$ rpki-client -vvf rpki.apnic.net/member_repository/A918897A/533E2462B55111EEBB4C573BC4F9AE02/18F9209CB55411EEAD96E873C4F9AE02.roa File: 18F9209CB55411EEAD96E873C4F9AE02.roa (raw, json) Hash identifier: tVWZ+z7y79vt8dbGtT960HBGJ8r1XqQlEdw77RKXe1Y= Subject key identifier: 22:C7:F3:6A:8F:76:DE:B6:F7:00:F4:7E:57:47:E8:FF:76:25:77:8F Certificate issuer: /CN=A918897A/serialNumber=B7FA51215BB5C1EF88EAE15F034313D1B71B8D44 Certificate serial: 0196 Authority key identifier: B7:FA:51:21:5B:B5:C1:EF:88:EA:E1:5F:03:43:13:D1:B7:1B:8D:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t_pRIVu1we-I6uFfA0MT0bcbjUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918897A/533E2462B55111EEBB4C573BC4F9AE02/18F9209CB55411EEAD96E873C4F9AE02.roa Signing time: Thu 05 Mar 2026 03:38:24 +0000 ROA not before: Thu 05 Mar 2026 03:38:23 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 54113 IP address blocks: 43.249.73.0/24 maxlen: 24 43.249.74.0/24 maxlen: 24 103.245.222.0/24 maxlen: 24 103.245.224.0/24 maxlen: 24 2001:df0:45f::/48 maxlen: 48 2001:df0:461::/48 maxlen: 48 2001:df0:462::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918897A/533E2462B55111EEBB4C573BC4F9AE02/t_pRIVu1we-I6uFfA0MT0bcbjUQ.crl rsync://rpki.apnic.net/member_repository/A918897A/533E2462B55111EEBB4C573BC4F9AE02/t_pRIVu1we-I6uFfA0MT0bcbjUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t_pRIVu1we-I6uFfA0MT0bcbjUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 03:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918897A, serialNumber=B7FA51215BB5C1EF88EAE15F034313D1B71B8D44 Validity Not Before: Mar 5 03:38:23 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a8faaf-1a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e7:74:17:4c:bc:c9:08:ff:2b:d5:c5:1f:71: 8f:d6:66:9e:27:88:d0:19:08:8e:f1:b7:0b:6d:a6: 3f:f6:9c:86:a8:a6:d9:78:73:a4:79:f7:d1:84:f7: 30:02:df:ba:3a:f4:64:7e:01:40:a4:e5:b1:8d:4a: ec:5c:38:27:97:f0:1a:72:ca:9c:81:91:be:b6:6c: a7:b9:d8:f6:a0:5b:e5:74:18:89:16:3d:9a:d3:7e: e3:bf:2c:1e:16:4f:a2:be:7f:66:d6:09:b0:ff:f2: a7:f4:36:3a:07:e5:de:80:aa:dd:b4:9f:84:9e:a3: c2:c0:62:a0:f5:c9:e1:a4:ae:dc:35:bf:e7:e7:90: 37:3a:b7:ac:0f:30:6f:29:80:3e:db:63:f5:20:0e: a5:2a:e3:cd:37:31:88:d8:02:9f:c6:34:17:4f:ea: 4d:2e:0d:02:28:b0:bf:8f:29:90:c2:e2:6a:c4:d5: fb:b5:00:b7:2e:56:09:24:4a:5e:21:43:ff:30:50: b3:11:24:bf:bb:d5:43:58:91:3b:14:ca:c3:fa:74: 2c:cc:87:47:6d:80:89:23:74:55:e4:d3:94:6d:ab: f3:51:d5:3c:85:f4:f4:51:32:7a:24:b2:b2:16:6e: b9:a0:7a:e7:7e:ac:6c:d8:d4:85:d9:d1:d6:4f:bf: df:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C7:F3:6A:8F:76:DE:B6:F7:00:F4:7E:57:47:E8:FF:76:25:77:8F X509v3 Authority Key Identifier: