$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3A630F461EE011EEB5EE5530C4F9AE02.roa File: 3A630F461EE011EEB5EE5530C4F9AE02.roa (raw, json) Hash identifier: xpTYajEwM9UNmBNmuVghtnqcceG8ErXiF93QB1QdgNU= Subject key identifier: 7D:CC:40:C3:2B:02:85:61:20:59:CE:AA:3A:85:71:37:A7:F3:EF:26 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E691 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3A630F461EE011EEB5EE5530C4F9AE02.roa Signing time: Sun 31 May 2026 17:11:42 +0000 ROA not before: Sun 31 May 2026 17:11:42 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 140174 IP address blocks: 43.241.66.0/24 maxlen: 24 103.61.68.0/24 maxlen: 24 103.149.16.0/24 maxlen: 24 103.152.184.0/24 maxlen: 24 103.178.106.0/23 maxlen: 24 103.224.152.0/24 maxlen: 24 103.224.153.0/24 maxlen: 24 103.224.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59025 (0xe691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:11:42 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6bce-ad61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:46:56:fc:da:83:b0:49:c0:1e:e5:4a:36:bf: d8:b1:b6:30:ea:b2:62:21:68:a8:c7:4b:33:56:b9: 79:4b:a9:15:a5:de:d5:27:a1:55:96:31:13:1d:bf: e6:43:c8:58:d3:04:9a:14:54:a8:9e:a9:96:8c:f4: f6:8d:d3:e8:5e:81:80:a9:d3:3d:00:b8:77:a1:12: f1:26:10:59:0b:e6:2d:c3:d9:68:d4:2b:43:23:cb: 43:97:71:bf:55:da:d9:59:86:5b:47:d7:8f:c0:c7: 95:fe:af:0b:b6:21:f5:f8:2f:4f:6a:66:fc:ca:77: 52:46:e9:1d:d7:7b:b4:dc:52:f9:3a:0e:98:49:c7: 13:7f:52:ee:7f:f5:82:b6:36:56:1f:36:c0:08:3f: 9f:21:46:d7:79:60:76:70:9f:d6:d4:0d:e3:c9:2a: 26:bb:e5:7e:32:2a:a7:1c:41:89:40:76:12:55:7b: 36:68:f3:09:91:53:0f:e0:c6:1b:c6:91:a6:40:ca: dd:58:4e:fa:8b:43:41:fe:80:8c:43:51:a1:ae:8b: c1:e7:b9:a6:7d:8e:c5:f6:ae:24:0f:3a:a9:e0:49: a7:9a:42:9b:62:cb:81:1b:eb:95:24:05:41:eb:23: 35:aa:56:b1:41:cd:4a:93:93:85:40:d7:d6:64:89: f9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CC:40:C3:2B:02:85:61:20:59:CE:AA:3A:85:71:37:A7:F3:EF:26 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3A630F461EE011EEB5EE5530C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.241.66.0/24 103.61.68.0/24 103.149.16.0/24 103.152.184.0/24 103.178.106.0/23 103.224.152.0-103.224.154.255 Signature Algorithm: sha256WithRSAEncryption 3e:23:38:05:ec:7d:74:c0:de:01:17:b3:54:ba:27:8a:de:e6: 8a:cd:6a:8a:5e:0e:7d:35:53:08:49:19:f7:55:56:ae:72:7b: 80:9e:eb:29:2d:7d:50:ac:e0:a3:c8:3a:58:53:88:04:c6:1b: 3e:f2:b3:ff:35:94:fc:db:27:9f:d0:18:23:c7:a1:45:d6:08: b7:ba:5f:1d:35:ab:a0:41:66:bc:26:01:6b:8e:fa:d5:b0:29: 3c:ea:28:4a:81:d5:b5:d6:61:d0:5c:28:ae:11:4e:d5:d1:e1: b2:96:23:43:35:e9:e0:d8:7b:fb:6b:0f:b7:27:c3:5e:45:e5: 0c:89:a5:3a:8b:74:7c:9d:99:be:27:87:86:84:77:96:d2:29: ed:1b:88:0b:4c:3c:88:36:54:1a:67:83:b5:8f:50:ea:9d:7f: fd:5f:a2:4c:01:bd:65:fb:54:2d:f9:4f:40:b7:12:c6:65:41: 8c:21:99:f1:6e:bf:c0:8c:26:1d:d2:8b:6a:de:08:5f:3e:3c: ec:1c:87:bc:03:bb:51:5c:c5:4e:84:5b:7a:aa:a3:4d:37:76: 01:54:61:26:2d:e4:a6:22:ae:7f:ff:d8:92:19:2e:8d:0f:85: 83:ac:72:c0:4b:03:25:b4:14:b0:a7:45:d2:a0:2e:02:88:e2: a4:41:85:8c -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIDAOaRMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MTE0MloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZiY2UtYWQ2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANlGVvzag7BJwB7lSja/2LG2MOqyYiFoqMdLM1a5eUupFaXe1SehVZYxEx2/ 5kPIWNMEmhRUqJ6ploz09o3T6F6BgKnTPQC4d6ES8SYQWQvmLcPZaNQrQyPLQ5dx v1Xa2VmGW0fXj8DHlf6vC7Yh9fgvT2pm/Mp3UkbpHdd7tNxS+ToOmEnHE39S7n/1 grY2Vh82wAg/nyFG13lgdnCf1tQN48kqJrvlfjIqpxxBiUB2ElV7NmjzCZFTD+DG G8aRpkDK3VhO+otDQf6AjENRoa6Lwee5pn2OxfauJA86qeBJp5pCm2LLgRvrlSQF QesjNapWsUHNSpOThUDX1mSJ+QUCAwEAAaOCAoYwggKCMB0GA1UdDgQWBBR9zEDD KwKFYSBZzqo6hXE3p/PvJjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNBNjMwRjQ2 MUVFMDExRUVCNUVFNTUzMEM0RjlBRTAyLnJvYTBFBggrBgEFBQcBBwEB/wQ2MDQw MgQCAAEwLAMEACvxQgMEAGc9RAMEAGeVEAMEAGeYuAMEAWeyajAMAwQDZ+CYAwQA Z+CaMA0GCSqGSIb3DQEBCwUAA4IBAQA+IzgF7H10wN4BF7NUuieK3uaKzWqKXg59 NVMISRn3VVaucnuAnuspLX1QrOCjyDpYU4gExhs+8rP/NZT82yef0Bgjx6FF1gi3 ul8dNaugQWa8JgFrjvrVsCk86ihKgdW11mHQXCiuEU7V0eGyliNDNeng2Hv7aw+3 J8NeReUMiaU6i3R8nZm+J4eGhHeW0intG4gLTDyINlQaZ4O1j1DqnX/9X6JMAb1l +1Qt+U9AtxLGZUGMIZnxbr/AjCYd0otq3ghfPjzsHIe8A7tRXMVOhFt6qqNNN3YB VGEmLeSmIq5//9iSGS6ND4WDrHLASwMltBSwp0XSoC4CiOKkQYWM -----END CERTIFICATE-----Generated at Thu Jun 4 10:06:35 2026 by rpki-client