$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FF596AC3B9211EBBD73D178C4F9AE02.roa File: 2FF596AC3B9211EBBD73D178C4F9AE02.roa (raw, json) Hash identifier: zX9nmkM4t+cJiDRT++eowy0NVjP+rjFrpTy98kPfGGA= Subject key identifier: 2F:88:8C:01:A7:94:60:3D:6D:0B:E7:F5:8D:31:A5:CB:F9:E0:23:94 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E6E5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FF596AC3B9211EBBD73D178C4F9AE02.roa Signing time: Sun 31 May 2026 17:14:24 +0000 ROA not before: Sun 31 May 2026 17:14:24 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 141317 IP address blocks: 103.49.164.0/24 maxlen: 24 103.49.165.0/24 maxlen: 24 103.159.152.0/23 maxlen: 24 103.162.161.0/24 maxlen: 24 2001:df5:8c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59109 (0xe6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:14:24 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6c70-c464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:aa:51:98:80:5a:fb:f5:78:7e:7c:fc:fe:40: bb:f6:ba:bd:d4:a2:ca:e4:7d:c0:3d:39:67:75:dd: 29:75:df:6d:47:00:d4:3c:f2:de:12:7f:fe:21:e7: 67:32:9e:78:de:49:cb:7f:37:94:84:2e:f5:f9:45: 9c:87:39:ab:cd:fe:47:7a:69:37:f6:db:39:0c:ec: 39:99:98:08:b2:3c:f2:9e:a5:15:83:60:3e:73:07: 88:70:3e:8e:23:e6:bd:25:c3:9c:a5:a8:c1:7f:2c: 23:ea:c9:6c:d3:dd:f2:5f:8d:5f:f1:87:7c:1a:47: b8:77:a3:88:81:28:5c:b9:1a:91:b8:4b:55:e5:12: e2:c3:d8:38:89:cc:f9:e2:5a:78:3e:f7:15:cf:22: 67:23:be:57:fe:6e:68:6f:0c:54:51:a1:1c:49:9b: 58:cd:14:3e:f4:c7:3c:80:16:1f:75:71:bb:58:b9: 6a:3d:6f:8d:ad:13:7b:18:7d:80:4d:ef:99:7f:41: 0b:3e:bc:49:45:01:91:ec:3a:eb:3d:08:c5:13:16: 63:d8:b2:e6:42:5a:22:a5:13:4f:79:61:99:83:95: d2:09:26:17:b6:dc:19:5e:6f:6a:d1:ed:d7:b2:93: 88:4c:f8:4c:cf:73:09:0e:61:5f:ce:11:a6:9d:8e: 69:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:88:8C:01:A7:94:60:3D:6D:0B:E7:F5:8D:31:A5:CB:F9:E0:23:94 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FF596AC3B9211EBBD73D178C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.49.164.0/23 103.159.152.0/23 103.162.161.0/24 IPv6: 2001:df5:8c80::/48 Signature Algorithm: sha256WithRSAEncryption 74:11:4d:c4:d2:7c:69:1a:56:3a:3d:2b:ef:2d:29:d3:bd:17: 8f:08:50:7d:4d:da:e3:94:0d:44:80:d3:1b:4f:4a:c5:51:dc: 8f:8c:e3:f4:96:d2:e4:2d:8c:da:26:58:d9:a3:46:41:84:72: 0c:e7:d7:74:13:7e:35:98:9c:5b:44:fa:0f:e3:da:f6:f4:43: 2b:8b:68:70:be:6c:43:53:ba:41:68:ca:d7:c5:c5:f2:52:29: 98:93:b5:c9:16:61:17:70:02:dd:9b:3f:a6:61:d2:5c:68:87: d4:8c:01:56:5e:89:3b:a6:b7:15:7b:94:aa:6c:d6:95:f4:10: 7c:85:46:f9:40:88:0b:e4:3c:0b:9e:f9:b8:b1:c3:35:e1:91: 39:79:d0:e6:1e:5e:5e:4c:a3:22:4b:77:9c:7f:20:45:9a:7c: b4:b8:88:d3:ad:1a:1b:19:c2:51:15:7f:37:12:0c:ed:27:05: 8a:f9:0a:bb:8a:5b:b8:30:bc:01:18:6d:37:1d:1e:53:76:cf: a6:1f:64:67:4c:37:3b:a0:c3:d1:ae:69:44:95:55:e1:8b:6f: 85:88:29:16:3a:7a:3a:d0:5f:3a:f8:44:6a:97:6b:bd:aa:e3: 6f:be:83:37:f2:c5:60:b3:89:dd:e3:93:13:08:75:17:9c:64: 34:54:fb:e2 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIDAOblMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MTQyNFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZjNzAtYzQ2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCqUZiAWvv1eH58/P5Au/a6vdSiyuR9wD05Z3XdKXXfbUcA1Dzy3hJ//iHn ZzKeeN5Jy383lIQu9flFnIc5q83+R3ppN/bbOQzsOZmYCLI88p6lFYNgPnMHiHA+ jiPmvSXDnKWowX8sI+rJbNPd8l+NX/GHfBpHuHejiIEoXLkakbhLVeUS4sPYOInM +eJaeD73Fc8iZyO+V/5uaG8MVFGhHEmbWM0UPvTHPIAWH3Vxu1i5aj1vja0Texh9 gE3vmX9BCz68SUUBkew66z0IxRMWY9iy5kJaIqUTT3lhmYOV0gkmF7bcGV5vatHt 17KTiEz4TM9zCQ5hX84Rpp2OaWUCAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBQviIwB p5RgPW0L5/WNMaXL+eAjlDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJGRjU5NkFD M0I5MjExRUJCRDczRDE3OEM0RjlBRTAyLnJvYTA8BggrBgEFBQcBBwEB/wQtMCsw GAQCAAEwEgMEAWcxpAMEAWefmAMEAGeioTAPBAIAAjAJAwcAIAEN9YyAMA0GCSqG SIb3DQEBCwUAA4IBAQB0EU3E0nxpGlY6PSvvLSnTvRePCFB9TdrjlA1EgNMbT0rF UdyPjOP0ltLkLYzaJljZo0ZBhHIM59d0E341mJxbRPoP49r29EMri2hwvmxDU7pB aMrXxcXyUimYk7XJFmEXcALdmz+mYdJcaIfUjAFWXok7prcVe5SqbNaV9BB8hUb5 QIgL5DwLnvm4scM14ZE5edDmHl5eTKMiS3ecfyBFmny0uIjTrRobGcJRFX83Egzt JwWK+Qq7ilu4MLwBGG03HR5Tds+mH2RnTDc7oMPRrmlElVXhi2+FiCkWOno60F86 +ERql2u9quNvvoM38sVgs4nd45MTCHUXnGQ0VPvi -----END CERTIFICATE-----Generated at Thu Jun 4 09:02:25 2026 by rpki-client