$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa File: 751E90665BAB11EFB9769A80C4F9AE02.roa (raw, json) Hash identifier: tr2lD7o9Jj2eezYb6KX+vn/JZs+QxwzBoXg4U7YfC4M= Subject key identifier: 39:65:C9:85:1C:08:C7:A1:71:2F:1B:37:C1:D2:64:C7:AE:E6:10:08 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 024F Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa Signing time: Tue 02 Jun 2026 11:09:33 +0000 ROA not before: Tue 02 Jun 2026 11:09:33 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135817 IP address blocks: 103.78.46.0/24 maxlen: 24 103.97.46.0/23 maxlen: 24 103.97.84.0/24 maxlen: 24 103.110.164.0/23 maxlen: 24 103.123.234.0/23 maxlen: 24 103.148.152.0/23 maxlen: 23 103.148.152.0/24 maxlen: 24 103.148.153.0/24 maxlen: 24 2001:df2:da80::/48 maxlen: 48 2001:df4:a300::/48 maxlen: 48 2403:8940::/32 maxlen: 32 2403:8940:2::/48 maxlen: 48 2403:8940:40::/48 maxlen: 48 2403:8940:1a00::/40 maxlen: 40 2403:8940:abcd::/48 maxlen: 48 2403:8940:e000::/40 maxlen: 40 2403:8940:fffd::/48 maxlen: 48 2403:8940:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 19:09:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: Jun 2 11:09:33 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a1eb9ed-484e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a4:27:f7:6a:c6:8e:0f:d0:ee:3c:96:3e:4a: bb:f2:1f:28:ef:65:8d:ad:43:42:6e:19:e1:ba:86: b7:79:0c:4c:1b:ba:b7:e2:99:91:de:f9:00:33:bf: 85:32:74:7e:fa:f2:f8:38:be:a9:b5:af:14:74:a8: 09:2e:d3:75:cd:fb:27:f0:16:5c:9b:82:dc:07:13: 3a:53:3e:1b:30:70:f9:36:38:03:a8:c4:61:da:eb: 4e:29:13:66:10:6a:14:2d:1c:9f:6d:fe:42:dc:7a: 39:f9:93:26:81:f4:25:0e:39:b0:f0:8e:31:4d:65: c4:af:b9:66:4b:8c:17:a7:8d:40:9b:d4:b6:c9:8f: a0:42:77:e5:a3:0d:79:4e:33:cc:07:70:3b:3f:0c: c3:94:78:71:08:47:09:31:4d:c3:76:71:57:c7:31: b7:a2:32:4b:b7:ea:c4:be:12:c2:57:5d:cf:3f:d2: 59:9c:7f:85:d8:21:bb:35:70:f2:dc:d3:9d:6a:05: 39:ba:d6:70:02:38:36:e4:86:82:95:b5:28:0e:97: 61:35:99:aa:38:f2:7f:7d:07:fc:10:6c:e9:bb:17: 0e:09:5c:d2:4c:7d:ca:68:98:c9:b4:69:bd:b3:c3: e8:e8:f0:6c:5b:31:75:ff:75:77:0a:75:f6:01:13: 6b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:65:C9:85:1C:08:C7:A1:71:2F:1B:37:C1:D2:64:C7:AE:E6:10:08 X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.78.46.0/24 103.97.46.0/23 103.97.84.0/24 