$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52182E6E2A5111EF8CAAC111C4F9AE02.roa File: 52182E6E2A5111EF8CAAC111C4F9AE02.roa (raw, json) Hash identifier: 2rJNuhzCD4MLFX2usD7hP897Rk3eEzJeLZJZnKVJ83Y= Subject key identifier: F9:20:68:EB:BF:55:3F:68:E9:30:97:EA:0D:32:EB:1B:CE:45:EB:D7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E1D0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52182E6E2A5111EF8CAAC111C4F9AE02.roa Signing time: Sun 31 May 2026 16:32:03 +0000 ROA not before: Sun 31 May 2026 16:32:03 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 132335 IP address blocks: 103.87.172.0/24 maxlen: 24 103.152.79.0/24 maxlen: 24 103.156.20.0/23 maxlen: 24 103.165.118.0/24 maxlen: 24 103.165.119.0/24 maxlen: 24 103.172.92.0/24 maxlen: 24 103.173.68.0/24 maxlen: 24 103.180.163.0/24 maxlen: 24 103.182.163.0/24 maxlen: 24 103.187.238.0/24 maxlen: 24 2001:df0:c1c0::/48 maxlen: 48 2001:df7:6880::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 10:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57808 (0xe1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:32:03 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6283-fef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5a:43:cf:a8:52:bf:2c:80:dd:3c:ef:de:84: bd:e4:7e:02:5a:53:8f:35:ac:f8:ec:3e:8b:fb:7a: d4:2d:7c:e4:34:e2:e4:18:24:2c:c3:90:16:6b:a5: d0:a7:d7:38:ee:eb:4b:61:3d:6a:71:74:61:1b:d6: ac:d7:c9:f8:21:71:2a:02:c1:b0:68:2b:a4:aa:7b: 70:8a:de:9d:28:bb:6e:7b:20:68:db:ef:b7:9c:58: 76:1b:f5:28:53:a4:6f:f3:b4:19:98:c6:10:34:d9: 0f:45:d0:67:07:60:72:db:df:41:98:74:f9:93:ec: 8e:f5:87:c6:05:52:02:fb:da:ec:9d:89:c1:fc:f9: 47:bd:e7:f5:f9:7a:87:49:2d:57:6a:3f:18:fc:20: 18:07:1f:3b:25:2e:7d:f2:b8:b6:ca:75:97:48:b5: 2c:78:90:f5:fb:ab:9e:fc:af:5e:9e:1a:ff:65:bd: 53:36:d9:59:0e:a1:93:7e:ab:48:be:ad:65:6b:57: 0d:26:3a:ab:5b:c0:68:04:01:a9:29:6a:1b:1b:85: fd:f6:37:00:6d:96:43:16:ac:3c:ff:c1:56:ff:ee: 18:02:87:b7:b1:16:04:2f:04:ec:6a:31:90:b0:56: 41:fc:68:67:1e:a8:0b:28:90:f1:72:fb:6a:01:2c: d6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:20:68:EB:BF:55:3F:68:E9:30:97:EA:0D:32:EB:1B:CE:45:EB:D7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52182E6E2A5111EF8CAAC111C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.87.172.0/24 103.152.79.0/24 103.156.20.0/23 103.165.118.0/23 103.172.92.0/24 103.173.68.0/24 103.180.163.0/24 103.182.163.0/24 103.187.238.0/24 IPv6: 2001:df0:c1c0::/48 2001:df7:6880::/47 Signature Algorithm: sha256WithRSAEncryption b3:a2:34:75:5a:0f:bc:7b:a2:dd:b7:94:49:96:96:99:a0:35: 75:83:3a:35:29:8b:04:30:3c:50:69:a5:9e:1d:cd:3f:be:a6: 33:53:f5:5d:63:cc:22:19:19:2e:bf:f7:db:1f:c2:7c:58:43: ca:56:9b:bb:b4:c4:6a:f6:ec:b4:88:d8:45:7a:81:a6:6c:02: 75:7e:db:1e:c7:63:4e:6b:33:3f:12:61:f4:b0:51:b9:08:25: c2:25:b0:13:20:dd:1a:1a:b8:76:df:75:00:b5:f6:17:f4:91: b8:45:46:1e:90:e1:a4:d7:b7:45:c7:a1:e1:01:3e:39:15:22: f8:cd:1f:09:f0:8d:e0:a6:31:24:b6:f8:36:bb:be:a8:1a:82: dd:be:67:a9:28:6f:92:0e:99:78:71:e1:1c:00:0f:8a:30:29: 34:0a:d3:01:42:61:1e:6b:98:bf:06:4c:d0:9d:52:c3:86:c0: 68:bd:1c:de:f1:90:22:96:d0:3c:bf:02:9f:04:be:3e:30:28: e2:dc:88:26:a0:74:3a:30:ed:cb:df:1b:85:92:1d:c1:ab:e9: ad:a0:5b:7e:9e:d2:a1:96:f7:8f:ba:31:ed:5e:fa:3f:9f:7c: dc:b5:bb:e8:78:70:29:98:98:8d:21:9e:54:5e:06:56:e4:f5: a4:42:a0:85 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDAOHQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2MzIwM1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzYyODMtZmVmOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtaQ8+oUr8sgN08796EveR+AlpTjzWs+Ow+i/t61C185DTi5BgkLMOQFmul 0KfXOO7rS2E9anF0YRvWrNfJ+CFxKgLBsGgrpKp7cIrenSi7bnsgaNvvt5xYdhv1 KFOkb/O0GZjGEDTZD0XQZwdgctvfQZh0+ZPsjvWHxgVSAvva7J2Jwfz5R73n9fl6 h0ktV2o/GPwgGAcfOyUuffK4tsp1l0i1LHiQ9furnvyvXp4a/2W9UzbZWQ6hk36r SL6tZWtXDSY6q1vAaAQBqSlqGxuF/fY3AG2WQxasPP/BVv/uGAKHt7EWBC8E7Gox kLBWQfxoZx6oCyiQ8XL7agEs1pcCAwEAAaOCAqowggKmMB0GA1UdDgQWBBT5IGjr v1U/aOkwl+oNMusbzkXr1zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzUyMTgyRTZF MkE1MTExRUY4Q0FBQzExMUM0RjlBRTAyLnJvYTBpBggrBgEFBQcBBwEB/wRaMFgw PAQCAAEwNgMEAGdXrAMEAGeYTwMEAWecFAMEAWeldgMEAGesXAMEAGetRAMEAGe0 owMEAGe2owMEAGe77jAYBAIAAjASAwcAIAEN8MHAAwcBIAEN92iAMA0GCSqGSIb3 DQEBCwUAA4IBAQCzojR1Wg+8e6Ldt5RJlpaZoDV1gzo1KYsEMDxQaaWeHc0/vqYz U/VdY8wiGRkuv/fbH8J8WEPKVpu7tMRq9uy0iNhFeoGmbAJ1ftsex2NOazM/EmH0 sFG5CCXCJbATIN0aGrh233UAtfYX9JG4RUYekOGk17dFx6HhAT45FSL4zR8J8I3g pjEktvg2u76oGoLdvmepKG+SDpl4ceEcAA+KMCk0CtMBQmEea5i/BkzQnVLDhsBo vRze8ZAiltA8vwKfBL4+MCji3IgmoHQ6MO3L3xuFkh3Bq+mtoFt+ntKhlvePujHt Xvo/n3zctbvoeHApmJiNIZ5UXgZW5PWkQqCF -----END CERTIFICATE-----Generated at Thu Jun 11 14:40:17 2026 by rpki-client