$ rpki-client -vvf rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa File: 7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa (raw, json) Hash identifier: 83mEH4MdqJa2Mi54QCe87Hcel+LeamfIiaKQ+N8+vvA= Subject key identifier: B6:C5:A2:7B:0C:7C:73:CF:41:52:DD:44:0C:0F:C7:D1:C8:CF:DE:4B Certificate issuer: /CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Certificate serial: 0249 Authority key identifier: 2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa Signing time: Fri 05 Jun 2026 03:35:01 +0000 ROA not before: Fri 05 Jun 2026 03:35:01 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 142036 IP address blocks: 103.114.160.0/24 maxlen: 24 103.114.161.0/24 maxlen: 24 103.114.162.0/24 maxlen: 24 103.114.163.0/24 maxlen: 24 103.124.104.0/24 maxlen: 24 103.124.105.0/24 maxlen: 24 103.124.106.0/24 maxlen: 24 103.124.107.0/24 maxlen: 24 2402:d0c0:10::/48 maxlen: 48 2402:d0c0:11::/48 maxlen: 48 2402:d0c0:12::/48 maxlen: 48 2402:d0c0:13::/48 maxlen: 48 2402:d0c0:14::/48 maxlen: 48 2402:d0c0:15::/48 maxlen: 48 2402:d0c0:16::/48 maxlen: 48 2402:d0c0:17::/48 maxlen: 48 2402:d0c0:18::/48 maxlen: 48 2402:d0c0:19::/48 maxlen: 48 2402:d0c0:20::/48 maxlen: 48 2402:d0c0:21::/48 maxlen: 48 2402:d0c0:22::/48 maxlen: 48 2402:d0c0:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91479A7, serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Validity Not Before: Jun 5 03:35:01 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2243e4-6911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:92:fb:05:1d:ec:ae:aa:ec:05:1b:aa:57:63: 16:58:d4:ad:4f:b9:d5:30:a5:d1:91:24:a5:fc:be: ea:07:6f:86:b0:61:cf:51:ce:a8:f7:2f:8e:91:cf: 4b:ae:4c:31:98:3b:d5:94:8d:9f:17:c9:61:3c:e6: ad:68:52:cc:e8:6f:74:df:24:b2:81:0c:eb:d5:15: 7e:46:c2:4f:41:6c:c8:4f:ae:9c:af:ce:53:51:81: f3:99:c1:9b:79:aa:1e:8a:91:c5:4b:87:8c:41:d7: 9b:b3:24:83:85:3c:48:28:db:32:88:cf:fa:00:3e: c8:5f:75:23:06:1e:ae:ea:03:c7:f6:97:d0:09:89: a8:8e:3b:35:8e:22:c2:e7:03:e8:b0:7d:d0:ac:28: 11:11:96:75:e3:a1:54:7f:7d:f5:aa:22:f1:87:6f: c0:f0:e5:e2:74:4a:83:a9:3d:20:31:b5:b2:86:3f: a7:49:28:5a:a7:78:a7:66:cc:d4:46:60:73:fa:7f: 18:b4:08:ce:14:50:3c:d8:9c:fc:a5:b4:7a:24:be: 63:54:d0:6c:76:1c:86:30:5d:9b:33:47:30:a5:ef: c6:63:5a:95:b2:95:0b:85:48:fa:1a:cb:57:14:81: 93:25:78:ad:c8:21:87:39:3b:1c:0c:fc:82:d8:5d: 8a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:C5:A2:7B:0C:7C:73:CF:41:52:DD:44:0C:0F:C7:D1:C8:CF:DE:4B X509v3 Authority Key Identifier: keyid:2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.114.160.0/22 103.124.104.0/22 IPv6: 