$ rpki-client -vvf rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa File: 1332B7BCEC7211EFBA9EF77FC4F9AE02.roa (raw, json) Hash identifier: Zn+KKaOspwLG/OsARZzD4AsnmpmtXqkaBz98c1ApCRs= Subject key identifier: 07:73:8D:18:2F:B6:00:E4:ED:AD:5A:0E:15:D8:F5:B5:0F:BB:E8:E8 Certificate issuer: /CN=A9143078/serialNumber=0C2042E5FC3361FF7356936D097E1244AFC626CE Certificate serial: 043B Authority key identifier: 0C:20:42:E5:FC:33:61:FF:73:56:93:6D:09:7E:12:44:AF:C6:26:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa Signing time: Thu 23 Apr 2026 00:32:03 +0000 ROA not before: Thu 23 Apr 2026 00:32:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 10111 IP address blocks: 103.183.218.0/24 maxlen: 24 103.183.219.0/24 maxlen: 24 2400:6460::/40 maxlen: 40 2400:6460:10::/44 maxlen: 48 2400:6460:f0::/48 maxlen: 48 2400:6460:f1::/48 maxlen: 48 2400:6460:f2::/48 maxlen: 48 2400:6460:f3::/48 maxlen: 48 2400:6460:ff::/48 maxlen: 48 2400:6460:100::/40 maxlen: 48 2400:6460:300::/40 maxlen: 48 2400:6460:500::/40 maxlen: 48 2400:6460:600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.crl rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 00:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143078, serialNumber=0C2042E5FC3361FF7356936D097E1244AFC626CE Validity Not Before: Apr 23 00:32:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e96883-02ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b9:61:3f:3b:95:43:0b:23:aa:80:58:e3:88: ca:0c:e4:f1:30:79:15:d3:bb:61:7c:e3:cd:0c:ae: 30:a5:2d:3b:1f:08:d7:25:d6:2f:6e:d0:5d:b8:84: c1:cc:9e:47:19:8d:df:b8:ab:63:87:0f:f4:32:17: cb:ae:5a:d2:f9:40:ea:50:81:5c:18:34:34:89:dc: 56:6f:c8:a1:43:78:d1:87:45:07:dc:72:3e:76:de: 75:77:d5:0b:5e:e8:0b:76:fd:44:c8:fd:7f:5f:30: f8:76:3e:fb:30:8b:33:96:1b:95:d8:df:7d:8d:ed: 76:a4:fc:76:4e:9f:06:26:21:b5:1b:0e:42:37:98: 8c:3e:b8:6b:b2:c0:39:c5:e0:5f:64:5a:b5:7c:16: b5:f9:d4:7b:49:e1:84:3a:b4:df:27:5d:70:84:44: 5e:91:05:64:5e:8b:e1:f5:9a:f2:6a:d4:9d:ac:b5: 42:83:67:e1:25:04:83:3c:94:e5:db:90:6b:3f:89: 7e:a7:74:b5:ed:5b:f7:6b:38:12:0d:71:71:55:e1: 99:ba:da:50:86:52:f0:2f:ca:11:a6:e4:4e:d8:6c: c7:91:f0:37:ec:6e:33:2e:a2:4c:7b:14:8b:6c:01: 41:8e:0f:f4:01:4b:8d:f6:13:f9:5c:be:b3:bf:e7: 06:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:73:8D:18:2F:B6:00:E4:ED:AD:5A:0E:15:D8:F5:B5:0F:BB:E8:E8 X509v3 Authority Key Identifier: keyid:0C:20:42:E5:FC:33:61:FF:73:56:93:6D:09:7E:12:44:AF:C6:26:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.183.218.0/23 IPv6: 2400:6460::/39 2400:6460:300::/40 