$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa File: 747C668ECCD911EF9B52C877C4F9AE02.roa (raw, json) Hash identifier: 6UIx7UGJ9VYUN/t3RJGwJzqK/FjOLybUBY/WX4mX9U0= Subject key identifier: D0:7A:95:31:CE:6C:8F:80:DE:A1:68:B2:DE:B0:F8:0A:18:28:80:26 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: 0157 Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa Signing time: Wed 29 Apr 2026 07:34:27 +0000 ROA not before: Wed 29 Apr 2026 07:34:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153325 IP address blocks: 103.151.248.0/24 maxlen: 24 103.251.25.0/24 maxlen: 24 116.206.148.0/24 maxlen: 24 116.206.150.0/24 maxlen: 24 203.19.243.0/24 maxlen: 24 223.26.16.0/24 maxlen: 24 223.26.17.0/24 maxlen: 24 223.26.18.0/24 maxlen: 24 223.26.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:22:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Apr 29 07:34:27 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69f1b483-c2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a1:3d:ba:27:b4:73:9a:bc:b1:c8:72:42:b6: 79:63:78:65:4b:27:7c:7d:f1:c0:4d:3d:ab:62:45: 6f:9b:f2:58:da:33:f5:f9:ea:9b:42:68:24:62:77: f4:ab:8a:8e:9f:c2:b9:7d:6f:4a:2c:3f:35:e6:d3: ae:7c:11:e6:d6:b2:fa:3c:c3:44:3d:3c:10:bd:6d: 0c:eb:20:5c:12:5c:cd:96:1b:ca:3d:b5:12:80:42: 3d:62:2f:9f:a4:64:1a:13:66:a1:c6:50:81:95:c7: c4:39:aa:6e:67:c6:7d:c2:dc:bb:dd:1d:d0:49:a0: b1:96:e3:13:50:32:1c:01:1f:eb:52:d5:57:d5:ca: 4b:ac:f0:e3:b9:7a:da:3b:d8:1b:69:c5:6b:4e:9c: f5:b0:df:e8:13:56:3e:6f:5c:12:76:47:3d:08:23: 27:3c:54:5f:3a:86:60:f9:ad:f9:0a:80:ff:00:e7: 57:08:b9:71:af:51:49:bc:e2:78:81:56:30:ef:9f: 54:ae:66:73:66:03:48:8a:25:c9:8e:cb:7a:46:80: 23:f8:49:42:c6:87:a8:81:16:61:fc:70:9c:89:13: 0a:9d:e5:8f:5a:c5:68:b0:a3:28:23:e3:96:85:7d: b9:9a:91:f9:14:14:4c:8e:2a:55:22:2a:09:80:58: 13:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7A:95:31:CE:6C:8F:80:DE:A1:68:B2:DE:B0:F8:0A:18:28:80:26 X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.248.0/24 103.251.25.0/24 116.206.148.0/24 116.206.150.0/24 203.19.243.0/24 223.26.16.0/22 Signature Algorithm: sha256WithRSAEncryption b9:f3:f3:f5:35:50:3f:d9:08:07:8e:7f:23:77:0f:29:7c:64: 1e:8f:6c:c4:a9:49:f0:87:bb:b2:02:e2:80:3f:05:9b:81:e4: 00:f0:97:9c:6e:ae:59:b1:93:e5:5f:a2:22:07:43:b5:20:16: d3:30:03:62:0f:e6:3e:5e:d5:29:47:0b:03:8f:ae:17:81:ee: 5d:ad:8b:01:59:6f:73:7f:72:11:82:e8:bc:9f:94:14:b0:ef: 99:f9:09:c1:bb:55:99:fb:d8:dd:19:f0:c4:b3:9d:d3:bc:33: ab:e9:df:f4:df:b3:dd:85:a4:57:79:8d:3b:4c:03:27:8e:37: c9:b7:84:95:71:d6:84:21:1d:7c:f4:15:82:6c:84:af:02:9b: f5:a8:c6:23:83:f9:d2:17:92:d5:98:c8:a1:69:56:28:1c:7d: 73:40:c6:0a:3e:7a:70:17:3a:1c:03:7f:15:cc:ed:7b:c8:ae: 8a:91:e4:45:ff:b4:93:d3:56:bc:56:fe:c5:8b:55:6e:04:27: 31:78:8d:8a:19:99:6e:0a:d2:a3:fb:f1:2c:d3:ec:95:31:b9: 26:6b:ba:e6:b7:be:68:15:56:57:2a:5b:9c:3d:03:62:64:4b: 5e:ad:ed:19:42:9f:41:f6:a1:58:7f:fa:7b:3a:30:aa:e8:70: 2f:9a:88:3f -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjYwNDI5MDczNDI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxYjQ4My1jMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16E9uie0c5q8schyQrZ5Y3hlSyd8ffHATT2rYkVvm/JY2jP1+eqbQmgkYnf0 q4qOn8K5fW9KLD815tOufBHm1rL6PMNEPTwQvW0M6yBcElzNlhvKPbUSgEI9Yi+f pGQaE2ahxlCBlcfEOapuZ8Z9wty73R3QSaCxluMTUDIcAR/rUtVX1cpLrPDjuXra O9gbacVrTpz1sN/oE1Y+b1wSdkc9CCMnPFRfOoZg+a35CoD/AOdXCLlxr1FJvOJ4 gVYw759UrmZzZgNIiiXJjst6RoAj+ElCxoeogRZh/HCciRMKneWPWsVosKMoI+OW hX25mpH5FBRMjipVIioJgFgTfwIDAQABo4ICfjCCAnowHQYDVR0OBBYEFNB6lTHO bI+A3qFost6w+AoYKIAmMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE5MzIvNTIxQzhFNUM3MjA3MTFFRjlEQzhCQTIxQzRGOUFFMDIvNzQ3QzY2OEVD Q0Q5MTFFRjlCNTJDODc3QzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQAZ5f4AwQAZ/sZAwQAdM6UAwQAdM6WAwQAyxPzAwQC3xoQMA0GCSqG SIb3DQEBCwUAA4IBAQC58/P1NVA/2QgHjn8jdw8pfGQej2zEqUnwh7uyAuKAPwWb geQA8Jecbq5ZsZPlX6IiB0O1IBbTMANiD+Y+XtUpRwsDj64Xge5drYsBWW9zf3IR gui8n5QUsO+Z+QnBu1WZ+9jdGfDEs53TvDOr6d/037PdhaRXeY07TAMnjjfJt4SV cdaEIR189BWCbISvApv1qMYjg/nSF5LVmMihaVYoHH1zQMYKPnpwFzocA38VzO17 yK6KkeRF/7ST01a8Vv7Fi1VuBCcxeI2KGZluCtKj+/Es0+yVMbkma7rmt75oFVZX KlucPQNiZEtere0ZQp9B9qFYf/p7OjCq6HAvmog/ -----END CERTIFICATE-----Generated at Wed May 13 09:25:37 2026 by rpki-client