keyid:B7:FA:51:21:5B:B5:C1:EF:88:EA:E1:5F:03:43:13:D1:B7:1B:8D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918897A/533E2462B55111EEBB4C573BC4F9AE02/t_pRIVu1we-I6uFfA0MT0bcbjUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t_pRIVu1we-I6uFfA0MT0bcbjUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918897A/533E2462B55111EEBB4C573BC4F9AE02/18F9209CB55411EEAD96E873C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.249.73.0-43.249.74.255 103.245.222.0/24 103.245.224.0/24 IPv6: 2001:df0:45f::/48 2001:df0:461::-2001:df0:462:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption cc:e3:0a:25:77:43:df:fe:9e:9f:91:0d:3e:3c:3d:8d:68:37: 7a:42:15:bd:0b:3c:74:b2:35:6a:2b:4a:22:fb:84:d9:aa:2f: e3:68:52:19:8f:0d:7a:99:96:23:05:e6:e5:14:9f:55:a6:50: 91:2a:a7:7a:f9:9c:b9:be:6e:11:b0:a5:fa:04:1f:04:4f:99: 06:f8:bc:50:c2:c4:b5:1f:35:f4:b5:25:04:6d:77:64:e2:2c: 9c:70:cb:ce:3f:dc:04:6a:a2:b7:14:3d:b8:32:ab:1f:1f:f1: ee:c7:c6:ba:5c:be:1f:65:3a:61:9d:70:17:32:2d:d5:91:75: 40:13:33:ea:5e:bb:17:55:3c:b0:5a:7b:57:76:58:58:98:8f: c5:74:06:6b:a2:9c:b5:9f:b2:6f:c3:d6:f4:fc:1c:78:17:90: 7c:6a:70:e3:68:2d:ae:1b:86:11:b8:27:f5:62:3b:69:58:80: 20:7b:4d:0e:82:a8:0e:fe:a2:f6:5e:70:27:3f:3e:af:c1:a7: bc:66:b8:e8:14:24:bd:8a:b1:39:fa:48:45:65:1e:99:7a:7c: e4:5b:c5:4a:bb:91:4e:5f:14:4d:57:ee:25:58:85:11:11:70: b8:51:3c:88:1e:fc:01:17:34:97:09:40:71:30:0c:30:ff:f4: 81:04:3e:6a -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5N0ExMTAvBgNVBAUTKEI3RkE1MTIxNUJCNUMxRUY4OEVBRTE1RjAzNDMxM0Qx QjcxQjhENDQwHhcNMjYwMzA1MDMzODIzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4ZmFhZi0xYTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ud0F0y8yQj/K9XFH3GP1maeJ4jQGQiO8bcLbaY/9pyGqKbZeHOkeffRhPcw At+6OvRkfgFApOWxjUrsXDgnl/AacsqcgZG+tmynudj2oFvldBiJFj2a037jvywe Fk+ivn9m1gmw//Kn9DY6B+XegKrdtJ+EnqPCwGKg9cnhpK7cNb/n55A3OresDzBv KYA+22P1IA6lKuPNNzGI2AKfxjQXT+pNLg0CKLC/jymQwuJqxNX7tQC3LlYJJEpe IUP/MFCzESS/u9VDWJE7FMrD+nQszIdHbYCJI3RV5NOUbavzUdU8hfT0UTJ6JLKy Fm65oHrnfqxs2NSF2dHWT7/f6wIDAQABo4ICmTCCApUwHQYDVR0OBBYEFCLH82qP dt629wD0fldH6P92JXePMB8GA1UdIwQYMBaAFLf6USFbtcHviOrhXwNDE9G3G41E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODk3QS81MzNFMjQ2MkI1 NTExMUVFQkI0QzU3M0JDNEY5QUUwMi90X3BSSVZ1MXdlLUk2dUZmQTBNVDBiY2Jq VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RfcFJJVnUxd2UtSTZ1RmZBME1UMGJjYmpVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg5N0EvNTMzRTI0NjJCNTUxMTFFRUJCNEM1NzNCQzRGOUFFMDIvMThGOTIwOUNC NTU0MTFFRUFEOTZFODczQzRGOUFFMDIucm9hMFgGCCsGAQUFBwEHAQH/BEkwRzAg BAIAATAaMAwDBAAr+UkDBAAr+UoDBABn9d4DBABn9eAwIwQCAAIwHQMHACABDfAE XzASAwcAIAEN8ARhAwcAIAEN8ARiMA0GCSqGSIb3DQEBCwUAA4IBAQDM4wold0Pf /p6fkQ0+PD2NaDd6QhW9Czx0sjVqK0oi+4TZqi/jaFIZjw16mZYjBeblFJ9VplCR Kqd6+Zy5vm4RsKX6BB8ET5kG+LxQwsS1HzX0tSUEbXdk4iyccMvOP9wEaqK3FD24 MqsfH/Hux8a6XL4fZTphnXAXMi3VkXVAEzPqXrsXVTywWntXdlhYmI/FdAZropy1 n7Jvw9b0/Bx4F5B8anDjaC2uG4YRuCf1YjtpWIAge00OgqgO/qL2XnAnPz6vwae8 ZrjoFCS9irE5+khFZR6ZenzkW8VKu5FOXxRNV+4lWIUREXC4UTyIHvwBFzSXCUBx MAww//SBBD5q -----END CERTIFICATE-----Generated at Wed Mar 18 17:58:58 2026 by rpki-client