$ rpki-client -vvf rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa File: 425602A0AD2111EA9510AC0DC4F9AE02.roa (raw, json) Hash identifier: MlNlXSkj1JPmCyqGlrz2u7koWnM2+ICV+rgfqt+G5Jw= Subject key identifier: CF:CF:73:21:39:9D:56:48:2B:EE:F2:90:B9:ED:2D:09:16:93:C2:7B Certificate issuer: /CN=A914331D/serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Certificate serial: 097C Authority key identifier: D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:33:04 +0000 ROA not before: Thu 08 May 2025 20:47:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140635 IP address blocks: 103.151.76.0/23 maxlen: 23 103.151.76.0/24 maxlen: 24 103.151.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2428 (0x97c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914331D, serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Validity Not Before: May 8 20:47:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a407d0-06e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:fa:b5:9e:3d:ee:a5:2f:93:1b:ec:69:73: af:eb:19:e1:fa:2a:2d:47:d6:5a:31:df:86:eb:08: 72:9b:71:57:bb:2e:ec:2b:76:48:f2:64:29:3c:e5: 18:81:b3:93:b3:3c:78:83:25:24:68:67:63:5a:38: 4b:be:6e:6b:71:38:2d:ca:5f:71:cb:b7:d3:d6:b6: f1:62:f0:6e:77:b1:50:f2:ed:67:6e:36:28:b7:fd: a1:a3:e4:6c:8f:d7:7e:6f:5a:f8:04:ef:10:f2:a8: 5f:43:a8:7d:a0:1b:27:9d:00:e8:10:b2:be:ce:0e: 68:4e:02:b3:65:25:50:ae:d1:b4:ea:25:66:95:8f: 9a:4b:52:0b:cd:8f:b2:29:df:5d:3b:e4:99:2c:61: 6b:fb:fe:7f:b3:8f:21:3f:ef:27:ff:ad:fb:ec:84: 0c:7d:7f:a6:91:ad:d2:ad:81:13:5d:7b:90:0b:cc: ee:85:95:2e:a3:f3:1a:0a:fd:06:a8:34:32:e9:5b: f3:5a:67:8b:23:c8:8f:21:ba:9c:8c:eb:b7:2b:71: 24:fb:e7:1a:aa:2d:b5:e6:9e:3b:61:30:0d:10:16: 4f:0d:8f:2b:60:90:b8:1d:33:73:0d:05:fb:f6:c0: 35:e0:b8:d4:0c:2e:97:14:b2:e7:e8:eb:bf:3b:b9: d3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CF:73:21:39:9D:56:48:2B:EE:F2:90:B9:ED:2D:09:16:93:C2:7B X509v3 Authority Key Identifier: keyid:D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.76.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:ac:4c:ab:0a:2f:60:00:9c:69:b5:50:8e:de:e1:6e:58:49: 7b:f9:d4:cd:f3:8f:70:d3:03:43:53:09:fa:ef:3b:ae:da:9f: da:68:d1:ea:31:7f:9a:77:49:6b:dc:0c:f2:b3:ac:c6:3b:5f: d9:24:2e:3d:d2:4e:39:ee:a2:fa:e5:c9:9a:7f:51:9a:06:b2: 68:2e:fb:3e:3c:5b:f8:92:93:ff:42:3a:a4:99:f2:85:7e:ce: 6c:5b:e4:ee:ec:18:99:72:c5:29:25:ff:fd:55:5e:aa:c9:68: 29:d1:61:3a:64:c9:a5:b2:9e:b2:d1:f7:3f:30:a2:b4:02:ec: 57:c9:32:06:23:77:8a:04:b9:7b:05:f1:1f:15:96:06:2e:92: 79:e5:60:79:df:ef:5f:de:3f:db:ba:86:70:f4:9d:6c:b3:34: eb:7b:96:89:8f:72:45:e0:e9:ae:e6:08:36:09:c0:d9:8c:79: 3a:36:02:e3:59:fc:b5:65:62:78:e8:d0:7f:72:48:1d:35:12: 0d:a9:b6:bb:00:af:b2:c3:c8:7a:3b:11:e0:c4:7b:5b:e7:88: 79:e0:88:33:0d:a6:b5:30:0c:23:56:e0:08:5a:18:4f:4c:08: 77:3b:55:02:39:2a:0d:ce:fc:66:f0:9b:f1:ea:6e:69:2b:a9: 4e:55:ba:66 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzMUQxMTAvBgNVBAUTKEQzQTlCNENFNzkzOEQ3MkEyNTUwNTRBMEMwODVCRjc4 OEVCMDY5QjAwHhcNMjUwNTA4MjA0NzQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdkMC0wNmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2z6tZ497qUvkxvsaXOv6xnh+iotR9ZaMd+G6whym3FXuy7sK3ZI8mQpPOUY gbOTszx4gyUkaGdjWjhLvm5rcTgtyl9xy7fT1rbxYvBud7FQ8u1nbjYot/2ho+Rs j9d+b1r4BO8Q8qhfQ6h9oBsnnQDoELK+zg5oTgKzZSVQrtG06iVmlY+aS1ILzY+y Kd9dO+SZLGFr+/5/s48hP+8n/6377IQMfX+mka3SrYETXXuQC8zuhZUuo/MaCv0G qDQy6VvzWmeLI8iPIbqcjOu3K3Ek++caqi215p47YTANEBZPDY8rYJC4HTNzDQX7 9sA14LjUDC6XFLLn6Ou/O7nTbQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM/PcyE5 nVZIK+7ykLntLQkWk8J7MB8GA1UdIwQYMBaAFNOptM55ONcqJVBUoMCFv3iOsGmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzMxRC80QjQ1QkZFOEFE MUUxMUVBOTRDN0U1ODFDNEY5QUUwMi8wNm0wem5rNDF5b2xVRlNnd0lXX2VJNndh YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2bTB6bms0MXlvbFVGU2d3SVdfZUk2d2FiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMzMUQvNEI0NUJGRThBRDFFMTFFQTk0QzdFNTgxQzRGOUFFMDIvNDI1NjAyQTBB RDIxMTFFQTk1MTBBQzBEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5dMMA0GCSqGSIb3DQEBCwUAA4IBAQAurEyrCi9gAJxptVCO3uFu WEl7+dTN849w0wNDUwn67zuu2p/aaNHqMX+ad0lr3Azys6zGO1/ZJC490k457qL6 5cmaf1GaBrJoLvs+PFv4kpP/QjqkmfKFfs5sW+Tu7BiZcsUpJf/9VV6qyWgp0WE6 ZMmlsp6y0fc/MKK0AuxXyTIGI3eKBLl7BfEfFZYGLpJ55WB53+9f3j/buoZw9J1s szTre5aJj3JF4Omu5gg2CcDZjHk6NgLjWfy1ZWJ46NB/ckgdNRINqba7AK+yw8h6 OxHgxHtb54h54IgzDaa1MAwjVuAIWhhPTAh3O1UCOSoNzvxm8Jvx6m5pK6lOVbpm -----END CERTIFICATE-----Generated at Mon Mar 2 13:00:45 2026 by rpki-client