$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C3130CE88BF11F08AFA4C38C4F9AE02.roa File: 2C3130CE88BF11F08AFA4C38C4F9AE02.roa (raw, json) Hash identifier: ATSabQZHkrLV+vqd5fgnUAd8fksafYiLd6M3HxHEcy0= Subject key identifier: C6:06:29:E7:6B:9A:2A:B2:3E:27:CB:CC:7B:28:18:F0:F3:22:20:EE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DD3F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C3130CE88BF11F08AFA4C38C4F9AE02.roa Signing time: Tue 31 Mar 2026 08:21:53 +0000 ROA not before: Tue 31 Mar 2026 08:21:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149194 IP address blocks: 45.112.56.0/22 maxlen: 24 45.127.200.0/22 maxlen: 24 103.106.102.0/24 maxlen: 24 103.133.38.0/24 maxlen: 24 103.196.132.0/22 maxlen: 24 103.239.168.0/22 maxlen: 24 223.29.220.0/24 maxlen: 24 2400:44a0:2::/118 maxlen: 118 2400:44a0:2::400/118 maxlen: 118 2400:44a0:2::800/118 maxlen: 118 2400:44a0:2::c00/118 maxlen: 118 2400:44a0:2::1000/120 maxlen: 120 2400:44a0:2::1100/120 maxlen: 120 2400:44a0:2::1200/120 maxlen: 120 2400:44a0:2::1300/120 maxlen: 120 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 11:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56639 (0xdd3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 31 08:21:53 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69cb8421-078a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:76:e5:1c:41:e1:7f:31:86:3b:61:e9:ed:35: 20:c1:c2:55:1d:65:2a:92:d9:ab:09:7f:4d:a2:32: b1:5d:e8:d3:94:e2:f8:63:78:ee:89:e0:75:fa:a1: 2e:5f:b2:4a:07:e5:fa:e8:1d:6d:28:54:a9:bb:61: 22:2a:36:fb:e5:bf:0d:fd:21:c1:6e:14:23:2c:05: 78:7e:8c:ba:60:fd:e6:53:15:25:8e:0d:69:9d:30: fd:a7:7f:2d:6c:f2:42:34:1a:00:b6:b4:2d:cc:fa: bd:7a:4a:bc:33:71:50:91:f5:54:96:97:4b:5f:98: ed:20:c6:ac:ec:99:17:ff:da:2e:c9:fc:04:49:ed: 76:96:3b:0b:1a:07:bd:1e:00:00:09:d5:27:ce:f5: 55:f5:87:88:d2:c5:75:7d:32:d8:58:b7:f4:6d:23: f1:dc:c7:13:d7:a6:35:ca:34:d5:e9:98:cf:c1:d3: 7b:72:34:aa:87:31:9d:f7:b4:c7:3b:68:58:d7:e1: 69:cd:4f:87:62:a7:be:ed:03:c3:db:a9:46:46:f2: c8:5c:e1:61:c1:92:e4:bd:cd:6c:12:2b:0a:ce:f0: ec:38:d9:3e:3b:ea:c6:3a:a9:54:18:d7:9b:8e:11: 50:57:a1:83:63:45:02:b0:f2:95:63:a1:ef:94:5b: 45:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:06:29:E7:6B:9A:2A:B2:3E:27:CB:CC:7B:28:18:F0:F3:22:20:EE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C3130CE88BF11F08AFA4C38C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.112.56.0/22 