$ rpki-client -vvf rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa File: 953250CAE90011EB8DE96E50C4F9AE02.roa (raw, json) Hash identifier: OsKpmn4d4PR+9xigCzefdFcY4eHlBHpLVwQgzWBMDnY= Subject key identifier: A3:E1:44:26:2D:5D:8E:D7:65:F8:F6:3B:62:FD:EA:95:A9:0C:71:B6 Certificate issuer: /CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Certificate serial: 0C03 Authority key identifier: 2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa Signing time: Fri 24 Apr 2026 19:24:50 +0000 ROA not before: Fri 24 Apr 2026 19:24:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56307 IP address blocks: 103.227.20.0/22 maxlen: 24 139.5.172.0/22 maxlen: 24 202.129.148.0/22 maxlen: 24 202.129.152.0/21 maxlen: 24 203.22.104.0/23 maxlen: 24 2001:df1:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 19:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918919A, serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Validity Not Before: Apr 24 19:24:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69ebc382-76eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:c0:c9:35:ab:02:e2:1a:40:d0:7a:14:0c: 38:38:b1:a9:53:c7:45:03:80:11:cc:92:20:76:70: 07:4c:a6:cf:fd:65:4d:f5:8b:d4:8e:08:dd:80:da: eb:85:cd:27:50:63:46:99:2f:5b:99:28:f4:c6:90: 26:ea:02:52:9a:60:db:81:9b:fd:17:d7:73:fb:8c: 51:dd:b2:d6:bf:79:08:aa:b1:17:08:79:a9:6c:bb: 98:12:42:66:6b:d3:b4:fc:38:13:f1:67:dc:30:8d: 58:d2:59:6b:7c:8b:56:0e:7a:56:1f:ca:33:2e:be: 6f:80:1c:de:27:1b:93:ef:29:2d:55:a4:9a:ed:8b: 31:15:7b:bf:3c:79:1d:15:38:b7:a5:68:21:6c:97: 73:85:85:9b:d6:87:35:32:86:87:c8:4c:25:6d:5c: 8e:dc:ae:69:7f:b5:8b:99:a8:f0:1c:27:a2:e3:0b: 60:6c:76:e5:d6:e1:21:a2:e2:55:2b:df:f7:30:00: 22:b8:79:fb:f7:cd:54:7d:f7:7d:80:01:bb:11:a6: 4b:bf:54:b1:81:3e:41:59:62:fb:44:9c:29:27:cd: 0d:e0:3a:35:8e:25:3d:c8:01:6c:ac:97:c1:a2:fc: e4:4f:1b:6b:9b:3c:ca:d8:ab:8c:cb:b7:e5:ee:d2: 14:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E1:44:26:2D:5D:8E:D7:65:F8:F6:3B:62:FD:EA:95:A9:0C:71:B6 X509v3 Authority Key Identifier: keyid:2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.227.20.0/22 139.5.172.0/22 202.129.148.0-202.129.159.255 203.22.104.0/23 IPv6: 2001:df1:3a00::/48 Signature Algorithm: sha256WithRSAEncryption 87:82:d3:e6:23:d8:81:b3:3d:9d:07:16:4e:ef:76:ab:94:19: 87:5e:30:de:23:90:72:c6:df:66:6d:74:05:2a:50:79:16:0e: ff:f5:05:97:05:14:e6:d3:a6:0f:f0:0b:05:93:76:94:83:01: 0b:e2:80:a2:ad:6b:ed:ec:90:9c:b4:a6:83:3e:54:08:45:d7: fa:e0:52:60:de:33:f7:8c:e1:31:8a:a7:5c:3a:c0:3a:5b:06: dd:42:1d:8b:b5:83:e3:09:89:8d:0b:66:65:6a:f8:55:9f:47: d0:df:08:c3:4a:7a:e6:b3:d5:d1:b8:35:39:51:e5:68:54:e1: ac:12:8a:74:ae:3e:90:b8:30:00:fe:2c:54:46:dc:c9:82:66: cf:b6:c8:45:2f:4b:08:42:b0:d6:bb:bf:bb:3f:29:1f:ea:94: 6f:23:ee:ef:8b:05:9e:e4:63:e0:a2:9e:5f:43:d9:55:70:de: e1:aa:e0:4b:78:28:12:9d:51:e7:27:03:a3:30:a0:5e:7e:7c: 49:b8:dc:0e:35:3a:8e:00:08:4c:d0:1b:04:1f:b7:b7:6c:b9: a4:16:15:f8:46:04:23:71:88:14:ad:5b:49:a1:38:8e:b6:2c: b8:3a:0a:42:29:9b:f8:fb:f1:27:43:95:5e:57:72:3b:dc:08: e4:e8:6f:fc -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxOUExMTAvBgNVBAUTKDJFNUJDQkM2NjFBRkYxRkVENThCMEZGNEI1ODNEQ0Y1 RUMxQTM3NEEwHhcNMjYwNDI0MTkyNDUwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWViYzM4Mi03NmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLPAyTWrAuIaQNB6FAw4OLGpU8dFA4ARzJIgdnAHTKbP/WVN9YvUjgjdgNrr hc0nUGNGmS9bmSj0xpAm6gJSmmDbgZv9F9dz+4xR3bLWv3kIqrEXCHmpbLuYEkJm a9O0/DgT8WfcMI1Y0llrfItWDnpWH8ozLr5vgBzeJxuT7yktVaSa7YsxFXu/PHkd FTi3pWghbJdzhYWb1oc1MoaHyEwlbVyO3K5pf7WLmajwHCei4wtgbHbl1uEhouJV K9/3MAAiuHn7981Uffd9gAG7EaZLv1SxgT5BWWL7RJwpJ80N4Do1jiU9yAFsrJfB ovzkTxtrmzzK2KuMy7fl7tIUbQIDAQABo4ICizCCAocwHQYDVR0OBBYEFKPhRCYt XY7XZfj2O2L96pWpDHG2MB8GA1UdIwQYMBaAFC5by8Zhr/H+1YsP9LWD3PXsGjdK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTE5QS8wNDkwOTA5QTQz MUIxMUVBQjAxOTc3MkNDNEY5QUUwMi9MbHZMeG1HdjhmN1Zpd18wdFlQYzlld2FO MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xsdkx4bUd2OGY3Vml3XzB0WVBjOWV3YU4wby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkxOUEvMDQ5MDkwOUE0MzFCMTFFQUIwMTk3NzJDQzRGOUFFMDIvOTUzMjUwQ0FF OTAwMTFFQjhERTk2RTUwQzRGOUFFMDIucm9hMEoGCCsGAQUFBwEHAQH/BDswOTAm BAIAATAgAwQCZ+MUAwQCiwWsMAwDBALKgZQDBAXKgYADBAHLFmgwDwQCAAIwCQMH ACABDfE6ADANBgkqhkiG9w0BAQsFAAOCAQEAh4LT5iPYgbM9nQcWTu92q5QZh14w 3iOQcsbfZm10BSpQeRYO//UFlwUU5tOmD/ALBZN2lIMBC+KAoq1r7eyQnLSmgz5U CEXX+uBSYN4z94zhMYqnXDrAOlsG3UIdi7WD4wmJjQtmZWr4VZ9H0N8Iw0p65rPV 0bg1OVHlaFThrBKKdK4+kLgwAP4sVEbcyYJmz7bIRS9LCEKw1ru/uz8pH+qUbyPu 74sFnuRj4KKeX0PZVXDe4argS3goEp1R5ycDozCgXn58SbjcDjU6jgAITNAbBB+3 t2y5pBYV+EYEI3GIFK1bSaE4jrYsuDoKQimb+PvxJ0OVXldyO9wI5Ohv/A== -----END CERTIFICATE-----Generated at Wed Apr 29 05:03:22 2026 by rpki-client