103.110.164.0/23 103.123.234.0/23 103.148.152.0/23 IPv6: 2001:df2:da80::/48 2001:df4:a300::/48 2403:8940::/32 Signature Algorithm: sha256WithRSAEncryption 6d:0c:f3:10:a8:0f:8e:cd:8c:14:53:85:53:4d:cd:a1:21:d3: 6f:11:e5:52:43:92:d6:e8:3c:d9:89:fe:5a:06:13:bf:dc:47: 62:d9:c7:45:f2:6d:4c:c2:94:1b:b9:d4:57:84:41:cf:fa:53: 6c:9c:fe:be:a0:32:67:fd:f3:68:5b:be:91:0e:69:a3:9f:87: da:e1:13:b3:a7:1a:db:c1:2a:48:ad:f9:49:52:0b:3c:9a:ef: d6:32:5e:f1:a3:02:57:cf:64:f8:bb:da:2b:64:6c:f1:9c:2c: 97:cd:2b:62:67:b9:c3:00:65:e7:ca:1f:c3:f4:00:da:28:0f: 8b:eb:b9:0c:79:4d:48:a7:1e:13:ce:51:42:43:71:3e:0f:d3: 58:c6:1f:f2:fb:aa:9a:f1:be:78:45:10:2d:ef:d3:10:bf:0c: db:1c:c7:82:34:5b:ef:b0:76:3f:9c:81:a3:54:88:dd:74:d1: 70:5a:c3:bf:5c:fb:20:1c:ee:be:47:c0:60:a4:af:18:dd:d8: 69:82:64:3e:78:a3:6f:29:b0:7f:33:9b:c2:5a:a3:9e:9f:f3: 03:b8:94:81:b7:53:12:95:d6:3b:4a:d0:62:3e:58:6b:82:57: 5d:4a:22:e2:03:9a:fe:a3:e5:0c:59:eb:ad:40:6e:ad:91:00: c3:51:5f:78 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjYwNjAyMTEwOTMzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTFlYjllZC00ODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaQn92rGjg/Q7jyWPkq78h8o72WNrUNCbhnhuoa3eQxMG7q34pmR3vkAM7+F MnR++vL4OL6pta8UdKgJLtN1zfsn8BZcm4LcBxM6Uz4bMHD5NjgDqMRh2utOKRNm EGoULRyfbf5C3Ho5+ZMmgfQlDjmw8I4xTWXEr7lmS4wXp41Am9S2yY+gQnflow15 TjPMB3A7PwzDlHhxCEcJMU3DdnFXxzG3ojJLt+rEvhLCV13PP9JZnH+F2CG7NXDy 3NOdagU5utZwAjg25IaClbUoDpdhNZmqOPJ/fQf8EGzpuxcOCVzSTH3KaJjJtGm9 s8Po6PBsWzF1/3V3CnX2ARNrCwIDAQABo4ICnzCCApswHQYDVR0OBBYEFDllyYUc CMehcS8bN8HSZMeu5hAIMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1QjcvNzFFN0EyMjI1MTk1MTFFQTg0NjRCQTc4QzRGOUFFMDIvNzUxRTkwNjY1 QkFCMTFFRkI5NzY5QTgwQzRGOUFFMDIucm9hMF4GCCsGAQUFBwEHAQH/BE8wTTAq BAIAATAkAwQAZ04uAwQBZ2EuAwQAZ2FUAwQBZ26kAwQBZ3vqAwQBZ5SYMB8EAgAC MBkDBwAgAQ3y2oADBwAgAQ30owADBQAkA4lAMA0GCSqGSIb3DQEBCwUAA4IBAQBt DPMQqA+OzYwUU4VTTc2hIdNvEeVSQ5LW6DzZif5aBhO/3Edi2cdF8m1MwpQbudRX hEHP+lNsnP6+oDJn/fNoW76RDmmjn4fa4ROzpxrbwSpIrflJUgs8mu/WMl7xowJX z2T4u9orZGzxnCyXzStiZ7nDAGXnyh/D9ADaKA+L67kMeU1Ipx4TzlFCQ3E+D9NY xh/y+6qa8b54RRAt79MQvwzbHMeCNFvvsHY/nIGjVIjddNFwWsO/XPsgHO6+R8Bg pK8Y3dhpgmQ+eKNvKbB/M5vCWqOen/MDuJSBt1MSldY7StBiPlhrglddSiLiA5r+ o+UMWeutQG6tkQDDUV94 -----END CERTIFICATE-----Generated at Thu Jun 4 12:04:10 2026 by rpki-client