$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0091708C0D4E11EC8DDD243AC4F9AE02.roa File: 0091708C0D4E11EC8DDD243AC4F9AE02.roa (raw, json) Hash identifier: M8mXcaBWCFZiFtPhpvlPWk++m/gzs/ZL0uaeUUsm9xM= Subject key identifier: 9A:C5:26:8C:93:44:26:55:56:C1:A9:A1:98:8A:46:69:E5:71:05:49 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E40B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0091708C0D4E11EC8DDD243AC4F9AE02.roa Signing time: Sun 31 May 2026 16:50:36 +0000 ROA not before: Sun 31 May 2026 16:50:36 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135750 IP address blocks: 103.127.140.0/22 maxlen: 24 103.208.56.0/22 maxlen: 24 103.208.60.0/22 maxlen: 24 103.208.104.0/22 maxlen: 24 103.208.108.0/22 maxlen: 24 103.208.144.0/22 maxlen: 24 103.208.156.0/22 maxlen: 24 103.208.172.0/22 maxlen: 24 103.208.236.0/22 maxlen: 24 103.208.240.0/22 maxlen: 24 103.210.80.0/22 maxlen: 24 103.210.88.0/22 maxlen: 24 103.210.92.0/22 maxlen: 24 103.210.100.0/22 maxlen: 24 2406:cec0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58379 (0xe40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:50:36 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c66dc-0f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0e:5f:66:66:a4:79:3a:47:b3:ce:17:0e:a3: 84:4c:30:74:bb:fe:02:19:9e:a7:1d:9e:d7:b2:5e: 30:68:dc:87:5b:63:d8:04:0a:54:91:d1:ca:df:43: 26:33:e4:6d:15:af:93:b7:a5:c2:b6:55:fe:57:e9: 32:8e:e9:ac:a1:13:4e:d0:03:7a:86:2d:62:65:b7: 9c:5f:58:38:c4:d0:9c:a2:78:63:90:29:19:db:31: 34:3d:a3:3d:41:d8:5c:cc:d3:9f:b3:b0:b3:5f:63: d9:24:b0:14:96:5d:5c:f6:40:cc:28:eb:74:95:64: ca:7b:2f:70:87:45:c6:6b:6d:11:ab:20:4e:fa:69: 66:99:87:96:7f:7b:1d:cc:7e:70:8a:39:c0:2c:27: b6:b6:94:93:c7:2e:0c:fb:81:85:13:0b:10:4a:06: 03:1c:f8:42:bf:40:10:c3:f0:be:50:e2:52:77:2c: b3:0d:64:d2:7c:d2:60:20:57:60:99:7a:f7:57:29: 2f:a0:4d:e3:05:3c:aa:85:45:32:c6:41:ef:d3:b7: 30:e7:c5:99:50:07:03:8a:0b:9d:56:bb:82:9a:15: a3:ad:87:37:45:45:d3:e3:8a:1a:13:2a:cd:16:a4: 14:70:39:de:95:ee:66:3e:5d:24:0e:eb:6b:1c:c4: 27:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C5:26:8C:93:44:26:55:56:C1:A9:A1:98:8A:46:69:E5:71:05:49 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0091708C0D4E11EC8DDD243AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.127.140.0/22 103.208.56.0/21 103.208.104.0/21 