2402:d0c0:10::-2402:d0c0:19:ffff:ffff:ffff:ffff:ffff 2402:d0c0:20::/46 Signature Algorithm: sha256WithRSAEncryption 28:91:6e:7a:07:d1:44:6d:e2:91:99:e6:49:91:5c:55:e8:b9: 59:71:bc:f2:51:c5:0e:05:43:db:d5:e1:e0:ca:9b:97:ab:2d: 51:41:73:b2:b5:5b:e7:61:ff:ff:05:90:8e:a9:4c:39:95:81: 6b:eb:07:59:c0:94:70:7a:fe:dd:f7:97:7d:b0:99:fe:14:cd: 4a:95:16:37:3a:04:75:d3:4d:82:7f:08:9e:54:d6:c7:e1:bf: 72:ea:22:ef:5f:21:67:39:fd:1a:cb:84:60:e0:07:12:26:34: 27:4c:5f:3e:f1:23:61:cb:7a:b2:4e:58:71:f9:94:1d:66:f7: 63:8f:59:95:0a:f9:0f:7b:83:f7:e7:46:c7:4f:70:e5:15:32: 69:44:5b:77:b2:83:45:c2:80:c8:59:86:53:8d:2d:23:d2:02: 98:99:b6:e0:29:7b:a5:17:f8:eb:60:71:da:fb:b7:2b:0d:a1: d3:1d:d5:5c:83:3a:98:20:ee:3f:f7:96:56:11:bc:5e:c9:47: 5a:b6:a2:a0:c9:e1:b2:04:ee:8a:ca:db:cd:be:bd:61:6f:62: b6:b6:81:ce:65:5b:7b:f2:fd:b5:ea:1e:de:c7:06:3c:e1:19: 60:65:fb:f0:b4:88:8f:cb:d9:71:83:5a:d9:77:47:35:6c:f5: a4:b4:2f:68 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc5QTcxMTAvBgNVBAUTKDJGMjQ3N0VCQkU1NkIwRDdBMEFENDRDMjcxN0RCNUZF MDgwRENBRTgwHhcNMjYwNjA1MDMzNTAxWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyNDNlNC02OTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05L7BR3srqrsBRuqV2MWWNStT7nVMKXRkSSl/L7qB2+GsGHPUc6o9y+Okc9L rkwxmDvVlI2fF8lhPOataFLM6G903ySygQzr1RV+RsJPQWzIT66cr85TUYHzmcGb eaoeipHFS4eMQdebsySDhTxIKNsyiM/6AD7IX3UjBh6u6gPH9pfQCYmojjs1jiLC 5wPosH3QrCgREZZ146FUf331qiLxh2/A8OXidEqDqT0gMbWyhj+nSShap3inZszU RmBz+n8YtAjOFFA82Jz8pbR6JL5jVNBsdhyGMF2bM0cwpe/GY1qVspULhUj6GstX FIGTJXityCGHOTscDPyC2F2KRwIDAQABo4ICizCCAocwHQYDVR0OBBYEFLbFonsM fHPPQVLdRAwPx9HIz95LMB8GA1UdIwQYMBaAFC8kd+u+VrDXoK1EwnF9tf4IDcro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzlBNy84QkE5NjNENDQz RjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NOZWdyVVRDY1gyMV9nZ055 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5UjM2NzVXc05lZ3JVVENjWDIxX2dnTnl1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc5QTcvOEJBOTYzRDQ0M0Y1MTFFRTlBOEU0RTE2QzRGOUFFMDIvN0VGMEIwQUM0 RDlCMTFFRUIwMTlBMzFGQzRGOUFFMDIucm9hMEoGCCsGAQUFBwEHAQH/BDswOTAS BAIAATAMAwQCZ3KgAwQCZ3xoMCMEAgACMB0wEgMHBCQC0MAAEAMHASQC0MAAGAMH AiQC0MAAIDANBgkqhkiG9w0BAQsFAAOCAQEAKJFuegfRRG3ikZnmSZFcVei5WXG8 8lHFDgVD29Xh4Mqbl6stUUFzsrVb52H//wWQjqlMOZWBa+sHWcCUcHr+3feXfbCZ /hTNSpUWNzoEddNNgn8InlTWx+G/cuoi718hZzn9GsuEYOAHEiY0J0xfPvEjYct6 sk5YcfmUHWb3Y49ZlQr5D3uD9+dGx09w5RUyaURbd7KDRcKAyFmGU40tI9ICmJm2 4Cl7pRf462Bx2vu3Kw2h0x3VXIM6mCDuP/eWVhG8XslHWraioMnhsgTuisrbzb69 YW9itraBzmVbe/L9teoe3scGPOEZYGX78LSIj8vZcYNa2XdHNWz1pLQvaA== -----END CERTIFICATE-----Generated at Sat Jun 13 14:22:13 2026 by rpki-client