$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C805AAA68DF11EA845FA822C4F9AE02.roa File: 3C805AAA68DF11EA845FA822C4F9AE02.roa (raw, json) Hash identifier: 9fmioPX7AhHOw6F6Qxw6GTF2sh0F4Ow2icfAndi2A+U= Subject key identifier: CA:2E:36:21:B5:DA:E8:78:C6:60:1D:77:9F:C4:40:C7:1A:81:1C:14 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EBA9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C805AAA68DF11EA845FA822C4F9AE02.roa Signing time: Sun 31 May 2026 17:53:56 +0000 ROA not before: Sun 31 May 2026 17:53:56 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 9430 IP address blocks: 103.171.96.0/23 maxlen: 24 203.190.144.0/24 maxlen: 24 203.190.155.0/24 maxlen: 24 203.190.156.0/24 maxlen: 24 203.190.157.0/24 maxlen: 24 203.190.158.0/24 maxlen: 24 203.190.159.0/24 maxlen: 24 2402:ef01:2::/48 maxlen: 48 2402:ef01:3::/48 maxlen: 48 2402:ef16::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 08:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60329 (0xeba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:53:56 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c75b4-54bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:46:57:c4:eb:46:00:d7:32:a8:95:55:b6: 21:e3:04:b2:f0:78:af:2d:d4:39:76:2f:5e:75:80: 86:f9:86:18:16:fd:71:b1:7b:ac:88:9a:6e:69:9d: 89:b5:c1:62:47:8c:a7:1f:cf:03:18:66:6d:22:2d: 32:09:1c:6d:cd:86:ee:7d:dc:f3:0d:cb:31:3c:21: 21:de:65:c8:36:3b:75:99:b3:ce:49:19:db:db:ce: 0e:fb:4e:9f:ef:6d:f9:01:3f:df:3c:b7:f6:2d:cb: 46:4f:8a:80:b9:98:80:a8:75:de:4b:c6:2b:44:6c: 2a:d2:1f:18:cf:18:ac:1b:23:b6:5e:22:84:b1:b7: 9a:24:67:49:52:42:d5:aa:09:df:5d:4e:59:55:e3: fa:76:bb:a5:d8:47:cf:f1:40:43:8e:9d:63:64:4e: 0b:25:26:0c:fe:0a:d1:0f:77:48:2a:57:f3:b9:07: 67:c1:3c:09:01:97:22:f1:89:2b:ba:c9:09:97:3a: ce:5b:ef:e4:6c:8c:d6:6b:cc:e6:15:a0:a9:5a:cb: 87:22:2e:a8:ae:9a:a9:ba:30:88:71:af:af:cf:f6: a6:a8:92:2d:14:e7:eb:d0:61:e4:59:c8:cb:10:4a: d4:f7:ee:c4:29:cc:ef:93:21:e3:cb:8d:e9:46:d3: 64:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:2E:36:21:B5:DA:E8:78:C6:60:1D:77:9F:C4:40:C7:1A:81:1C:14 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3C805AAA68DF11EA845FA822C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.171.96.0/23 203.190.144.0/24 203.190.155.0-203.190.159.255 IPv6: 2402:ef01:2::/47 2402:ef16::/32 Signature Algorithm: sha256WithRSAEncryption a9:6c:7d:d6:c7:c1:59:d9:43:6c:d8:8c:31:6f:88:6f:02:38: 2e:4c:67:b7:bb:16:e9:ed:be:b4:f0:22:4c:d6:f1:ad:35:62: 71:b4:1c:2a:71:9b:ef:2a:4c:21:f6:36:be:7b:65:00:8e:77: 6b:fd:7d:39:a8:f0:15:33:a8:11:86:df:8a:10:65:9e:66:9d: 16:00:1a:1a:0c:06:2e:4f:34:8f:13:17:4b:2e:6d:32:42:1b: 90:72:a6:d7:ac:19:55:0b:f5:be:25:fc:3b:8e:c3:11:66:ee: 1c:c6:74:03:d6:b1:e8:63:3b:3a:ec:1d:63:a6:14:b5:65:8c: f9:59:09:22:c7:9a:eb:95:0d:73:7d:62:b7:58:0a:94:2a:38: d6:cb:d8:7b:03:72:49:d0:ab:66:5e:be:df:ea:bc:bb:1e:f0: 3e:c7:14:75:0c:93:64:5b:bb:82:46:dc:5d:12:9b:cd:da:e5: 6c:7d:22:86:ea:70:29:8d:2d:05:d9:72:f8:f5:f1:f5:cc:76: 6d:fc:c9:aa:3a:0b:33:cc:92:a0:99:12:ea:ac:51:f6:b8:ed: 19:05:0e:6c:3f:77:85:84:0d:75:47:22:57:30:df:8e:08:7b: 12:cd:ce:41:9d:39:6b:db:f8:ac:42:80:84:8c:9a:69:f0:d8: 57:50:42:6e -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIDAOupMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTM1NloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc1YjQtNTRiYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKR6RlfE60YA1zKolVW2IeMEsvB4ry3UOXYvXnWAhvmGGBb9cbF7rIiabmmd ibXBYkeMpx/PAxhmbSItMgkcbc2G7n3c8w3LMTwhId5lyDY7dZmzzkkZ29vODvtO n+9t+QE/3zy39i3LRk+KgLmYgKh13kvGK0RsKtIfGM8YrBsjtl4ihLG3miRnSVJC 1aoJ311OWVXj+na7pdhHz/FAQ46dY2ROCyUmDP4K0Q93SCpX87kHZ8E8CQGXIvGJ K7rJCZc6zlvv5GyM1mvM5hWgqVrLhyIuqK6aqbowiHGvr8/2pqiSLRTn69Bh5FnI yxBK1PfuxCnM75Mh48uN6UbTZE8CAwEAAaOCAowwggKIMB0GA1UdDgQWBBTKLjYh tdroeMZgHXefxEDHGoEcFDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNDODA1QUFB NjhERjExRUE4NDVGQTgyMkM0RjlBRTAyLnJvYTBLBggrBgEFBQcBBwEB/wQ8MDow IAQCAAEwGgMEAWerYAMEAMu+kDAMAwQAy76bAwQFy76AMBYEAgACMBADBwEkAu8B AAIDBQAkAu8WMA0GCSqGSIb3DQEBCwUAA4IBAQCpbH3Wx8FZ2UNs2Iwxb4hvAjgu TGe3uxbp7b608CJM1vGtNWJxtBwqcZvvKkwh9ja+e2UAjndr/X05qPAVM6gRht+K EGWeZp0WABoaDAYuTzSPExdLLm0yQhuQcqbXrBlVC/W+Jfw7jsMRZu4cxnQD1rHo Yzs67B1jphS1ZYz5WQkix5rrlQ1zfWK3WAqUKjjWy9h7A3JJ0KtmXr7f6ry7HvA+ xxR1DJNkW7uCRtxdEpvN2uVsfSKG6nApjS0F2XL49fH1zHZt/MmqOgszzJKgmRLq rFH2uO0ZBQ5sP3eFhA11RyJXMN+OCHsSzc5BnTlr2/isQoCEjJpp8NhXUEJu -----END CERTIFICATE-----Generated at Sat Jun 6 11:08:20 2026 by rpki-client