$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa File: 6B4669CE7B7D11E99F99E776C4F9AE02.roa (raw, json) Hash identifier: wWiBrsPclt2HSsmAyI8LNqC2U3qAaeghLY8UH+OtrWo= Subject key identifier: 8E:31:80:2C:B1:77:60:A1:5B:31:4F:4C:E6:6C:81:E7:C0:C2:43:AD Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 26F2 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa Signing time: Tue 10 Mar 2026 17:22:28 +0000 ROA not before: Tue 10 Mar 2026 17:22:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.138.210.0/24 maxlen: 24 2001:df0:5580::/48 maxlen: 48 2001:df0:5580:400::/54 maxlen: 54 2001:df0:5580:c00::/54 maxlen: 54 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 17:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9970 (0x26f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Mar 10 17:22:28 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69b05353-b6b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:98:97:08:d2:b3:2e:cd:a3:fb:e0:ac:5c:52: 64:da:2f:2d:2a:82:72:eb:48:f7:22:78:cd:b3:2f: b9:30:ff:32:08:86:93:49:b5:fd:e2:b7:78:8d:f5: e3:b3:69:0e:bc:df:8c:30:b4:2a:23:ef:2d:f4:65: 4c:73:68:03:ee:29:22:41:83:b8:90:8f:fc:c2:cb: ce:d2:ac:12:8b:bf:13:e0:94:ef:77:d6:1e:1d:bf: 28:3c:ee:7f:a2:c6:e3:53:4f:49:3e:c5:80:fe:61: 49:bf:7b:56:a3:81:04:b7:e3:a6:8c:b3:56:8c:79: a9:e1:e5:24:83:ca:7c:99:a9:52:be:58:a7:ea:0c: c7:0d:e7:9a:9e:cc:90:13:18:87:bf:e0:52:95:24: d7:30:b5:0a:a3:5a:fe:ac:43:0f:a5:ed:bb:30:6d: f9:79:1a:7a:51:c9:73:44:62:52:66:49:06:a9:d7: 7b:e8:01:b4:2d:ef:f4:97:36:46:cf:5a:62:05:14: 06:98:e7:32:a3:2c:56:9b:2e:ed:8b:40:9a:70:6c: f6:0f:70:65:b2:44:de:b6:cc:66:2e:14:75:2c:09: 78:bc:a6:78:05:45:e1:08:f5:b7:fc:b7:98:44:4b: 01:78:59:a1:b2:e3:e4:a0:7a:84:0f:48:2e:10:8d: 1e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:31:80:2C:B1:77:60:A1:5B:31:4F:4C:E6:6C:81:E7:C0:C2:43:AD X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/6B4669CE7B7D11E99F99E776C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 IPv6: 2001:df0:5580::/48 Signature Algorithm: sha256WithRSAEncryption 64:95:08:fc:74:92:3f:c5:b8:b7:e8:ea:2c:cc:27:9a:bb:84: 52:91:20:70:ae:be:30:86:14:c9:b4:30:2b:f9:57:cd:35:4a: 8c:c7:77:b3:6b:c8:f4:64:77:36:ba:a5:6d:6a:05:34:6b:49: c6:83:1d:2b:ea:7e:4e:f0:b0:09:e5:80:e6:c3:99:1f:3b:98: 64:2f:06:d5:4f:a8:6d:a4:84:90:7b:ae:a6:9f:8b:62:a7:e4: 8c:12:6d:db:d0:81:b2:21:59:8b:74:53:28:1c:11:1c:47:3b: 0a:b4:43:31:75:8b:55:2a:db:de:24:42:29:27:b3:6d:a4:55: 38:62:6f:a3:43:89:a6:f4:dc:80:4b:ca:db:09:ca:da:89:19: e6:cf:dc:0a:8f:47:ce:73:a1:3e:3b:8f:38:81:da:52:f5:3c: 43:19:7a:b7:5f:01:cc:50:05:30:7f:d9:5b:9b:81:a2:b0:a6: e6:c0:29:e5:31:72:d9:e6:c1:ee:6e:c0:24:f1:fa:db:1f:e7: 26:85:58:12:76:bc:3c:bd:b3:20:05:22:a3:46:72:dc:85:f6: 7b:d1:88:ef:bb:3e:30:39:59:6f:7c:2d:e6:d5:c9:02:4a:4e: 9e:12:3c:58:5e:73:3a:4d:cc:65:d0:e4:31:c7:dd:4d:53:20: d8:86:fe:79 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICJvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjYwMzEwMTcyMjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIwNTM1My1iNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZiXCNKzLs2j++CsXFJk2i8tKoJy60j3InjNsy+5MP8yCIaTSbX94rd4jfXj s2kOvN+MMLQqI+8t9GVMc2gD7ikiQYO4kI/8wsvO0qwSi78T4JTvd9YeHb8oPO5/ osbjU09JPsWA/mFJv3tWo4EEt+OmjLNWjHmp4eUkg8p8malSvlin6gzHDeeansyQ ExiHv+BSlSTXMLUKo1r+rEMPpe27MG35eRp6UclzRGJSZkkGqdd76AG0Le/0lzZG z1piBRQGmOcyoyxWmy7ti0CacGz2D3BlskTetsxmLhR1LAl4vKZ4BUXhCPW3/LeY REsBeFmhsuPkoHqED0guEI0eHQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFI4xgCyx d2ChWzFPTOZsgefAwkOtMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvNkI0NjY5Q0U3 QjdEMTFFOTlGOTlFNzc2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ4rSMA8EAgACMAkDBwAgAQ3wVYAwDQYJKoZIhvcNAQELBQADggEB AGSVCPx0kj/FuLfo6izMJ5q7hFKRIHCuvjCGFMm0MCv5V801SozHd7NryPRkdza6 pW1qBTRrScaDHSvqfk7wsAnlgObDmR87mGQvBtVPqG2khJB7rqafi2Kn5IwSbdvQ gbIhWYt0UygcERxHOwq0QzF1i1Uq294kQikns22kVThib6NDiab03IBLytsJytqJ GebP3AqPR85zoT47jziB2lL1PEMZerdfAcxQBTB/2VubgaKwpubAKeUxctnmwe5u wCTx+tsf5yaFWBJ2vDy9syAFIqNGctyF9nvRiO+7PjA5WW98LebVyQJKTp4SPFhe czpNzGXQ5DHH3U1TINiG/nk= -----END CERTIFICATE-----Generated at Thu Mar 19 11:43:02 2026 by rpki-client