$ rpki-client -vvf rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa File: 8DB89FC2572311EA9D4ED562C4F9AE02.roa (raw, json) Hash identifier: NPvAAqisCc9rl16GZJGrWG7V+pOcDYxKSou48BFW5t4= Subject key identifier: 4E:EF:68:3D:14:75:BC:AC:30:8F:EC:35:B0:60:84:88:0E:92:7B:6B Certificate issuer: /CN=A918EAFB/serialNumber=F61FBAA61929D100FA99DBD480CE8C2C4EE73FF1 Certificate serial: 0B66 Authority key identifier: F6:1F:BA:A6:19:29:D1:00:FA:99:DB:D4:80:CE:8C:2C:4E:E7:3F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:18:34 +0000 ROA not before: Tue 02 Sep 2025 20:10:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 27471 IP address blocks: 103.246.36.0/24 maxlen: 24 103.246.37.0/24 maxlen: 24 103.246.38.0/24 maxlen: 24 103.246.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.crl rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 18:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2918 (0xb66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EAFB, serialNumber=F61FBAA61929D100FA99DBD480CE8C2C4EE73FF1 Validity Not Before: Sep 2 20:10:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a51daa-38b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a2:be:c0:ee:e6:62:28:d9:5d:7f:d8:67:a6: f6:2b:ea:07:f0:b6:46:3d:7b:15:8f:5a:0f:d6:72: f9:5b:17:ac:fb:5c:6b:44:17:3a:8a:1e:e1:3d:f9: 7e:b7:ae:33:30:3c:54:37:74:ae:25:25:d8:26:14: d7:74:b3:89:69:40:cd:e8:9f:41:58:57:ca:8d:96: a0:51:ab:00:90:75:9c:f5:dc:16:9a:fe:2b:98:2e: 82:45:6e:94:ef:a1:9d:8a:1c:80:e0:03:be:53:63: 8e:59:50:1a:d9:3a:59:7e:e9:ae:62:5c:85:d9:ed: c7:ee:47:95:ec:28:1f:f1:77:5e:30:6a:78:e9:a9: d3:05:49:6f:5e:45:e1:90:2c:ea:2b:96:d3:bf:fc: f8:95:c1:31:cc:1d:e6:4b:93:7e:31:6a:27:c3:ea: 7b:6b:12:a0:02:f8:fc:1b:05:43:52:db:7a:e5:64: f3:86:da:62:88:5f:0b:d5:81:f4:84:19:f5:0f:6b: 5a:98:87:99:63:76:76:1b:ea:7f:85:66:43:12:84: 0b:67:96:ac:ce:9b:2a:e6:f6:dd:61:b9:e9:e0:86: d5:ec:1d:a5:72:80:c7:5d:be:7c:9d:a5:4c:dd:92: e5:de:7e:e1:9c:94:d7:ff:0b:18:30:32:39:cf:65: f7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EF:68:3D:14:75:BC:AC:30:8F:EC:35:B0:60:84:88:0E:92:7B:6B X509v3 Authority Key Identifier: keyid:F6:1F:BA:A6:19:29:D1:00:FA:99:DB:D4:80:CE:8C:2C:4E:E7:3F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.246.36.0/22 Signature Algorithm: sha256WithRSAEncryption 92:94:d8:9c:05:7b:97:a8:11:21:27:fd:64:27:54:9f:44:7c: 8b:d7:f0:b7:05:a9:25:0a:3a:3a:1b:7b:e1:14:81:a3:54:63: 53:ab:a2:98:de:f3:a3:32:4e:1a:94:af:cb:f1:bf:45:94:c9: 5d:28:bb:53:01:61:22:17:f5:5f:6d:3b:21:36:a2:f4:06:e7: f0:49:8b:10:b8:82:40:96:67:6e:3e:8e:a6:d4:a4:c8:f3:70: 6a:b3:f0:3c:dd:88:14:00:c8:9f:b4:d1:16:3a:2b:c2:ee:0c: 50:bb:a8:6a:d3:1f:5f:b9:fa:b3:7b:96:b7:78:7b:43:63:79: c1:c0:46:7b:41:04:6b:51:54:ad:3f:7b:e0:01:1b:78:f9:e1: d3:91:e7:f1:79:80:a3:67:7b:5e:23:8f:2f:3b:e4:1e:8d:54: 3d:3b:d4:82:31:6a:21:fd:72:a1:5f:53:f8:b0:41:1c:3d:7f: d0:2f:af:91:1c:66:7e:4e:c2:1b:1d:c5:b4:cb:ff:c3:50:b1: fd:d6:66:2b:f1:a0:a4:0e:e4:cf:e4:36:6c:01:37:5b:c7:73: a0:8b:f6:29:64:8c:9e:a0:d8:b6:58:48:c1:7e:70:27:39:cd: 54:20:1c:72:80:70:ef:15:e3:12:dd:29:1b:cb:c8:8f:43:92: a1:76:5e:15 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVBRkIxMTAvBgNVBAUTKEY2MUZCQUE2MTkyOUQxMDBGQTk5REJENDgwQ0U4QzJD NEVFNzNGRjEwHhcNMjUwOTAyMjAxMDA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWRhYS0zOGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqK+wO7mYijZXX/YZ6b2K+oH8LZGPXsVj1oP1nL5Wxes+1xrRBc6ih7hPfl+ t64zMDxUN3SuJSXYJhTXdLOJaUDN6J9BWFfKjZagUasAkHWc9dwWmv4rmC6CRW6U 76GdihyA4AO+U2OOWVAa2TpZfumuYlyF2e3H7keV7Cgf8XdeMGp46anTBUlvXkXh kCzqK5bTv/z4lcExzB3mS5N+MWonw+p7axKgAvj8GwVDUtt65WTzhtpiiF8L1YH0 hBn1D2tamIeZY3Z2G+p/hWZDEoQLZ5aszpsq5vbdYbnp4IbV7B2lcoDHXb58naVM 3ZLl3n7hnJTX/wsYMDI5z2X3IQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE7vaD0U dbysMI/sNbBghIgOkntrMB8GA1UdIwQYMBaAFPYfuqYZKdEA+pnb1IDOjCxO5z/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUFGQi8wOTRGNzQ2RTU0 RjcxMUVBODM4RkE4NEZDNEY5QUUwMi85aC02cGhrcDBRRDZtZHZVZ002TUxFN25Q X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzloLTZwaGtwMFFENm1kdlVnTTZNTEU3blBfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVBRkIvMDk0Rjc0NkU1NEY3MTFFQTgzOEZBODRGQzRGOUFFMDIvOERCODlGQzI1 NzIzMTFFQTlENEVENTYyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/YkMA0GCSqGSIb3DQEBCwUAA4IBAQCSlNicBXuXqBEhJ/1kJ1Sf RHyL1/C3BaklCjo6G3vhFIGjVGNTq6KY3vOjMk4alK/L8b9FlMldKLtTAWEiF/Vf bTshNqL0BufwSYsQuIJAlmduPo6m1KTI83Bqs/A83YgUAMiftNEWOivC7gxQu6hq 0x9fufqze5a3eHtDY3nBwEZ7QQRrUVStP3vgARt4+eHTkefxeYCjZ3teI48vO+Qe jVQ9O9SCMWoh/XKhX1P4sEEcPX/QL6+RHGZ+TsIbHcW0y//DULH91mYr8aCkDuTP 5DZsATdbx3Ogi/YpZIyeoNi2WEjBfnAnOc1UIBxygHDvFeMS3Skby8iPQ5Khdl4V -----END CERTIFICATE-----Generated at Sat Mar 21 12:41:29 2026 by rpki-client