$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa File: 21BF65FC02D711EB99C6AC0FC4F9AE02.roa (raw, json) Hash identifier: hf5OtnQCDehQ76z1qIV+CKX8NK9MVy5lYhWurtEHcVw= Subject key identifier: FA:B7:8B:C3:C5:E7:EE:23:4E:BE:69:54:0B:9E:7E:7D:64:1C:85:95 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E561 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa Signing time: Sun 31 May 2026 17:01:37 +0000 ROA not before: Sun 31 May 2026 17:01:37 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 137608 IP address blocks: 103.113.213.0/24 maxlen: 24 2001:df5:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58721 (0xe561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:01:37 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6971-4446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cb:00:fc:9a:44:ca:4b:aa:dc:5f:b5:e9:7b: f9:39:64:fb:db:76:a7:a1:26:65:ee:66:df:19:d3: 0d:08:4d:29:cd:5d:e9:fe:33:30:cc:cf:95:03:2e: 4a:b6:fa:88:73:e6:30:f3:a9:9a:cb:f4:78:b5:3a: c9:0b:5e:b4:e6:c3:fd:65:32:bc:87:b3:e9:6e:d9: 23:5b:cc:52:98:99:5e:27:26:ac:09:e8:0f:ba:d4: fa:37:91:2c:7d:05:67:37:e2:b9:df:df:60:2d:30: e2:44:6f:1b:9d:86:40:89:a6:39:d6:ef:a3:fb:d8: cf:a1:cc:5d:58:ea:9a:b9:34:89:0c:5e:5c:e0:0f: 31:9a:56:d7:1d:72:8e:ca:1b:4e:00:f2:96:2b:4c: 4d:8f:96:4c:e0:5a:1b:fd:6a:c4:0c:fa:e3:cf:bf: 41:c8:84:c3:3c:69:2b:99:55:9a:6c:eb:20:ec:9d: 02:a4:44:38:b6:72:10:7f:62:3e:28:4a:3a:79:24: 31:7f:16:32:1f:46:a1:fc:d4:23:bb:a3:d4:65:11: 35:8f:07:29:21:c6:d0:69:a1:67:f7:f9:12:c9:66: db:53:6e:54:a4:25:e1:ec:c4:2f:88:ea:7b:3f:7a: 81:87:c0:fe:5c:ff:56:a0:7d:b3:89:bb:6e:2e:02: 13:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B7:8B:C3:C5:E7:EE:23:4E:BE:69:54:0B:9E:7E:7D:64:1C:85:95 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/21BF65FC02D711EB99C6AC0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.113.213.0/24 IPv6: 2001:df5:3480::/48 Signature Algorithm: sha256WithRSAEncryption 53:e9:84:58:b7:52:0a:76:0a:41:8b:9e:92:cf:d5:9b:5c:af: b0:b3:ee:ea:57:67:d5:09:a6:ea:21:2a:67:27:eb:5d:23:30: 78:90:83:dd:90:11:d3:cf:a0:3d:e6:85:e2:2b:e2:0b:61:a8: e3:6f:04:7c:83:e3:6d:31:ad:a9:c9:41:35:3c:01:07:70:44: c9:97:2a:ee:d2:6c:80:67:a9:d6:77:40:f4:14:25:c0:04:15: f8:1a:e1:e5:7a:70:c0:9b:dc:33:e2:87:f8:92:22:e4:8f:ef: dc:d1:60:8f:e5:27:b8:55:02:97:36:d9:5d:b3:b8:0c:c5:ab: d1:95:aa:c2:96:7e:df:a0:49:93:4a:be:da:d1:f8:ef:4b:8d: 79:bf:2c:00:5b:35:ef:2d:de:4b:5c:30:31:3e:ba:73:52:e4: f9:77:4d:4a:55:e6:11:b5:2c:4a:8f:15:00:de:9a:6b:ab:35: e7:a2:49:c0:52:68:56:da:75:82:10:91:a1:da:0f:91:1f:7c: d4:de:07:8d:47:77:66:25:61:1b:69:41:71:fe:e2:8e:84:37: d7:f8:dc:e8:6c:9a:3d:b0:28:58:a1:53:c2:83:56:9d:7c:3b: ed:9b:8f:be:72:d0:d9:d5:fd:3d:fb:00:09:b3:3b:0b:80:56: 17:1a:f9:dd -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAOVhMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MDEzN1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY5NzEtNDQ0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLLAPyaRMpLqtxftel7+Tlk+9t2p6EmZe5m3xnTDQhNKc1d6f4zMMzPlQMu Srb6iHPmMPOpmsv0eLU6yQtetObD/WUyvIez6W7ZI1vMUpiZXicmrAnoD7rU+jeR LH0FZzfiud/fYC0w4kRvG52GQImmOdbvo/vYz6HMXVjqmrk0iQxeXOAPMZpW1x1y jsobTgDylitMTY+WTOBaG/1qxAz648+/QciEwzxpK5lVmmzrIOydAqREOLZyEH9i PihKOnkkMX8WMh9GofzUI7uj1GURNY8HKSHG0GmhZ/f5Eslm21NuVKQl4ezEL4jq ez96gYfA/lz/VqB9s4m7bi4CEzMCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBT6t4vD xefuI06+aVQLnn59ZByFlTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIxQkY2NUZD MDJENzExRUI5OUM2QUMwRkM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGdx1TAPBAIAAjAJAwcAIAEN9TSAMA0GCSqGSIb3DQEBCwUAA4IB AQBT6YRYt1IKdgpBi56Sz9WbXK+ws+7qV2fVCabqISpnJ+tdIzB4kIPdkBHTz6A9 5oXiK+ILYajjbwR8g+NtMa2pyUE1PAEHcETJlyru0myAZ6nWd0D0FCXABBX4GuHl enDAm9wz4of4kiLkj+/c0WCP5Se4VQKXNtlds7gMxavRlarCln7foEmTSr7a0fjv S415vywAWzXvLd5LXDAxPrpzUuT5d01KVeYRtSxKjxUA3pprqzXnoknAUmhW2nWC EJGh2g+RH3zU3geNR3dmJWEbaUFx/uKOhDfX+NzobJo9sChYoVPCg1adfDvtm4++ ctDZ1f09+wAJszsLgFYXGvnd -----END CERTIFICATE-----Generated at Thu Jun 4 10:05:03 2026 by rpki-client