$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87D07C20CD5D11EDBB5F326AC4F9AE02.roa File: 87D07C20CD5D11EDBB5F326AC4F9AE02.roa (raw, json) Hash identifier: nsqcKjZ/3m9Skvf4O4Si2KtW8/DXD7HYzF0gl9UgGpA= Subject key identifier: DF:2B:E1:E0:08:27:90:3C:12:2C:C9:F0:76:20:DE:84:92:72:5F:F3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E3FA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87D07C20CD5D11EDBB5F326AC4F9AE02.roa Signing time: Sun 31 May 2026 16:50:01 +0000 ROA not before: Sun 31 May 2026 16:50:01 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135724 IP address blocks: 45.117.28.0/24 maxlen: 24 45.117.29.0/24 maxlen: 24 45.117.30.0/24 maxlen: 24 45.117.31.0/24 maxlen: 24 103.57.80.0/24 maxlen: 24 103.57.81.0/24 maxlen: 24 103.57.82.0/24 maxlen: 24 103.57.83.0/24 maxlen: 24 103.69.20.0/22 maxlen: 24 116.66.188.0/22 maxlen: 24 2001:df3:3200::/48 maxlen: 48 2001:df4:5c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58362 (0xe3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:50:01 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c66b9-8c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:de:2e:9d:ea:e2:5b:52:65:bc:26:a6:09:89: fe:4c:7a:59:54:2b:0b:70:c7:b8:5a:e0:94:46:51: 1c:51:be:d3:47:5f:a8:87:f6:9c:99:ab:91:36:47: 19:4f:45:1b:3a:bf:f8:46:92:29:9f:4f:c1:27:f5: 39:b8:68:54:7a:aa:bf:cc:80:4e:c4:1e:b7:98:1a: 77:a0:b1:7c:46:31:16:10:a9:d1:f4:30:4e:03:67: 96:c0:67:bd:ec:bd:37:c0:ea:ed:36:50:51:87:19: 6f:07:54:af:96:b2:6a:db:c6:25:7d:d0:c5:9d:7b: 0b:46:a5:ed:90:d6:84:ca:d3:72:1c:52:35:7d:15: 3e:05:57:8a:b4:1c:d4:8e:6b:a9:9a:2a:ea:f3:34: 88:d1:8b:6b:bd:8d:58:1a:b4:51:a1:bb:d3:d1:94: d7:44:83:3f:79:31:a8:f1:7d:cc:1a:d7:da:89:97: 4f:1d:dc:17:3e:aa:11:83:03:67:3f:ee:de:87:f1: e0:b5:6d:0c:40:0c:00:59:7d:77:ef:b4:51:15:f1: 76:82:d6:b1:4b:73:bc:0f:ac:79:45:4c:a1:d3:58: fb:92:83:01:09:54:23:47:32:d1:0a:b6:c9:90:69: 9f:82:64:7b:ad:f7:85:e2:31:94:68:28:8d:08:bc: 87:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:2B:E1:E0:08:27:90:3C:12:2C:C9:F0:76:20:DE:84:92:72:5F:F3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/87D07C20CD5D11EDBB5F326AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.117.28.0/22 103.57.80.0/22 103.69.20.0/22 116.66.188.0/22 IPv6: 2001:df3:3200::/48 2001:df4:5c00::/48 Signature Algorithm: sha256WithRSAEncryption 8e:26:19:77:59:f2:8f:29:09:81:3c:1c:d4:32:33:b8:98:a1: 70:6e:89:5b:f0:cd:29:72:6a:b6:ff:98:0a:03:e2:69:96:68: 23:0b:d3:14:9d:5b:b0:35:9f:2f:77:67:6b:20:1d:cb:18:61: 8c:2b:db:4c:7b:83:7f:3b:30:b9:d5:e7:52:3f:c5:cc:e9:46: ba:a5:71:ff:b2:05:30:be:3c:67:31:8e:da:38:2b:fb:98:f0: 19:4e:c8:a6:d5:5b:13:90:0c:5c:a0:6c:83:8a:e8:10:30:ec: b1:84:b5:59:f8:2d:6f:c9:ff:f5:e1:ab:5e:6d:9e:9a:9b:01: 30:11:bd:60:76:c7:7a:78:f6:50:52:d0:62:be:ab:e1:04:41: 77:b6:4f:02:12:4d:26:3b:6e:f6:7f:49:75:a6:f0:cc:89:f3: a0:6e:c9:a7:26:73:e9:02:10:60:a9:8f:61:cd:c5:32:04:47: fc:83:00:91:d7:f4:10:dc:a8:05:0c:0e:29:24:7a:2b:fa:d8: f5:e5:1a:dd:92:a0:ea:84:9e:8e:e0:7b:10:3a:03:46:21:9f: 69:d8:8d:71:72:8d:5d:e5:fa:c9:94:f0:dd:3f:31:08:94:60: 7d:b0:6f:1e:b2:09:ac:e8:74:bc:a4:d5:22:15:3a:53:78:91: 38:df:26:44 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIDAOP6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NTAwMVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY2YjktOGM3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJfeLp3q4ltSZbwmpgmJ/kx6WVQrC3DHuFrglEZRHFG+00dfqIf2nJmrkTZH GU9FGzq/+EaSKZ9PwSf1ObhoVHqqv8yATsQet5gad6CxfEYxFhCp0fQwTgNnlsBn vey9N8Dq7TZQUYcZbwdUr5ayatvGJX3QxZ17C0al7ZDWhMrTchxSNX0VPgVXirQc 1I5rqZoq6vM0iNGLa72NWBq0UaG709GU10SDP3kxqPF9zBrX2omXTx3cFz6qEYMD Zz/u3ofx4LVtDEAMAFl9d++0URXxdoLWsUtzvA+seUVModNY+5KDAQlUI0cy0Qq2 yZBpn4Jke633heIxlGgojQi8h8cCAwEAAaOCAowwggKIMB0GA1UdDgQWBBTfK+Hg CCeQPBIsyfB2IN6EknJf8zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg3RDA3QzIw Q0Q1RDExRURCQjVGMzI2QUM0RjlBRTAyLnJvYTBLBggrBgEFBQcBBwEB/wQ8MDow HgQCAAEwGAMEAi11HAMEAmc5UAMEAmdFFAMEAnRCvDAYBAIAAjASAwcAIAEN8zIA AwcAIAEN9FwAMA0GCSqGSIb3DQEBCwUAA4IBAQCOJhl3WfKPKQmBPBzUMjO4mKFw bolb8M0pcmq2/5gKA+JplmgjC9MUnVuwNZ8vd2drIB3LGGGMK9tMe4N/OzC51edS P8XM6Ua6pXH/sgUwvjxnMY7aOCv7mPAZTsim1VsTkAxcoGyDiugQMOyxhLVZ+C1v yf/14atebZ6amwEwEb1gdsd6ePZQUtBivqvhBEF3tk8CEk0mO272f0l1pvDMifOg bsmnJnPpAhBgqY9hzcUyBEf8gwCR1/QQ3KgFDA4pJHor+tj15RrdkqDqhJ6O4HsQ OgNGIZ9p2I1xco1d5frJlPDdPzEIlGB9sG8esgms6HS8pNUiFTpTeJE43yZE -----END CERTIFICATE-----Generated at Thu Jun 4 09:05:50 2026 by rpki-client