$ rpki-client -vvf rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/F696778AFE6C11EF8DF5DD5FC4F9AE02.roa File: F696778AFE6C11EF8DF5DD5FC4F9AE02.roa (raw, json) Hash identifier: QZy1qVC0Q+cqyxMf7EVM3pOdkz0nlqRyTh5BSLF+qQU= Subject key identifier: C7:35:02:0F:81:21:F8:8A:76:08:89:A8:F0:95:5D:3F:44:EF:60:10 Certificate issuer: /CN=A913C04E/serialNumber=AADCDB89E54B677C410463799F9586815C40FA4B Certificate serial: 01FA Authority key identifier: AA:DC:DB:89:E5:4B:67:7C:41:04:63:79:9F:95:86:81:5C:40:FA:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtzbieVLZ3xBBGN5n5WGgVxA-ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/F696778AFE6C11EF8DF5DD5FC4F9AE02.roa Signing time: Thu 02 Apr 2026 06:40:31 +0000 ROA not before: Thu 02 Apr 2026 06:40:31 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138677 IP address blocks: 103.134.200.0/23 maxlen: 23 103.134.200.0/24 maxlen: 24 103.134.201.0/24 maxlen: 24 119.235.11.0/24 maxlen: 24 2402:1120::/32 maxlen: 32 2402:1120::/48 maxlen: 48 2402:1120:1::/48 maxlen: 48 2402:1120:2::/48 maxlen: 48 2402:1120:3::/48 maxlen: 48 2402:1120:4::/48 maxlen: 48 2402:1120:5::/48 maxlen: 48 2402:1120:6::/48 maxlen: 48 2402:1120:7::/48 maxlen: 48 2402:1120:8::/48 maxlen: 48 2402:1120:9::/48 maxlen: 48 2402:1120:a::/48 maxlen: 48 2402:1120:b::/48 maxlen: 48 2402:1120:c::/48 maxlen: 48 2402:1120:d::/48 maxlen: 48 2402:1120:e::/48 maxlen: 48 2402:1120:f::/48 maxlen: 48 2402:1120:10::/48 maxlen: 48 2402:1120:11::/48 maxlen: 48 2402:1120:12::/48 maxlen: 48 2402:1120:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/qtzbieVLZ3xBBGN5n5WGgVxA-ks.crl rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/qtzbieVLZ3xBBGN5n5WGgVxA-ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtzbieVLZ3xBBGN5n5WGgVxA-ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C04E, serialNumber=AADCDB89E54B677C410463799F9586815C40FA4B Validity Not Before: Apr 2 06:40:31 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69ce0f5f-07d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:53:4e:09:f7:36:03:fc:32:78:16:2c:bd:d0: f5:77:84:82:b0:fc:a1:91:a4:3e:44:62:99:29:15: 21:2e:df:25:2c:f1:1f:b0:9f:31:a5:a9:ac:e2:fe: 1b:f5:2e:ae:c6:27:b7:a9:f2:16:43:e0:fb:a7:79: 42:54:51:ec:7d:53:9b:80:cd:c8:1c:30:48:23:c2: 8d:9a:6e:fc:ff:e2:22:c9:62:48:4d:ad:3d:6f:2e: b7:42:e4:0a:6c:10:94:99:6a:b1:bd:99:cf:ad:57: 56:29:14:8a:b2:62:20:5a:9c:03:f0:05:a8:97:4c: 28:87:0b:66:85:20:11:a5:a1:f4:4f:8d:99:01:7e: ee:4b:ad:80:47:3f:2d:ed:4d:4d:90:e9:8e:7d:63: 34:07:94:a5:0a:42:e8:d6:6b:dc:62:0d:ef:87:85: 0a:f7:6e:72:a6:b7:78:e4:38:cd:b5:a9:7e:36:b5: 64:de:6a:68:b8:cb:cd:2d:94:7c:c9:ea:9c:4c:72: c3:cf:f5:7a:71:ea:24:c4:2e:e4:8a:6a:48:bf:8e: 4c:f0:1f:37:96:7f:83:34:9f:1a:5d:14:af:2a:9c: c4:49:0f:3e:48:83:4a:cd:54:de:31:2a:7b:89:35: 3a:6c:dd:45:43:25:ee:08:ea:e8:c2:22:40:b4:bf: 09:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:35:02:0F:81:21:F8:8A:76:08:89:A8:F0:95:5D:3F:44:EF:60:10 