$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AE02C8880B011EB9581642AC4F9AE02.roa File: 6AE02C8880B011EB9581642AC4F9AE02.roa (raw, json) Hash identifier: HKcyDesrpwmLnUC0ix65JMOKgMPay6YoqabVEfymzL4= Subject key identifier: AD:1C:F8:36:7A:9B:86:C3:BF:6A:ED:F5:0E:CD:DA:50:E3:AE:56:63 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E3B2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AE02C8880B011EB9581642AC4F9AE02.roa Signing time: Sun 31 May 2026 16:47:40 +0000 ROA not before: Sun 31 May 2026 16:47:40 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135220 IP address blocks: 103.104.221.0/24 maxlen: 24 103.108.10.0/23 maxlen: 24 103.108.48.0/24 maxlen: 24 103.214.132.0/22 maxlen: 24 2404:c880::/32 maxlen: 36 2406:10c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58290 (0xe3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:47:40 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c662c-0bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:53:dc:41:64:f0:8d:6e:a1:66:95:d6:3b:7f: 77:00:ce:51:a8:66:5e:e3:d9:dd:63:76:4b:84:77: dc:9e:42:91:83:00:ef:3d:16:55:f2:5f:76:7e:89: 5b:70:45:cc:e1:bd:7c:44:52:ff:53:45:87:bf:dc: a9:a0:70:84:a6:5b:0b:ea:69:6c:8c:52:90:eb:40: f7:c4:1c:1c:a5:ca:aa:f9:69:a6:82:67:65:20:0d: 7a:8e:ad:93:f0:63:ed:36:7e:ae:28:78:ba:6c:0c: 6b:3d:47:ab:eb:e3:82:ac:8b:b0:82:d8:4b:c8:21: de:88:9d:4c:8e:9b:7d:31:a1:a4:47:3f:47:07:4b: 4a:6a:99:c6:bf:e6:25:ec:ad:83:88:1f:b0:26:c6: c5:2e:d3:0d:80:3e:a3:ed:8b:2a:d1:11:22:81:36: 6b:1f:0c:e2:55:3c:56:97:9c:74:5c:74:bb:ff:72: 58:19:1b:95:e4:c7:bd:0c:37:dd:78:b8:44:d7:51: 68:b2:83:ad:05:7d:a1:84:a2:c3:98:44:23:7f:0c: 66:9f:a5:8a:fa:6d:80:ed:3a:22:28:a2:83:7f:c2: 3d:fa:b1:ea:9b:79:fc:33:f1:bc:9a:6e:ad:e7:ff: 70:04:6e:a8:d2:1e:7f:39:77:5a:75:72:f9:7d:12: 6b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:1C:F8:36:7A:9B:86:C3:BF:6A:ED:F5:0E:CD:DA:50:E3:AE:56:63 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6AE02C8880B011EB9581642AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.104.221.0/24 103.108.10.0/23 103.108.48.0/24 103.214.132.0/22 IPv6: 2404:c880::/32 2406:10c0::/32 Signature Algorithm: sha256WithRSAEncryption ba:37:2d:f5:46:fd:6d:04:11:63:3b:1e:a6:27:59:31:1b:fd: b3:8d:b8:7b:3a:98:d9:8f:c7:e9:20:d1:ff:06:4e:d7:40:2b: e3:46:32:07:7e:d8:3e:fd:86:00:68:c2:c9:41:c6:c2:be:76: ca:9c:93:15:ce:fa:ef:86:78:75:44:62:79:ae:c1:c5:d1:4f: 85:21:f9:ae:54:29:d3:08:07:a7:89:13:68:20:64:bc:ec:2a: ad:a5:bd:b8:e6:7c:1d:7b:33:59:e0:71:d8:c4:d2:5d:0a:14: 29:6d:d5:c5:3a:f6:f7:ec:ea:2e:14:01:46:9a:a1:f4:06:c4: c2:ab:82:fd:b4:4e:d6:71:b2:85:a4:e8:c0:62:cf:c7:f3:82: a5:8d:e5:ed:8a:44:03:12:c2:7a:cc:95:7c:a9:40:e9:de:75: 4e:e0:1c:44:b3:bd:f3:a4:ae:60:66:b3:8d:51:b2:b0:9e:17: 5c:de:af:e0:21:65:d6:09:82:74:0e:71:ae:d1:79:de:31:db: 20:13:9c:70:52:ac:06:5b:64:c2:b8:6d:08:34:0c:cb:62:34: a4:5c:6c:67:1f:6f:64:4b:52:f2:dd:cd:a8:37:0a:34:c8:9c: da:ce:1c:21:85:ec:75:72:fe:7e:aa:cb:04:30:3a:95:c7:94: 5c:57:d6:45 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIDAOOyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDc0MFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY2MmMtMGJjYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtT3EFk8I1uoWaV1jt/dwDOUahmXuPZ3WN2S4R33J5CkYMA7z0WVfJfdn6J W3BFzOG9fERS/1NFh7/cqaBwhKZbC+ppbIxSkOtA98QcHKXKqvlppoJnZSANeo6t k/Bj7TZ+rih4umwMaz1Hq+vjgqyLsILYS8gh3oidTI6bfTGhpEc/RwdLSmqZxr/m Jeytg4gfsCbGxS7TDYA+o+2LKtERIoE2ax8M4lU8VpecdFx0u/9yWBkbleTHvQw3 3Xi4RNdRaLKDrQV9oYSiw5hEI38MZp+livptgO06Iiiig3/CPfqx6pt5/DPxvJpu ref/cARuqNIefzl3WnVy+X0Sa8kCAwEAAaOCAogwggKEMB0GA1UdDgQWBBStHPg2 epuGw79q7fUOzdpQ465WYzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzZBRTAyQzg4 ODBCMDExRUI5NTgxNjQyQUM0RjlBRTAyLnJvYTBHBggrBgEFBQcBBwEB/wQ4MDYw HgQCAAEwGAMEAGdo3QMEAWdsCgMEAGdsMAMEAmfWhDAUBAIAAjAOAwUAJATIgAMF ACQGEMAwDQYJKoZIhvcNAQELBQADggEBALo3LfVG/W0EEWM7HqYnWTEb/bONuHs6 mNmPx+kg0f8GTtdAK+NGMgd+2D79hgBowslBxsK+dsqckxXO+u+GeHVEYnmuwcXR T4Uh+a5UKdMIB6eJE2ggZLzsKq2lvbjmfB17M1ngcdjE0l0KFClt1cU69vfs6i4U AUaaofQGxMKrgv20TtZxsoWk6MBiz8fzgqWN5e2KRAMSwnrMlXypQOnedU7gHESz vfOkrmBms41RsrCeF1zer+AhZdYJgnQOca7Red4x2yATnHBSrAZbZMK4bQg0DMti NKRcbGcfb2RLUvLdzag3CjTInNrOHCGF7HVy/n6qywQwOpXHlFxX1kU= -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:50 2026 by rpki-client