$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa File: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (raw, json) Hash identifier: ffDUuM9X2orV7o+aInsG+5suQOvozRrFfEYtHJPj+tI= Subject key identifier: EB:CF:54:0B:79:42:0F:A6:26:67:84:34:58:49:3F:0F:A4:01:29:8A Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 0A1B Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:36:40 +0000 ROA not before: Tue 20 May 2025 15:56:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138077 IP address blocks: 61.29.241.0/24 maxlen: 24 61.29.249.0/24 maxlen: 24 103.216.100.0/24 maxlen: 24 103.216.101.0/24 maxlen: 24 157.119.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 19:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: May 20 15:56:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48738-a7d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b2:f7:cb:db:54:c2:28:61:6b:d6:06:13:92: 93:03:85:38:64:3f:af:ff:f9:68:21:8a:25:1b:26: 90:c1:65:9f:d9:06:a5:9f:91:c1:be:d8:eb:c9:f3: 43:3b:84:77:d5:3e:e3:2a:9f:6c:0a:a8:d6:ea:c4: 21:a6:76:d7:ac:34:ac:29:9c:69:a0:60:90:7d:79: b9:14:93:0d:98:73:0a:a9:2e:ed:03:fb:c0:25:1a: 52:8c:80:5b:d2:30:07:a6:fe:7b:a3:da:c8:67:70: 7c:93:c2:dc:41:c3:ce:3b:9b:2f:55:c0:7e:12:0c: ca:39:4d:62:da:45:71:29:84:ee:00:0c:34:8a:73: fc:20:02:75:10:da:a2:e2:80:61:ee:95:73:ed:5e: 4d:68:00:c4:62:68:6f:ea:6e:52:e6:8a:61:3c:54: bf:e9:31:f4:2f:fc:27:17:ad:dc:9c:b9:13:2d:ce: 8e:2e:28:a2:7d:31:4e:d6:06:27:95:b9:c7:de:a6: 9c:cf:5e:75:08:1c:8c:f8:14:1d:3a:4f:1a:d1:96: a9:44:2e:aa:a1:17:ad:20:80:1b:41:f8:99:c5:9c: 1f:90:ea:d1:ed:99:34:4e:89:bf:f5:44:8f:58:2a: aa:14:7d:1f:fb:df:fa:89:01:bb:9d:3b:67:71:51: d4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:CF:54:0B:79:42:0F:A6:26:67:84:34:58:49:3F:0F:A4:01:29:8A X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.29.241.0/24 61.29.249.0/24 103.216.100.0/23 157.119.235.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:5e:17:ce:0e:30:eb:98:79:42:99:d8:bd:1b:7e:02:43:aa: 5d:0f:63:87:88:4f:29:55:9a:62:49:5c:29:b5:71:61:62:ea: 11:4a:43:f5:6c:b0:6d:02:fd:bd:ff:c6:5d:80:83:f9:40:c4: 70:11:30:cb:16:10:b9:82:32:1f:a2:b1:35:a5:f1:d9:a5:bc: 12:a6:24:63:b4:92:08:c7:e7:da:52:89:00:e1:c9:fc:9e:b7: a3:57:36:54:d0:4d:5f:28:5d:6e:81:02:bc:7a:ab:78:47:08: 27:71:a3:74:5d:be:e8:6a:c8:af:d9:df:93:d3:f4:87:24:db: 70:ab:ff:cf:10:5f:c7:a9:a3:f2:c1:db:7a:4e:d9:67:95:a4: 78:74:9d:5b:7b:3e:b4:8d:24:3d:85:23:64:3d:59:5b:3b:99: 59:dd:f6:27:d9:ca:dc:91:f3:35:6e:a5:ac:cb:d7:8e:67:05: 7e:58:c8:06:77:ab:f4:cb:94:d9:40:c4:6c:c8:f0:3a:75:9d: 72:0a:8d:3a:23:84:2a:36:75:a6:4c:88:01:a6:34:d2:18:19: 5a:87:d7:f7:5f:7b:da:92:6d:c6:97:1a:00:17:65:e1:b5:b4: 33:62:24:be:b8:53:e9:fa:dc:e9:a2:4b:4f:bb:cd:7d:42:8e: 16:71:03:1d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjUwNTIwMTU1NjU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODczOC1hN2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7L3y9tUwihha9YGE5KTA4U4ZD+v//loIYolGyaQwWWf2Qaln5HBvtjryfND O4R31T7jKp9sCqjW6sQhpnbXrDSsKZxpoGCQfXm5FJMNmHMKqS7tA/vAJRpSjIBb 0jAHpv57o9rIZ3B8k8LcQcPOO5svVcB+EgzKOU1i2kVxKYTuAAw0inP8IAJ1ENqi 4oBh7pVz7V5NaADEYmhv6m5S5ophPFS/6TH0L/wnF63cnLkTLc6OLiiifTFO1gYn lbnH3qacz151CByM+BQdOk8a0ZapRC6qoRetIIAbQfiZxZwfkOrR7Zk0Tom/9USP WCqqFH0f+9/6iQG7nTtncVHUgQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFOvPVAt5 Qg+mJmeENFhJPw+kASmKMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDkvNzlFQTU5MUVBN0JEMTFFQUFBQTYyOTQ4QzRGOUFFMDIvMkUxOEVCMTA1 RDBDMTFFRTg3M0IxQzJBQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAPR3xAwQAPR35AwQBZ9hkAwQAnXfrMA0GCSqGSIb3DQEBCwUAA4IB AQAuXhfODjDrmHlCmdi9G34CQ6pdD2OHiE8pVZpiSVwptXFhYuoRSkP1bLBtAv29 /8ZdgIP5QMRwETDLFhC5gjIforE1pfHZpbwSpiRjtJIIx+faUokA4cn8nrejVzZU 0E1fKF1ugQK8eqt4RwgncaN0Xb7oasiv2d+T0/SHJNtwq//PEF/HqaPywdt6Ttln laR4dJ1bez60jSQ9hSNkPVlbO5lZ3fYn2crckfM1bqWsy9eOZwV+WMgGd6v0y5TZ QMRsyPA6dZ1yCo06I4QqNnWmTIgBpjTSGBlah9f3X3vakm3GlxoAF2XhtbQzYiS+ uFPp+tzpoktPu819Qo4WcQMd -----END CERTIFICATE-----Generated at Wed Mar 4 13:15:58 2026 by rpki-client