$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03C21B0E6C7111F0A88D9042C4F9AE02.roa File: 03C21B0E6C7111F0A88D9042C4F9AE02.roa (raw, json) Hash identifier: CsT+mTUS5DuIh6mykHn9LcHwUsQocrepqhbYVCHVfU4= Subject key identifier: 9E:3E:A7:0A:15:02:F2:D7:2E:E2:0E:50:B4:CE:BA:29:00:E1:9A:93 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E2FB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03C21B0E6C7111F0A88D9042C4F9AE02.roa Signing time: Sun 31 May 2026 16:41:43 +0000 ROA not before: Sun 31 May 2026 16:41:43 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134248 IP address blocks: 103.162.214.0/24 maxlen: 24 103.162.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58107 (0xe2fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:41:43 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c64c7-42ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7e:d8:79:e1:27:dd:d0:19:12:b3:e9:de:94: 87:a7:ba:0d:a3:68:31:12:a8:1c:bf:af:0a:62:d5: 35:8e:4a:28:88:88:a4:aa:01:19:cf:07:5e:1d:63: fd:c5:6e:81:d6:2b:ad:c1:17:dd:70:42:ce:59:85: 04:7d:5c:45:40:d6:56:d3:f7:44:72:7d:9d:a2:89: 55:a4:5a:f7:5f:99:d9:85:43:75:cb:57:a1:f2:b6: a6:33:88:b4:0a:dc:dc:42:91:66:26:20:48:87:ff: 0f:10:42:7d:ef:71:26:b4:74:8b:15:0c:09:d1:f8: a5:27:9c:88:95:0a:0c:ef:14:cd:ae:f4:e6:3f:13: dc:e4:c0:56:40:2b:d3:b1:c9:92:9e:5b:81:34:de: 91:13:6b:ba:08:a2:83:8c:9f:45:b6:50:f3:66:5b: 52:b7:34:06:39:18:2b:00:5e:04:cf:34:09:15:2a: 1b:8e:a0:04:7a:1c:c2:ab:76:5d:1a:02:db:2f:07: 43:32:5c:af:7b:fa:c8:68:66:a5:81:35:f8:00:ee: f7:ba:fc:1f:8b:8e:65:0d:24:a4:51:6b:dc:a6:b5: b8:bb:cf:12:bc:37:77:d9:45:4d:fb:73:45:8e:a8: cc:f8:af:00:27:40:b7:3b:bc:ce:c2:fb:57:69:6a: 8f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3E:A7:0A:15:02:F2:D7:2E:E2:0E:50:B4:CE:BA:29:00:E1:9A:93 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03C21B0E6C7111F0A88D9042C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.162.214.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:d0:0f:f5:c6:d1:9e:79:e4:3f:59:8d:df:3c:eb:6e:7a:68: 8a:78:27:08:c2:23:17:83:0f:7b:93:a8:a1:23:ec:ad:9e:9c: 7c:ad:64:82:dc:38:e3:32:09:e6:00:d5:90:b2:c3:e1:53:38: c4:32:88:64:22:c8:3e:56:bd:24:2c:c2:e7:62:d3:5d:b0:ed: 26:57:97:e1:8d:4c:2c:38:2a:cd:76:7f:79:d0:d1:fb:96:31: 93:fd:9d:31:00:1e:38:45:cf:01:14:88:7c:5a:a5:30:77:d2: 57:89:cf:34:91:dc:16:35:d9:02:19:de:66:22:5b:fc:63:4b: dc:8b:00:1e:5b:9e:5f:c5:90:98:90:ff:8d:75:3f:99:af:e8: ac:4c:fa:91:c5:33:a3:46:88:f3:17:dc:bf:b2:ed:37:b9:fc: 1c:36:8b:cb:3c:35:7d:bf:06:88:bf:59:6e:ee:77:c9:b5:61: 3f:45:9b:ad:86:5a:7e:35:29:42:81:c4:e3:ac:5d:b3:7e:22: 85:9d:36:f3:f9:ce:39:fb:a6:aa:98:a5:d6:e7:cd:b9:eb:6c: 2e:2e:80:1a:bf:18:40:fc:0f:6d:b7:33:3b:4e:20:67:6d:fd: a5:96:9d:dc:9c:ac:f3:38:bf:88:ba:e1:ff:d3:e7:9e:61:8a: d9:21:10:bd -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDAOL7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDE0M1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY0YzctNDJjYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1+2HnhJ93QGRKz6d6Uh6e6DaNoMRKoHL+vCmLVNY5KKIiIpKoBGc8HXh1j /cVugdYrrcEX3XBCzlmFBH1cRUDWVtP3RHJ9naKJVaRa91+Z2YVDdctXofK2pjOI tArc3EKRZiYgSIf/DxBCfe9xJrR0ixUMCdH4pSeciJUKDO8Uza705j8T3OTAVkAr 07HJkp5bgTTekRNrugiig4yfRbZQ82ZbUrc0BjkYKwBeBM80CRUqG46gBHocwqt2 XRoC2y8HQzJcr3v6yGhmpYE1+ADu97r8H4uOZQ0kpFFr3Ka1uLvPErw3d9lFTftz RY6ozPivACdAtzu8zsL7V2lqj5UCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBSePqcK FQLy1y7iDlC0zropAOGakzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAzQzIxQjBF NkM3MTExRjBBODhEOTA0MkM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWei1jANBgkqhkiG9w0BAQsFAAOCAQEAWtAP9cbRnnnkP1mN3zzr bnpoingnCMIjF4MPe5OooSPsrZ6cfK1kgtw44zIJ5gDVkLLD4VM4xDKIZCLIPla9 JCzC52LTXbDtJleX4Y1MLDgqzXZ/edDR+5Yxk/2dMQAeOEXPARSIfFqlMHfSV4nP NJHcFjXZAhneZiJb/GNL3IsAHlueX8WQmJD/jXU/ma/orEz6kcUzo0aI8xfcv7Lt N7n8HDaLyzw1fb8GiL9Zbu53ybVhP0WbrYZafjUpQoHE46xds34ihZ028/nOOfum qpil1ufNuetsLi6AGr8YQPwPbbczO04gZ239pZad3Jys8zi/iLrh/9PnnmGK2SEQ vQ== -----END CERTIFICATE-----Generated at Thu Jun 4 10:06:44 2026 by rpki-client