$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa File: 7E933D0427B711EF8867AA49C4F9AE02.roa (raw, json) Hash identifier: dCVbITTL0w30yRQYLrxfxmqXuIZ/tYnSlYAe68id0yo= Subject key identifier: 55:BB:6D:3F:B1:8D:BC:25:C8:28:7E:36:9D:01:70:CA:1F:E3:62:14 Certificate issuer: /CN=A911F5CA/serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Certificate serial: 016E Authority key identifier: 1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:32:00 +0000 ROA not before: Mon 25 Aug 2025 06:28:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138607 IP address blocks: 103.232.148.0/22 maxlen: 22 103.232.148.0/24 maxlen: 24 103.232.149.0/24 maxlen: 24 103.232.150.0/24 maxlen: 24 144.48.68.0/22 maxlen: 22 144.48.68.0/24 maxlen: 24 144.48.69.0/24 maxlen: 24 144.48.70.0/24 maxlen: 24 144.48.71.0/24 maxlen: 24 144.48.188.0/22 maxlen: 22 144.48.188.0/24 maxlen: 24 144.48.189.0/24 maxlen: 24 144.48.190.0/24 maxlen: 24 144.48.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Validity Not Before: Aug 25 06:28:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a59f60-5478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:fc:e9:25:fb:0d:c7:7c:da:94:99:be:be: e1:ec:a6:d2:d1:99:6e:83:83:04:bc:7e:78:6d:a9: fa:19:c3:98:d3:5d:00:cd:12:c3:35:0b:b9:3e:a2: dc:06:84:a4:6c:e3:4e:de:ea:55:e7:03:a4:ea:08: 2f:3d:d8:b9:d8:2a:bc:bb:b0:cc:aa:7c:4b:8a:0b: 0b:7b:6f:48:6b:49:72:cb:5d:49:03:8c:33:3e:ad: a1:cf:1a:61:51:f5:3d:fb:c7:37:6d:c6:73:bd:f0: 4a:77:5e:58:fb:5e:73:21:d3:62:2d:78:c6:cf:79: d8:6c:79:ae:86:88:e5:b6:41:e5:b2:f5:55:0b:fc: cc:d2:3f:06:d4:45:7e:02:51:47:3b:cf:ed:1d:32: 26:63:f9:f8:fc:35:fb:e8:3a:ea:f0:72:25:86:9f: a5:e4:6b:fd:36:46:15:9a:1b:7a:ba:bd:82:24:0d: 37:ca:f2:40:df:21:74:7b:98:b1:90:16:cf:da:85: 19:76:bc:b4:aa:a5:70:53:fd:d5:d4:16:c3:70:dd: 19:7e:53:11:4e:5c:b5:c2:94:01:d4:49:0f:d0:e7: 1c:28:b0:07:eb:cb:b3:66:72:87:22:e3:fb:e8:45: 74:de:7d:f5:e4:c1:73:1d:43:40:a9:16:d4:32:ae: 3d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BB:6D:3F:B1:8D:BC:25:C8:28:7E:36:9D:01:70:CA:1F:E3:62:14 X509v3 Authority Key Identifier: keyid:1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.232.148.0/22 144.48.68.0/22 144.48.188.0/22 Signature Algorithm: sha256WithRSAEncryption bb:52:c5:fd:6d:c5:35:03:d1:30:21:28:3c:8f:cf:1b:91:aa: 81:17:38:3e:55:a8:03:11:e9:9f:9a:0b:87:ec:c8:e4:5a:98: 64:1a:a2:8c:3f:b4:fd:84:ae:c4:63:d2:17:dd:3a:d7:f7:84: e0:6f:4d:08:df:02:93:08:9f:b5:4a:3e:2b:d1:e0:85:cf:c4: 81:ab:73:53:41:fa:92:f9:d8:5d:62:40:9f:f8:cb:f8:e0:14: de:a4:bd:3e:09:02:cc:3b:94:13:2e:aa:7f:68:d7:7b:31:05: 9f:cc:48:12:85:04:93:ee:da:12:34:70:01:3d:d5:68:c4:f5: ff:53:8d:21:a7:f7:01:45:4f:8a:a6:90:14:da:8d:a2:ed:f4: 77:15:60:e7:30:10:2b:03:84:1a:78:a1:e6:73:59:de:58:4a: e1:f7:86:be:e3:cb:18:2a:84:69:ca:1d:49:eb:6c:e7:e2:00: 88:eb:1e:10:8f:83:a3:12:be:3b:ff:76:b8:f3:bc:e1:ec:12: f2:26:7f:4b:97:3a:81:64:84:b5:7b:f4:85:73:2b:39:c4:4f: 88:f9:c1:1e:e0:72:3b:81:08:78:88:19:4c:e5:ef:63:94:ec: a6:94:82:c6:67:a3:fc:7f:d9:e6:be:f0:83:14:e9:69:f4:89: 59:7f:ee:c7 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKDFDN0IzMDU3NkVCMTg1MDhFRjI3NzlDNEVGNUJCNTcy NDkyREQyOTkwHhcNMjUwODI1MDYyODEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWY2MC01NDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGf86SX7Dcd82pSZvr7h7KbS0Zlug4MEvH54ban6GcOY010AzRLDNQu5PqLc BoSkbONO3upV5wOk6ggvPdi52Cq8u7DMqnxLigsLe29Ia0lyy11JA4wzPq2hzxph UfU9+8c3bcZzvfBKd15Y+15zIdNiLXjGz3nYbHmuhojltkHlsvVVC/zM0j8G1EV+ AlFHO8/tHTImY/n4/DX76Drq8HIlhp+l5Gv9NkYVmht6ur2CJA03yvJA3yF0e5ix kBbP2oUZdry0qqVwU/3V1BbDcN0ZflMRTly1wpQB1EkP0OccKLAH68uzZnKHIuP7 6EV03n315MFzHUNAqRbUMq499wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFFW7bT+x jbwlyCh+Np0BcMof42IUMB8GA1UdIwQYMBaAFBx7MFdusYUI7yd5xO9btXJJLdKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS9BNjkxNUIzNDAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9ISHN3VjI2eGhRanZKM25FNzF1MWNra3Qw cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hIc3dWMjZ4aFFqdkozbkU3MXUxY2trdDBway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1Q0EvQTY5MTVCMzQwMjRGMTFFRkFDNjVGNTc3QzRGOUFFMDIvN0U5MzNEMDQy N0I3MTFFRjg4NjdBQTQ5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ+iUAwQCkDBEAwQCkDC8MA0GCSqGSIb3DQEBCwUAA4IBAQC7UsX9 bcU1A9EwISg8j88bkaqBFzg+VagDEemfmguH7MjkWphkGqKMP7T9hK7EY9IX3TrX 94Tgb00I3wKTCJ+1Sj4r0eCFz8SBq3NTQfqS+dhdYkCf+Mv44BTepL0+CQLMO5QT Lqp/aNd7MQWfzEgShQST7toSNHABPdVoxPX/U40hp/cBRU+KppAU2o2i7fR3FWDn MBArA4QaeKHmc1neWErh94a+48sYKoRpyh1J62zn4gCI6x4Qj4OjEr47/3a487zh 7BLyJn9LlzqBZIS1e/SFcys5xE+I+cEe4HI7gQh4iBlM5e9jlOymlILGZ6P8f9nm vvCDFOlp9IlZf+7H -----END CERTIFICATE-----Generated at Mon Mar 2 19:27:20 2026 by rpki-client