$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa File: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (raw, json) Hash identifier: j7HoHCdz64sq86gO6WNIo+MZn9FyOmtrk8UeOchCdv4= Subject key identifier: 0D:C7:92:63:47:C0:6A:A4:76:15:60:3B:5F:E6:D1:4A:EF:4F:AE:12 Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 0AB9 Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:29:13 +0000 ROA not before: Fri 16 May 2025 20:28:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140502 IP address blocks: 103.150.6.0/23 maxlen: 23 103.150.6.0/24 maxlen: 24 103.150.7.0/24 maxlen: 24 2001:df3:4c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2745 (0xab9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB, serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: May 16 20:28:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a406e9-ae27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:59:7e:40:c3:81:a9:a9:4a:52:02:4a:73:21: ac:65:93:a8:29:1c:7f:78:45:8e:74:cc:18:16:3d: 73:40:68:9f:75:64:32:c1:78:bb:27:6b:bb:44:3b: 4a:9d:78:81:e7:9d:00:f2:9e:4a:ea:96:a8:df:29: 57:f2:9f:62:f4:d2:39:6a:3e:00:61:75:be:48:85: 32:44:e3:0f:c0:a9:37:f4:95:31:9d:61:39:73:6f: 26:d9:85:b4:35:54:ef:fc:d9:d0:c3:c5:a8:0c:f0: 43:51:19:0d:43:87:c2:c8:b6:98:80:4b:da:ce:a9: 6c:16:1d:a4:4e:e9:d5:69:4a:d8:5a:9b:5a:36:05: e1:e7:24:6a:5e:3a:a6:d4:c1:15:57:15:5a:b9:79: 4e:e5:c5:25:f0:fd:dd:dc:2f:70:17:1e:d9:b2:19: 5e:76:d5:bc:60:57:ab:d8:e1:fb:43:e0:79:01:e3: 8c:7e:32:c9:3b:9f:fe:f5:14:a6:6b:fd:7a:61:cc: 46:d1:e1:ed:59:18:40:1a:37:b9:92:f1:37:e0:fa: d6:ac:da:89:61:ea:51:43:fe:9f:0f:2c:44:dd:96: e5:9e:98:35:40:3a:2d:fb:0a:49:3f:71:79:9a:da: b5:77:29:18:56:04:1f:0e:0a:02:15:0b:5c:9f:8e: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C7:92:63:47:C0:6A:A4:76:15:60:3B:5F:E6:D1:4A:EF:4F:AE:12 X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.6.0/23 IPv6: 2001:df3:4c80::/48 Signature Algorithm: sha256WithRSAEncryption 7b:5b:bb:e0:2f:0c:f0:e5:91:7d:bf:97:13:b6:3e:af:11:36: 71:ce:b2:51:e2:57:e9:a5:c8:e8:ec:43:6a:a1:36:70:9c:81: 79:ac:e6:b1:da:ba:67:b6:14:1b:e7:ec:9d:23:a0:10:eb:cf: 74:fa:0a:9f:66:9c:a9:c6:07:38:60:e7:a7:af:dd:16:d6:01: 24:1e:7a:36:8c:20:2a:de:d8:0a:2e:0b:73:32:0a:c4:fe:3f: 2c:c2:74:09:c7:4e:de:e9:5a:31:73:43:89:cc:30:ac:19:a2: 52:7f:bd:d3:f8:3f:f2:9f:a5:4c:3f:5f:5f:2d:36:4d:29:b2: 59:49:3c:8c:36:7d:5d:68:d9:c0:e9:f5:ba:a3:48:70:37:1e: 52:00:90:a7:ad:a8:4d:92:e8:f8:34:09:e9:5b:b4:af:aa:51: 94:78:f2:46:64:a9:f6:47:53:5a:71:15:d2:b5:4c:21:dc:70: ae:e4:b9:12:86:d7:7e:8b:3b:ec:72:98:72:f3:ee:ce:e2:95: 05:da:0f:d0:e8:76:ac:7c:54:79:89:23:4d:89:ca:37:63:70: bf:6a:d8:59:8d:43:3c:82:29:41:ec:d8:5e:50:3b:22:37:17: f5:35:5c:7e:c9:49:12:d6:eb:1a:2e:27:0f:f2:1f:60:ed:7b: 34:36:ac:de -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjUwNTE2MjAyODU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDZlOS1hZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVl+QMOBqalKUgJKcyGsZZOoKRx/eEWOdMwYFj1zQGifdWQywXi7J2u7RDtK nXiB550A8p5K6pao3ylX8p9i9NI5aj4AYXW+SIUyROMPwKk39JUxnWE5c28m2YW0 NVTv/NnQw8WoDPBDURkNQ4fCyLaYgEvazqlsFh2kTunVaUrYWptaNgXh5yRqXjqm 1MEVVxVauXlO5cUl8P3d3C9wFx7ZshledtW8YFer2OH7Q+B5AeOMfjLJO5/+9RSm a/16YcxG0eHtWRhAGje5kvE34PrWrNqJYepRQ/6fDyxE3Zblnpg1QDot+wpJP3F5 mtq1dykYVgQfDgoCFQtcn45PEQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFA3HkmNH wGqkdhVgO1/m0UrvT64SMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI3RUIvNzkxRjRFNzY3M0UzMTFFQUJBN0E4ODZFQzRGOUFFMDIvNEEwNzRBOTBF MTk1MTFFQzhBRDU3QzZDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5YGMA8EAgACMAkDBwAgAQ3zTIAwDQYJKoZIhvcNAQELBQADggEB AHtbu+AvDPDlkX2/lxO2Pq8RNnHOslHiV+mlyOjsQ2qhNnCcgXms5rHaume2FBvn 7J0joBDrz3T6Cp9mnKnGBzhg56ev3RbWASQeejaMICre2AouC3MyCsT+PyzCdAnH Tt7pWjFzQ4nMMKwZolJ/vdP4P/KfpUw/X18tNk0psllJPIw2fV1o2cDp9bqjSHA3 HlIAkKetqE2S6Pg0CelbtK+qUZR48kZkqfZHU1pxFdK1TCHccK7kuRKG136LO+xy mHLz7s7ilQXaD9Dodqx8VHmJI02JyjdjcL9q2FmNQzyCKUHs2F5QOyI3F/U1XH7J SRLW6xouJw/yH2DtezQ2rN4= -----END CERTIFICATE-----Generated at Mon Mar 2 04:04:27 2026 by rpki-client