$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65C047D644FD11EBB52B9F2FC4F9AE02.roa File: 65C047D644FD11EBB52B9F2FC4F9AE02.roa (raw, json) Hash identifier: TmWXYkv/e2ItI6H6D4/uaIyemDsduU7yXqBycutAvqc= Subject key identifier: 9D:E4:B4:DD:4C:D4:2B:33:EF:A9:DC:1B:4B:A6:D4:8B:81:A9:A4:6B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E6DB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65C047D644FD11EBB52B9F2FC4F9AE02.roa Signing time: Sun 31 May 2026 17:14:05 +0000 ROA not before: Sun 31 May 2026 17:14:05 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 141304 IP address blocks: 103.160.163.0/24 maxlen: 24 103.191.104.0/24 maxlen: 24 2001:df1:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59099 (0xe6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:14:05 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6c5d-df68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b9:a4:7b:70:2f:6c:82:bd:20:d1:b0:2a:8c: fd:21:fb:ef:2f:dc:72:13:0a:26:ed:fa:74:69:d9: 72:ac:41:e8:9f:cc:3e:2b:5f:93:60:a7:c2:06:b2: 53:4c:8c:7a:90:2b:06:77:7b:5f:1a:cd:6c:4b:ea: b6:3c:c4:20:a1:3e:c4:d9:be:8c:bf:c0:24:64:f9: cf:c2:3c:37:31:14:c6:82:ab:8c:87:80:d9:d4:1d: 91:9c:e5:3b:80:e1:25:d2:39:ce:c3:3c:2a:f6:fa: b9:62:13:4e:25:61:05:db:74:93:f6:82:fb:33:85: 86:c1:3e:39:a0:4f:85:27:46:c2:81:a9:97:ad:3c: b3:80:7a:29:ac:70:8a:40:e2:0a:76:06:78:0e:9e: 0b:c9:70:7a:87:64:e2:01:8b:a7:1b:c8:96:a5:99: 17:94:55:1b:be:85:dd:9c:10:98:03:af:36:8d:69: 70:e8:ac:5e:b5:03:5e:b4:c0:a1:85:a2:c1:16:01: 35:1e:2c:b0:5b:e6:c5:93:66:0c:48:ef:9a:3c:56: be:bd:b9:cd:86:e3:10:a1:89:b2:31:49:7f:d1:33: ff:e1:f4:08:f0:b9:7d:a6:76:64:a9:df:5a:ac:c6: 1d:e0:49:ea:95:b9:cf:61:42:c9:96:52:44:5c:84: e8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E4:B4:DD:4C:D4:2B:33:EF:A9:DC:1B:4B:A6:D4:8B:81:A9:A4:6B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/65C047D644FD11EBB52B9F2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.160.163.0/24 103.191.104.0/24 IPv6: 2001:df1:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption 4f:4c:7a:bf:55:25:bb:c1:42:3f:8c:14:e4:4d:ef:1f:6a:29: 5a:7e:f4:9c:e4:c8:42:87:16:9b:6f:48:8c:15:01:3d:2f:f5: 01:42:a6:86:04:2f:90:cf:95:9b:2c:8c:bc:ba:31:25:08:4f: 1e:3b:cf:4c:c8:0c:6b:3f:a4:3b:78:31:3d:03:97:3d:7d:35: 1d:20:66:4f:d1:e9:e5:1e:05:15:b8:42:35:46:d8:a3:7e:d7: 9e:16:cb:d7:f1:8e:f0:f8:20:10:4f:bd:eb:6b:01:07:a1:f1: c6:90:bf:08:12:bf:59:fc:7b:c8:68:89:b4:4a:9c:21:ca:e7: f4:17:19:2c:46:d5:61:aa:b5:62:31:a6:9b:c5:10:f7:41:87: a9:c6:ee:83:7b:f0:5d:ec:bc:42:df:26:a4:ca:a4:69:ba:4f: 1a:db:bb:86:1a:63:4c:15:a2:22:c3:ac:9c:6a:01:f2:35:68: cf:ac:9e:39:ee:67:bd:5e:b7:7b:34:8e:3d:45:75:4e:b8:98: 58:5e:58:d8:e6:fc:09:14:64:74:90:cc:9b:ba:79:1b:41:f0: f1:22:2a:80:59:a1:3e:4c:c4:f3:33:43:68:a7:29:ad:94:42: 68:7e:05:f4:db:32:5c:6f:ef:39:63:c5:64:54:ea:52:11:b6: 94:21:81:ab -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDAObbMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MTQwNVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZjNWQtZGY2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+5pHtwL2yCvSDRsCqM/SH77y/cchMKJu36dGnZcqxB6J/MPitfk2Cnwgay U0yMepArBnd7XxrNbEvqtjzEIKE+xNm+jL/AJGT5z8I8NzEUxoKrjIeA2dQdkZzl O4DhJdI5zsM8Kvb6uWITTiVhBdt0k/aC+zOFhsE+OaBPhSdGwoGpl608s4B6Kaxw ikDiCnYGeA6eC8lweodk4gGLpxvIlqWZF5RVG76F3ZwQmAOvNo1pcOisXrUDXrTA oYWiwRYBNR4ssFvmxZNmDEjvmjxWvr25zYbjEKGJsjFJf9Ez/+H0CPC5faZ2ZKnf WqzGHeBJ6pW5z2FCyZZSRFyE6J8CAwEAAaOCAncwggJzMB0GA1UdDgQWBBSd5LTd TNQrM++p3BtLptSLgamkazAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY1QzA0N0Q2 NDRGRDExRUJCNTJCOUYyRkM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGegowMEAGe/aDAPBAIAAjAJAwcAIAEN8aXAMA0GCSqGSIb3DQEB CwUAA4IBAQBPTHq/VSW7wUI/jBTkTe8failafvSc5MhChxabb0iMFQE9L/UBQqaG BC+Qz5WbLIy8ujElCE8eO89MyAxrP6Q7eDE9A5c9fTUdIGZP0enlHgUVuEI1Rtij fteeFsvX8Y7w+CAQT73rawEHofHGkL8IEr9Z/HvIaIm0Spwhyuf0FxksRtVhqrVi MaabxRD3QYepxu6De/Bd7LxC3yakyqRpuk8a27uGGmNMFaIiw6ycagHyNWjPrJ45 7me9Xrd7NI49RXVOuJhYXljY5vwJFGR0kMybunkbQfDxIiqAWaE+TMTzM0Nopymt lEJofgX02zJcb+85Y8VkVOpSEbaUIYGr -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:32 2026 by rpki-client