$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/2FC13F564ED511EA945E3314C4F9AE02.roa File: 2FC13F564ED511EA945E3314C4F9AE02.roa (raw, json) Hash identifier: 4McE/O+QP2V8R9j++qZmwcXS2m87n+BBuLz8mpv2nxE= Subject key identifier: 8F:A9:D2:C5:72:96:13:51:A5:6D:10:4A:AC:12:0A:7C:14:F5:4A:5B Certificate issuer: /CN=A91EAC82/serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Certificate serial: 0BA4 Authority key identifier: 0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/2FC13F564ED511EA945E3314C4F9AE02.roa Signing time: Sat 06 Jun 2026 19:22:37 +0000 ROA not before: Sat 06 Jun 2026 19:22:37 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 138965 IP address blocks: 103.137.204.0/22 maxlen: 22 103.137.204.0/24 maxlen: 24 103.137.205.0/24 maxlen: 24 103.137.206.0/24 maxlen: 24 103.137.207.0/24 maxlen: 24 2400:d3e0::/32 maxlen: 32 2400:d3e0::/35 maxlen: 35 2400:d3e0::/48 maxlen: 48 2400:d3e0:1::/48 maxlen: 48 2400:d3e0:2::/48 maxlen: 48 2400:d3e0:3::/48 maxlen: 48 2400:d3e0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2980 (0xba4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAC82, serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Validity Not Before: Jun 6 19:22:37 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a24737d-14d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:da:eb:6f:e8:c3:96:a7:a7:9d:ab:11:bc:4c: 1a:21:cf:70:05:8c:3e:86:da:40:d5:d9:19:4d:3c: 7c:54:dd:da:62:91:81:9a:b8:49:c9:80:83:9d:41: 46:b7:7b:61:ab:bc:ce:71:db:49:6f:3b:eb:1f:01: 6e:b7:44:e1:ed:a3:6e:08:cd:1b:01:25:22:e1:cc: d0:1b:1a:f5:93:bd:c9:29:28:e2:d4:c6:de:f0:47: be:5f:2f:17:55:60:6f:03:53:e1:76:ac:d6:9c:12: e5:3a:23:f1:fb:c1:b4:8d:d2:07:5c:7b:d3:1b:72: dc:2e:3e:9a:f4:98:75:9c:8c:6b:e7:07:bd:f2:95: d9:22:18:0a:2b:3a:44:7a:cd:32:49:f4:04:a0:3e: 05:70:ad:27:20:f1:4a:6d:c4:db:d8:af:98:10:98: 80:52:a8:27:79:04:fa:94:36:5f:1c:d9:e9:e3:f6: c3:7e:96:ff:6c:73:7f:57:a1:de:20:7a:50:85:73: e8:db:d8:32:4f:bb:55:a9:b5:4e:98:60:41:b1:0f: 81:3a:58:94:a5:81:b6:2d:d3:5c:7b:18:db:74:7e: 79:ed:53:a9:67:a6:60:26:ee:d5:4f:5d:fd:c2:90: 32:a0:28:ba:0c:92:ed:bb:bd:32:e1:c2:a4:da:e8: f4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A9:D2:C5:72:96:13:51:A5:6D:10:4A:AC:12:0A:7C:14:F5:4A:5B X509v3 Authority Key Identifier: keyid:0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/2FC13F564ED511EA945E3314C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.204.0/22 IPv6: 2400:d3e0::/32 Signature Algorithm: sha256WithRSAEncryption 88:2a:10:91:87:6c:07:3e:0b:cd:d4:bc:89:03:7f:34:83:2d: e2:1f:29:92:6b:ac:d0:6b:a1:0a:be:6b:c1:dc:8f:7b:f9:91: e5:b9:c3:8c:5f:cd:82:ba:2a:81:27:6a:78:5a:82:65:1b:6b: 59:69:ef:23:07:3e:b8:b9:91:54:9b:5d:2f:b0:98:d8:3e:47: bd:e2:ab:75:53:97:6d:13:28:f8:ca:34:c7:08:d1:45:69:f9: c6:c2:f9:e5:5d:47:5b:b1:54:64:a9:4b:28:41:c8:6e:b7:75: 4c:9d:05:96:d1:61:c3:96:3a:eb:b6:71:ec:c3:3b:87:c7:05: 7e:15:f2:3a:78:52:3f:5d:c5:d0:3f:d2:32:0f:1b:75:d6:5c: 7c:06:6b:ca:b7:73:f5:21:a4:95:f7:83:c1:b0:39:90:10:a9: 85:c6:c8:cb:0a:c5:e6:72:75:4f:ff:8a:1b:20:18:1a:7e:17: ae:e3:ff:64:f6:85:8f:e2:be:49:c3:8e:e7:f4:80:40:c0:bb: 7b:55:aa:5c:34:55:6c:58:57:67:d1:08:54:6a:46:cb:fc:39: 5b:5d:13:46:21:e3:c6:2c:38:90:22:fa:22:aa:17:34:dd:73: 48:d1:53:06:fd:ba:33:f8:2f:82:ed:3b:37:e2:a2:57:6f:17: df:e0:91:bb -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDODIxMTAvBgNVBAUTKDBBOUI2OTgxQjEyRDVBNEQyREYzNkVFOUQyODBBNjU5 NUMzMjUxMzYwHhcNMjYwNjA2MTkyMjM3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI0NzM3ZC0xNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNrrb+jDlqennasRvEwaIc9wBYw+htpA1dkZTTx8VN3aYpGBmrhJyYCDnUFG t3thq7zOcdtJbzvrHwFut0Th7aNuCM0bASUi4czQGxr1k73JKSji1Mbe8Ee+Xy8X VWBvA1PhdqzWnBLlOiPx+8G0jdIHXHvTG3LcLj6a9Jh1nIxr5we98pXZIhgKKzpE es0ySfQEoD4FcK0nIPFKbcTb2K+YEJiAUqgneQT6lDZfHNnp4/bDfpb/bHN/V6He IHpQhXPo29gyT7tVqbVOmGBBsQ+BOliUpYG2LdNcexjbdH557VOpZ6ZgJu7VT139 wpAyoCi6DJLtu70y4cKk2uj0hQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFI+p0sVy lhNRpW0QSqwSCnwU9UpbMB8GA1UdIwQYMBaAFAqbaYGxLVpNLfNu6dKApllcMlE2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUM4Mi9DQkQ4OTNBMDRF RDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdrMHQ4MjdwMG9DbVdWd3lV VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwdHBnYkV0V2swdDgyN3Awb0NtV1Z3eVVUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFDODIvQ0JEODkzQTA0RUQzMTFFQUFEN0JBMjExQzRGOUFFMDIvMkZDMTNGNTY0 RUQ1MTFFQTk0NUUzMzE0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4nMMA0EAgACMAcDBQAkANPgMA0GCSqGSIb3DQEBCwUAA4IBAQCI KhCRh2wHPgvN1LyJA380gy3iHymSa6zQa6EKvmvB3I97+ZHlucOMX82CuiqBJ2p4 WoJlG2tZae8jBz64uZFUm10vsJjYPke94qt1U5dtEyj4yjTHCNFFafnGwvnlXUdb sVRkqUsoQchut3VMnQWW0WHDljrrtnHswzuHxwV+FfI6eFI/XcXQP9IyDxt11lx8 BmvKt3P1IaSV94PBsDmQEKmFxsjLCsXmcnVP/4obIBgafheu4/9k9oWP4r5Jw47n 9IBAwLt7VapcNFVsWFdn0QhUakbL/DlbXRNGIePGLDiQIvoiqhc03XNI0VMG/boz +C+C7Ts34qJXbxff4JG7 -----END CERTIFICATE-----Generated at Sat Jun 13 09:53:07 2026 by rpki-client