
$ rpki-client -vvf rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa
File: 425602A0AD2111EA9510AC0DC4F9AE02.roa (raw, json)
Hash identifier: wvYVogEPvoFCtzCJVijlsRshsI6KKnDq+l2O9Xrnf54=
Subject key identifier: D9:6F:1E:49:7A:4F:77:35:F6:1D:61:D4:AB:08:D2:A1:A1:0D:2F:66
Certificate issuer: /CN=A914331D/serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0
Certificate serial: 09BA
Authority key identifier: D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa
Signing time: Mon 22 Jun 2026 20:23:54 +0000
ROA not before: Mon 22 Jun 2026 20:23:54 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 140635
IP address blocks: 103.151.76.0/23 maxlen: 23
103.151.76.0/24 maxlen: 24
103.151.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl
rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 20:04:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2490 (0x9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914331D, serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0
Validity
Not Before: Jun 22 20:23:54 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a3999da-412b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:25:a4:ab:35:81:35:51:57:7f:a5:c5:e6:ec:
30:6c:c6:cc:8a:b0:96:e3:12:91:c4:1f:7d:43:5d:
78:1c:f2:f4:c4:40:f3:af:dc:c1:e2:b4:14:44:1c:
6f:5c:80:70:c0:ac:f3:47:70:25:1d:7b:84:61:c0:
46:82:21:e4:b9:ff:c0:f8:15:3d:3f:ab:ab:2d:5a:
81:12:06:21:13:30:8e:3f:14:53:dc:98:31:55:a3:
c1:d3:1f:8f:6c:ef:c1:64:8b:bb:a8:49:df:67:83:
9c:46:36:8a:3e:59:6d:9a:a3:3b:71:75:9b:47:7d:
4f:ab:9f:78:b6:3e:d0:36:05:09:73:41:a8:51:b7:
6d:02:09:51:09:8a:ee:54:6e:a3:cb:3c:76:89:8c:
ca:18:b3:d6:5c:b6:87:69:b0:99:18:1c:8d:d6:81:
3d:0b:4b:f4:06:83:79:23:ba:2a:0d:54:d9:db:d7:
4e:7e:98:f9:7a:b8:1b:43:02:82:a4:5f:b6:75:99:
fa:68:97:d5:56:cb:bf:81:5d:a3:fd:68:ea:f2:e4:
a4:08:00:33:41:2f:88:e2:00:6a:bd:df:21:62:5f:
57:a5:44:1b:c7:b1:31:a0:91:87:89:17:47:3f:43:
84:6d:c7:34:9c:a2:29:ad:8c:19:6a:c9:3b:9b:36:
c2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6F:1E:49:7A:4F:77:35:F6:1D:61:D4:AB:08:D2:A1:A1:0D:2F:66
X509v3 Authority Key Identifier:
keyid:D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.151.76.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:4c:05:29:6a:c6:59:2e:7e:1d:2f:17:ac:f9:91:88:5b:8b:
07:16:a8:0d:2b:d8:3e:ec:5c:8a:d1:e9:14:a0:76:a7:ee:55:
7e:a6:30:54:5f:14:a8:00:b9:c1:dc:4c:99:b3:f6:f3:cd:24:
b0:0b:f7:33:f1:06:21:4c:b2:12:fe:ff:bc:04:fe:a0:a1:40:
96:0c:34:bc:5f:6e:fc:4f:be:3e:0b:80:a6:dd:60:92:34:bc:
12:24:da:73:4b:2f:ae:a7:46:8e:84:81:e4:ca:d0:5c:00:18:
4c:20:e2:f1:18:54:50:d4:f5:18:e0:33:9b:21:cd:de:9f:89:
ac:12:ce:48:fa:36:0a:74:e6:b9:a3:f8:21:f3:64:d4:6e:85:
f1:aa:3f:f0:16:c5:00:b8:e5:58:1c:1a:ee:8c:a6:ee:c0:fd:
61:74:12:ac:cd:58:ca:d6:f5:d0:7a:ad:29:2d:5d:91:ef:56:
13:49:1a:30:4b:be:bc:97:54:25:95:87:85:14:ed:b3:e3:09:
ef:d3:fe:a2:99:f7:c3:de:67:93:35:0c:08:3c:70:1e:82:53:
36:a9:dc:c7:57:e9:e0:39:0e:4f:88:23:ba:b0:df:fa:f7:fa:
cd:68:3d:4e:fc:09:5e:ce:cc:b7:1f:3d:fe:5d:6b:0f:51:20:
ea:b3:7e:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 09:24:09 2026 by rpki-client