103.208.144.0/22 103.208.156.0/22 103.208.172.0/22 103.208.236.0-103.208.243.255 103.210.80.0/22 103.210.88.0/21 103.210.100.0/22 IPv6: 2406:cec0::/32 Signature Algorithm: sha256WithRSAEncryption bb:8a:6a:8d:24:3e:d4:a8:65:02:e7:07:9e:c5:9b:8e:de:f0: 2e:20:7f:d2:71:b5:ae:e4:c3:fc:25:db:66:23:7a:a1:4d:ac: c8:75:17:95:d5:2d:51:7d:92:01:56:b4:5c:4c:a5:e7:ae:4d: 37:60:56:9b:fa:1e:97:a0:d0:c3:de:f1:a2:8c:00:2d:bf:0d: bf:58:1a:31:46:4b:7c:c3:2c:6e:51:bc:58:05:e6:31:60:cc: 0c:41:8f:12:d2:8e:d5:03:ea:c8:e6:e4:c0:f9:ff:60:2e:b2: dc:99:4c:e2:83:8b:ec:b4:14:ab:0b:5c:bf:bb:ea:db:3b:b3: 99:37:9e:7f:a6:e6:df:7d:92:24:e6:7a:e0:79:57:fb:61:54: 07:ec:7d:34:53:28:3f:e9:75:05:ec:c5:c9:64:3a:61:30:96: 30:95:0e:11:bc:9a:20:4a:4a:4a:55:69:45:a8:12:87:b5:b6: 03:ea:6a:47:b1:49:ed:df:68:f0:bd:fc:8d:2a:51:40:c2:08: 54:f5:ec:92:2d:67:1d:0e:e0:90:d8:ba:b3:f0:da:c6:7e:7b: c5:00:4d:5e:3f:75:ee:d5:e9:cc:76:34:18:03:de:27:bd:c2: f8:07:b7:3c:0b:0f:c5:6b:94:e2:39:c1:3c:27:30:d8:9f:b0: 00:e2:83:fc -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDAOQLMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NTAzNloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY2ZGMtMGYwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIOX2ZmpHk6R7POFw6jhEwwdLv+Ahmepx2e17JeMGjch1tj2AQKVJHRyt9D JjPkbRWvk7elwrZV/lfpMo7prKETTtADeoYtYmW3nF9YOMTQnKJ4Y5ApGdsxND2j PUHYXMzTn7Ows19j2SSwFJZdXPZAzCjrdJVkynsvcIdFxmttEasgTvppZpmHln97 Hcx+cIo5wCwntraUk8cuDPuBhRMLEEoGAxz4Qr9AEMPwvlDiUncssw1k0nzSYCBX YJl691cpL6BN4wU8qoVFMsZB79O3MOfFmVAHA4oLnVa7gpoVo62HN0VF0+OKGhMq zRakFHA53pXuZj5dJA7raxzEJ/UCAwEAAaOCAq0wggKpMB0GA1UdDgQWBBSaxSaM k0QmVVbBqaGYikZp5XEFSTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAwOTE3MDhD MEQ0RTExRUM4REREMjQzQUM0RjlBRTAyLnJvYTBsBggrBgEFBQcBBwEB/wRdMFsw SgQCAAEwRAMEAmd/jAMEA2fQOAMEA2fQaAMEAmfQkAMEAmfQnAMEAmfQrDAMAwQC Z9DsAwQCZ9DwAwQCZ9JQAwQDZ9JYAwQCZ9JkMA0EAgACMAcDBQAkBs7AMA0GCSqG SIb3DQEBCwUAA4IBAQC7imqNJD7UqGUC5weexZuO3vAuIH/ScbWu5MP8JdtmI3qh TazIdReV1S1RfZIBVrRcTKXnrk03YFab+h6XoNDD3vGijAAtvw2/WBoxRkt8wyxu UbxYBeYxYMwMQY8S0o7VA+rI5uTA+f9gLrLcmUzig4vstBSrC1y/u+rbO7OZN55/ pubffZIk5nrgeVf7YVQH7H00Uyg/6XUF7MXJZDphMJYwlQ4RvJogSkpKVWlFqBKH tbYD6mpHsUnt32jwvfyNKlFAwghU9eySLWcdDuCQ2Lqz8NrGfnvFAE1eP3Xu1enM djQYA94nvcL4B7c8Cw/Fa5TiOcE8JzDYn7AA4oP8 -----END CERTIFICATE-----Generated at Thu Jun 4 09:05:08 2026 by rpki-client