$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/254DAD86BCFB11EAB65E512FC4F9AE02.roa File: 254DAD86BCFB11EAB65E512FC4F9AE02.roa (raw, json) Hash identifier: 3OV5nHjtY1m/dgeosxQiYIsIoXTp8HbOg39XemzjXcQ= Subject key identifier: 20:70:B5:9C:11:06:1C:79:F6:4A:6F:48:DC:43:1A:B5:83:E0:3D:72 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E2EE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/254DAD86BCFB11EAB65E512FC4F9AE02.roa Signing time: Sun 31 May 2026 16:41:17 +0000 ROA not before: Sun 31 May 2026 16:41:17 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134040 IP address blocks: 45.120.40.0/22 maxlen: 22 45.120.40.0/24 maxlen: 24 45.120.41.0/24 maxlen: 24 45.120.42.0/24 maxlen: 24 45.120.43.0/24 maxlen: 24 103.60.100.0/22 maxlen: 22 103.60.100.0/24 maxlen: 24 103.60.101.0/24 maxlen: 24 103.60.102.0/24 maxlen: 24 103.60.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58094 (0xe2ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:41:17 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c64ad-2e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7d:a8:26:5d:34:17:65:84:3e:26:94:28:e8: 45:56:e2:32:17:af:86:2f:e2:4e:83:cb:2f:9a:18: 9b:21:d3:07:72:08:5b:5c:2e:8e:83:4f:7b:5d:38: c6:68:a1:9a:a1:53:ee:0f:c1:91:d3:ab:19:69:61: ad:89:c6:69:6c:26:b1:78:33:e5:69:df:e2:99:d1: 32:4f:98:08:51:aa:27:9f:27:f4:72:29:73:d5:32: 5f:13:46:d8:13:e3:46:83:e7:0e:d8:25:a7:94:2d: 89:22:a3:9f:2f:94:fb:1d:09:20:01:e5:20:6c:8f: 92:21:43:50:b5:06:87:73:a5:d0:69:bc:48:74:2f: cc:10:d2:e1:a9:23:d9:ec:1d:0a:17:c4:2e:79:2a: fb:37:b4:f1:af:73:53:9d:3f:ac:36:73:87:e2:11: ed:86:95:46:5a:c2:cb:b7:7e:e2:33:f4:d9:55:3e: 55:ac:bc:78:50:fd:75:51:88:bd:65:a3:c9:a4:b0: 31:b3:90:81:23:65:9f:09:b3:6c:00:f7:37:d8:b8: f3:2e:d7:6e:63:5d:cf:c2:e4:ee:e9:a6:47:5a:44: fb:d4:77:19:3e:dc:bf:48:30:11:d4:fa:1b:8c:ae: ae:1a:7a:a6:11:31:69:f7:bc:6d:42:16:98:56:fe: db:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:70:B5:9C:11:06:1C:79:F6:4A:6F:48:DC:43:1A:B5:83:E0:3D:72 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/254DAD86BCFB11EAB65E512FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.120.40.0/22 103.60.100.0/22 Signature Algorithm: sha256WithRSAEncryption 81:4e:df:e2:1d:66:7a:c1:74:4f:ab:ed:e3:94:0c:d0:21:2c: 8d:3d:a4:57:10:63:7f:f8:ac:3c:65:6c:de:12:f7:30:68:5f: ec:eb:46:82:b3:49:4e:fa:ee:fd:b9:67:dc:b5:6f:0d:86:f0: 1d:70:37:8c:00:96:16:04:3a:a0:f2:bc:3c:9e:16:06:54:17: d3:8b:b0:ab:e5:c3:29:96:b2:d3:5f:cc:50:c1:f7:70:44:11: bf:ab:a2:54:81:bb:75:51:8e:9f:40:9a:f9:50:52:3e:f3:8d: fa:09:69:bd:33:b1:01:78:13:53:53:55:1d:4c:84:fc:ef:a1: 2e:c7:0a:5c:68:3c:d1:46:f4:23:a5:98:17:37:33:f5:67:92: 5a:05:60:96:4c:74:d6:d5:c4:ea:67:3f:73:32:53:3d:3e:ba: f1:99:92:d1:24:80:2c:ea:e9:be:d6:1b:b6:7e:25:2f:fa:f5: ac:d2:08:cf:bf:9c:69:1f:6f:e1:36:e2:fe:68:d6:f5:f0:35: cb:78:0e:e0:3f:36:0d:ae:cc:ca:45:26:84:66:c6:a1:ca:bb: c8:e2:df:01:4f:d6:c1:9e:69:2e:2d:59:f9:31:ca:3f:49:2d: 56:5c:2a:22:03:94:b5:59:31:2c:0f:3e:8d:95:d6:8d:b6:e8: 2c:d7:66:bc -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIDAOLuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDExN1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY0YWQtMmUxZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALp9qCZdNBdlhD4mlCjoRVbiMhevhi/iToPLL5oYmyHTB3IIW1wujoNPe104 xmihmqFT7g/BkdOrGWlhrYnGaWwmsXgz5Wnf4pnRMk+YCFGqJ58n9HIpc9UyXxNG 2BPjRoPnDtglp5QtiSKjny+U+x0JIAHlIGyPkiFDULUGh3Ol0Gm8SHQvzBDS4akj 2ewdChfELnkq+ze08a9zU50/rDZzh+IR7YaVRlrCy7d+4jP02VU+Vay8eFD9dVGI vWWjyaSwMbOQgSNlnwmzbAD3N9i48y7XbmNdz8Lk7ummR1pE+9R3GT7cv0gwEdT6 G4yurhp6phExafe8bUIWmFb+2/kCAwEAAaOCAmYwggJiMB0GA1UdDgQWBBQgcLWc EQYcefZKb0jcQxq1g+A9cjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI1NERBRDg2 QkNGQjExRUFCNjVFNTEyRkM0RjlBRTAyLnJvYTAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAi14KAMEAmc8ZDANBgkqhkiG9w0BAQsFAAOCAQEAgU7f4h1mesF0 T6vt45QM0CEsjT2kVxBjf/isPGVs3hL3MGhf7OtGgrNJTvru/bln3LVvDYbwHXA3 jACWFgQ6oPK8PJ4WBlQX04uwq+XDKZay01/MUMH3cEQRv6uiVIG7dVGOn0Ca+VBS PvON+glpvTOxAXgTU1NVHUyE/O+hLscKXGg80Ub0I6WYFzcz9WeSWgVglkx01tXE 6mc/czJTPT668ZmS0SSALOrpvtYbtn4lL/r1rNIIz7+caR9v4Tbi/mjW9fA1y3gO 4D82Da7MykUmhGbGocq7yOLfAU/WwZ5pLi1Z+THKP0ktVlwqIgOUtVkxLA8+jZXW jbboLNdmvA== -----END CERTIFICATE-----Generated at Thu Jun 4 10:06:51 2026 by rpki-client