$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa File: 751E90665BAB11EFB9769A80C4F9AE02.roa (raw, json) Hash identifier: sDV1SEKZeGbsy9FSAAPLIsIKO+rn3pYirqFdSzqZ8rU= Subject key identifier: EE:89:10:3B:DB:BC:95:FE:30:43:EA:E4:7B:92:A8:5A:12:9D:11:94 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 022E Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa Signing time: Thu 02 Apr 2026 19:24:09 +0000 ROA not before: Thu 02 Apr 2026 19:24:09 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135817 IP address blocks: 103.78.46.0/24 maxlen: 24 103.97.46.0/23 maxlen: 24 103.97.84.0/24 maxlen: 24 103.110.164.0/23 maxlen: 24 103.123.234.0/23 maxlen: 24 103.148.152.0/23 maxlen: 23 103.148.152.0/24 maxlen: 24 103.148.153.0/24 maxlen: 24 2001:df2:da80::/48 maxlen: 48 2001:df4:a300::/48 maxlen: 48 2403:8940::/32 maxlen: 32 2403:8940:2::/48 maxlen: 48 2403:8940:40::/48 maxlen: 48 2403:8940:1a00::/40 maxlen: 40 2403:8940:abcd::/48 maxlen: 48 2403:8940:fffd::/48 maxlen: 48 2403:8940:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: Apr 2 19:24:09 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cec259-b6c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:71:a9:87:9b:b3:04:06:11:09:aa:b6:aa:20: 61:1c:df:9c:e9:6b:e1:57:fd:23:6f:b1:1d:0c:15: 9e:11:75:cd:ee:2b:82:7a:8f:65:82:eb:40:e1:72: f1:6e:87:f1:96:b1:a1:45:d4:c2:98:17:64:69:5f: 11:fc:28:5b:0e:64:c5:4e:e1:2e:a5:f0:62:65:9d: 8e:ad:ee:8c:11:d4:8c:a0:f1:db:d1:9d:76:1c:d5: d8:42:68:f8:68:4c:a6:4e:09:dd:52:8e:91:a3:0a: 46:54:76:39:3d:03:fd:ea:18:60:17:c2:0f:0e:65: d9:24:af:1e:43:be:9a:7a:50:4a:d0:0f:95:e1:81: 34:8c:32:0b:87:67:f8:1e:51:be:2c:11:b9:ce:db: 0c:ea:c3:21:0b:e2:cd:c2:b1:28:c0:c6:88:7e:33: b0:6d:e4:bb:76:40:8d:69:a0:45:f4:e5:03:78:24: 0f:03:7f:e2:f6:5c:6f:20:76:dd:89:1e:9f:f2:f6: 10:c9:24:fc:03:f1:d1:66:55:e9:71:c2:52:3e:6a: 81:6a:c9:81:81:70:d4:9c:3e:0f:ec:d2:b4:b2:4c: 0b:63:6d:37:ba:63:0d:82:8e:4b:c4:d2:a7:95:40: f5:0a:c5:ea:44:66:40:e5:d5:d2:b1:89:99:46:d4: ed:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:89:10:3B:DB:BC:95:FE:30:43:EA:E4:7B:92:A8:5A:12:9D:11:94 X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.78.46.0/24 103.97.46.0/23 103.97.84.0/24 103.110.164.0/23 103.123.234.0/23 103.148.152.0/23 