$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5842DDF0FCE511E9BFA4B27AC4F9AE02.roa File: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (raw, json) Hash identifier: tiznFO31M77tVMAqZuT5RhZyjOfXG4VtSqcUKQ0h8mI= Subject key identifier: B9:F5:E2:48:A2:0D:7B:CE:D2:29:3A:73:FF:34:54:6D:D5:85:76:5B Certificate issuer: /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Certificate serial: 0D49 Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5842DDF0FCE511E9BFA4B27AC4F9AE02.roa Signing time: Thu 14 May 2026 18:22:08 +0000 ROA not before: Thu 14 May 2026 18:22:08 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 138985 IP address blocks: 103.138.50.0/23 maxlen: 23 103.138.50.0/24 maxlen: 24 103.138.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3401 (0xd49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Validity Not Before: May 14 18:22:08 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a0612d0-5521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0f:a4:8b:68:06:ea:16:eb:2f:dc:53:68:c0: d5:7f:65:96:fc:17:8e:17:c2:7d:97:2f:a6:77:b7: 37:08:5c:a3:fc:61:38:b3:20:d5:e7:49:28:01:6d: 66:be:d6:13:be:9d:0a:1d:13:5f:4b:bf:d9:2a:b3: 09:c4:3d:c9:5c:af:71:ee:83:d1:b2:2e:43:d3:ce: eb:6b:0d:d0:58:1a:3e:da:74:11:86:d2:8b:93:23: ca:b2:bb:93:78:3b:06:62:a9:8d:97:3e:06:e6:c0: 5b:5c:f4:47:71:d2:b4:06:6f:96:f9:7d:4b:ca:10: 10:67:63:20:d4:1f:51:a2:45:63:b0:90:0a:5e:a6: 2f:25:96:15:34:91:fa:59:4a:1f:03:bb:b1:db:77: 30:56:c9:ca:cd:20:85:4d:44:c0:89:12:8b:07:b8: 50:27:28:a2:e4:58:d4:9f:7e:05:f7:05:5a:57:30: a8:ae:fc:2e:05:cc:81:42:1e:76:79:3d:26:10:df: d8:04:5b:6d:af:01:e5:0a:8c:c5:54:84:f5:66:76: f2:fe:ff:ec:11:5a:97:23:a4:78:b7:9e:a5:3a:d2: da:49:9a:f5:1a:14:c5:26:4c:9e:63:22:15:9d:95: 89:fe:55:d5:0a:8f:f0:53:99:f8:9d:63:14:7d:e4: 3b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F5:E2:48:A2:0D:7B:CE:D2:29:3A:73:FF:34:54:6D:D5:85:76:5B X509v3 Authority Key Identifier: keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5842DDF0FCE511E9BFA4B27AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.50.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:8c:71:2e:54:69:bf:b6:e6:d5:ae:e0:f0:fc:0c:22:1e:a9: f7:24:86:48:80:b9:5a:43:0d:07:93:57:35:03:ae:97:96:b6: 33:5f:96:f3:16:ef:eb:ed:36:b5:da:14:d8:4b:e8:e2:16:7c: 9f:8a:d1:bb:8e:84:b3:a8:d8:9b:31:4c:af:e7:22:34:09:53: 24:c3:2c:0f:d1:b3:9f:86:03:38:2a:28:3f:df:26:ff:10:df: 93:de:f5:a6:89:45:21:d5:bd:0b:c5:b7:35:11:44:9a:9d:31: c4:7b:a3:38:d4:bc:f4:96:e8:61:83:ca:27:7e:6d:0a:1f:38: 42:d7:36:2c:ce:5b:93:54:a0:5c:a9:27:cf:bb:24:51:25:90: 3e:97:74:98:3d:6a:78:37:21:62:17:71:c0:5b:d9:59:ae:26: cb:17:8e:a3:fb:32:b5:35:7d:d7:56:fd:d9:ac:f5:0b:0e:60: 10:98:d2:78:12:bb:a8:60:f9:53:50:e9:1f:d8:24:56:b2:fd: 51:5c:f0:de:da:79:58:7f:af:c6:41:83:12:38:90:80:46:38: 24:4f:a1:c2:69:5b:4f:9b:91:93:6a:ab:b7:52:5f:b2:d5:35: de:a4:cd:d6:e3:5a:36:36:6f:91:80:98:97:8a:54:57:09:ec: d5:f4:ce:14 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCMEIxMTAvBgNVBAUTKEU0RUI1REZBNTc5MjQyOTBCQjhGRUM0NUI5OTc3RkM2 QzdGNkZBMzcwHhcNMjYwNTE0MTgyMjA4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA2MTJkMC01NTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6A+ki2gG6hbrL9xTaMDVf2WW/BeOF8J9ly+md7c3CFyj/GE4syDV50koAW1m vtYTvp0KHRNfS7/ZKrMJxD3JXK9x7oPRsi5D087raw3QWBo+2nQRhtKLkyPKsruT eDsGYqmNlz4G5sBbXPRHcdK0Bm+W+X1LyhAQZ2Mg1B9RokVjsJAKXqYvJZYVNJH6 WUofA7ux23cwVsnKzSCFTUTAiRKLB7hQJyii5FjUn34F9wVaVzCorvwuBcyBQh52 eT0mEN/YBFttrwHlCozFVIT1Znby/v/sEVqXI6R4t56lOtLaSZr1GhTFJkyeYyIV nZWJ/lXVCo/wU5n4nWMUfeQ7UQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLn14kii DXvO0ik6c/80VG3VhXZbMB8GA1UdIwQYMBaAFOTrXfpXkkKQu4/sRbmXf8bH9vo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEIwQi81QUVCNUVCMkZD QzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1FwQzdqLXhGdVpkX3hzZjIt amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVPdGQtbGVTUXBDN2oteEZ1WmRfeHNmMi1qYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThCMEIvNUFFQjVFQjJGQ0M1MTFFOTk4NThBOTFFQzRGOUFFMDIvNTg0MkRERjBG Q0U1MTFFOUJGQTRCMjdBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4oyMA0GCSqGSIb3DQEBCwUAA4IBAQCMjHEuVGm/tubVruDw/Awi Hqn3JIZIgLlaQw0Hk1c1A66XlrYzX5bzFu/r7Ta12hTYS+jiFnyfitG7joSzqNib MUyv5yI0CVMkwywP0bOfhgM4Kig/3yb/EN+T3vWmiUUh1b0Lxbc1EUSanTHEe6M4 1Lz0luhhg8onfm0KHzhC1zYszluTVKBcqSfPuyRRJZA+l3SYPWp4NyFiF3HAW9lZ ribLF46j+zK1NX3XVv3ZrPULDmAQmNJ4EruoYPlTUOkf2CRWsv1RXPDe2nlYf6/G QYMSOJCARjgkT6HCaVtPm5GTaqu3Ul+y1TXepM3W41o2Nm+RgJiXilRXCezV9M4U -----END CERTIFICATE-----Generated at Fri Jun 12 11:49:07 2026 by rpki-client