$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A63AA92387A11EB89A0676AC4F9AE02.roa File: 1A63AA92387A11EB89A0676AC4F9AE02.roa (raw, json) Hash identifier: QM57q21iZN8mYsBGShkqIYfIcKAb4gDNiaCzM2tfsYY= Subject key identifier: 87:82:06:95:8F:0A:A2:7A:A2:9E:7E:5C:6D:C6:DF:50:9E:0B:42:29 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E6D6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A63AA92387A11EB89A0676AC4F9AE02.roa Signing time: Sun 31 May 2026 17:13:54 +0000 ROA not before: Sun 31 May 2026 17:13:54 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 141296 IP address blocks: 103.159.156.0/23 maxlen: 24 2001:df0:37c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59094 (0xe6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:13:54 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6c52-c00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:05:d1:7b:3e:62:fb:72:de:20:9e:e1:5e:01: 70:48:98:03:c1:cd:ee:af:b8:2f:48:32:83:a5:16: 41:fd:d3:71:a8:cf:00:fa:10:02:02:06:86:51:1d: 83:24:6d:19:0a:3c:12:32:c1:73:30:e3:f7:62:ca: 8f:eb:7b:aa:eb:f0:54:6b:28:ce:44:4c:64:4d:31: b1:ae:b8:13:bf:d7:09:b9:eb:07:d7:7d:d8:0d:0a: 22:25:90:c5:bf:6a:f5:ac:5a:a2:4b:c1:b5:62:94: fd:40:fb:84:5b:92:5f:8e:05:28:86:1b:bb:2f:a5: e6:83:dd:9e:25:a8:03:63:dd:53:e3:f6:e4:2a:ce: 34:ed:10:8c:10:92:6e:70:12:1b:b6:bc:5d:2b:97: 2a:5a:8b:32:45:b8:2c:da:07:17:0e:16:42:a0:2f: 93:6f:48:4b:8f:b4:45:92:f9:3f:e0:17:ea:dd:63: 17:5f:78:23:1f:66:36:f1:72:75:09:b8:00:2d:87: 6f:9c:ee:02:2f:09:e5:79:7a:7b:80:a7:b6:89:ff: f6:b1:56:7b:6b:32:01:15:35:bb:31:79:84:7e:89: fa:08:20:95:14:d8:31:1e:18:32:60:a6:9b:c5:16: e1:22:ac:2b:f9:f3:4d:fc:0f:47:45:78:b9:5f:14: ff:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:82:06:95:8F:0A:A2:7A:A2:9E:7E:5C:6D:C6:DF:50:9E:0B:42:29 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A63AA92387A11EB89A0676AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.156.0/23 IPv6: 2001:df0:37c0::/48 Signature Algorithm: sha256WithRSAEncryption 02:cf:0c:6d:97:8c:b4:1f:a5:01:32:f0:c1:7b:84:37:5f:dd: bb:60:ff:9c:cd:32:e7:21:cf:9a:3c:af:87:10:7c:71:30:f9: 7d:9d:c0:41:a6:0a:9d:d4:47:72:ba:ae:fc:a5:ce:3c:25:b2: a1:45:80:0e:1d:aa:5f:3f:1c:1c:f2:4a:da:50:20:51:69:a3: c1:68:48:5e:0a:e6:66:bf:24:22:12:c3:c3:d1:19:e8:85:8f: 75:9a:3c:e2:b7:54:86:31:37:b3:e3:9d:5c:fb:db:e6:72:e8: fa:ad:bb:94:40:3d:cd:66:92:ce:f4:24:c2:21:04:10:f2:09: a9:68:87:b9:1d:df:7d:30:46:e1:4c:64:46:c5:d1:91:50:8e: 24:32:9d:05:8d:30:66:63:a1:36:23:8a:36:9c:98:7e:41:2a: fa:8d:c7:60:1f:50:5f:1f:54:71:ea:8f:c7:fd:80:c9:63:67: 5c:a1:75:22:f7:c9:01:d1:11:c4:b4:4e:81:df:cc:4a:a2:df: 96:be:28:1f:91:f2:bd:b6:7d:0d:3a:af:98:f7:bd:eb:2c:2f: 52:e0:af:d9:50:08:a6:41:a1:41:39:ae:14:60:5b:4f:73:2e: 62:24:4b:4b:a5:79:5f:10:da:1a:f2:16:e3:ef:3e:80:05:c5: 08:bf:7e:53 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAObWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MTM1NFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZjNTItYzAwZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMMF0Xs+Yvty3iCe4V4BcEiYA8HN7q+4L0gyg6UWQf3TcajPAPoQAgIGhlEd gyRtGQo8EjLBczDj92LKj+t7quvwVGsozkRMZE0xsa64E7/XCbnrB9d92A0KIiWQ xb9q9axaokvBtWKU/UD7hFuSX44FKIYbuy+l5oPdniWoA2PdU+P25CrONO0QjBCS bnASG7a8XSuXKlqLMkW4LNoHFw4WQqAvk29IS4+0RZL5P+AX6t1jF194Ix9mNvFy dQm4AC2Hb5zuAi8J5Xl6e4Cnton/9rFWe2syARU1uzF5hH6J+ggglRTYMR4YMmCm m8UW4SKsK/nzTfwPR0V4uV8U/28CAwEAAaOCAnEwggJtMB0GA1UdDgQWBBSHggaV jwqieqKeflxtxt9QngtCKTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFBNjNBQTky Mzg3QTExRUI4OUEwNjc2QUM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWefnDAPBAIAAjAJAwcAIAEN8DfAMA0GCSqGSIb3DQEBCwUAA4IB AQACzwxtl4y0H6UBMvDBe4Q3X927YP+czTLnIc+aPK+HEHxxMPl9ncBBpgqd1Edy uq78pc48JbKhRYAOHapfPxwc8kraUCBRaaPBaEheCuZmvyQiEsPD0RnohY91mjzi t1SGMTez451c+9vmcuj6rbuUQD3NZpLO9CTCIQQQ8gmpaIe5Hd99MEbhTGRGxdGR UI4kMp0FjTBmY6E2I4o2nJh+QSr6jcdgH1BfH1Rx6o/H/YDJY2dcoXUi98kB0RHE tE6B38xKot+WvigfkfK9tn0NOq+Y973rLC9S4K/ZUAimQaFBOa4UYFtPcy5iJEtL pXlfENoa8hbj7z6ABcUIv35T -----END CERTIFICATE-----Generated at Thu Jun 4 09:08:45 2026 by rpki-client