2400:6460:500::-2400:6460:6ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 87:a1:19:40:69:bb:1d:11:e3:10:00:a5:63:4a:65:55:0d:a7: d9:07:d6:bc:21:79:c2:c5:9d:e6:59:e8:78:7b:db:53:cf:79: f2:2b:7d:52:eb:a5:d4:6a:4d:b1:eb:de:65:32:fd:68:67:20: a9:e3:cd:78:24:c0:8c:99:95:8b:2f:3b:44:e3:27:dc:d9:c1: e4:63:89:f3:14:7d:7d:f1:d5:a5:cf:1d:57:35:63:e9:a2:ef: d4:25:fa:23:24:b3:71:da:f8:62:44:cf:10:3e:4f:e6:8a:33: 48:e9:b4:ed:ca:32:89:5b:cf:eb:1a:70:fd:43:5d:a1:ec:8f: b1:5b:11:9c:24:b8:38:c2:e2:75:79:c6:9b:07:40:b5:18:cf: 62:0a:1f:e3:e6:be:11:02:64:0f:6d:57:71:4b:0a:7b:53:3b: 52:7d:dc:6d:bd:47:38:09:96:5e:35:45:f4:74:6f:37:c0:0a: 69:f6:60:a6:2c:86:fb:fe:63:97:be:61:dc:97:38:f2:4e:99: 05:24:09:9b:21:25:fd:a3:fb:a2:6f:d5:e2:3e:e5:55:5b:70: 0a:bd:c9:15:5b:00:df:bf:d6:3c:d9:c4:04:74:2b:f3:f9:f1: b1:cf:f4:44:93:35:e1:dc:8b:61:c4:04:82:8d:ce:34:66:a7: ae:b1:5c:70 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICBDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMwNzgxMTAvBgNVBAUTKDBDMjA0MkU1RkMzMzYxRkY3MzU2OTM2RDA5N0UxMjQ0 QUZDNjI2Q0UwHhcNMjYwNDIzMDAzMjAzWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU5Njg4My0wMmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAublhPzuVQwsjqoBY44jKDOTxMHkV07thfOPNDK4wpS07HwjXJdYvbtBduITB zJ5HGY3fuKtjhw/0MhfLrlrS+UDqUIFcGDQ0idxWb8ihQ3jRh0UH3HI+dt51d9UL XugLdv1EyP1/XzD4dj77MIszlhuV2N99je12pPx2Tp8GJiG1Gw5CN5iMPrhrssA5 xeBfZFq1fBa1+dR7SeGEOrTfJ11whERekQVkXovh9ZryatSdrLVCg2fhJQSDPJTl 25BrP4l+p3S17Vv3azgSDXFxVeGZutpQhlLwL8oRpuRO2GzHkfA37G4zLqJMexSL bAFBjg/0AUuN9hP5XL6zv+cG6QIDAQABo4ICijCCAoYwHQYDVR0OBBYEFAdzjRgv tgDk7a1aDhXY9bUPu+joMB8GA1UdIwQYMBaAFAwgQuX8M2H/c1aTbQl+EkSvxibO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzA3OC9EQTI5QjRBRUFE MTExMUVDOTg5RTNBMERDNEY5QUUwMi9EQ0JDNWZ3ellmOXpWcE50Q1g0U1JLX0dK czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RDQkM1Znd6WWY5elZwTnRDWDRTUktfR0pzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMwNzgvREEyOUI0QUVBRDExMTFFQzk4OUUzQTBEQzRGOUFFMDIvMTMzMkI3QkNF QzcyMTFFRkJBOUVGNzdGQzRGOUFFMDIucm9hMEkGCCsGAQUFBwEHAQH/BDowODAM BAIAATAGAwQBZ7faMCgEAgACMCIDBgEkAGRgAAMGACQAZGADMBADBgAkAGRgBQMG ACQAZGAGMA0GCSqGSIb3DQEBCwUAA4IBAQCHoRlAabsdEeMQAKVjSmVVDafZB9a8 IXnCxZ3mWeh4e9tTz3nyK31S66XUak2x695lMv1oZyCp4814JMCMmZWLLztE4yfc 2cHkY4nzFH198dWlzx1XNWPpou/UJfojJLNx2vhiRM8QPk/mijNI6bTtyjKJW8/r GnD9Q12h7I+xWxGcJLg4wuJ1ecabB0C1GM9iCh/j5r4RAmQPbVdxSwp7UztSfdxt vUc4CZZeNUX0dG83wApp9mCmLIb7/mOXvmHclzjyTpkFJAmbISX9o/uib9XiPuVV W3AKvckVWwDfv9Y82cQEdCvz+fGxz/REkzXh3IthxASCjc40ZqeusVxw -----END CERTIFICATE-----Generated at Mon Apr 27 18:01:43 2026 by rpki-client