$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C3130CE88BF11F08AFA4C38C4F9AE02.roa File: 2C3130CE88BF11F08AFA4C38C4F9AE02.roa (raw, json) Hash identifier: RCAF2cndO4H8fH6E6gbCqwE/W/9yME12ugmB6SBwaRk= Subject key identifier: 0A:21:91:3E:97:48:FF:CE:A0:78:6A:98:4E:B0:65:66:5E:24:99:CF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E874 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C3130CE88BF11F08AFA4C38C4F9AE02.roa Signing time: Sun 31 May 2026 17:27:26 +0000 ROA not before: Sun 31 May 2026 17:27:26 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 149194 IP address blocks: 45.112.56.0/22 maxlen: 24 45.127.200.0/22 maxlen: 24 103.106.102.0/24 maxlen: 24 103.133.38.0/24 maxlen: 24 103.196.132.0/22 maxlen: 24 103.239.168.0/22 maxlen: 24 223.29.220.0/24 maxlen: 24 2400:44a0:2::/118 maxlen: 118 2400:44a0:2::400/118 maxlen: 118 2400:44a0:2::800/118 maxlen: 118 2400:44a0:2::c00/118 maxlen: 118 2400:44a0:2::1000/120 maxlen: 120 2400:44a0:2::1100/120 maxlen: 120 2400:44a0:2::1200/120 maxlen: 120 2400:44a0:2::1300/120 maxlen: 120 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59508 (0xe874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:27:26 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6f7d-01e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5d:23:3e:45:98:2f:5e:a0:00:f3:de:68:67: c1:92:84:85:b6:12:fb:19:0a:95:ac:89:63:b8:fa: aa:ba:e5:95:41:f7:5b:18:ef:1a:88:fe:c1:8c:c4: ec:42:78:a2:20:9d:8a:db:4a:b8:a2:d3:47:7b:82: f4:c4:c2:f3:4b:a4:94:9a:7c:8a:9d:4b:0d:3b:d4: 5e:1d:3e:08:cc:6c:e0:16:84:d2:ec:f5:a7:db:d3: dc:4e:21:34:a2:6b:c1:74:49:2f:1c:2a:a8:ba:fe: 2b:7f:c8:c8:db:ad:39:e2:02:20:84:db:c0:32:2f: 94:8a:7e:ec:c0:91:60:a8:5c:86:2e:59:c4:ae:81: ca:84:d5:dc:63:94:71:e1:ef:4e:24:3b:6e:8e:a5: ce:ba:f1:c5:e7:88:eb:e0:eb:e5:d2:68:28:28:78: 72:0b:0b:f4:cc:94:a6:fc:b2:3c:7b:00:70:8c:c3: 32:e9:b9:84:58:f4:dd:0e:c5:64:ab:58:3e:d2:72: 49:07:d0:6b:60:27:77:14:0a:74:18:34:fc:57:b0: 9e:fd:4a:40:6a:61:76:69:04:e2:9f:7a:8c:f0:92: 65:23:86:17:5a:0b:28:9c:c8:62:a3:20:75:63:21: 39:ae:8e:73:93:0b:1f:54:34:89:5d:f6:ad:c1:df: 1b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:21:91:3E:97:48:FF:CE:A0:78:6A:98:4E:B0:65:66:5E:24:99:CF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C3130CE88BF11F08AFA4C38C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.112.56.0/22 