$ rpki-client -vvf rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa File: 65C8C388EAFB11ED9F4DC557C4F9AE02.roa (raw, json) Hash identifier: 49JEiOnck3YIqSnh0w+N5FmwAfU3DdS+vbKJpG7LI7Q= Subject key identifier: CE:E1:E9:FD:7E:72:54:98:92:F7:C7:B4:13:42:69:C2:DB:85:01:56 Certificate issuer: /CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Certificate serial: 15D7 Authority key identifier: 3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa Signing time: Mon 30 Mar 2026 17:20:42 +0000 ROA not before: Mon 30 Mar 2026 17:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 150388 IP address blocks: 103.100.140.0/24 maxlen: 24 2402:b740:15:388::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5591 (0x15d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CF42, serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Validity Not Before: Mar 30 17:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cab0ea-8669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c2:79:9d:77:20:6e:55:b0:e1:e8:a2:82:a8: ca:22:8a:20:27:d9:fd:0b:c2:00:46:e7:2c:bd:94: 69:51:a7:fe:aa:cf:ca:40:aa:fc:93:f1:5b:46:ad: 1e:f7:e3:f6:8f:b1:20:7b:ab:fa:04:86:4e:e5:54: 67:e1:c4:42:bc:10:69:be:ea:ad:3f:b0:af:ab:c3: c4:7c:83:56:db:71:ff:48:3e:2c:01:0b:a1:38:20: ac:b2:49:ed:a5:85:6a:c7:ad:23:4f:71:31:17:8d: 65:00:51:3f:f5:86:f1:11:80:df:11:0e:ba:1e:bd: 65:b1:5f:37:34:d0:01:7c:ab:98:33:10:28:a1:59: 14:01:39:34:98:5a:8c:3f:9b:fc:72:4d:91:5c:42: 42:e9:be:3e:2c:78:3d:11:ae:41:ad:6d:43:c9:9d: f4:cd:3c:61:14:44:c9:b6:61:d6:78:db:79:c3:52: a7:91:a3:0e:6b:56:72:eb:66:67:c7:9e:ab:62:d3: 54:18:f2:18:5a:40:28:f1:8a:0a:1a:48:70:1b:d7: db:ce:da:98:63:84:54:97:8c:a1:61:81:9b:54:aa: f3:ba:42:dc:f1:0f:83:ce:57:d0:14:b1:7d:7c:3d: 0e:9a:d2:7a:14:c4:77:81:79:6a:87:da:63:08:90: 36:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E1:E9:FD:7E:72:54:98:92:F7:C7:B4:13:42:69:C2:DB:85:01:56 X509v3 Authority Key Identifier: keyid:3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.100.140.0/24 IPv6: 2402:b740:15:388::/64 Signature Algorithm: sha256WithRSAEncryption 87:9e:39:13:79:51:dd:3f:1a:6b:04:23:ed:a2:68:4b:76:5c: 71:ff:27:7c:72:ee:6f:f1:7e:bd:b5:65:c1:c3:78:7f:0c:e2: b1:62:00:d4:cc:1f:c5:54:46:9e:2f:9f:78:d6:d7:59:a4:4c: c7:11:20:2b:19:0c:6a:80:3f:e4:b8:7a:3e:72:35:31:27:41: a4:61:92:3f:6e:92:77:18:53:fd:cd:c7:80:27:73:e2:f4:52: 59:23:05:4b:01:57:58:3e:10:a7:8d:9c:5a:c5:62:df:42:74: 85:bd:59:f4:d2:3c:51:01:e0:57:09:23:a0:a8:13:e2:13:f4: 04:d5:d1:14:7e:98:85:8b:32:84:b6:cc:60:65:d6:84:cd:89: 41:f7:d3:dd:3d:23:47:ae:43:02:a9:c7:08:7f:06:cb:f3:7d: 00:4b:c6:00:6e:a8:59:f7:2e:43:9f:4e:9e:88:0a:24:ad:ce: b4:d7:ae:93:82:45:11:32:eb:8e:ba:c1:6c:be:cf:80:0d:29: be:93:62:e6:57:a7:a5:24:70:67:0b:2f:6c:39:f1:d8:6c:b3: 8a:66:09:b2:a2:45:66:9c:5c:35:23:a9:3c:b8:72:3e:9e:65: 9e:29:f4:8a:9e:f7:04:c5:f5:3d:c7:21:0c:9e:67:c1:d9:f2: f8:c7:56:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNGNDIxMTAvBgNVBAUTKDNGNTU2QkMwMjUxMDMzQkNFNTcyRkM2QzhBQjc2MEFD QzQ5NzA1OTMwHhcNMjYwMzMwMTcyMDQyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhYjBlYS04NjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcJ5nXcgblWw4eiigqjKIoogJ9n9C8IARucsvZRpUaf+qs/KQKr8k/FbRq0e 9+P2j7Ege6v6BIZO5VRn4cRCvBBpvuqtP7Cvq8PEfINW23H/SD4sAQuhOCCssknt pYVqx60jT3ExF41lAFE/9YbxEYDfEQ66Hr1lsV83NNABfKuYMxAooVkUATk0mFqM P5v8ck2RXEJC6b4+LHg9Ea5BrW1DyZ30zTxhFETJtmHWeNt5w1KnkaMOa1Zy62Zn x56rYtNUGPIYWkAo8YoKGkhwG9fbztqYY4RUl4yhYYGbVKrzukLc8Q+DzlfQFLF9 fD0OmtJ6FMR3gXlqh9pjCJA2DQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM7h6f1+ clSYkvfHtBNCacLbhQFWMB8GA1UdIwQYMBaAFD9Va8AlEDO85XL8bIq3YKzElwWT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0Y0Mi83QTZBQkZDQzRD QzYxMUU4QkVGMDNENzVDNEY5QUUwMi9QMVZyd0NVUU03emxjdnhzaXJkZ3JNU1hC Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AxVnJ3Q1VRTTd6bGN2eHNpcmRnck1TWEJaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNGNDIvN0E2QUJGQ0M0Q0M2MTFFOEJFRjAzRDc1QzRGOUFFMDIvNjVDOEMzODhF QUZCMTFFRDlGNERDNTU3QzRGOUFFMDIucm9hMDIGCCsGAQUFBwEHAQH/BCMwITAM BAIAATAGAwQAZ2SMMBEEAgACMAsDCQAkArdAABUDiDANBgkqhkiG9w0BAQsFAAOC AQEAh545E3lR3T8aawQj7aJoS3Zccf8nfHLub/F+vbVlwcN4fwzisWIA1MwfxVRG ni+feNbXWaRMxxEgKxkMaoA/5Lh6PnI1MSdBpGGSP26SdxhT/c3HgCdz4vRSWSMF SwFXWD4Qp42cWsVi30J0hb1Z9NI8UQHgVwkjoKgT4hP0BNXRFH6YhYsyhLbMYGXW hM2JQffT3T0jR65DAqnHCH8Gy/N9AEvGAG6oWfcuQ59OnogKJK3OtNeuk4JFETLr jrrBbL7PgA0pvpNi5lenpSRwZwsvbDnx2GyzimYJsqJFZpxcNSOpPLhyPp5lnin0 ip73BMX1PcchDJ5nwdny+MdW+Q== -----END CERTIFICATE-----Generated at Mon Apr 6 09:52:50 2026 by rpki-client