$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa File: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (raw, json) Hash identifier: I2/+LVg2CfxpzHUvv4hVWxYLiDdlaCgmazTOqmpPue8= Subject key identifier: 1E:E1:28:DE:F7:2F:FE:94:F6:5B:31:3E:C8:54:AC:70:35:BA:58:5D Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 0AE9 Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa Signing time: Tue 26 May 2026 20:28:21 +0000 ROA not before: Tue 26 May 2026 20:28:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 140502 IP address blocks: 103.150.6.0/23 maxlen: 23 103.150.6.0/24 maxlen: 24 103.150.7.0/24 maxlen: 24 2001:df3:4c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2793 (0xae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB, serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: May 26 20:28:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a160264-5b55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:dc:4a:51:d1:d4:3b:d1:a4:bc:74:4c:ec:dd: 7e:53:e2:9d:cd:dc:f0:2a:34:43:b1:30:f5:61:7d: 25:06:79:61:58:35:6b:47:e6:23:0b:ae:43:8b:90: b1:b2:fb:df:ae:f7:b1:e3:f6:37:e4:a2:f9:24:20: d3:d6:78:97:f3:17:e0:73:76:eb:42:77:55:e3:e2: c9:8c:97:79:93:cc:3c:70:be:ac:d4:08:55:86:44: 7f:99:a6:4a:ce:35:bb:6e:d0:c3:d1:20:48:3f:de: 63:62:9f:23:97:8e:af:89:5f:a6:38:f3:a2:37:62: 86:73:43:c6:f5:c6:19:c4:bb:74:d5:74:aa:12:04: e0:46:23:18:b7:be:42:7a:b4:94:e2:47:76:92:41: 39:1c:3b:19:e5:a7:d7:a1:56:31:e2:55:e2:bc:d4: 42:41:a0:44:18:08:74:34:00:ee:48:74:f2:fb:c6: b2:0c:36:66:c7:56:42:6e:50:43:e6:22:53:a6:9c: b4:7e:47:33:e9:5f:df:0c:93:05:bd:e7:48:a5:c1: 5d:aa:17:8d:f1:13:12:9c:dc:ec:ff:71:cb:e3:5c: 62:d1:cd:bf:98:c3:a3:8c:fa:a7:79:39:6d:a2:55: 8b:9d:8e:b8:6b:a3:db:18:df:0b:48:1a:7f:17:58: 05:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E1:28:DE:F7:2F:FE:94:F6:5B:31:3E:C8:54:AC:70:35:BA:58:5D X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.6.0/23 IPv6: 2001:df3:4c80::/48 Signature Algorithm: sha256WithRSAEncryption 82:16:5b:4f:b5:62:e6:5c:52:0c:c2:61:b2:0a:12:c9:7a:9b: 06:d4:d8:52:e5:1f:fb:4a:64:65:cf:13:b1:05:f3:79:62:27: 51:5c:b6:5f:a7:b3:a1:4c:ff:21:92:be:1d:3c:0c:5c:a1:49: 7e:a3:56:04:9d:dd:c6:cd:49:3f:05:1e:35:a8:68:c0:af:33: 76:60:26:af:d3:20:eb:e4:94:01:66:7e:59:ef:71:ff:70:0a: 6e:83:f8:08:bd:78:be:82:0a:2b:07:26:df:7e:d1:2c:a3:ac: 67:12:c7:5a:88:b8:b4:98:d8:2d:f8:42:1a:e1:92:57:de:d6: 1f:52:8e:49:9f:a8:0b:e6:e9:15:84:26:9d:60:81:39:63:e2: dd:35:f4:d0:6b:b0:f0:42:51:05:df:4e:01:6e:97:34:12:ee: fe:ff:90:83:12:9b:86:fb:49:4e:d1:61:91:5b:bc:8f:14:eb: 9e:fc:db:69:14:01:8f:e1:d2:a8:f6:cd:c9:e8:85:b7:71:2a: 08:00:38:c0:2e:39:a0:9a:26:a5:5f:4b:d3:2c:a7:96:6c:a1: b6:71:5c:59:a4:40:76:8f:04:c0:23:86:47:d7:48:02:b6:4c: b5:3e:e5:a0:f8:c6:57:d9:e4:e8:33:da:86:f0:22:2f:b5:cd: f5:aa:3f:50 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjYwNTI2MjAyODIwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2MDI2NC01YjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09xKUdHUO9GkvHRM7N1+U+KdzdzwKjRDsTD1YX0lBnlhWDVrR+YjC65Di5Cx svvfrvex4/Y35KL5JCDT1niX8xfgc3brQndV4+LJjJd5k8w8cL6s1AhVhkR/maZK zjW7btDD0SBIP95jYp8jl46viV+mOPOiN2KGc0PG9cYZxLt01XSqEgTgRiMYt75C erSU4kd2kkE5HDsZ5afXoVYx4lXivNRCQaBEGAh0NADuSHTy+8ayDDZmx1ZCblBD 5iJTppy0fkcz6V/fDJMFvedIpcFdqheN8RMSnNzs/3HL41xi0c2/mMOjjPqneTlt olWLnY64a6PbGN8LSBp/F1gFdwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFB7hKN73 L/6U9lsxPshUrHA1ulhdMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI3RUIvNzkxRjRFNzY3M0UzMTFFQUJBN0E4ODZFQzRGOUFFMDIvNEEwNzRBOTBF MTk1MTFFQzhBRDU3QzZDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5YGMA8EAgACMAkDBwAgAQ3zTIAwDQYJKoZIhvcNAQELBQADggEB AIIWW0+1YuZcUgzCYbIKEsl6mwbU2FLlH/tKZGXPE7EF83liJ1Fctl+ns6FM/yGS vh08DFyhSX6jVgSd3cbNST8FHjWoaMCvM3ZgJq/TIOvklAFmflnvcf9wCm6D+Ai9 eL6CCisHJt9+0SyjrGcSx1qIuLSY2C34Qhrhklfe1h9SjkmfqAvm6RWEJp1ggTlj 4t019NBrsPBCUQXfTgFulzQS7v7/kIMSm4b7SU7RYZFbvI8U657822kUAY/h0qj2 zcnohbdxKggAOMAuOaCaJqVfS9Msp5ZsobZxXFmkQHaPBMAjhkfXSAK2TLU+5aD4 xlfZ5Ogz2obwIi+1zfWqP1A= -----END CERTIFICATE-----Generated at Sat Jun 13 13:21:08 2026 by rpki-client