$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3FF8232641B611EE91245671C4F9AE02.roa File: 3FF8232641B611EE91245671C4F9AE02.roa (raw, json) Hash identifier: 0B67Uj1iWm65u3DPJPZmMfiNMZ5DumGkMPJj3YxTfno= Subject key identifier: 26:6B:D8:5A:AA:DD:F5:07:74:17:EA:DA:A6:51:10:A0:94:30:C9:E3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E315 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3FF8232641B611EE91245671C4F9AE02.roa Signing time: Sun 31 May 2026 16:42:33 +0000 ROA not before: Sun 31 May 2026 16:42:33 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134291 IP address blocks: 103.218.124.0/22 maxlen: 22 103.255.134.0/23 maxlen: 24 2401:2960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58133 (0xe315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:42:33 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c64f9-cdac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:f5:f5:79:71:b5:c6:16:3a:7d:24:db:b3: 83:ff:e1:b9:e5:21:d5:53:98:4f:4f:78:d4:00:37: 17:18:7a:a5:96:9a:99:b7:50:3a:f7:0d:ad:3b:fc: 6d:80:4d:08:5b:71:10:14:12:12:ff:6f:1b:4c:93: a3:ca:f4:dc:cb:d1:8f:4f:19:3c:8f:65:ad:6e:96: 84:11:a1:b8:af:04:2c:b9:b1:ed:11:c5:07:03:0b: 02:76:2a:9a:69:57:4d:8f:b2:0e:c7:f6:5c:f4:6b: 00:f3:d8:62:5f:14:e4:e6:54:96:c1:d6:c2:81:8f: 89:9e:fd:0d:43:19:f8:24:ba:e8:ac:26:0a:1b:94: 3e:79:0b:a9:ae:17:dc:2e:55:1b:89:f6:cd:1b:65: ca:96:f0:60:f7:83:cb:94:a7:66:39:31:ee:47:77: 99:c8:8b:f5:80:0c:be:12:05:f2:d5:37:04:50:66: d9:9a:57:14:19:e8:77:04:69:2b:b8:dc:7e:3e:e7: cf:41:2c:8b:db:39:91:c2:c1:7a:76:f3:f7:0f:6e: f9:a8:52:f3:e5:ea:f4:f1:f8:7e:4a:e2:bc:79:e2: fb:c3:1b:0e:cb:09:a2:fe:62:07:d3:84:7a:93:55: 1b:bc:77:68:ad:12:45:52:4a:9a:c3:57:cb:d6:78: 04:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:6B:D8:5A:AA:DD:F5:07:74:17:EA:DA:A6:51:10:A0:94:30:C9:E3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3FF8232641B611EE91245671C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.218.124.0/22 103.255.134.0/23 IPv6: 2401:2960::/32 Signature Algorithm: sha256WithRSAEncryption 6f:b2:5c:83:ec:66:0d:fe:7d:1b:fd:d4:57:29:0a:7e:cd:97: 9c:52:58:3c:56:6d:98:f0:9f:85:e0:03:40:8b:d0:08:10:40: 21:53:be:96:99:9e:db:6c:9d:a3:86:39:58:cc:f2:ab:67:24: 44:07:d7:d7:1c:1b:98:9a:bc:2e:e1:79:4c:99:ba:5e:a8:54: 00:d4:be:8f:48:ca:c5:8e:4a:19:41:f5:fe:08:72:ae:c1:d3: c7:7d:47:4e:2e:d9:7c:72:a6:35:0b:64:18:84:e2:71:64:45: c7:29:78:29:40:84:1e:2d:3c:91:57:14:0d:7b:2e:b7:bb:e4: 86:29:38:92:6a:9f:d9:a6:09:93:28:61:07:63:85:cb:ee:d3: a9:79:ca:b3:9a:30:ce:6b:e8:e0:21:5f:f5:8e:74:60:3d:05: 83:c1:cb:fc:fa:43:51:b8:66:0e:92:62:5c:8d:ae:01:4a:ae: 6d:aa:c4:8b:31:cf:5f:2d:a0:d7:6a:d7:ff:5d:d6:9e:b3:1b: 1e:94:31:89:81:e7:39:be:f7:10:06:d9:33:14:af:61:ba:92: ca:ae:06:34:c9:a0:ca:7b:50:7b:cc:aa:eb:4f:9b:a8:79:35: b6:c2:c7:95:cd:cd:b1:44:a2:69:1e:f6:38:c6:26:d1:74:61: a8:11:83:46 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIDAOMVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDIzM1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY0ZjktY2RhYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKk9fV5cbXGFjp9JNuzg//hueUh1VOYT0941AA3Fxh6pZaambdQOvcNrTv8 bYBNCFtxEBQSEv9vG0yTo8r03MvRj08ZPI9lrW6WhBGhuK8ELLmx7RHFBwMLAnYq mmlXTY+yDsf2XPRrAPPYYl8U5OZUlsHWwoGPiZ79DUMZ+CS66KwmChuUPnkLqa4X 3C5VG4n2zRtlypbwYPeDy5SnZjkx7kd3mciL9YAMvhIF8tU3BFBm2ZpXFBnodwRp K7jcfj7nz0Esi9s5kcLBenbz9w9u+ahS8+Xq9PH4fkrivHni+8MbDssJov5iB9OE epNVG7x3aK0SRVJKmsNXy9Z4BN0CAwEAAaOCAnUwggJxMB0GA1UdDgQWBBQma9ha qt31B3QX6tqmURCglDDJ4zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNGRjgyMzI2 NDFCNjExRUU5MTI0NTY3MUM0RjlBRTAyLnJvYTA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmfafAMEAWf/hjANBAIAAjAHAwUAJAEpYDANBgkqhkiG9w0BAQsF AAOCAQEAb7Jcg+xmDf59G/3UVykKfs2XnFJYPFZtmPCfheADQIvQCBBAIVO+lpme 22ydo4Y5WMzyq2ckRAfX1xwbmJq8LuF5TJm6XqhUANS+j0jKxY5KGUH1/ghyrsHT x31HTi7ZfHKmNQtkGITicWRFxyl4KUCEHi08kVcUDXsut7vkhik4kmqf2aYJkyhh B2OFy+7TqXnKs5owzmvo4CFf9Y50YD0Fg8HL/PpDUbhmDpJiXI2uAUqubarEizHP Xy2g12rX/13WnrMbHpQxiYHnOb73EAbZMxSvYbqSyq4GNMmgyntQe8yq60+bqHk1 tsLHlc3NsUSiaR72OMYm0XRhqBGDRg== -----END CERTIFICATE-----Generated at Thu Jun 4 10:08:15 2026 by rpki-client