$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2E8FB8360811EBB4274012C4F9AE02.roa File: 4A2E8FB8360811EBB4274012C4F9AE02.roa (raw, json) Hash identifier: dZS01GK7f+RpJ1nrt/7W5TNyjtzZ95HMKvoDu89D4rw= Subject key identifier: B5:D9:CF:C8:52:1A:7D:EF:FB:5F:33:83:70:E0:42:39:9A:D9:0D:DA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E6E4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2E8FB8360811EBB4274012C4F9AE02.roa Signing time: Sun 31 May 2026 17:14:22 +0000 ROA not before: Sun 31 May 2026 17:14:22 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 141315 IP address blocks: 103.159.144.0/24 maxlen: 24 103.159.145.0/24 maxlen: 24 2001:df1:fbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59108 (0xe6e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:14:22 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6c6e-d98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ff:e1:e1:15:46:68:ed:af:94:d6:f7:1a:90: 83:6e:96:18:eb:06:bf:3a:09:d5:e0:c6:39:e8:e0: be:f5:1d:f3:57:5f:62:83:5c:55:15:9d:da:dd:2e: a3:08:00:ad:52:1e:59:73:90:aa:be:35:6f:27:37: 65:94:48:b4:77:37:90:7c:c6:12:27:16:ab:88:f1: 29:91:27:25:36:4c:a9:45:d9:2f:2c:25:4b:81:44: 67:69:82:9f:27:3e:91:28:4e:d5:de:40:bc:40:91: 47:c0:7f:aa:00:70:e8:cd:5b:6c:a8:74:cc:93:63: c2:bf:38:0d:d2:32:32:a2:67:f2:03:4f:57:1c:e3: e5:5d:0c:85:d8:b3:b6:69:15:9d:62:37:70:a4:ac: 50:7e:e8:7c:b1:32:3f:5e:49:62:ab:b5:33:d2:a3: e1:7a:fe:c9:e4:99:4b:49:54:b4:2d:0d:df:64:5c: 00:b0:04:b9:5a:51:24:41:e7:c8:d3:1d:6c:e6:53: ea:c5:17:bd:7f:51:c9:77:23:ae:1c:e7:2e:18:a5: 6c:96:30:1c:49:25:b0:66:2c:90:0f:c9:bd:d7:30: 6d:e7:31:c6:af:7a:f4:ce:ba:5b:69:95:23:f6:33: b9:a4:8d:09:95:ff:f5:0e:ae:d2:3b:29:fb:b1:25: 6e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D9:CF:C8:52:1A:7D:EF:FB:5F:33:83:70:E0:42:39:9A:D9:0D:DA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2E8FB8360811EBB4274012C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.144.0/23 IPv6: 2001:df1:fbc0::/48 Signature Algorithm: sha256WithRSAEncryption 43:d7:45:4d:48:71:2a:2d:cc:00:22:e5:2b:eb:7d:57:a7:1f: 79:39:f0:6a:90:71:ae:d9:f8:6f:7b:11:1c:d9:aa:bf:ee:dc: 1d:46:6b:a7:64:46:88:11:42:11:2a:b2:38:80:b7:eb:31:6c: 79:5d:32:bc:96:58:84:54:6b:2f:9c:84:2b:8d:70:b6:19:ee: 30:84:bc:78:3c:77:9f:91:36:33:23:3e:30:ca:e0:fc:bb:72: ce:54:51:17:36:ac:93:22:1f:18:77:18:fb:81:be:65:4c:48: c1:f8:54:3f:72:51:7d:2a:f3:ef:88:e1:7c:92:b0:3d:e3:d1: 63:14:3b:fa:44:e2:ed:1d:b0:b5:86:bf:3b:eb:c9:bc:98:84: 12:88:59:23:0c:2c:21:3d:d6:a1:9e:31:1e:10:9d:09:bd:b6: 29:dd:ae:9f:51:80:49:70:0a:f2:a0:30:53:54:dd:b4:45:47: ba:62:bd:88:b4:ff:9c:7f:1f:b5:73:89:fa:f9:eb:88:df:d7: 71:54:f7:21:d0:ad:1c:b3:4a:a0:64:0d:e1:a5:e6:93:8e:0f: c1:1d:1e:82:74:c1:f5:f9:21:a2:0c:6b:7a:8b:c3:17:42:27: 0e:ac:e5:33:88:88:51:98:ca:3a:d9:6d:a2:4f:da:52:d2:f9: fd:fb:c6:1a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAObkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MTQyMloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZjNmUtZDk4YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALr/4eEVRmjtr5TW9xqQg26WGOsGvzoJ1eDGOejgvvUd81dfYoNcVRWd2t0u owgArVIeWXOQqr41byc3ZZRItHc3kHzGEicWq4jxKZEnJTZMqUXZLywlS4FEZ2mC nyc+kShO1d5AvECRR8B/qgBw6M1bbKh0zJNjwr84DdIyMqJn8gNPVxzj5V0Mhdiz tmkVnWI3cKSsUH7ofLEyP15JYqu1M9Kj4Xr+yeSZS0lUtC0N32RcALAEuVpRJEHn yNMdbOZT6sUXvX9RyXcjrhznLhilbJYwHEklsGYskA/Jvdcwbecxxq969M66W2mV I/YzuaSNCZX/9Q6u0jsp+7ElbnkCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBS12c/I Uhp97/tfM4Nw4EI5mtkN2jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRBMkU4RkI4 MzYwODExRUJCNDI3NDAxMkM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWefkDAPBAIAAjAJAwcAIAEN8fvAMA0GCSqGSIb3DQEBCwUAA4IB AQBD10VNSHEqLcwAIuUr631Xpx95OfBqkHGu2fhvexEc2aq/7twdRmunZEaIEUIR KrI4gLfrMWx5XTK8lliEVGsvnIQrjXC2Ge4whLx4PHefkTYzIz4wyuD8u3LOVFEX NqyTIh8Ydxj7gb5lTEjB+FQ/clF9KvPviOF8krA949FjFDv6ROLtHbC1hr8768m8 mIQSiFkjDCwhPdahnjEeEJ0JvbYp3a6fUYBJcAryoDBTVN20RUe6Yr2ItP+cfx+1 c4n6+euI39dxVPch0K0cs0qgZA3hpeaTjg/BHR6CdMH1+SGiDGt6i8MXQicOrOUz iIhRmMo62W2iT9pS0vn9+8Ya -----END CERTIFICATE-----Generated at Thu Jun 4 09:08:41 2026 by rpki-client