$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa File: 236A1054BDD211EAA55BEE1AC4F9AE02.roa (raw, json) Hash identifier: y1v9qAGqihozRHkIrx3Zq/QteMosyLSSduBMln4CmFo= Subject key identifier: FA:EB:E7:6A:9E:92:7E:2E:AB:48:B1:0B:DE:D2:11:AC:30:74:6C:8D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E256 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa Signing time: Sun 31 May 2026 16:36:23 +0000 ROA not before: Sun 31 May 2026 16:36:23 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 133266 IP address blocks: 103.175.70.0/24 maxlen: 24 103.239.124.0/24 maxlen: 24 2001:df2:9600::/48 maxlen: 48 2001:df2:9601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57942 (0xe256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:36:23 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6387-4948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7a:8c:9e:d7:a1:cb:85:00:35:01:1e:f8:40: 04:cd:0a:31:26:9c:f9:66:84:11:76:36:9f:3e:4d: fb:e1:34:a3:d4:d9:b7:23:ca:bb:0c:c7:5a:e6:33: 6a:00:f2:a3:f3:0c:4e:a3:6b:aa:54:a2:3d:98:13: 73:18:16:e9:8f:57:0f:88:66:84:08:72:00:0b:15: 26:96:86:fd:6a:3a:6a:b7:a7:a3:93:86:9f:b7:7f: fc:f8:40:3d:88:db:fa:e1:f5:94:a7:4a:23:25:43: 8f:86:50:2c:ab:5e:1c:c4:f7:af:b1:f1:50:fa:8f: df:49:19:5b:66:88:e5:d5:16:f8:2a:63:f4:d7:fe: 7a:ad:c0:75:ca:a5:f6:21:ad:7d:93:4c:ae:1f:5c: 63:e6:29:68:04:01:95:dd:98:bb:81:da:6d:58:7e: cd:b2:c8:5b:cd:f2:b7:35:66:14:2b:8e:ec:88:27: 82:f0:0e:8a:b0:83:04:f6:1f:83:47:b5:84:1b:7e: 3b:48:b9:c1:fb:7c:b0:51:8e:ef:a6:96:26:ce:3b: 51:24:a2:2a:72:ff:08:b9:57:d2:14:4d:d8:ea:54: 03:b7:4f:4c:43:c3:3b:5c:d5:0c:a6:1d:da:02:67: c6:55:dc:71:3d:59:61:23:ba:03:c9:98:7d:0e:72: 75:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:EB:E7:6A:9E:92:7E:2E:AB:48:B1:0B:DE:D2:11:AC:30:74:6C:8D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.175.70.0/24 103.239.124.0/24 IPv6: 2001:df2:9600::/47 Signature Algorithm: sha256WithRSAEncryption 1a:26:56:a0:e2:d7:e2:62:a0:c5:6a:aa:4a:3e:d9:8d:7d:06: b8:ab:ef:6e:12:8d:95:dc:4e:66:15:35:fc:75:77:f4:25:ba: a9:75:39:81:5c:26:51:e6:00:41:39:8c:75:63:07:0a:7e:7c: 7e:46:dd:f1:6e:5b:26:79:a6:89:3d:c1:a4:cf:e1:5a:d0:79: d4:47:75:26:1c:9a:50:51:dd:8b:04:58:41:83:dd:e1:3d:79: 4a:d8:86:8a:d0:50:54:b8:ac:d5:e8:03:09:bc:77:7e:ed:4e: 9e:ec:ff:7b:b0:4e:63:21:82:b0:e1:c3:1f:04:2e:55:18:b0: 3a:0c:52:d1:20:c6:53:4b:07:70:b7:a0:f3:48:b0:30:d0:94: 97:1a:93:de:fc:e0:9f:2d:22:0b:43:e0:36:80:38:94:f4:d7: 00:76:2d:ee:e4:f8:c2:bc:85:44:db:1a:e1:32:a2:48:a4:70: 3f:1a:83:c4:83:bf:ef:2f:87:f5:82:8f:14:df:f2:96:53:56: c5:5a:e1:44:96:c0:62:46:6a:4e:31:c4:a1:03:f3:63:04:b7: 91:e1:5f:12:39:9f:5c:f8:c1:74:11:07:c0:09:15:cb:3f:4a: 01:75:4e:57:87:f4:0d:cb:77:61:71:90:18:61:91:c1:d8:c3: 20:03:2d:05 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDAOJWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2MzYyM1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzYzODctNDk0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJB6jJ7XocuFADUBHvhABM0KMSac+WaEEXY2nz5N++E0o9TZtyPKuwzHWuYz agDyo/MMTqNrqlSiPZgTcxgW6Y9XD4hmhAhyAAsVJpaG/Wo6areno5OGn7d//PhA PYjb+uH1lKdKIyVDj4ZQLKteHMT3r7HxUPqP30kZW2aI5dUW+Cpj9Nf+eq3Adcql 9iGtfZNMrh9cY+YpaAQBld2Yu4HabVh+zbLIW83ytzVmFCuO7IgngvAOirCDBPYf g0e1hBt+O0i5wft8sFGO76aWJs47USSiKnL/CLlX0hRN2OpUA7dPTEPDO1zVDKYd 2gJnxlXccT1ZYSO6A8mYfQ5ydfECAwEAAaOCAncwggJzMB0GA1UdDgQWBBT66+dq npJ+LqtIsQve0hGsMHRsjTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIzNkExMDU0 QkREMjExRUFBNTVCRUUxQUM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGevRgMEAGfvfDAPBAIAAjAJAwcBIAEN8pYAMA0GCSqGSIb3DQEB CwUAA4IBAQAaJlag4tfiYqDFaqpKPtmNfQa4q+9uEo2V3E5mFTX8dXf0JbqpdTmB XCZR5gBBOYx1YwcKfnx+Rt3xblsmeaaJPcGkz+Fa0HnUR3UmHJpQUd2LBFhBg93h PXlK2IaK0FBUuKzV6AMJvHd+7U6e7P97sE5jIYKw4cMfBC5VGLA6DFLRIMZTSwdw t6DzSLAw0JSXGpPe/OCfLSILQ+A2gDiU9NcAdi3u5PjCvIVE2xrhMqJIpHA/GoPE g7/vL4f1go8U3/KWU1bFWuFElsBiRmpOMcShA/NjBLeR4V8SOZ9c+MF0EQfACRXL P0oBdU5Xh/QNy3dhcZAYYZHB2MMgAy0F -----END CERTIFICATE-----Generated at Thu Jun 4 09:08:49 2026 by rpki-client