$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78D3B3A64C3411F099D21D7FC4F9AE02.roa File: 78D3B3A64C3411F099D21D7FC4F9AE02.roa (raw, json) Hash identifier: A5k9BLfO4b7L6ICkceXxX5AEBJu4oueMcz0QkDMM628= Subject key identifier: 08:B1:58:40:AF:A2:F4:24:5D:33:A9:AB:FF:B7:F9:DE:82:CB:D2:E1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EB67 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78D3B3A64C3411F099D21D7FC4F9AE02.roa Signing time: Sun 31 May 2026 17:51:53 +0000 ROA not before: Sun 31 May 2026 17:51:53 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 55507 IP address blocks: 45.114.144.0/22 maxlen: 24 45.119.88.0/22 maxlen: 24 103.23.118.0/23 maxlen: 24 103.87.168.0/22 maxlen: 24 103.226.20.0/23 maxlen: 24 103.229.78.0/23 maxlen: 24 103.243.88.0/23 maxlen: 24 180.200.240.0/22 maxlen: 24 182.237.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60263 (0xeb67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:51:53 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7538-6b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0c:d4:2e:9c:63:9a:f5:86:ab:62:c0:1f:27: b4:32:78:3b:6f:47:98:d0:9b:d0:d6:2d:7a:d3:d4: 3b:bf:94:e2:b3:1f:58:af:62:dc:e1:aa:6b:bf:0e: 2c:bd:2e:d2:99:6d:3e:83:75:43:a9:14:da:31:e3: f2:f8:6d:70:b3:9d:c9:09:fa:90:d9:30:48:80:8c: 57:98:fa:54:a4:83:eb:75:1f:17:47:a6:11:69:47: 1f:1c:c4:1a:fc:01:3b:45:38:49:07:3d:7d:22:bd: 09:81:5a:92:f0:b9:51:30:2f:1b:72:8e:58:d5:06: 6b:33:62:b2:cb:51:33:1c:40:66:b3:93:51:ec:eb: 9a:63:f0:d7:ea:13:1f:5b:ee:43:b2:d6:0e:f5:dd: 00:ff:b5:13:39:9c:91:87:3c:23:1f:5c:63:f5:51: 37:48:86:cc:46:ab:9c:51:64:62:eb:04:d7:a0:1f: dd:c7:ef:f9:a9:c2:a2:bd:dd:83:92:2f:36:8e:ce: 51:dd:3b:08:a6:31:9c:2d:9f:9d:7d:89:c6:f2:5d: d7:21:02:98:99:e2:75:6a:2a:5e:f9:2a:9c:a6:fe: 4d:54:6c:28:fe:12:21:5a:af:25:2c:8f:bd:ee:b4: 29:e7:92:95:99:5d:13:70:b3:4b:f8:ca:8c:bd:e9: 39:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B1:58:40:AF:A2:F4:24:5D:33:A9:AB:FF:B7:F9:DE:82:CB:D2:E1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78D3B3A64C3411F099D21D7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.144.0/22 45.119.88.0/22 103.23.118.0/23 103.87.168.0/22 103.226.20.0/23 103.229.78.0/23 103.243.88.0/23 180.200.240.0/22 182.237.16.0/22 Signature Algorithm: sha256WithRSAEncryption 46:44:55:06:2e:5d:44:58:2f:ac:e6:4c:96:a0:1e:da:81:62: b4:a5:6c:45:bc:58:1c:fb:db:83:22:91:b8:5b:17:d9:61:3f: f6:cd:94:d3:8a:30:74:b1:60:b7:c1:eb:13:37:92:22:03:4e: 67:f8:1e:78:83:aa:d8:a0:39:f4:c6:8e:a2:a1:ca:66:cb:84: 3c:a0:9b:8c:b8:28:83:c3:44:ee:ef:ec:27:bb:76:e8:3c:39: ab:0e:aa:64:61:5b:cf:bb:4c:0d:bf:23:c7:45:76:9a:52:f8: a3:64:f1:36:d2:ab:6a:c4:fb:96:c3:30:42:4d:f8:b3:12:59: 7e:82:e9:96:a7:e3:1d:e2:d4:ff:b2:24:31:5b:5a:8b:74:8a: 27:57:31:a1:40:7d:95:9a:1e:70:57:f5:0f:3d:c0:c5:cc:3c: 0d:b5:9d:f1:0d:97:6f:67:55:26:65:16:ab:d6:4d:86:2e:67: 03:6d:04:d1:54:f2:e2:07:fa:05:b3:29:63:ad:e3:00:2c:b8: f2:df:bc:46:f4:69:db:44:3a:f6:d7:a7:e4:76:11:95:d3:a7: d0:b1:65:63:a3:71:fd:76:1a:cb:3b:9f:2e:05:c4:3d:de:71: 95:a2:20:8b:85:a8:18:53:5d:d8:cb:6a:ca:13:ba:a8:98:28: 9e:f9:74:f7 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIDAOtnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTE1M1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc1MzgtNmIwZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIM1C6cY5r1hqtiwB8ntDJ4O29HmNCb0NYtetPUO7+U4rMfWK9i3OGqa78O LL0u0pltPoN1Q6kU2jHj8vhtcLOdyQn6kNkwSICMV5j6VKSD63UfF0emEWlHHxzE GvwBO0U4SQc9fSK9CYFakvC5UTAvG3KOWNUGazNisstRMxxAZrOTUezrmmPw1+oT H1vuQ7LWDvXdAP+1EzmckYc8Ix9cY/VRN0iGzEarnFFkYusE16Af3cfv+anCor3d g5IvNo7OUd07CKYxnC2fnX2JxvJd1yECmJnidWoqXvkqnKb+TVRsKP4SIVqvJSyP ve60KeeSlZldE3CzS/jKjL3pOdsCAwEAAaOCApAwggKMMB0GA1UdDgQWBBQIsVhA r6L0JF0zqav/t/negsvS4TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc4RDNCM0E2 NEMzNDExRjA5OUQyMUQ3RkM0RjlBRTAyLnJvYTBPBggrBgEFBQcBBwEB/wRAMD4w PAQCAAEwNgMEAi1ykAMEAi13WAMEAWcXdgMEAmdXqAMEAWfiFAMEAWflTgMEAWfz WAMEArTI8AMEArbtEDANBgkqhkiG9w0BAQsFAAOCAQEARkRVBi5dRFgvrOZMlqAe 2oFitKVsRbxYHPvbgyKRuFsX2WE/9s2U04owdLFgt8HrEzeSIgNOZ/geeIOq2KA5 9MaOoqHKZsuEPKCbjLgog8NE7u/sJ7t26Dw5qw6qZGFbz7tMDb8jx0V2mlL4o2Tx NtKrasT7lsMwQk34sxJZfoLplqfjHeLU/7IkMVtai3SKJ1cxoUB9lZoecFf1Dz3A xcw8DbWd8Q2Xb2dVJmUWq9ZNhi5nA20E0VTy4gf6BbMpY63jACy48t+8RvRp20Q6 9ten5HYRldOn0LFlY6Nx/XYayzufLgXEPd5xlaIgi4WoGFNd2MtqyhO6qJgonvl0 9w== -----END CERTIFICATE-----Generated at Thu Jun 4 09:05:54 2026 by rpki-client