$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25628DD88C7011EBA752313FC4F9AE02.roa File: 25628DD88C7011EBA752313FC4F9AE02.roa (raw, json) Hash identifier: szZZKBYq/pFB/85psClnyFXovecXsepcSrpoGPhsiPE= Subject key identifier: 91:F2:4F:8A:89:BE:E3:97:E7:F2:A5:83:B4:99:00:01:2D:57:E0:11 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E353 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25628DD88C7011EBA752313FC4F9AE02.roa Signing time: Sun 31 May 2026 16:44:35 +0000 ROA not before: Sun 31 May 2026 16:44:35 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134869 IP address blocks: 103.35.142.0/24 maxlen: 24 103.103.219.0/24 maxlen: 24 103.103.236.0/23 maxlen: 24 2403:f440::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58195 (0xe353) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:44:35 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6573-c845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9c:db:9c:c3:e5:19:4a:f1:f5:98:57:dc:3b: c0:9f:96:ad:e6:ef:56:5d:13:9c:45:ae:c6:89:04: 12:d8:e9:3f:91:76:fc:4f:cd:5a:84:0a:c2:60:65: 2f:8c:71:a7:6e:4a:8a:3a:1d:f3:1d:3a:c2:c6:3f: 81:1f:03:9d:5d:ac:e1:5d:ea:b6:fe:5e:5c:3a:42: 79:bd:98:4b:82:d2:36:e2:4e:32:f8:d6:b0:77:f2: 01:82:3b:4e:9a:75:21:3a:2c:96:d3:23:bc:51:11: 80:7e:10:ad:f7:8e:8e:80:b9:77:78:02:0c:99:34: a8:16:30:ec:4b:d7:bd:e0:22:b6:be:8c:e4:73:02: 18:5b:9f:37:3d:89:08:2f:e2:bb:8a:06:05:9b:d0: 89:16:8d:fb:b4:ee:1b:fd:eb:cd:aa:f1:e3:5d:b9: d9:ac:fb:23:27:3b:9c:39:78:38:7d:a1:9c:f5:d1: 94:1b:0b:e6:88:78:46:4b:88:10:5f:2b:23:a4:f5: 31:56:e8:0c:f6:f3:a4:53:21:15:ac:15:9c:c9:9e: b5:1b:0e:59:4f:65:2b:48:f4:2e:cc:66:1f:30:d1: 22:9b:c3:5b:c9:38:d7:0a:ca:92:f1:b2:f4:58:cf: f4:07:cc:0f:61:d0:14:b7:3c:5c:ea:a9:b0:d3:d7: 9d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F2:4F:8A:89:BE:E3:97:E7:F2:A5:83:B4:99:00:01:2D:57:E0:11 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25628DD88C7011EBA752313FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.35.142.0/24 103.103.219.0/24 103.103.236.0/23 IPv6: 2403:f440::/32 Signature Algorithm: sha256WithRSAEncryption 5b:3d:97:61:7c:13:68:c4:d1:2d:93:6b:bc:6c:3d:13:d6:4d: 88:32:08:55:05:b0:f8:17:1b:4f:7b:d2:cb:b3:42:22:6b:54: c2:ec:52:ee:6f:27:d2:a2:65:27:4f:ee:36:0a:e3:e2:ee:87: ee:7e:54:1e:b8:4d:e6:d7:53:a8:22:ca:45:e4:1f:ef:69:e9: 74:ca:22:09:fa:49:72:8f:e9:55:d1:5c:65:69:0a:14:fd:89: e8:01:ea:1a:23:69:af:d6:11:85:e6:9a:74:ac:51:25:c8:2c: 9c:8e:6f:20:0e:96:1b:a1:46:c0:81:77:9f:46:2b:1d:fc:91: a7:e8:3a:1e:32:6a:37:c5:e1:03:d1:77:6b:1b:bc:a1:7b:4c: ab:4d:da:a5:72:b0:17:63:70:3e:a4:a8:0f:73:8c:68:dd:a1: 85:58:03:3e:db:15:df:e9:f9:91:8a:3e:92:bf:f1:75:55:0a: 92:ad:cd:b6:04:4f:67:94:89:14:08:65:0e:a8:30:b8:82:c5: 8f:28:c2:a2:ec:b5:69:7a:cb:ab:7b:fb:f7:c5:ac:f4:64:06: 83:48:ec:ea:5e:a6:a6:e2:18:f3:b7:4e:27:75:11:5a:b1:2c: 1d:2a:1b:31:46:21:db:c7:00:1c:76:0c:5e:17:2e:ff:a4:04: 01:24:26:50 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIDAONTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDQzNVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY1NzMtYzg0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMec25zD5RlK8fWYV9w7wJ+WrebvVl0TnEWuxokEEtjpP5F2/E/NWoQKwmBl L4xxp25Kijod8x06wsY/gR8DnV2s4V3qtv5eXDpCeb2YS4LSNuJOMvjWsHfyAYI7 Tpp1ITosltMjvFERgH4QrfeOjoC5d3gCDJk0qBYw7EvXveAitr6M5HMCGFufNz2J CC/iu4oGBZvQiRaN+7TuG/3rzarx41252az7Iyc7nDl4OH2hnPXRlBsL5oh4RkuI EF8rI6T1MVboDPbzpFMhFawVnMmetRsOWU9lK0j0LsxmHzDRIpvDW8k41wrKkvGy 9FjP9AfMD2HQFLc8XOqpsNPXnUcCAwEAAaOCAnswggJ3MB0GA1UdDgQWBBSR8k+K ib7jl+fypYO0mQABLVfgETAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI1NjI4REQ4 OEM3MDExRUJBNzUyMzEzRkM0RjlBRTAyLnJvYTA6BggrBgEFBQcBBwEB/wQrMCkw GAQCAAEwEgMEAGcjjgMEAGdn2wMEAWdn7DANBAIAAjAHAwUAJAP0QDANBgkqhkiG 9w0BAQsFAAOCAQEAWz2XYXwTaMTRLZNrvGw9E9ZNiDIIVQWw+BcbT3vSy7NCImtU wuxS7m8n0qJlJ0/uNgrj4u6H7n5UHrhN5tdTqCLKReQf72npdMoiCfpJco/pVdFc ZWkKFP2J6AHqGiNpr9YRheaadKxRJcgsnI5vIA6WG6FGwIF3n0YrHfyRp+g6HjJq N8XhA9F3axu8oXtMq03apXKwF2NwPqSoD3OMaN2hhVgDPtsV3+n5kYo+kr/xdVUK kq3NtgRPZ5SJFAhlDqgwuILFjyjCouy1aXrLq3v798Ws9GQGg0js6l6mpuIY87dO J3URWrEsHSobMUYh28cAHHYMXhcu/6QEASQmUA== -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:21 2026 by rpki-client