$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5C98AD88022D11EFB42EC511C4F9AE02.roa File: 5C98AD88022D11EFB42EC511C4F9AE02.roa (raw, json) Hash identifier: UPg/C8WN+MzCcNI2Qq4m6objoOFcHC9i2ttXgnGtakI= Subject key identifier: D6:C4:1B:09:E6:C7:91:7F:44:75:DA:78:31:16:34:65:80:D5:86:86 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E21E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5C98AD88022D11EFB42EC511C4F9AE02.roa Signing time: Sun 31 May 2026 16:34:35 +0000 ROA not before: Sun 31 May 2026 16:34:35 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 132974 IP address blocks: 43.230.36.0/22 maxlen: 24 103.72.6.0/23 maxlen: 24 103.77.186.0/23 maxlen: 24 103.243.54.0/24 maxlen: 24 103.243.55.0/24 maxlen: 24 2001:df4:b000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57886 (0xe21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:34:35 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c631b-194a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2f:fd:c6:9a:ba:a5:25:7a:03:23:84:98:98: 27:da:6d:30:66:48:74:33:13:b2:57:3e:2b:f4:90: 71:3a:2e:0b:ae:51:19:ea:b8:71:6a:e2:94:34:0a: 3f:0d:7f:47:76:02:54:09:9b:b1:0d:81:95:a3:ea: 99:6c:69:90:f8:65:42:16:ff:0f:33:56:c6:92:5d: 49:5c:47:0d:ea:b2:07:8f:ee:c8:2c:72:16:28:f4: a8:e6:b5:79:fa:55:1a:1b:6b:c1:4e:56:14:c2:fe: fe:a1:e1:c7:b3:f7:f7:5b:7d:cb:d3:72:4b:87:27: 72:a1:79:53:9f:cc:ba:ca:23:56:64:05:d6:08:83: e9:9d:a5:99:97:32:9c:dd:c2:4b:0f:73:eb:30:0d: 72:8d:5c:c3:e7:4d:f3:35:47:c8:29:a5:06:49:c8: b0:84:49:aa:08:83:f8:29:19:07:4e:65:ee:61:ec: f9:6f:2e:73:21:66:ce:47:b0:01:c9:77:84:9b:15: 68:a8:72:a9:6d:78:c6:01:c1:f4:10:f4:f9:14:52: 56:49:ce:21:c8:d5:52:6e:2f:fd:bc:39:e5:4a:2e: 86:32:55:02:92:d2:d7:86:54:c4:29:24:dd:17:34: 3c:d6:8a:fa:22:62:9e:fa:28:ef:c7:ad:ee:f3:0c: 9b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C4:1B:09:E6:C7:91:7F:44:75:DA:78:31:16:34:65:80:D5:86:86 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5C98AD88022D11EFB42EC511C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.36.0/22 103.72.6.0/23 103.77.186.0/23 103.243.54.0/23 IPv6: 2001:df4:b000::/48 Signature Algorithm: sha256WithRSAEncryption 87:94:1b:da:d4:93:9e:2c:cf:f1:53:e8:6c:11:ae:e8:2b:32: 31:e1:5b:fc:ca:7d:9c:54:4e:7b:18:76:12:d4:92:ff:f4:01: ae:b7:25:73:77:ca:b0:49:7d:11:9f:92:2c:dd:96:20:29:88: 17:37:b2:23:17:27:40:bc:53:c6:bb:fe:70:79:95:3e:31:f4: 16:1e:b2:ea:c1:9b:27:22:82:d9:0b:48:1e:aa:ec:78:33:f9: d2:f5:6c:03:85:3c:cb:f9:63:78:3e:f9:81:85:c8:9d:4b:c6: 05:c0:11:a7:41:7f:8c:9b:3d:69:9b:8a:08:8c:85:9d:c1:12: df:aa:82:67:7a:b5:5e:c2:b6:c4:77:9f:2b:64:2b:d2:54:f5: 82:64:38:b7:9d:e2:31:f8:e5:bb:3c:9e:bf:6f:a1:cf:a6:bb: ad:82:4b:78:63:9d:43:3e:0b:c4:a6:ea:be:10:d4:84:3f:94: fb:2b:a3:19:2c:cf:37:c5:49:f4:ea:f9:21:ca:8f:25:54:bd: a1:cf:4b:25:f8:3c:ec:10:e3:c2:d8:c3:58:ca:6c:7f:96:26: a7:9a:fe:ad:4a:41:fb:05:b8:ee:bb:7a:af:af:3c:30:96:20: fe:9a:c9:d0:32:98:7d:cb:98:dd:52:69:2e:3c:50:a6:f3:4c: 64:d1:5a:8f -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIDAOIeMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2MzQzNVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzYzMWItMTk0YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKIv/caauqUlegMjhJiYJ9ptMGZIdDMTslc+K/SQcTouC65RGeq4cWrilDQK Pw1/R3YCVAmbsQ2BlaPqmWxpkPhlQhb/DzNWxpJdSVxHDeqyB4/uyCxyFij0qOa1 efpVGhtrwU5WFML+/qHhx7P391t9y9NyS4cncqF5U5/MusojVmQF1giD6Z2lmZcy nN3CSw9z6zANco1cw+dN8zVHyCmlBknIsIRJqgiD+CkZB05l7mHs+W8ucyFmzkew Acl3hJsVaKhyqW14xgHB9BD0+RRSVknOIcjVUm4v/bw55UouhjJVApLS14ZUxCkk 3Rc0PNaK+iJinvoo78et7vMMm88CAwEAAaOCAoMwggJ/MB0GA1UdDgQWBBTWxBsJ 5seRf0R12ngxFjRlgNWGhjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVDOThBRDg4 MDIyRDExRUZCNDJFQzUxMUM0RjlBRTAyLnJvYTBCBggrBgEFBQcBBwEB/wQzMDEw HgQCAAEwGAMEAivmJAMEAWdIBgMEAWdNugMEAWfzNjAPBAIAAjAJAwcAIAEN9LAA MA0GCSqGSIb3DQEBCwUAA4IBAQCHlBva1JOeLM/xU+hsEa7oKzIx4Vv8yn2cVE57 GHYS1JL/9AGutyVzd8qwSX0Rn5Is3ZYgKYgXN7IjFydAvFPGu/5weZU+MfQWHrLq wZsnIoLZC0gequx4M/nS9WwDhTzL+WN4PvmBhcidS8YFwBGnQX+Mmz1pm4oIjIWd wRLfqoJnerVewrbEd58rZCvSVPWCZDi3neIx+OW7PJ6/b6HPprutgkt4Y51DPgvE puq+ENSEP5T7K6MZLM83xUn06vkhyo8lVL2hz0sl+DzsEOPC2MNYymx/lianmv6t SkH7Bbjuu3qvrzwwliD+msnQMph9y5jdUmkuPFCm80xk0VqP -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:43 2026 by rpki-client