$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F08AFD8B91311EEA79C1D5AC4F9AE02.roa File: 8F08AFD8B91311EEA79C1D5AC4F9AE02.roa (raw, json) Hash identifier: UNde9hUn/53bk2V4VJF5tl4F7G6Lb5kYFuyZdOxVyH8= Subject key identifier: 75:A5:5E:F4:FD:2B:40:22:63:BD:DB:EA:64:9C:B6:50:D1:DC:4F:90 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E7E6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F08AFD8B91311EEA79C1D5AC4F9AE02.roa Signing time: Sun 31 May 2026 17:22:37 +0000 ROA not before: Sun 31 May 2026 17:22:37 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 146872 IP address blocks: 103.77.80.0/23 maxlen: 24 103.155.67.0/24 maxlen: 24 103.173.46.0/23 maxlen: 24 103.210.144.0/22 maxlen: 24 139.5.48.0/22 maxlen: 24 2001:df1:1440::/48 maxlen: 48 2407:e1c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59366 (0xe7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:22:37 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6e5d-9173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e7:30:70:bc:6f:3d:3e:6a:60:63:82:81:04: 0d:05:f6:41:6d:41:f5:80:56:89:a4:3e:17:8b:4e: 7c:d0:79:4a:65:d8:b4:92:63:a2:89:60:cd:d3:95: b0:2e:1a:58:6d:0b:82:5a:c5:41:94:b0:4b:00:c5: 3e:c0:68:ce:23:68:c6:f3:e2:79:33:7b:11:5e:64: 2a:57:db:be:e9:94:84:e3:49:22:7d:06:8f:3e:ff: 39:e5:5c:15:ed:87:62:71:1c:78:c6:3d:43:50:81: 8a:bd:cd:93:b0:32:f7:b3:4e:c4:b1:55:c4:6d:1d: 12:ed:91:77:e4:f2:1f:b2:fc:d0:8d:cf:8c:04:39: b3:04:f9:91:7b:9e:73:1f:3e:df:bb:d8:af:2a:b0: d4:ed:3f:b2:aa:a2:15:00:85:32:bd:25:d2:90:5b: 4d:f1:7b:8b:f3:d5:6f:6b:ab:a4:10:6e:56:d2:8c: 12:d7:60:04:24:89:ca:b3:b8:2c:17:05:62:bc:c2: a3:a4:0c:af:85:4e:6a:65:bf:d5:1f:99:a2:4a:07: e4:26:8d:d9:2d:fd:66:1e:73:67:fa:4b:9d:c5:c8: 9f:12:c7:84:69:19:89:e1:40:c0:45:78:ea:ec:6a: a8:a4:e8:38:f2:01:27:c4:68:3f:3b:80:bf:20:73: 16:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A5:5E:F4:FD:2B:40:22:63:BD:DB:EA:64:9C:B6:50:D1:DC:4F:90 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8F08AFD8B91311EEA79C1D5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.77.80.0/23 103.155.67.0/24 103.173.46.0/23 103.210.144.0/22 139.5.48.0/22 IPv6: 2001:df1:1440::/48 2407:e1c0::/32 Signature Algorithm: sha256WithRSAEncryption 40:f8:50:7c:9c:1f:99:2c:42:f5:db:3a:f7:d0:51:85:5f:e3: ee:58:90:63:71:dc:b4:73:50:66:e7:2a:a1:c5:af:ab:47:97: ba:fa:d7:7e:5f:08:e5:fb:e9:cf:d7:6e:85:48:65:68:0f:98: a0:81:8f:53:5d:cd:ed:19:7e:7a:16:ab:9d:27:dd:5b:c1:10: 2c:bc:e6:f5:c0:c2:11:17:c6:ef:3a:b7:72:94:09:ac:dc:30: 69:8e:ba:15:a8:da:0e:d0:c4:c2:de:7f:54:26:92:75:3d:f2: 01:d4:ac:2a:ff:ed:7c:1c:c9:0a:b3:97:41:38:9a:33:21:6a: 3d:e6:88:a9:e9:15:c7:d4:23:bd:2b:9d:aa:57:79:61:16:07: 00:b1:59:95:8d:83:fe:5d:88:41:14:40:83:17:fb:23:45:54: 68:29:a8:4b:e5:dd:ec:4b:c5:1a:03:df:42:41:9f:d7:c6:89: 39:41:8f:bd:1e:bf:e1:71:3a:81:96:8f:96:b0:9e:c3:90:fc: 81:53:46:30:c5:c0:cf:40:8a:7e:ef:52:b7:8a:9b:cd:d6:c6: cc:4c:14:83:24:3c:25:4c:a5:aa:c2:48:c1:8f:4f:0e:ef:ab: 9a:b6:71:3b:30:7c:38:73:90:56:34:ee:1d:56:60:28:59:43: f9:9d:5e:86 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIDAOfmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MjIzN1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZlNWQtOTE3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJznMHC8bz0+amBjgoEEDQX2QW1B9YBWiaQ+F4tOfNB5SmXYtJJjoolgzdOV sC4aWG0LglrFQZSwSwDFPsBoziNoxvPieTN7EV5kKlfbvumUhONJIn0Gjz7/OeVc Fe2HYnEceMY9Q1CBir3Nk7Ay97NOxLFVxG0dEu2Rd+TyH7L80I3PjAQ5swT5kXue cx8+37vYryqw1O0/sqqiFQCFMr0l0pBbTfF7i/PVb2urpBBuVtKMEtdgBCSJyrO4 LBcFYrzCo6QMr4VOamW/1R+ZokoH5CaN2S39Zh5zZ/pLncXInxLHhGkZieFAwEV4 6uxqqKToOPIBJ8RoPzuAvyBzFjUCAwEAAaOCApAwggKMMB0GA1UdDgQWBBR1pV70 /StAImO92+pknLZQ0dxPkDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhGMDhBRkQ4 QjkxMzExRUVBNzlDMUQ1QUM0RjlBRTAyLnJvYTBPBggrBgEFBQcBBwEB/wRAMD4w JAQCAAEwHgMEAWdNUAMEAGebQwMEAWetLgMEAmfSkAMEAosFMDAWBAIAAjAQAwcA IAEN8RRAAwUAJAfhwDANBgkqhkiG9w0BAQsFAAOCAQEAQPhQfJwfmSxC9ds699BR hV/j7liQY3HctHNQZucqocWvq0eXuvrXfl8I5fvpz9duhUhlaA+YoIGPU13N7Rl+ eharnSfdW8EQLLzm9cDCERfG7zq3cpQJrNwwaY66FajaDtDEwt5/VCaSdT3yAdSs Kv/tfBzJCrOXQTiaMyFqPeaIqekVx9QjvSudqld5YRYHALFZlY2D/l2IQRRAgxf7 I0VUaCmoS+Xd7EvFGgPfQkGf18aJOUGPvR6/4XE6gZaPlrCew5D8gVNGMMXAz0CK fu9St4qbzdbGzEwUgyQ8JUylqsJIwY9PDu+rmrZxOzB8OHOQVjTuHVZgKFlD+Z1e hg== -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:53 2026 by rpki-client