$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa File: 7E933D0427B711EF8867AA49C4F9AE02.roa (raw, json) Hash identifier: GCQF0mtb8Gekl6O8/+EeLV+4PjQyO396ilHkXd+2kuw= Subject key identifier: E6:E7:81:AB:DD:D1:D1:7F:A8:13:6F:E7:9F:2B:53:CD:3C:2C:32:99 Certificate issuer: /CN=A911F5CA/serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Certificate serial: 0183 Authority key identifier: 1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa Signing time: Sun 05 Apr 2026 04:38:19 +0000 ROA not before: Sun 05 Apr 2026 04:38:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138607 IP address blocks: 103.232.148.0/22 maxlen: 22 103.232.148.0/24 maxlen: 24 103.232.149.0/24 maxlen: 24 103.232.150.0/24 maxlen: 24 144.48.68.0/22 maxlen: 22 144.48.68.0/24 maxlen: 24 144.48.69.0/24 maxlen: 24 144.48.70.0/24 maxlen: 24 144.48.71.0/24 maxlen: 24 144.48.188.0/22 maxlen: 22 144.48.188.0/24 maxlen: 24 144.48.189.0/24 maxlen: 24 144.48.190.0/24 maxlen: 24 144.48.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:24:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Validity Not Before: Apr 5 04:38:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d1e73b-17d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ff:45:6a:f4:ad:01:b6:e7:39:d1:4c:82:5e: dd:c8:ec:9e:6c:bc:3d:75:57:2f:74:bf:f7:87:37: 45:80:30:9c:9c:aa:10:7f:eb:e8:e0:37:d1:d5:2e: dd:e0:df:20:81:9c:57:00:b9:a0:25:fc:28:59:03: 61:22:46:2c:71:d1:9f:58:f9:51:0c:83:9a:a8:2c: d7:07:e8:15:b6:af:1b:37:1d:41:bd:33:2c:fe:0a: 47:c0:3d:71:6b:d0:ea:f1:00:6c:02:62:fd:04:af: 21:7c:4e:9a:0f:c3:7d:d7:08:c4:36:01:0b:98:57: 4f:39:35:f4:3c:9a:0a:2a:98:07:a1:b9:b9:86:77: 53:4b:68:da:f1:02:9a:7a:72:e5:ee:d1:4a:31:29: 25:f6:ad:10:19:2d:9d:74:c8:d1:ed:f1:74:2f:16: 9f:09:0f:da:94:14:f5:25:b3:89:18:e7:1f:2f:e1: b1:e3:0f:7f:54:00:1c:e5:ed:fc:4d:cc:7a:99:6e: f9:4f:12:1a:4c:da:00:4d:f2:ac:f1:d7:6d:5b:1f: 25:e6:90:56:13:47:4b:da:85:d7:9b:9b:bc:81:a5: 3d:31:db:5c:38:eb:ac:4d:88:f5:00:37:ac:6c:89: 42:1b:b0:31:00:db:12:34:40:c5:3b:c0:15:cd:4a: 7d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E7:81:AB:DD:D1:D1:7F:A8:13:6F:E7:9F:2B:53:CD:3C:2C:32:99 X509v3 Authority Key Identifier: keyid:1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.232.148.0/22 144.48.68.0/22 144.48.188.0/22 Signature Algorithm: sha256WithRSAEncryption c0:47:41:9c:3f:40:9d:c2:a3:a8:50:49:f0:4b:a9:b0:43:a4: 85:b9:da:ad:6c:19:47:fc:24:4a:fa:2a:4c:08:4f:39:cf:1d: fe:cc:d9:e0:b0:4e:b1:c8:c5:91:cb:9f:d6:93:f0:91:9e:0e: 79:52:17:ab:63:77:48:8c:82:68:e8:5c:15:8c:f5:1e:06:f3: 3d:da:9c:ef:d6:25:3a:ce:f3:f5:f3:b6:cb:bd:51:fc:c5:85: b7:7e:d5:ad:62:26:51:57:42:44:b6:49:f9:8f:82:4f:4b:7b: c9:53:b4:3b:92:48:54:97:e4:36:05:67:fa:89:30:fc:4f:bf: 2e:99:70:b9:ad:a9:ca:19:58:09:dd:0e:72:1c:4b:c4:8e:b8: 3b:ab:f5:7a:cc:1f:73:86:04:88:2c:82:83:6a:0f:43:00:71: 80:a2:cd:2e:68:8a:13:3f:4c:cc:68:bb:f3:0c:60:28:d6:50: d4:96:84:53:88:4f:f6:d8:b7:b8:cd:bb:22:3d:b4:c9:5b:65: 3e:59:aa:96:d1:8a:0b:2a:88:75:e9:50:c6:14:6d:87:5d:0b: 99:dd:7f:00:bd:a4:15:1e:cd:c1:a6:55:db:c7:04:bf:9f:b2: 3a:30:06:9a:6f:82:8b:7d:8b:75:55:66:f3:18:7d:40:e1:57: ba:6d:6a:6c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKDFDN0IzMDU3NkVCMTg1MDhFRjI3NzlDNEVGNUJCNTcy NDkyREQyOTkwHhcNMjYwNDA1MDQzODE5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQxZTczYi0xN2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/9FavStAbbnOdFMgl7dyOyebLw9dVcvdL/3hzdFgDCcnKoQf+vo4DfR1S7d 4N8ggZxXALmgJfwoWQNhIkYscdGfWPlRDIOaqCzXB+gVtq8bNx1BvTMs/gpHwD1x a9Dq8QBsAmL9BK8hfE6aD8N91wjENgELmFdPOTX0PJoKKpgHobm5hndTS2ja8QKa enLl7tFKMSkl9q0QGS2ddMjR7fF0LxafCQ/alBT1JbOJGOcfL+Gx4w9/VAAc5e38 Tcx6mW75TxIaTNoATfKs8ddtWx8l5pBWE0dL2oXXm5u8gaU9MdtcOOusTYj1ADes bIlCG7AxANsSNEDFO8AVzUp9mwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFObngavd 0dF/qBNv558rU808LDKZMB8GA1UdIwQYMBaAFBx7MFdusYUI7yd5xO9btXJJLdKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS9BNjkxNUIzNDAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9ISHN3VjI2eGhRanZKM25FNzF1MWNra3Qw cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hIc3dWMjZ4aFFqdkozbkU3MXUxY2trdDBway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1Q0EvQTY5MTVCMzQwMjRGMTFFRkFDNjVGNTc3QzRGOUFFMDIvN0U5MzNEMDQy N0I3MTFFRjg4NjdBQTQ5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ+iUAwQCkDBEAwQCkDC8MA0GCSqGSIb3DQEBCwUAA4IBAQDAR0Gc P0CdwqOoUEnwS6mwQ6SFudqtbBlH/CRK+ipMCE85zx3+zNngsE6xyMWRy5/Wk/CR ng55UherY3dIjIJo6FwVjPUeBvM92pzv1iU6zvP187bLvVH8xYW3ftWtYiZRV0JE tkn5j4JPS3vJU7Q7kkhUl+Q2BWf6iTD8T78umXC5ranKGVgJ3Q5yHEvEjrg7q/V6 zB9zhgSILIKDag9DAHGAos0uaIoTP0zMaLvzDGAo1lDUloRTiE/22Le4zbsiPbTJ W2U+WaqW0YoLKoh16VDGFG2HXQuZ3X8AvaQVHs3BplXbxwS/n7I6MAaab4KLfYt1 VWbzGH1A4Ve6bWps -----END CERTIFICATE-----Generated at Fri Apr 17 19:56:36 2026 by rpki-client