X509v3 Authority Key Identifier: keyid:AA:DC:DB:89:E5:4B:67:7C:41:04:63:79:9F:95:86:81:5C:40:FA:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/qtzbieVLZ3xBBGN5n5WGgVxA-ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtzbieVLZ3xBBGN5n5WGgVxA-ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/F696778AFE6C11EF8DF5DD5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.200.0/23 119.235.11.0/24 IPv6: 2402:1120::/32 Signature Algorithm: sha256WithRSAEncryption 49:0b:20:5d:21:37:a8:40:e4:4c:fd:32:19:52:7f:22:39:ef: c0:37:73:a9:ac:15:98:01:d0:19:16:10:fd:6e:ae:57:38:88: d0:e8:a5:3e:3f:c5:66:68:71:73:96:70:5c:06:43:b0:61:c3: 3c:e9:3e:cd:bd:e6:63:0d:9c:5a:bd:4f:3c:85:b7:f6:45:64: 84:00:a3:d4:57:42:58:61:d0:ef:95:a8:4b:25:d4:2f:6c:11: 56:89:46:ca:4e:9e:b7:39:a9:3d:ae:58:3d:9c:21:7d:f5:50: 6b:3c:9d:c3:c5:b3:11:3e:d5:8e:17:f2:85:73:2c:ae:5a:27: 81:cd:ca:df:d0:0e:e7:87:3a:82:e3:3f:31:2c:d5:b3:58:d1: 3c:d4:c4:0d:4d:01:6f:1e:25:87:61:08:ad:89:82:9a:45:33: 13:e4:bf:e0:98:7d:2b:39:87:1f:fd:0d:8c:08:19:3d:9f:f5: 31:2b:6d:c1:59:d4:5e:75:5c:a0:bc:83:c4:f7:25:0d:a6:7b: 46:56:ff:ea:f2:c2:c9:fc:a0:36:03:8a:0b:39:b5:f2:64:19: a6:de:01:bf:15:63:45:46:09:53:f2:31:21:e1:55:01:e9:b0: 07:f9:bf:86:3f:59:0c:56:00:87:d7:7b:9c:9a:18:f4:1d:98: 94:9c:87:34 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MwNEUxMTAvBgNVBAUTKEFBRENEQjg5RTU0QjY3N0M0MTA0NjM3OTlGOTU4Njgx NUM0MEZBNEIwHhcNMjYwNDAyMDY0MDMxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlMGY1Zi0wN2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FNOCfc2A/wyeBYsvdD1d4SCsPyhkaQ+RGKZKRUhLt8lLPEfsJ8xpams4v4b 9S6uxie3qfIWQ+D7p3lCVFHsfVObgM3IHDBII8KNmm78/+IiyWJITa09by63QuQK bBCUmWqxvZnPrVdWKRSKsmIgWpwD8AWol0wohwtmhSARpaH0T42ZAX7uS62ARz8t 7U1NkOmOfWM0B5SlCkLo1mvcYg3vh4UK925yprd45DjNtal+NrVk3mpouMvNLZR8 yeqcTHLDz/V6ceokxC7kimpIv45M8B83ln+DNJ8aXRSvKpzESQ8+SINKzVTeMSp7 iTU6bN1FQyXuCOrowiJAtL8J5wIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFMc1Ag+B IfiKdgiJqPCVXT9E72AQMB8GA1UdIwQYMBaAFKrc24nlS2d8QQRjeZ+VhoFcQPpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzA0RS8yMkU2ODUyNjUx MzIxMUVFOTY0Q0NGNUJDNEY5QUUwMi9xdHpiaWVWTFozeEJCR041bjVXR2dWeEEt a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0emJpZVZMWjN4QkJHTjVuNVdHZ1Z4QS1rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MwNEUvMjJFNjg1MjY1MTMyMTFFRTk2NENDRjVCQzRGOUFFMDIvRjY5Njc3OEFG RTZDMTFFRjhERjVERDVGQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ4bIAwQAd+sLMA0EAgACMAcDBQAkAhEgMA0GCSqGSIb3DQEBCwUA A4IBAQBJCyBdITeoQORM/TIZUn8iOe/AN3OprBWYAdAZFhD9bq5XOIjQ6KU+P8Vm aHFzlnBcBkOwYcM86T7NveZjDZxavU88hbf2RWSEAKPUV0JYYdDvlahLJdQvbBFW iUbKTp63Oak9rlg9nCF99VBrPJ3DxbMRPtWOF/KFcyyuWieBzcrf0A7nhzqC4z8x LNWzWNE81MQNTQFvHiWHYQitiYKaRTMT5L/gmH0rOYcf/Q2MCBk9n/UxK23BWdRe dVygvIPE9yUNpntGVv/q8sLJ/KA2A4oLObXyZBmm3gG/FWNFRglT8jEh4VUB6bAH +b+GP1kMVgCH13ucmhj0HZiUnIc0 -----END CERTIFICATE-----Generated at Mon Apr 6 10:25:12 2026 by rpki-client