$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/075152B253CB11F09DA22358C4F9AE02.roa File: 075152B253CB11F09DA22358C4F9AE02.roa (raw, json) Hash identifier: fGf/PGVtu9coS4OTxiQfwTin94woH0RC8SYgnjce7aM= Subject key identifier: 6C:95:E8:EC:21:FA:E9:9D:6F:12:BF:D5:9D:2D:44:AD:29:CF:FB:2C Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 355E Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/075152B253CB11F09DA22358C4F9AE02.roa Signing time: Mon 20 Apr 2026 15:12:51 +0000 ROA not before: Mon 20 Apr 2026 15:12:51 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 45193 IP address blocks: 103.39.252.0/22 maxlen: 22 119.252.123.0/24 maxlen: 24 119.252.124.0/23 maxlen: 23 119.252.124.0/24 maxlen: 24 119.252.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13662 (0x355e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Apr 20 15:12:51 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69e64273-d02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b7:d0:04:f2:1a:3c:68:28:e6:6f:61:76:90: 14:6e:fe:e6:fd:2b:26:8b:57:f6:f1:e8:21:00:a0: b5:54:5b:db:22:fc:3c:43:64:21:04:bb:8f:ee:02: 3e:63:e0:b1:71:ae:a2:a5:53:52:fd:99:27:ed:69: 90:30:88:b4:dd:d2:3d:14:2e:5e:69:f9:a6:cf:39: b7:47:8d:f9:b7:59:a9:ca:05:83:27:40:30:c5:2d: 38:58:8f:10:df:13:de:0a:45:d8:b6:3d:7c:69:f1: 3c:78:47:36:e9:07:7e:52:43:ea:0c:74:f2:d5:7b: dd:cf:0b:57:61:1b:30:81:9d:22:1d:c5:f6:bb:ef: b9:da:15:97:a0:85:c9:f3:59:bb:7a:bf:88:28:47: f1:f3:10:8e:39:58:03:a1:b4:45:68:8a:60:70:fc: b0:d0:53:c9:25:f4:ab:5b:53:f5:a1:7c:a2:78:c8: e2:13:03:26:94:b6:70:68:47:30:6c:88:6f:3d:db: bc:08:5d:cf:2d:cb:dd:c2:2c:2d:b4:4d:90:2f:a3: 76:31:b3:36:92:1d:75:08:d5:7a:02:db:76:1b:2d: 93:ae:a0:ac:2e:e0:18:1c:a9:5c:28:e4:63:65:f2: 7c:8a:02:d7:34:24:01:61:7c:da:cc:77:a6:2b:c6: 54:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:95:E8:EC:21:FA:E9:9D:6F:12:BF:D5:9D:2D:44:AD:29:CF:FB:2C X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/075152B253CB11F09DA22358C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.39.252.0/22 119.252.123.0-119.252.125.255 Signature Algorithm: sha256WithRSAEncryption 3a:86:59:e8:68:4e:53:b8:ed:47:a2:f4:75:41:58:c5:2f:f3: eb:e1:16:f3:28:e5:e0:6a:9c:95:69:b0:f0:7d:1d:8c:7c:33: 74:90:98:16:be:cd:69:8e:bd:f2:46:b2:71:46:8b:e9:f6:2e: 8c:d5:95:f9:3a:ce:84:58:21:20:b8:2a:b7:e6:03:b1:41:35: c0:3a:0f:fe:7c:e3:30:30:ff:2e:f0:e4:06:9a:08:9e:3a:13: ef:ce:2f:1a:85:32:e8:78:17:53:bd:46:8c:5e:c7:1d:00:76: 92:a4:79:9a:73:8f:81:ea:ee:72:3c:1e:b5:30:ca:1d:9f:a0: 16:37:ac:80:0b:6e:9e:31:19:4a:3b:fc:4c:32:1a:01:bb:91: 3d:a3:42:3b:69:90:83:de:0c:23:61:76:fb:98:05:13:af:ca: 12:45:49:af:12:2a:9d:26:8d:7e:12:c5:cd:06:0f:a9:c7:35: 5e:ec:e9:f9:19:26:3b:9f:ee:fe:3a:27:c9:bc:9e:7f:ca:da: 86:8b:7a:fe:be:b2:59:80:23:81:bc:25:82:8e:d6:8b:c5:da: ac:e4:15:77:21:0c:0e:3d:4e:94:5d:f3:e2:73:06:1e:e7:10: 84:83:d3:83:3c:1a:01:82:55:02:a9:8d:ed:95:8c:f5:c6:44: 85:f5:63:ba -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICNV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjYwNDIwMTUxMjUxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2NDI3My1kMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi7fQBPIaPGgo5m9hdpAUbv7m/Ssmi1f28eghAKC1VFvbIvw8Q2QhBLuP7gI+ Y+Cxca6ipVNS/Zkn7WmQMIi03dI9FC5eafmmzzm3R435t1mpygWDJ0AwxS04WI8Q 3xPeCkXYtj18afE8eEc26Qd+UkPqDHTy1XvdzwtXYRswgZ0iHcX2u++52hWXoIXJ 81m7er+IKEfx8xCOOVgDobRFaIpgcPyw0FPJJfSrW1P1oXyieMjiEwMmlLZwaEcw bIhvPdu8CF3PLcvdwiwttE2QL6N2MbM2kh11CNV6Att2Gy2TrqCsLuAYHKlcKORj ZfJ8igLXNCQBYXzazHemK8ZUfwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFGyV6Owh +umdbxK/1Z0tRK0pz/ssMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQTAvM0EwRDkzMTAxRDhDMTFFMjhFRkY1N0U3MDhCMDJDRDIvMDc1MTUyQjI1 M0NCMTFGMDlEQTIyMzU4QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQCZyf8MAwDBAB3/HsDBAF3/HwwDQYJKoZIhvcNAQELBQADggEBADqG WehoTlO47Uei9HVBWMUv8+vhFvMo5eBqnJVpsPB9HYx8M3SQmBa+zWmOvfJGsnFG i+n2LozVlfk6zoRYISC4KrfmA7FBNcA6D/584zAw/y7w5AaaCJ46E+/OLxqFMuh4 F1O9Roxexx0AdpKkeZpzj4Hq7nI8HrUwyh2foBY3rIALbp4xGUo7/EwyGgG7kT2j QjtpkIPeDCNhdvuYBROvyhJFSa8SKp0mjX4Sxc0GD6nHNV7s6fkZJjuf7v46J8m8 nn/K2oaLev6+slmAI4G8JYKO1ovF2qzkFXchDA49TpRd8+JzBh7nEISD04M8GgGC VQKpje2VjPXGRIX1Y7o= -----END CERTIFICATE-----Generated at Wed May 13 03:35:23 2026 by rpki-client