IPv6: 2001:df2:da80::/48 2001:df4:a300::/48 2403:8940::/32 Signature Algorithm: sha256WithRSAEncryption 7b:5f:84:86:b0:48:2f:93:9f:bc:66:61:5a:68:56:8a:97:6b: c5:ae:cc:3b:5e:3f:9b:f7:d0:9a:07:b2:de:3d:73:aa:c5:e0: 91:0f:64:21:50:64:15:4f:75:8d:87:8b:fe:e5:bf:8f:af:30: 07:81:19:51:46:6a:89:c4:e3:e6:e8:8f:eb:6f:55:54:27:a4: 75:2c:20:5c:23:df:e5:8c:d3:14:11:3d:7c:97:b1:f2:8c:b4: d6:34:db:42:24:37:7f:68:b2:2f:7f:58:5c:de:d7:fd:7f:ba: 51:07:1b:7b:78:50:64:ae:13:87:a4:f2:17:0b:bd:20:5f:9c: de:45:3d:8c:82:ad:da:7f:37:30:89:11:7a:b9:0b:7d:21:11: 9d:14:b3:dd:3b:c3:0b:28:0c:7c:a8:75:97:60:a0:75:de:d1: 5c:e4:bb:99:df:30:e4:78:2b:38:12:9d:c3:03:f8:4f:6c:86: 64:f3:ac:18:c2:ff:d5:27:eb:1b:c8:e8:48:f6:ce:17:e1:c0: 8b:07:d0:f7:63:10:d1:77:50:ab:78:0e:87:76:75:0d:cf:c2: 5e:c9:fa:4f:59:a0:1e:41:f6:b3:14:c2:48:a3:36:66:eb:d8: 1a:c0:39:b6:1a:b7:91:c2:d6:cd:8f:da:2b:66:87:bd:e3:33: 13:f2:f2:4f -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjYwNDAyMTkyNDA5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYzI1OS1iNmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nGph5uzBAYRCaq2qiBhHN+c6WvhV/0jb7EdDBWeEXXN7iuCeo9lgutA4XLx bofxlrGhRdTCmBdkaV8R/ChbDmTFTuEupfBiZZ2Ore6MEdSMoPHb0Z12HNXYQmj4 aEymTgndUo6RowpGVHY5PQP96hhgF8IPDmXZJK8eQ76aelBK0A+V4YE0jDILh2f4 HlG+LBG5ztsM6sMhC+LNwrEowMaIfjOwbeS7dkCNaaBF9OUDeCQPA3/i9lxvIHbd iR6f8vYQyST8A/HRZlXpccJSPmqBasmBgXDUnD4P7NK0skwLY203umMNgo5LxNKn lUD1CsXqRGZA5dXSsYmZRtTtPQIDAQABo4ICnzCCApswHQYDVR0OBBYEFO6JEDvb vJX+MEPq5HuSqFoSnRGUMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1QjcvNzFFN0EyMjI1MTk1MTFFQTg0NjRCQTc4QzRGOUFFMDIvNzUxRTkwNjY1 QkFCMTFFRkI5NzY5QTgwQzRGOUFFMDIucm9hMF4GCCsGAQUFBwEHAQH/BE8wTTAq BAIAATAkAwQAZ04uAwQBZ2EuAwQAZ2FUAwQBZ26kAwQBZ3vqAwQBZ5SYMB8EAgAC MBkDBwAgAQ3y2oADBwAgAQ30owADBQAkA4lAMA0GCSqGSIb3DQEBCwUAA4IBAQB7 X4SGsEgvk5+8ZmFaaFaKl2vFrsw7Xj+b99CaB7LePXOqxeCRD2QhUGQVT3WNh4v+ 5b+PrzAHgRlRRmqJxOPm6I/rb1VUJ6R1LCBcI9/ljNMUET18l7HyjLTWNNtCJDd/ aLIvf1hc3tf9f7pRBxt7eFBkrhOHpPIXC70gX5zeRT2Mgq3afzcwiRF6uQt9IRGd FLPdO8MLKAx8qHWXYKB13tFc5LuZ3zDkeCs4Ep3DA/hPbIZk86wYwv/VJ+sbyOhI 9s4X4cCLB9D3YxDRd1CreA6HdnUNz8JeyfpPWaAeQfazFMJIozZm69gawDm2GreR wtbNj9orZoe94zMT8vJP -----END CERTIFICATE-----Generated at Mon Apr 6 10:28:13 2026 by rpki-client