$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa File: 747C668ECCD911EF9B52C877C4F9AE02.roa (raw, json) Hash identifier: OH2hF65EWIAHva3+wgIPXbWw2v0Q8Ee2C52axh8phMU= Subject key identifier: 4C:71:13:AF:EE:8E:91:96:2C:75:D4:70:E6:B4:4E:FF:0E:A4:F7:E7 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: 0130 Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:05:23 +0000 ROA not before: Wed 15 Oct 2025 09:32:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153325 IP address blocks: 103.151.248.0/24 maxlen: 24 103.251.25.0/24 maxlen: 24 116.206.148.0/24 maxlen: 24 116.206.150.0/24 maxlen: 24 203.19.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Oct 15 09:32:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59923-e551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e1:30:5e:30:d2:61:e4:13:14:24:b8:0a:ed: 43:95:22:fa:9e:c4:01:21:59:93:d7:07:ce:bb:28: 75:cd:4b:d7:15:f0:1c:18:49:9e:92:e8:c8:e2:85: e5:36:fe:00:e2:7c:98:2d:d8:a5:5c:d0:20:e0:5e: 19:e0:7d:33:47:a9:d2:a3:3a:04:b6:cc:a3:c1:60: 7e:56:1e:35:4d:54:7c:d7:b2:ba:db:18:db:dc:fd: aa:cc:f8:40:36:ce:8d:31:81:b1:84:f1:f4:fd:91: 2d:18:cb:de:d3:23:20:35:7c:6a:81:4a:c0:ef:d4: 61:fe:53:b6:ae:f4:91:72:72:28:30:96:ca:16:63: 3e:f4:db:bd:61:b0:30:1a:3f:23:7f:55:b8:87:ea: 23:0a:57:42:28:9e:e9:d3:04:3e:2a:17:4c:67:22: 04:39:d9:05:1b:c9:2c:4f:a1:eb:1d:19:97:f8:82: b0:67:3e:89:a6:0f:c3:7b:8c:81:16:b8:28:e0:c1: 7c:9c:ea:7e:f8:c2:38:3b:a9:11:7c:70:0b:78:4d: 75:fc:fb:45:00:d9:fc:6f:50:d3:c7:b8:03:74:34: fc:b1:e4:28:51:95:d0:ab:cd:87:5b:5d:52:ef:92: c0:31:2f:32:22:6d:e8:37:ac:7e:43:7c:f7:4b:51: 9f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:71:13:AF:EE:8E:91:96:2C:75:D4:70:E6:B4:4E:FF:0E:A4:F7:E7 X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.248.0/24 103.251.25.0/24 116.206.148.0/24 116.206.150.0/24 203.19.243.0/24 Signature Algorithm: sha256WithRSAEncryption 32:fa:f5:20:cc:23:3e:94:0e:f2:f7:04:56:72:3b:4b:34:4b: cd:2a:41:bc:d4:77:19:bd:0e:12:e6:3f:b7:34:70:79:2b:c2: 5c:1e:6e:2f:f3:f5:aa:23:fc:b3:c2:fa:f1:c6:ba:06:cb:b7: a4:81:57:52:44:e4:bf:a5:25:29:af:36:bc:18:d8:f0:4a:2c: d2:59:0c:13:9e:ca:10:be:33:06:19:31:09:08:cc:4c:a9:da: b9:31:8c:ff:d9:a3:55:05:df:39:6b:78:4c:3a:39:d2:a8:ce: bb:29:22:b7:cf:02:cb:5c:b8:c7:c6:b6:c1:ca:e6:a1:90:c9: 07:9b:d2:96:01:4c:57:60:42:cf:7f:30:96:c5:e4:76:b5:82: 5c:4c:10:05:9d:6a:6d:d2:70:78:6d:19:99:29:01:35:14:83: fb:73:bd:28:50:11:bd:d0:8d:4b:77:47:14:3d:04:8e:bc:9b: 1f:ef:dd:c7:fd:cc:0f:80:95:34:81:4b:f1:97:f2:60:9f:5b: eb:6a:eb:fe:73:b4:4e:1c:12:8f:1a:6e:68:48:40:03:ba:d3: 9a:84:0f:75:c4:68:5a:c6:e3:85:7a:4f:1f:2e:82:a2:ef:9c: 0e:24:b1:75:ee:e4:49:d3:8b:39:e3:b3:72:dd:d3:a9:17:0c: 84:85:b5:a1 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUxMDE1MDkzMjMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTkyMy1lNTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOEwXjDSYeQTFCS4Cu1DlSL6nsQBIVmT1wfOuyh1zUvXFfAcGEmekujI4oXl Nv4A4nyYLdilXNAg4F4Z4H0zR6nSozoEtsyjwWB+Vh41TVR817K62xjb3P2qzPhA Ns6NMYGxhPH0/ZEtGMve0yMgNXxqgUrA79Rh/lO2rvSRcnIoMJbKFmM+9Nu9YbAw Gj8jf1W4h+ojCldCKJ7p0wQ+KhdMZyIEOdkFG8ksT6HrHRmX+IKwZz6Jpg/De4yB Frgo4MF8nOp++MI4O6kRfHALeE11/PtFANn8b1DTx7gDdDT8seQoUZXQq82HW11S 75LAMS8yIm3oN6x+Q3z3S1GfnQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFExxE6/u jpGWLHXUcOa0Tv8OpPfnMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE5MzIvNTIxQzhFNUM3MjA3MTFFRjlEQzhCQTIxQzRGOUFFMDIvNzQ3QzY2OEVD Q0Q5MTFFRjlCNTJDODc3QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQAZ5f4AwQAZ/sZAwQAdM6UAwQAdM6WAwQAyxPzMA0GCSqGSIb3DQEB CwUAA4IBAQAy+vUgzCM+lA7y9wRWcjtLNEvNKkG81HcZvQ4S5j+3NHB5K8JcHm4v 8/WqI/yzwvrxxroGy7ekgVdSROS/pSUprza8GNjwSizSWQwTnsoQvjMGGTEJCMxM qdq5MYz/2aNVBd85a3hMOjnSqM67KSK3zwLLXLjHxrbByuahkMkHm9KWAUxXYELP fzCWxeR2tYJcTBAFnWpt0nB4bRmZKQE1FIP7c70oUBG90I1Ld0cUPQSOvJsf793H /cwPgJU0gUvxl/Jgn1vrauv+c7ROHBKPGm5oSEADutOahA91xGhaxuOFek8fLoKi 75wOJLF17uRJ04s547Ny3dOpFwyEhbWh -----END CERTIFICATE-----Generated at Thu Mar 26 18:47:44 2026 by rpki-client