 24 2403:bdc0::/32 maxlen: 32 2403:bdc0::/36 maxlen: 36 2403:bdc0:1000::/36 maxlen: 36 2403:bdc0:2000::/36 maxlen: 36 2403:bdc0:3000::/36 maxlen: 36 2403:bdc0:4000::/36 maxlen: 36 2403:bdc0:5000::/36 maxlen: 36 2403:bdc0:6000::/36 maxlen: 36 2403:bdc0:7000::/36 maxlen: 36 2403:bdc0:8000::/36 maxlen: 36 2403:bdc0:9000::/36 maxlen: 36 2403:bdc0:a000::/36 maxlen: 36 2403:bdc0:b000::/36 maxlen: 36 2403:bdc0:c000::/36 maxlen: 36 2403:bdc0:d000::/36 maxlen: 36 2403:bdc0:e000::/36 maxlen: 36 2403:bdc0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3557 (0xde5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3FD3, serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65 Validity Not Before: Oct 30 18:06:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a44434-144d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:10:60:f3:80:77:39:ce:b4:94:38:d4:72:b1: 18:d6:ab:2f:a3:b9:4c:3e:23:69:a5:08:8b:77:b1: ab:46:bb:33:b7:59:b3:93:61:32:3c:05:9e:cd:d9: 66:b2:7c:60:2a:39:3f:d8:c5:c7:0b:04:77:2d:f4: e8:58:65:8b:01:b8:09:d4:9a:93:b8:29:00:5c:2a: f2:30:5c:b6:c5:7c:df:7d:a5:99:16:d5:ce:72:25: 3e:2d:c3:0e:d2:a6:8c:07:ad:49:35:04:f6:61:14: d4:6f:97:2f:bd:98:e2:e1:ab:7e:53:1b:c3:45:78: 5b:10:4e:d3:90:7a:02:37:bf:38:b1:95:71:7f:4d: 6f:2f:e6:ab:48:02:e1:35:80:87:d9:ce:cf:24:38: d7:a9:81:6d:f2:92:b3:13:ba:d9:8f:3e:6b:5e:d9: 66:2f:9d:d6:d8:1e:90:8f:0c:eb:24:74:39:4a:56: b9:bf:b7:6e:34:96:f4:61:4f:9f:b1:68:54:53:c9: ce:a6:2f:66:67:15:f8:55:d8:33:eb:a0:e8:00:37: 7d:d6:1b:18:aa:98:6a:08:18:b9:7e:5f:8d:97:4b: 5b:16:dd:93:15:6b:cf:a5:4c:1f:0e:12:e9:4d:40: b2:ee:a7:95:3f:eb:e0:c4:32:33:d1:5a:74:be:cb: 90:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B3:EA:6D:7F:7C:23:3C:F7:54:39:97:80:01:BE:F0:52:F6:BF:9F X509v3 Authority Key Identifier: keyid:2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/62BA539C48ED11EDBC251337C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.130.168.0/22 IPv6: 2403:bdc0::/32 Signature Algorithm: sha256WithRSAEncryption 61:15:8c:41:ab:c1:8a:ef:49:88:23:34:06:1d:d6:da:ec:39: 94:c4:15:33:91:dd:63:d3:ab:d0:c2:83:38:51:d9:5e:06:2d: c8:56:7b:f2:1f:b8:e7:0b:10:e1:45:fd:66:d7:90:ab:c7:a7: 9f:23:37:80:bd:92:6f:df:48:a1:6a:fb:29:b3:97:2d:5d:d8: 53:9f:87:c1:7c:60:c7:2f:c7:0c:98:a6:68:58:ed:b3:e4:fc: 2b:b7:bf:6e:25:1a:23:2b:d9:96:aa:ed:30:11:03:69:68:32: df:90:ad:ce:cb:3a:b4:38:48:c8:cc:12:c5:33:88:91:9a:d1: b7:5e:6e:47:a7:5e:cc:ca:5e:4f:05:38:e7:97:3d:ec:a9:8d: c1:ab:f0:6b:40:31:15:6b:cd:a4:e1:46:80:46:72:94:57:2a: 3b:04:e5:45:57:0c:1f:c5:90:52:7b:21:94:e2:6a:61:15:be: 96:9b:5c:c5:0b:bd:70:d1:11:f3:3c:a5:ec:a6:3c:28:46:10: d5:5b:88:0b:e1:3f:43:57:ab:c7:40:07:6e:fb:dc:ec:fb:cb: a7:a7:d2:08:a0:9e:c2:24:22:f0:04:b9:15:2e:94:5c:85:1a: 97:e2:ce:b7:1a:f9:ae:49:89:79:e2:8b:55:19:b7:7a:ff:81: f5:ec:32:08 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGRDMxMTAvBgNVBAUTKDJDNzMzM0RCQ0QzRkNBMDc4NzgwMzgzN0I2Q0JBRTMx QUMwQzRCNjUwHhcNMjUxMDMwMTgwNjUxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDQzNC0xNDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBBg84B3Oc60lDjUcrEY1qsvo7lMPiNppQiLd7GrRrszt1mzk2EyPAWezdlm snxgKjk/2MXHCwR3LfToWGWLAbgJ1JqTuCkAXCryMFy2xXzffaWZFtXOciU+LcMO 0qaMB61JNQT2YRTUb5cvvZji4at+UxvDRXhbEE7TkHoCN784sZVxf01vL+arSALh NYCH2c7PJDjXqYFt8pKzE7rZjz5rXtlmL53W2B6QjwzrJHQ5Sla5v7duNJb0YU+f sWhUU8nOpi9mZxX4Vdgz66DoADd91hsYqphqCBi5fl+Nl0tbFt2TFWvPpUwfDhLp TUCy7qeVP+vgxDIz0Vp0vsuQlQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDSz6m1/ fCM891Q5l4ABvvBS9r+fMB8GA1UdIwQYMBaAFCxzM9vNP8oHh4A4N7bLrjGsDEtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0ZEMy8yMURFNUI5QUQ0 OTUxMUU5QTI3REM5MkZDNEY5QUUwMi9MSE16MjgwX3lnZUhnRGczdHN1dU1hd01T MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xITXoyODBfeWdlSGdEZzN0c3V1TWF3TVMyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNGRDMvMjFERTVCOUFENDk1MTFFOUEyN0RDOTJGQzRGOUFFMDIvNjJCQTUzOUM0 OEVEMTFFREJDMjUxMzM3QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4KoMA0EAgACMAcDBQAkA73AMA0GCSqGSIb3DQEBCwUAA4IBAQBh FYxBq8GK70mIIzQGHdba7DmUxBUzkd1j06vQwoM4UdleBi3IVnvyH7jnCxDhRf1m 15Crx6efIzeAvZJv30ihavsps5ctXdhTn4fBfGDHL8cMmKZoWO2z5Pwrt79uJRoj K9mWqu0wEQNpaDLfkK3Oyzq0OEjIzBLFM4iRmtG3Xm5Hp17Myl5PBTjnlz3sqY3B q/BrQDEVa82k4UaARnKUVyo7BOVFVwwfxZBSeyGU4mphFb6Wm1zFC71w0RHzPKXs pjwoRhDVW4gL4T9DV6vHQAdu+9zs+8unp9IIoJ7CJCLwBLkVLpRchRqX4s63Gvmu SYl54otVGbd6/4H17DII -----END CERTIFICATE-----Generated at Mon Mar 2 04:02:16 2026 by rpki-client