
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa
File: C8D6C4CAD1EF11EAA9944238C4F9AE02.roa (raw, json)
Hash identifier: cQKYZfkgbkJUbhvtH5bCihqRqaA2EA0EYMRpPCO51mc=
Subject key identifier: 21:C0:1C:66:F3:F1:7E:97:D1:79:13:4E:C5:1E:4C:16:C0:FE:1C:25
Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0
Certificate serial: 273E
Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa
Signing time: Tue 30 Jun 2026 18:21:54 +0000
ROA not before: Tue 30 Jun 2026 18:21:54 +0000
ROA not after: Sat 31 Oct 2026 00:00:00 +0000
asID: 139038
IP address blocks: 103.138.210.0/24 maxlen: 24
103.138.210.254/32 maxlen: 32
2001:df0:5580::/48 maxlen: 48
2001:df0:5580::/54 maxlen: 54
2001:df0:5580:800::/54 maxlen: 54
2001:df0:5580:1000::/52 maxlen: 52
2001:df0:5580:1000::/54 maxlen: 54
2001:df0:5580:2000::/52 maxlen: 52
2001:df0:5580:3000::/52 maxlen: 52
2001:df0:5580:7000::/52 maxlen: 52
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl
rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 17:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10046 (0x273e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0
Validity
Not Before: Jun 30 18:21:54 2026 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=6a440942-16a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ad:74:d5:cf:16:d4:8a:9b:92:02:33:ab:97:
8b:42:19:9c:18:b5:d6:36:80:83:3c:af:17:33:f9:
60:b1:d1:73:77:b5:e8:36:77:6d:5c:68:bd:c4:a4:
6b:fe:09:dd:57:f2:7f:86:75:35:75:7d:bc:ac:37:
4f:70:60:7b:5e:7c:bc:3d:cd:08:ae:74:e3:e5:a1:
19:f8:61:91:91:ed:a2:f4:03:49:12:98:2a:99:eb:
aa:85:19:49:66:19:e0:80:57:86:33:a9:3e:3e:cb:
d2:5d:b1:ee:23:94:be:76:10:73:84:87:a4:e6:55:
d4:6b:8b:1c:56:6d:9e:02:ab:65:c8:f3:e4:15:c6:
c6:e3:c3:0b:21:5c:ff:3d:0f:7b:20:ac:67:c5:47:
b2:e8:ca:09:e9:eb:22:f4:e8:a0:da:7c:1b:73:95:
40:aa:88:b8:e9:df:0d:50:db:64:0f:da:52:08:ef:
a3:81:93:df:14:76:43:04:92:7f:00:6e:f6:6a:ca:
c1:5f:80:53:aa:df:5c:c1:df:30:fd:ab:03:d1:93:
02:6a:7b:17:3e:01:7d:d8:f6:98:63:16:3f:ce:77:
38:26:7f:32:6e:c1:28:b2:6a:1d:89:a1:8d:31:54:
a8:af:00:cb:ac:df:72:c2:99:5d:00:c2:af:a3:11:
cd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C0:1C:66:F3:F1:7E:97:D1:79:13:4E:C5:1E:4C:16:C0:FE:1C:25
X509v3 Authority Key Identifier:
keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/C8D6C4CAD1EF11EAA9944238C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.138.210.0/24
IPv6:
2001:df0:5580::/48
Signature Algorithm: sha256WithRSAEncryption
5d:8b:83:4e:62:e4:b4:66:d8:f2:3e:62:5f:1d:38:02:26:9a:
27:7b:a2:3b:c1:8a:8a:27:da:1e:3a:c3:cb:08:a1:d6:b4:05:
78:8b:f0:22:21:99:98:bc:1a:53:d5:88:72:38:fe:bd:5f:1d:
10:1e:b2:bf:99:b8:e9:f6:93:fe:40:cb:23:e8:61:5a:98:5e:
3c:ae:da:40:35:56:66:9f:dd:5d:ed:7f:38:7b:4e:74:e3:ea:
11:05:59:f0:9a:59:9a:53:d7:29:35:9e:9e:0b:99:63:69:dd:
f1:37:48:73:08:5a:6b:97:15:80:55:b2:d6:2c:ba:61:49:4b:
6b:1d:6b:d8:db:4b:7e:09:29:54:16:cc:60:eb:8e:80:6e:c8:
33:1f:4f:07:e6:eb:6a:7f:0f:c4:3c:36:12:6c:41:fa:28:d1:
e7:ce:95:c6:a0:78:d0:fd:9d:80:15:14:1a:11:b6:9d:0b:79:
ba:e5:b4:ac:af:3e:21:2d:ff:4c:6f:4a:1c:6f:71:40:87:85:
f2:c3:69:5d:fe:10:8f:ab:a5:2a:45:c5:fc:8d:45:a7:a7:83:
76:56:25:69:cf:74:32:f8:c7:ed:8c:dd:50:03:bb:2d:f0:92:
5d:82:72:d2:35:b9:45:cd:20:0e:5a:40:f0:f4:ad:a9:15:d9:
4e:e7:5d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 13:51:18 2026 by rpki-client