$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/86DE899EB14311EF8D942621C4F9AE02.roa File: 86DE899EB14311EF8D942621C4F9AE02.roa (raw, json) Hash identifier: uuapmI/akr+2hKBOfm/PSlq7rXmLKusZxDpZxC32pp4= Subject key identifier: 2C:84:64:D6:84:65:8E:F0:C6:49:1A:EC:4D:CE:26:5D:11:A2:29:EF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EB93 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/86DE899EB14311EF8D942621C4F9AE02.roa Signing time: Sun 31 May 2026 17:53:09 +0000 ROA not before: Sun 31 May 2026 17:53:09 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 59164 IP address blocks: 43.239.200.0/22 maxlen: 24 103.232.128.0/22 maxlen: 24 2001:df7:4400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60307 (0xeb93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:53:09 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7585-00a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:bf:42:9d:5c:66:07:87:82:5b:75:9c:a4:0c: 2d:ae:15:fd:84:6f:7b:ad:0e:a5:05:f2:6a:ce:2c: 28:2e:fd:96:f2:95:e0:3b:e1:a8:e2:cb:f3:36:2d: a6:5e:8b:7f:75:26:fe:62:08:13:dd:d1:24:51:18: fd:b3:c6:ac:23:dc:a2:b8:8a:a4:97:60:95:e9:ec: db:b1:23:28:f3:23:27:7d:d9:96:ea:89:28:fc:1f: 38:5e:ed:88:64:15:b4:b3:ee:a6:d9:46:3b:0f:a8: dc:f3:f7:95:c9:ae:bd:60:4b:11:49:a8:dc:25:dd: 93:da:15:e7:61:30:ad:b0:b5:e3:d2:40:00:09:b4: fc:33:c6:31:25:b7:09:a6:0f:e8:a9:3a:e9:f5:e7: 53:90:cd:a5:c8:37:11:ea:90:7e:1a:e1:99:04:39: 77:c2:18:1e:e1:98:d8:a2:17:56:7f:5a:f9:c0:ee: 58:1d:94:33:a4:97:5a:a4:e2:f0:df:ca:7f:31:33: 9e:ac:1c:b7:79:e5:2f:1f:0f:7d:58:0a:2c:ae:ff: a4:00:6a:89:11:01:94:46:ba:03:74:71:e8:1e:60: e0:80:ae:bd:7c:11:b2:a3:28:1f:8d:e9:b1:22:56: 36:f0:6d:51:fd:b4:c5:99:29:44:8e:6c:b7:2f:e3: 59:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:84:64:D6:84:65:8E:F0:C6:49:1A:EC:4D:CE:26:5D:11:A2:29:EF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/86DE899EB14311EF8D942621C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.200.0/22 103.232.128.0/22 IPv6: 2001:df7:4400::/48 Signature Algorithm: sha256WithRSAEncryption a8:a4:24:eb:5c:72:ab:be:a6:4f:6f:58:60:ea:20:65:48:76: 86:3b:db:32:58:f3:ea:19:75:a8:88:4f:28:29:8d:98:07:8e: 84:d8:89:75:89:06:7f:d9:27:d2:ce:27:9e:fc:32:9c:24:fb: 0d:73:80:f7:2b:0b:b3:7b:ec:79:9a:b9:01:60:5d:e5:ae:2b: 83:1b:10:2d:de:6a:4f:73:50:e3:58:00:8c:06:5d:35:00:c1: 71:a0:21:c1:7e:ed:ee:aa:ad:38:84:de:63:a2:81:48:fd:6a: 58:3b:fc:aa:28:36:fb:6f:db:f8:05:14:9a:d1:34:3a:0e:ab: 9f:d6:10:42:ad:f5:55:43:c3:6a:15:4b:0d:75:02:8f:74:08: ba:a2:fa:f7:1e:fc:ec:68:a2:9b:98:0a:bf:95:7f:27:01:ab: 4c:7b:61:74:fb:89:9a:87:8c:35:8e:e3:0e:33:e1:df:76:19: f3:93:d1:0d:a8:9f:82:bd:e1:b9:6c:c9:99:38:b0:94:c6:27: ad:a2:56:a3:f0:ea:5f:ef:a9:1b:c2:ed:19:a2:14:86:5a:e7: 55:c4:bb:5c:ec:26:df:67:c8:40:63:7b:e5:5e:9b:8a:56:5a: 8a:0b:7b:3a:18:ea:86:19:a4:89:2a:57:30:87:c9:f6:a1:26: 05:46:fa:7b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDAOuTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTMwOVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc1ODUtMDBhNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOW/Qp1cZgeHglt1nKQMLa4V/YRve60OpQXyas4sKC79lvKV4DvhqOLL8zYt pl6Lf3Um/mIIE93RJFEY/bPGrCPcoriKpJdglens27EjKPMjJ33ZluqJKPwfOF7t iGQVtLPuptlGOw+o3PP3lcmuvWBLEUmo3CXdk9oV52EwrbC149JAAAm0/DPGMSW3 CaYP6Kk66fXnU5DNpcg3EeqQfhrhmQQ5d8IYHuGY2KIXVn9a+cDuWB2UM6SXWqTi 8N/KfzEznqwct3nlLx8PfVgKLK7/pABqiREBlEa6A3Rx6B5g4ICuvXwRsqMoH43p sSJWNvBtUf20xZkpRI5sty/jWX8CAwEAAaOCAncwggJzMB0GA1UdDgQWBBQshGTW hGWO8MZJGuxNziZdEaIp7zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg2REU4OTlF QjE0MzExRUY4RDk0MjYyMUM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAivvyAMEAmfogDAPBAIAAjAJAwcAIAEN90QAMA0GCSqGSIb3DQEB CwUAA4IBAQCopCTrXHKrvqZPb1hg6iBlSHaGO9syWPPqGXWoiE8oKY2YB46E2Il1 iQZ/2SfSziee/DKcJPsNc4D3Kwuze+x5mrkBYF3lriuDGxAt3mpPc1DjWACMBl01 AMFxoCHBfu3uqq04hN5jooFI/WpYO/yqKDb7b9v4BRSa0TQ6Dquf1hBCrfVVQ8Nq FUsNdQKPdAi6ovr3HvzsaKKbmAq/lX8nAatMe2F0+4mah4w1juMOM+Hfdhnzk9EN qJ+CveG5bMmZOLCUxietolaj8Opf76kbwu0ZohSGWudVxLtc7CbfZ8hAY3vlXpuK VlqKC3s6GOqGGaSJKlcwh8n2oSYFRvp7 -----END CERTIFICATE-----Generated at Thu Jun 4 09:09:22 2026 by rpki-client