$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1C17A9F206EC11EB8753C925C4F9AE02.roa File: 1C17A9F206EC11EB8753C925C4F9AE02.roa (raw, json) Hash identifier: ByV3xx+tsjVUbBBw2vjWwuaaQ9/5siK0Z5SzIB5sOh0= Subject key identifier: 12:E6:F9:61:13:E5:C1:5A:0B:6B:89:0A:F2:B4:7E:3B:63:7A:C9:53 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E377 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1C17A9F206EC11EB8753C925C4F9AE02.roa Signing time: Sun 31 May 2026 16:45:43 +0000 ROA not before: Sun 31 May 2026 16:45:43 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134918 IP address blocks: 103.210.204.0/22 maxlen: 24 2405:ca40::/32 maxlen: 32 2405:ca40::/36 maxlen: 36 2405:ca40:1000::/36 maxlen: 36 2405:ca40:2000::/36 maxlen: 36 2405:ca40:3000::/36 maxlen: 36 2405:ca40:4000::/36 maxlen: 36 2405:ca40:5000::/36 maxlen: 36 2405:ca40:6000::/36 maxlen: 36 2405:ca40:7000::/36 maxlen: 36 2405:ca40:8000::/36 maxlen: 36 2405:ca40:9000::/36 maxlen: 36 2405:ca40:a000::/36 maxlen: 36 2405:ca40:b000::/36 maxlen: 36 2405:ca40:c000::/36 maxlen: 36 2405:ca40:d000::/36 maxlen: 36 2405:ca40:e000::/36 maxlen: 36 2405:ca40:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58231 (0xe377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:45:43 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c65b7-f682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f0:07:89:d7:51:ee:68:c9:cd:7e:50:56:61: 89:b8:10:d4:0e:5c:d8:02:ce:eb:07:44:d4:8c:5f: e8:1b:c0:e9:06:ad:73:4d:e3:4e:01:ee:ba:39:d3: 93:18:5d:5d:2f:47:ba:f5:09:48:ef:50:b7:1a:55: 80:a3:e8:da:7f:05:2e:a1:e6:d2:ab:30:f6:bd:1e: 63:da:bc:8c:3e:35:ac:32:f0:86:c4:76:b7:f4:6f: 41:38:45:13:bb:28:d7:f5:7d:f7:75:65:29:f7:ed: a4:41:f1:34:07:c5:40:46:c4:b5:02:4b:51:44:b1: 1d:18:62:b8:9e:77:28:99:32:b5:51:dd:e8:e3:b9: 45:17:ff:1d:b8:15:b1:9c:c7:83:dd:86:f5:50:f3: 66:a0:9b:e6:53:06:df:e1:ea:4a:66:eb:02:88:e9: 19:f9:8c:71:40:92:67:b6:ba:88:10:df:e5:6b:c3: 50:c1:7c:0e:cc:76:29:82:f6:f3:68:6d:74:f7:fe: 28:d9:e1:02:4c:1a:4a:67:c2:34:e0:4c:81:ff:ee: 9f:3e:90:82:89:a8:c2:ed:90:bb:80:bb:af:d9:bf: 85:25:f9:e3:fc:a7:7d:2b:18:5c:70:a5:bc:86:fc: a5:60:ba:47:86:80:a7:a7:7d:2e:a5:0f:9a:b4:fe: c7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E6:F9:61:13:E5:C1:5A:0B:6B:89:0A:F2:B4:7E:3B:63:7A:C9:53 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1C17A9F206EC11EB8753C925C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.210.204.0/22 IPv6: 2405:ca40::/32 Signature Algorithm: sha256WithRSAEncryption 29:b9:85:47:f8:0c:65:98:6e:4c:92:8f:d9:db:47:9d:d5:af: d7:b8:dd:18:87:46:47:c2:da:e0:5d:07:ea:5e:23:81:39:64: 5c:19:92:c3:3d:c4:45:bd:9a:ad:d9:b6:64:a6:ff:14:3c:24: 55:22:0a:7a:df:2a:5f:f0:ff:68:f3:5b:92:71:ad:62:23:1b: 09:a6:da:93:87:89:ad:c4:ff:23:40:0c:b4:1f:f5:cb:d5:75: 54:fa:9e:02:c8:6b:96:3b:1c:79:93:4a:4f:22:25:ce:fb:36: 95:28:16:5e:8e:c9:87:07:c6:5a:4e:b9:f2:b6:3d:76:ba:b8: ab:23:a7:b1:68:8e:f9:a2:04:21:47:ba:a6:5a:b0:63:31:f4: ac:0f:05:fc:b7:0d:9e:33:16:f8:89:fc:44:08:3e:c5:41:61: be:da:84:6f:1b:be:fc:51:f0:5b:6d:17:af:98:47:e2:51:61: 33:47:99:8a:36:a1:92:b2:84:5f:76:e9:ce:dc:78:cf:2b:a7: 54:14:2a:cf:0a:51:b8:4d:69:ae:2c:56:a8:63:2c:92:ad:95: 19:84:7a:bb:24:ed:62:d7:98:24:0d:ab:67:ed:bc:da:10:43: 51:57:dc:3b:c3:84:ca:ad:b6:01:af:e6:9b:76:4c:b3:dc:db: b1:4b:fd:53 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDAON3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDU0M1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY1YjctZjY4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLwB4nXUe5oyc1+UFZhibgQ1A5c2ALO6wdE1Ixf6BvA6Qatc03jTgHuujnT kxhdXS9HuvUJSO9QtxpVgKPo2n8FLqHm0qsw9r0eY9q8jD41rDLwhsR2t/RvQThF E7so1/V993VlKfftpEHxNAfFQEbEtQJLUUSxHRhiuJ53KJkytVHd6OO5RRf/HbgV sZzHg92G9VDzZqCb5lMG3+HqSmbrAojpGfmMcUCSZ7a6iBDf5WvDUMF8Dsx2KYL2 82htdPf+KNnhAkwaSmfCNOBMgf/unz6Qgomowu2Qu4C7r9m/hSX54/ynfSsYXHCl vIb8pWC6R4aAp6d9LqUPmrT+x0kCAwEAAaOCAm8wggJrMB0GA1UdDgQWBBQS5vlh E+XBWgtriQrytH47Y3rJUzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFDMTdBOUYy MDZFQzExRUI4NzUzQzkyNUM0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmfSzDANBAIAAjAHAwUAJAXKQDANBgkqhkiG9w0BAQsFAAOCAQEA KbmFR/gMZZhuTJKP2dtHndWv17jdGIdGR8La4F0H6l4jgTlkXBmSwz3ERb2ardm2 ZKb/FDwkVSIKet8qX/D/aPNbknGtYiMbCabak4eJrcT/I0AMtB/1y9V1VPqeAshr ljsceZNKTyIlzvs2lSgWXo7JhwfGWk658rY9drq4qyOnsWiO+aIEIUe6plqwYzH0 rA8F/LcNnjMW+In8RAg+xUFhvtqEbxu+/FHwW20Xr5hH4lFhM0eZijahkrKEX3bp ztx4zyunVBQqzwpRuE1prixWqGMskq2VGYR6uyTtYteYJA2rZ+282hBDUVfcO8OE yq22Aa/mm3ZMs9zbsUv9Uw== -----END CERTIFICATE-----Generated at Thu Jun 4 09:06:55 2026 by rpki-client