$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa File: 9F0D6574BFF011EAA38D3B64C4F9AE02.roa (raw, json) Hash identifier: zr9WgE2KmAHV01j5bTwejKCZJZ/f953lXlW3VV/8nH0= Subject key identifier: E2:41:9D:6D:FB:BF:EA:0E:72:26:2E:CE:87:E3:69:C4:9F:C5:E0:F7 Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0BED Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa Signing time: Tue 28 Apr 2026 19:25:39 +0000 ROA not before: Tue 28 Apr 2026 19:25:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 103.248.128.0/24 maxlen: 24 2403:5f40:ca00::/44 maxlen: 44 2403:5f40:ca00::/48 maxlen: 48 2403:5f40:ca01::/48 maxlen: 48 2403:5f40:ca02::/48 maxlen: 48 2403:5f40:ca03::/48 maxlen: 48 2403:5f40:ca04::/48 maxlen: 48 2403:5f40:ca05::/48 maxlen: 48 2403:5f40:ca06::/48 maxlen: 48 2403:5f40:ca07::/48 maxlen: 48 2403:5f40:ca08::/48 maxlen: 48 2403:5f40:ca09::/48 maxlen: 48 2403:5f40:ca0a::/48 maxlen: 48 2403:5f40:ca0b::/48 maxlen: 48 2403:5f40:ca0c::/48 maxlen: 48 2403:5f40:ca0d::/48 maxlen: 48 2403:5f40:ca0e::/48 maxlen: 48 2403:5f40:ca0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3053 (0xbed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78, serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: Apr 28 19:25:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f109b3-4d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ea:52:6e:50:94:fd:99:c8:9e:1d:84:ac:dc: f0:be:69:81:ff:ad:be:f7:d7:b8:95:83:8f:3e:be: 15:d6:fd:cd:e5:c6:13:b6:29:9a:fd:da:b4:aa:ef: e5:ad:11:ee:95:fc:2e:2c:ea:fe:4c:af:38:00:4c: 93:2d:bb:b9:85:30:a8:c7:fb:33:ce:cb:dd:63:37: 64:0a:be:5d:6d:cb:ff:b1:b3:c4:30:37:d5:57:bc: 82:fc:fd:ef:42:6f:86:a9:3f:f9:8c:8d:d2:9a:59: 7b:24:7b:1f:02:60:5b:53:3a:bf:76:46:a9:ec:10: f6:68:92:04:22:ae:47:c6:8d:39:62:b4:7d:4b:49: cd:67:e0:6c:42:a0:c7:2a:d5:e4:13:13:9a:65:69: 52:7e:7d:05:e7:63:cc:7d:c3:75:c6:94:3b:02:be: 47:ed:f9:0f:8b:9a:62:b7:3d:b5:ab:7c:b3:5f:13: 3a:d3:3f:f9:a8:9b:36:d1:07:fd:68:fa:ca:01:25: d8:fb:5a:71:55:89:7b:68:d0:0b:97:aa:a7:d2:f6: f6:b9:2f:5b:4f:4f:48:0c:74:73:da:4c:25:77:14: 46:d2:1a:9b:26:62:65:8e:de:85:4a:d4:4f:46:48: 4c:ae:42:7a:f4:46:f9:21:82:5e:02:a7:ac:06:fb: 96:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:41:9D:6D:FB:BF:EA:0E:72:26:2E:CE:87:E3:69:C4:9F:C5:E0:F7 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/24 IPv6: 2403:5f40:ca00::/44 Signature Algorithm: sha256WithRSAEncryption 96:05:08:34:8a:85:21:55:4c:93:ed:10:0f:df:02:a7:10:46: fa:1a:40:97:ed:47:46:2e:72:57:e3:68:e2:17:6f:ea:92:0d: 72:a8:27:7b:6f:ac:2c:6c:4e:81:9b:dc:b5:4c:a0:b0:f4:66: c4:6f:16:4f:c4:eb:2d:fa:f8:11:09:2d:76:ba:f5:d0:bf:3b: 75:1a:2e:af:c2:ae:50:15:1e:ab:09:f9:6f:c4:e6:07:7b:13: 7e:34:99:6f:93:4e:da:30:46:60:6a:c1:37:7f:73:c0:96:3c: 69:b8:41:2f:60:3c:ee:a7:89:16:c9:2d:15:f9:ef:83:92:4f: b3:55:60:46:a0:ee:5e:97:ec:7e:79:a4:fe:ad:0f:e0:a7:b2: d1:38:d8:2c:b3:65:3b:3d:d2:89:52:96:b6:b6:fd:0d:da:0f: 09:6e:20:69:bc:18:3a:95:de:48:94:aa:5e:31:0e:7b:ac:f7: f5:dc:80:37:06:8c:56:ae:52:ea:47:a8:3d:9e:6d:1b:c1:6b: e9:db:f9:16:b5:50:7b:1d:ad:56:22:46:68:58:90:af:71:aa: c3:f7:1e:a6:8b:7e:e0:1e:8e:73:35:2f:04:6d:f1:ed:77:0e: 56:dd:46:ba:bb:46:28:87:74:4a:f0:a8:09:03:7f:c0:a1:3f: 60:ab:a4:74 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjYwNDI4MTkyNTM5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxMDliMy00ZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlepSblCU/ZnInh2ErNzwvmmB/62+99e4lYOPPr4V1v3N5cYTtima/dq0qu/l rRHulfwuLOr+TK84AEyTLbu5hTCox/szzsvdYzdkCr5dbcv/sbPEMDfVV7yC/P3v Qm+GqT/5jI3Smll7JHsfAmBbUzq/dkap7BD2aJIEIq5Hxo05YrR9S0nNZ+BsQqDH KtXkExOaZWlSfn0F52PMfcN1xpQ7Ar5H7fkPi5pitz21q3yzXxM60z/5qJs20Qf9 aPrKASXY+1pxVYl7aNALl6qn0vb2uS9bT09IDHRz2kwldxRG0hqbJmJljt6FStRP RkhMrkJ69Eb5IYJeAqesBvuW5QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOJBnW37 v+oOciYuzofjacSfxeD3MB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvOUYwRDY1NzRC RkYwMTFFQUEzOEQzQjY0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ/iAMA8EAgACMAkDBwQkA19AygAwDQYJKoZIhvcNAQELBQADggEB AJYFCDSKhSFVTJPtEA/fAqcQRvoaQJftR0YuclfjaOIXb+qSDXKoJ3tvrCxsToGb 3LVMoLD0ZsRvFk/E6y36+BEJLXa69dC/O3UaLq/CrlAVHqsJ+W/E5gd7E340mW+T TtowRmBqwTd/c8CWPGm4QS9gPO6niRbJLRX574OST7NVYEag7l6X7H55pP6tD+Cn stE42CyzZTs90olSlra2/Q3aDwluIGm8GDqV3kiUql4xDnus9/XcgDcGjFauUupH qD2ebRvBa+nb+Ra1UHsdrVYiRmhYkK9xqsP3HqaLfuAejnM1LwRt8e13DlbdRrq7 RiiHdErwqAkDf8ChP2CrpHQ= -----END CERTIFICATE-----Generated at Wed May 13 13:49:27 2026 by rpki-client