$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa File: 4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa (raw, json) Hash identifier: xun7KcUcvyN2WWEe3kgYjgVrRgmMvyAs6UjsOeChwE0= Subject key identifier: CC:F9:DB:23:36:71:B1:20:23:2B:70:1F:41:29:E6:72:E6:D8:FF:AB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E906 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa Signing time: Sun 31 May 2026 17:32:33 +0000 ROA not before: Sun 31 May 2026 17:32:33 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 150016 IP address blocks: 43.224.156.0/22 maxlen: 24 103.6.156.0/22 maxlen: 24 103.38.240.0/22 maxlen: 24 103.94.100.0/23 maxlen: 24 103.157.118.0/23 maxlen: 24 2001:df4:fbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59654 (0xe906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:32:33 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c70b1-b5c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:49:1f:d9:d6:80:17:be:d4:7f:e4:91:9f:0e: de:4b:80:85:19:0d:65:f2:78:ee:82:2c:79:55:3c: ab:c0:22:b9:a9:c7:b6:9e:98:3a:18:08:df:87:f1: d9:ad:61:fc:6a:db:bc:cc:95:c8:a7:36:6a:96:3d: 58:3c:d7:d6:63:ba:0b:91:ea:df:11:06:a9:bf:4e: 46:4b:0b:0f:89:3e:e0:67:41:02:9f:31:f0:4f:b3: 83:cc:32:55:bd:4e:c1:59:59:7a:97:25:28:2f:4b: 9c:8e:b5:e6:60:36:cc:07:61:19:d3:9a:2b:37:2e: 88:3f:49:55:2d:eb:28:10:30:f9:3c:f4:09:24:ba: 77:a0:b8:f0:fd:a0:da:32:90:e5:d8:c3:9b:c3:5f: a3:58:3c:e4:da:50:77:96:f2:b1:5d:c8:90:15:d1: 93:a2:9e:de:6e:fc:65:43:70:14:5b:7b:58:76:f9: 92:be:02:2b:1f:41:cf:79:51:bb:35:5a:16:86:1e: 15:72:3d:df:dc:fb:32:ea:4c:a7:e5:fd:ce:3c:f6: 5c:84:c0:07:6d:ae:68:08:79:25:da:ac:54:d0:bc: bd:52:f6:0f:19:8c:94:58:85:82:a8:8f:c8:08:6e: 34:54:d7:73:71:5f:25:41:1f:cb:d2:9f:e3:58:73: 1b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F9:DB:23:36:71:B1:20:23:2B:70:1F:41:29:E6:72:E6:D8:FF:AB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C4DD23C2DCC11EDABD7CD51C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.156.0/22 103.6.156.0/22 103.38.240.0/22 103.94.100.0/23 103.157.118.0/23 IPv6: 2001:df4:fbc0::/48 Signature Algorithm: sha256WithRSAEncryption bb:63:e1:b9:ea:ba:6c:b8:d8:72:c2:16:20:2f:4b:62:04:58: 26:85:d5:c1:d4:d2:90:ef:3d:d9:9e:34:dd:45:44:e3:f1:f0: 11:a2:b7:19:bb:b4:ff:fb:49:8c:fa:f5:12:5f:85:3f:a8:21: f6:f1:bd:05:72:89:d6:30:e4:fd:75:37:97:c5:17:dc:0c:3a: e3:bf:1b:d9:51:e2:d3:19:e1:b2:f7:b3:33:a4:5b:69:78:06: 3c:e5:34:33:a9:ee:68:25:c2:28:27:83:7f:d1:00:ed:9c:0c: 7c:cd:8f:87:89:2c:d9:f3:c0:23:31:1d:08:18:20:cf:21:ee: d7:72:15:78:da:f6:89:dc:09:25:fc:92:4c:0e:a7:72:c3:50: f9:01:50:04:06:12:cf:80:9c:4e:fc:d5:47:2d:16:1a:5a:7a: 9c:e6:3a:46:de:6a:54:7d:0b:1d:a1:40:e5:be:50:85:77:79: 47:b1:b8:8f:2d:dd:fb:fc:76:b6:bd:8c:ac:03:e1:ef:d3:f2: f2:7e:da:93:b2:0b:ff:7a:bd:0d:0d:0d:3f:61:4a:de:08:b1: f3:2f:45:3f:63:23:25:91:00:1e:07:e4:66:93:c7:1d:50:3b: 89:db:ca:22:18:06:f7:c9:ec:4b:c1:28:be:be:ec:0f:c9:27: a8:cc:3f:e2 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIDAOkGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MzIzM1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzcwYjEtYjVjNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJJH9nWgBe+1H/kkZ8O3kuAhRkNZfJ47oIseVU8q8AiuanHtp6YOhgI34fx 2a1h/GrbvMyVyKc2apY9WDzX1mO6C5Hq3xEGqb9ORksLD4k+4GdBAp8x8E+zg8wy Vb1OwVlZepclKC9LnI615mA2zAdhGdOaKzcuiD9JVS3rKBAw+Tz0CSS6d6C48P2g 2jKQ5djDm8Nfo1g85NpQd5bysV3IkBXRk6Ke3m78ZUNwFFt7WHb5kr4CKx9Bz3lR uzVaFoYeFXI939z7MupMp+X9zjz2XITAB22uaAh5JdqsVNC8vVL2DxmMlFiFgqiP yAhuNFTXc3FfJUEfy9Kf41hzG2cCAwEAAaOCAokwggKFMB0GA1UdDgQWBBTM+dsj NnGxICMrcB9BKeZy5tj/qzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRDNEREMjND MkRDQzExRURBQkQ3Q0Q1MUM0RjlBRTAyLnJvYTBIBggrBgEFBQcBBwEB/wQ5MDcw JAQCAAEwHgMEAivgnAMEAmcGnAMEAmcm8AMEAWdeZAMEAWeddjAPBAIAAjAJAwcA IAEN9PvAMA0GCSqGSIb3DQEBCwUAA4IBAQC7Y+G56rpsuNhywhYgL0tiBFgmhdXB 1NKQ7z3ZnjTdRUTj8fARorcZu7T/+0mM+vUSX4U/qCH28b0FconWMOT9dTeXxRfc DDrjvxvZUeLTGeGy97MzpFtpeAY85TQzqe5oJcIoJ4N/0QDtnAx8zY+HiSzZ88Aj MR0IGCDPIe7XchV42vaJ3Akl/JJMDqdyw1D5AVAEBhLPgJxO/NVHLRYaWnqc5jpG 3mpUfQsdoUDlvlCFd3lHsbiPLd37/Ha2vYysA+Hv0/LyftqTsgv/er0NDQ0/YUre CLHzL0U/YyMlkQAeB+Rmk8cdUDuJ28oiGAb3yexLwSi+vuwPySeozD/i -----END CERTIFICATE-----Generated at Thu Jun 4 10:05:08 2026 by rpki-client