$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa File: 7E933D0427B711EF8867AA49C4F9AE02.roa (raw, json) Hash identifier: rMJAoxoS++kNzcCP2pW17iqc9CzolSJB2caGijczQIk= Subject key identifier: FB:54:3D:BB:9F:98:45:1F:FA:F4:6B:CF:FF:6F:23:27:08:D5:29:AA Certificate issuer: /CN=A911F5CA/serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Certificate serial: 010B Authority key identifier: 1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa Signing time: Mon 25 Aug 2025 06:28:10 +0000 ROA not before: Mon 25 Aug 2025 06:28:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138607 IP address blocks: 103.232.148.0/22 maxlen: 22 103.232.148.0/24 maxlen: 24 103.232.149.0/24 maxlen: 24 103.232.150.0/24 maxlen: 24 144.48.68.0/22 maxlen: 22 144.48.68.0/24 maxlen: 24 144.48.69.0/24 maxlen: 24 144.48.70.0/24 maxlen: 24 144.48.71.0/24 maxlen: 24 144.48.188.0/22 maxlen: 22 144.48.188.0/24 maxlen: 24 144.48.189.0/24 maxlen: 24 144.48.190.0/24 maxlen: 24 144.48.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Validity Not Before: Aug 25 06:28:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68ac027a-9070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d4:a1:b3:56:86:cb:81:8c:17:13:50:75:d9: 54:6c:21:90:a2:b0:07:3b:45:13:02:89:72:74:c8: 27:be:8e:66:ab:06:f2:40:78:e5:c0:85:e3:a0:9c: b1:d2:0f:66:6c:1e:7c:f7:97:70:6a:68:75:c3:31: 5c:71:2d:7b:99:87:fe:7b:64:8f:8a:a9:db:3b:3b: 43:90:06:32:09:f8:7f:cf:c1:a6:fa:06:00:01:20: 84:8b:25:2f:71:d7:72:05:89:85:51:7d:6e:cb:31: e0:54:00:95:02:89:b5:d6:98:bd:22:e2:b4:ae:cf: 32:08:68:ef:86:8f:e5:40:db:74:77:50:1e:e8:56: 59:75:94:af:e1:9f:5c:2c:2d:9c:2c:78:f0:19:54: 8f:e9:a2:f6:fb:d5:5f:f6:dd:d9:6e:e0:28:f2:04: 98:c4:c1:ef:4a:5c:82:24:cc:10:d4:14:0e:d4:fe: 24:66:58:8a:15:d9:61:91:8c:51:14:52:d5:3e:cb: 19:94:39:3f:fc:78:9b:35:cb:fc:78:a4:4c:f7:68: 96:1d:60:35:0d:af:bb:5b:c7:4b:07:fc:65:d8:40: 7f:ed:9b:b5:37:9b:73:a1:d6:27:8c:8a:cf:0c:a1: 79:e0:78:90:cb:06:9f:c1:ed:7b:54:a3:f1:d3:ea: 68:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:54:3D:BB:9F:98:45:1F:FA:F4:6B:CF:FF:6F:23:27:08:D5:29:AA X509v3 Authority Key Identifier: keyid:1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.148.0/22 144.48.68.0/22 144.48.188.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:fa:96:9a:69:1c:ef:24:70:17:11:47:90:60:57:c3:bd:62: 67:b2:41:95:b1:0e:7f:6b:ca:38:72:68:60:72:d6:f8:4d:52: b9:0c:f3:de:e3:95:61:e2:16:cf:f4:f6:1d:b4:59:60:7e:ce: 5c:ec:46:ad:f7:bc:c1:4c:26:53:0d:9b:50:9f:1c:1a:f3:90: d5:e3:a1:6e:8b:9a:d9:67:42:f0:af:6e:c9:07:50:9f:ad:54: 1c:7a:46:64:b1:3a:64:5b:cf:58:e6:b0:c4:63:c8:db:5c:90: 19:2a:ba:3c:74:3f:91:1c:f1:32:67:04:1f:f5:eb:40:0b:32: ff:22:9a:c7:8b:e2:cc:cc:ad:0f:59:e9:f5:0c:b2:0d:1c:48: 15:e3:42:32:58:01:f1:ec:be:27:13:a3:8e:c9:01:f1:ac:3a: 50:84:85:6a:f9:5c:af:62:c8:2e:e6:93:cd:4d:2d:52:25:5f: 98:60:07:72:43:89:93:bd:f0:95:9e:db:5d:27:2e:1b:11:53: 4e:a8:9b:a8:92:53:2e:e6:e8:dd:0f:d8:39:fd:25:7f:26:58: 42:4d:50:fd:07:c8:16:5e:bb:f6:0b:f6:f8:6a:a2:d3:93:d6: 49:be:01:10:8b:19:fa:7f:93:fd:73:a4:0c:fa:42:c3:b6:ce: b0:89:eb:05 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKDFDN0IzMDU3NkVCMTg1MDhFRjI3NzlDNEVGNUJCNTcy NDkyREQyOTkwHhcNMjUwODI1MDYyODEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFjMDI3YS05MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAntShs1aGy4GMFxNQddlUbCGQorAHO0UTAolydMgnvo5mqwbyQHjlwIXjoJyx 0g9mbB5895dwamh1wzFccS17mYf+e2SPiqnbOztDkAYyCfh/z8Gm+gYAASCEiyUv cddyBYmFUX1uyzHgVACVAom11pi9IuK0rs8yCGjvho/lQNt0d1Ae6FZZdZSv4Z9c LC2cLHjwGVSP6aL2+9Vf9t3ZbuAo8gSYxMHvSlyCJMwQ1BQO1P4kZliKFdlhkYxR FFLVPssZlDk//HibNcv8eKRM92iWHWA1Da+7W8dLB/xl2EB/7Zu1N5tzodYnjIrP DKF54HiQywafwe17VKPx0+po0wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPtUPbuf mEUf+vRrz/9vIycI1SmqMB8GA1UdIwQYMBaAFBx7MFdusYUI7yd5xO9btXJJLdKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS9BNjkxNUIzNDAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9ISHN3VjI2eGhRanZKM25FNzF1MWNra3Qw cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hIc3dWMjZ4aFFqdkozbkU3MXUxY2trdDBway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1Q0EvQTY5MTVCMzQwMjRGMTFFRkFDNjVGNTc3QzRGOUFFMDIvN0U5MzNEMDQy N0I3MTFFRjg4NjdBQTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn6JQDBAKQMEQDBAKQMLwwDQYJKoZIhvcNAQELBQADggEB ACz6lpppHO8kcBcRR5BgV8O9YmeyQZWxDn9ryjhyaGBy1vhNUrkM897jlWHiFs/0 9h20WWB+zlzsRq33vMFMJlMNm1CfHBrzkNXjoW6LmtlnQvCvbskHUJ+tVBx6RmSx OmRbz1jmsMRjyNtckBkqujx0P5Ec8TJnBB/160ALMv8imseL4szMrQ9Z6fUMsg0c SBXjQjJYAfHsvicTo47JAfGsOlCEhWr5XK9iyC7mk81NLVIlX5hgB3JDiZO98JWe 210nLhsRU06om6iSUy7m6N0P2Dn9JX8mWEJNUP0HyBZeu/YL9vhqotOT1km+ARCL Gfp/k/1zpAz6QsO2zrCJ6wU= -----END CERTIFICATE-----Generated at Wed Nov 5 22:34:28 2025 by rpki-client