45.127.200.0/22 103.106.102.0/24 103.133.38.0/24 103.196.132.0/22 103.239.168.0/22 223.29.220.0/24 IPv6: 2400:44a0:2::-2400:44a0:2:0:0:0:0:13ff Signature Algorithm: sha256WithRSAEncryption 82:28:62:00:b3:55:90:3a:ea:0d:6a:7c:5f:47:28:e9:84:0e: 2b:80:db:de:00:69:38:81:8f:56:e7:a0:66:e3:d2:b1:74:18: 88:9f:b1:d8:87:84:5f:2e:f0:5c:61:37:90:e6:69:5c:a4:b9: fd:3e:b8:a6:d2:98:c4:7d:a9:3b:21:4f:4a:31:47:89:54:e9: 07:c5:f1:b0:2b:2b:a7:00:65:09:68:10:9c:7d:c5:a1:46:5b: 4b:6a:57:00:66:ae:e6:b2:5f:5f:cc:af:f5:27:4a:5e:5e:27: ba:c9:28:9c:48:a2:2d:77:41:8d:ec:82:dc:58:29:f8:ad:1a: 56:97:af:ca:67:9a:e1:d6:40:9a:30:2e:1d:cb:dc:a0:ff:72: b1:75:0a:e8:89:07:72:3a:5a:54:0f:77:3a:6d:24:ba:1e:ab: 83:27:f6:60:97:64:82:08:0a:21:47:fc:21:ba:4c:67:7c:87: 0c:d2:d2:4d:e5:35:be:24:74:ff:d7:b5:b8:5d:64:31:61:03: 7a:c6:ed:7f:d5:08:b1:8c:fb:c4:5e:d6:cc:28:2a:f3:10:76: 2d:16:66:0e:f4:ec:bc:dc:35:3b:8c:02:6d:cd:5d:e2:61:14: 6b:6b:00:68:55:da:ae:20:b9:bf:f8:c7:55:e5:70:44:0f:6f: 03:13:7a:45 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIDAOh0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MjcyNloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZmN2QtMDFlMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKRdIz5FmC9eoADz3mhnwZKEhbYS+xkKlayJY7j6qrrllUH3WxjvGoj+wYzE 7EJ4oiCdittKuKLTR3uC9MTC80uklJp8ip1LDTvUXh0+CMxs4BaE0uz1p9vT3E4h NKJrwXRJLxwqqLr+K3/IyNutOeICIITbwDIvlIp+7MCRYKhchi5ZxK6ByoTV3GOU ceHvTiQ7bo6lzrrxxeeI6+Dr5dJoKCh4cgsL9MyUpvyyPHsAcIzDMum5hFj03Q7F ZKtYPtJySQfQa2AndxQKdBg0/Fewnv1KQGphdmkE4p96jPCSZSOGF1oLKJzIYqMg dWMhOa6Oc5MLH1Q0iV32rcHfGz0CAwEAAaOCAqkwggKlMB0GA1UdDgQWBBQKIZE+ l0j/zqB4aphOsGVmXiSZzzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJDMzEzMENF ODhCRjExRjA4QUZBNEMzOEM0RjlBRTAyLnJvYTBoBggrBgEFBQcBBwEB/wRZMFcw MAQCAAEwKgMEAi1wOAMEAi1/yAMEAGdqZgMEAGeFJgMEAmfEhAMEAmfvqAMEAN8d 3DAjBAIAAjAdMBsDBwEkAESgAAIDEAIkAESgAAIAAAAAAAAAABAwDQYJKoZIhvcN AQELBQADggEBAIIoYgCzVZA66g1qfF9HKOmEDiuA294AaTiBj1bnoGbj0rF0GIif sdiHhF8u8FxhN5DmaVykuf0+uKbSmMR9qTshT0oxR4lU6QfF8bArK6cAZQloEJx9 xaFGW0tqVwBmruayX1/Mr/UnSl5eJ7rJKJxIoi13QY3sgtxYKfitGlaXr8pnmuHW QJowLh3L3KD/crF1CuiJB3I6WlQPdzptJLoeq4Mn9mCXZIIICiFH/CG6TGd8hwzS 0k3lNb4kdP/XtbhdZDFhA3rG7X/VCLGM+8Re1swoKvMQdi0WZg707LzcNTuMAm3N XeJhFGtrAGhV2q4gub/4x1XlcEQPbwMTekU= -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:43 2026 by rpki-client