45.127.200.0/22 103.106.102.0/24 103.133.38.0/24 103.196.132.0/22 103.239.168.0/22 223.29.220.0/24 IPv6: 2400:44a0:2::-2400:44a0:2:0:0:0:0:13ff Signature Algorithm: sha256WithRSAEncryption 57:6c:01:03:80:79:0b:f6:c0:df:b6:70:d4:34:c3:fc:53:51: f2:cd:da:0a:2f:80:40:d7:33:60:4e:5e:70:38:9e:4c:14:61: 23:27:34:58:ab:28:8f:42:16:df:3b:9a:fe:60:d1:43:7d:35: 46:d7:3d:f6:ea:d3:04:d1:58:6a:8b:32:6e:50:61:db:8e:1a: c5:0f:fc:77:6e:b4:b2:4c:99:0e:2f:d9:7d:9b:7d:27:8c:e8: af:b1:ed:94:ca:e3:c3:f3:62:b5:7b:fe:df:57:be:6d:ae:43: 99:12:a3:20:47:1e:76:68:69:52:44:4e:d9:01:a6:db:4b:ea: 5e:91:f7:8a:8e:88:18:7e:13:4d:23:82:17:46:54:9c:27:3e: 54:8b:fa:24:de:5c:33:86:a5:0b:97:02:c9:87:9d:a6:b2:75: 6d:dd:bb:c1:92:60:55:cf:19:3c:aa:1c:d9:30:91:6e:3b:a7: 40:1f:40:f1:be:4a:f8:fb:cd:1f:63:03:7a:81:45:da:88:d0: 57:d2:09:2a:ca:9e:60:8a:7d:34:6f:ab:1d:d3:12:74:de:49: 00:7e:8f:77:1a:b7:84:b3:9d:73:22:c4:8c:67:3a:1b:2b:21: 96:21:55:69:88:2b:55:3d:35:02:e5:b6:28:4a:b2:c7:1b:a7: 17:b0:16:14 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIDAN0/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDMzMTA4MjE1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjljYjg0MjEtMDc4YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALB25RxB4X8xhjth6e01IMHCVR1lKpLZqwl/TaIysV3o05Ti+GN47ongdfqh Ll+ySgfl+ugdbShUqbthIio2++W/Df0hwW4UIywFeH6MumD95lMVJY4NaZ0w/ad/ LWzyQjQaALa0Lcz6vXpKvDNxUJH1VJaXS1+Y7SDGrOyZF//aLsn8BEntdpY7CxoH vR4AAAnVJ871VfWHiNLFdX0y2Fi39G0j8dzHE9emNco01emYz8HTe3I0qocxnfe0 xztoWNfhac1Ph2Knvu0Dw9upRkbyyFzhYcGS5L3NbBIrCs7w7DjZPjvqxjqpVBjX m44RUFehg2NFArDylWOh75RbRe0CAwEAAaOCAqkwggKlMB0GA1UdDgQWBBTGBinn a5oqsj4ny8x7KBjw8yIg7jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJDMzEzMENF ODhCRjExRjA4QUZBNEMzOEM0RjlBRTAyLnJvYTBoBggrBgEFBQcBBwEB/wRZMFcw MAQCAAEwKgMEAi1wOAMEAi1/yAMEAGdqZgMEAGeFJgMEAmfEhAMEAmfvqAMEAN8d 3DAjBAIAAjAdMBsDBwEkAESgAAIDEAIkAESgAAIAAAAAAAAAABAwDQYJKoZIhvcN AQELBQADggEBAFdsAQOAeQv2wN+2cNQ0w/xTUfLN2govgEDXM2BOXnA4nkwUYSMn NFirKI9CFt87mv5g0UN9NUbXPfbq0wTRWGqLMm5QYduOGsUP/HdutLJMmQ4v2X2b fSeM6K+x7ZTK48PzYrV7/t9Xvm2uQ5kSoyBHHnZoaVJETtkBpttL6l6R94qOiBh+ E00jghdGVJwnPlSL+iTeXDOGpQuXAsmHnaaydW3du8GSYFXPGTyqHNkwkW47p0Af QPG+Svj7zR9jA3qBRdqI0FfSCSrKnmCKfTRvqx3TEnTeSQB+j3cat4SznXMixIxn OhsrIZYhVWmIK1U9NQLltihKsscbpxewFhQ= -----END CERTIFICATE-----Generated at Thu Apr 16 02:29:50 2026 by rpki-client