$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3AE416CE06FE11EBB45C7D74C4F9AE02.roa File: 3AE416CE06FE11EBB45C7D74C4F9AE02.roa (raw, json) Hash identifier: a46SmJkezTesdn1cR/PnaE2D7Bq/oCfNBrxOvb7cy3U= Subject key identifier: 13:5E:51:D7:F3:AD:70:88:DD:14:C8:CA:22:47:9C:AB:D1:C3:2A:73 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E1E6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3AE416CE06FE11EBB45C7D74C4F9AE02.roa Signing time: Sun 31 May 2026 16:32:45 +0000 ROA not before: Sun 31 May 2026 16:32:45 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 132573 IP address blocks: 27.0.48.0/24 maxlen: 24 27.0.61.0/24 maxlen: 24 27.0.63.0/24 maxlen: 24 45.248.168.0/22 maxlen: 22 45.248.168.0/24 maxlen: 24 45.248.169.0/24 maxlen: 24 45.248.170.0/24 maxlen: 24 45.248.171.0/24 maxlen: 24 103.17.100.0/23 maxlen: 24 103.17.107.0/24 maxlen: 24 103.17.128.0/22 maxlen: 22 103.17.128.0/24 maxlen: 24 103.17.129.0/24 maxlen: 24 103.17.130.0/24 maxlen: 24 103.17.131.0/24 maxlen: 24 115.69.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57830 (0xe1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:32:45 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c62ad-13e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bb:5e:55:c9:92:ee:73:90:7b:6e:a3:9c:1e: b8:7b:f3:e8:ea:d8:da:56:c0:4f:d0:f7:b6:fe:03: 66:1a:7e:2f:83:be:4e:ef:2a:ea:b0:44:31:24:84: 7f:f6:17:bb:c2:c7:93:c9:2e:87:a5:1a:35:58:be: f2:e1:73:71:67:d9:10:b8:0a:6d:ba:eb:10:e9:4b: dd:89:a2:25:b0:9c:c1:48:ef:26:b3:14:d7:dc:38: ec:d0:0c:2d:54:ae:aa:5b:7e:66:6d:3f:f2:73:05: af:0d:64:c6:a7:31:d8:b1:57:09:62:28:bb:63:1f: 03:2e:78:3d:37:3c:c4:59:57:c6:05:48:32:88:88: 27:03:e0:84:6e:5e:37:a3:87:64:08:15:c6:3f:97: 7e:67:af:76:30:3e:84:cf:30:17:3e:d9:df:84:73: 65:a8:b5:d7:38:71:ad:28:48:98:e2:24:c1:ae:b3: ab:ee:88:e4:a1:0d:e2:48:dc:e8:71:b4:5f:ba:7b: 9c:11:4c:22:c6:80:1c:6f:36:a0:df:84:87:d8:20: ca:f3:6c:71:45:1d:cd:02:9f:46:96:95:6e:ea:fd: 65:4f:7c:77:29:45:31:08:d9:43:db:a0:cd:bd:4d: 78:5c:bb:05:8a:35:f1:f4:74:df:44:44:f4:1c:97: 29:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:5E:51:D7:F3:AD:70:88:DD:14:C8:CA:22:47:9C:AB:D1:C3:2A:73 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3AE416CE06FE11EBB45C7D74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.0.48.0/24 27.0.61.0/24 27.0.63.0/24 45.248.168.0/22 103.17.100.0/23 103.17.107.0/24 103.17.128.0/22 115.69.253.0/24 Signature Algorithm: sha256WithRSAEncryption 30:e7:05:0d:53:a7:77:4c:2a:d3:f0:c7:c9:49:9d:1f:ca:46: bc:a8:65:20:3c:f0:a4:9c:99:e2:ee:11:8a:e0:2b:fa:e9:8f: ca:ae:51:c2:a0:14:77:f3:95:ba:59:b2:94:af:10:3d:b1:4e: b6:d3:91:bf:d8:1b:fa:22:b0:c8:88:60:50:66:8a:cd:a8:8d: 02:75:f0:ba:c2:32:41:60:ea:a1:a9:3f:95:99:c4:eb:24:fa: b1:13:64:50:a1:04:c5:04:31:81:f7:1c:aa:af:4d:7f:23:84: 92:5a:7e:2d:94:9d:b2:90:00:b1:dc:4b:3e:31:a0:87:33:62: a6:a3:99:b4:58:83:a4:63:da:d8:ae:4b:6f:6b:2c:eb:a5:8e: 0f:63:44:20:cd:4b:76:b6:2a:55:e0:9d:bc:fe:45:08:6c:df: 1e:8d:cb:c2:e6:17:e6:aa:3c:b7:78:77:e2:55:e1:9e:57:3a: ca:46:2c:3b:f1:f8:f2:c5:d6:a8:3b:06:89:d3:d2:80:b9:2e: 34:b8:2d:f8:1e:84:e4:1b:d6:c3:dc:e4:b2:c8:9f:80:47:5a: 21:67:3c:4c:d5:98:dd:c4:cf:ef:b4:26:e9:a6:90:61:6a:6c: dd:19:b0:da:01:c2:42:7e:94:89:1c:55:a6:69:43:71:66:36: d4:b6:e0:65 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIDAOHmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2MzI0NVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzYyYWQtMTNlNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMy7XlXJku5zkHtuo5weuHvz6OrY2lbAT9D3tv4DZhp+L4O+Tu8q6rBEMSSE f/YXu8LHk8kuh6UaNVi+8uFzcWfZELgKbbrrEOlL3YmiJbCcwUjvJrMU19w47NAM LVSuqlt+Zm0/8nMFrw1kxqcx2LFXCWIou2MfAy54PTc8xFlXxgVIMoiIJwPghG5e N6OHZAgVxj+XfmevdjA+hM8wFz7Z34RzZai11zhxrShImOIkwa6zq+6I5KEN4kjc 6HG0X7p7nBFMIsaAHG82oN+Eh9ggyvNscUUdzQKfRpaVbur9ZU98dylFMQjZQ9ug zb1NeFy7BYo18fR030RE9ByXKesCAwEAAaOCAoowggKGMB0GA1UdDgQWBBQTXlHX 861wiN0UyMoiR5yr0cMqczAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNBRTQxNkNF MDZGRTExRUJCNDVDN0Q3NEM0RjlBRTAyLnJvYTBJBggrBgEFBQcBBwEB/wQ6MDgw NgQCAAEwMAMEABsAMAMEABsAPQMEABsAPwMEAi34qAMEAWcRZAMEAGcRawMEAmcR gAMEAHNF/TANBgkqhkiG9w0BAQsFAAOCAQEAMOcFDVOnd0wq0/DHyUmdH8pGvKhl IDzwpJyZ4u4RiuAr+umPyq5RwqAUd/OVulmylK8QPbFOttORv9gb+iKwyIhgUGaK zaiNAnXwusIyQWDqoak/lZnE6yT6sRNkUKEExQQxgfccqq9NfyOEklp+LZSdspAA sdxLPjGghzNipqOZtFiDpGPa2K5Lb2ss66WOD2NEIM1LdrYqVeCdvP5FCGzfHo3L wuYX5qo8t3h34lXhnlc6ykYsO/H48sXWqDsGidPSgLkuNLgt+B6E5BvWw9zkssif gEdaIWc8TNWY3cTP77Qm6aaQYWps3Rmw2gHCQn6UiRxVpmlDcWY21LbgZQ== -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:16 2026 by rpki-client