$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90929608E8D411ED8D0FAD45C4F9AE02.roa File: 90929608E8D411ED8D0FAD45C4F9AE02.roa (raw, json) Hash identifier: klmW7Io3zQFB6+2t9r19KEK3chR++ntSAurTXqgg0SU= Subject key identifier: 3A:50:35:65:40:58:C3:FF:9F:F2:F3:34:63:50:48:8B:E8:B8:48:88 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E44F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90929608E8D411ED8D0FAD45C4F9AE02.roa Signing time: Sun 31 May 2026 16:52:49 +0000 ROA not before: Sun 31 May 2026 16:52:49 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135845 IP address blocks: 49.238.42.0/24 maxlen: 24 49.238.43.0/24 maxlen: 24 103.81.236.0/24 maxlen: 24 103.81.237.0/24 maxlen: 24 103.81.238.0/24 maxlen: 24 103.81.239.0/24 maxlen: 24 103.117.37.0/24 maxlen: 24 103.117.39.0/24 maxlen: 24 2406:a2c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58447 (0xe44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:52:49 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6761-39fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a4:cf:67:d7:d5:64:99:45:04:69:9d:f2:bd: 31:8a:2b:51:e6:67:24:65:e1:56:25:40:71:9a:f3: 58:46:13:e1:a2:e7:9e:4b:f1:38:ea:6f:45:c8:d4: 47:1d:45:20:ea:65:4f:32:a4:da:01:20:63:fc:4d: ac:8e:d8:44:17:41:41:c8:b5:5b:c4:d3:c8:02:b6: d9:85:bb:1c:08:ca:29:77:18:7d:e0:e1:1a:f0:92: c2:86:47:fd:30:e7:38:a4:be:b9:e7:8b:83:ca:04: f4:b0:93:e7:a0:21:d4:66:6a:7d:84:5b:03:4e:de: 95:c0:75:2f:6a:4a:d0:3d:d6:62:36:6a:5d:97:7f: 4d:70:c3:96:8e:d3:0e:b6:f8:04:23:43:1b:d8:9c: f7:a7:27:34:fa:0f:71:44:74:8d:fa:4e:85:ed:c4: 5e:79:76:26:84:b3:76:b2:2c:56:40:35:3b:b8:11: 05:29:05:00:77:73:ef:bb:bf:18:56:90:17:32:50: 7d:ef:00:94:e0:96:9b:e9:45:d4:1f:fc:75:ba:0b: 35:be:7d:a1:3a:8a:f0:e9:0a:c0:1f:6a:14:a3:b7: 7a:07:9f:27:36:ae:7f:67:2c:2e:cf:a5:3b:38:5a: a8:1c:32:78:78:42:f6:75:e5:ed:7e:60:01:f3:3e: 1f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:50:35:65:40:58:C3:FF:9F:F2:F3:34:63:50:48:8B:E8:B8:48:88 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90929608E8D411ED8D0FAD45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.238.42.0/23 103.81.236.0/22 103.117.37.0/24 103.117.39.0/24 IPv6: 2406:a2c0::/32 Signature Algorithm: sha256WithRSAEncryption 1c:37:2a:ed:fa:e4:d1:a9:d3:9e:ef:9f:28:22:fa:fd:a9:3c: 63:00:dd:4e:ea:0a:7b:b3:8a:2c:6e:81:72:5d:7d:ad:0b:1f: d3:7d:91:ba:7b:f9:00:48:6a:89:00:6c:97:0c:07:47:f0:e3: 4a:92:86:7a:f9:ea:5d:89:48:f8:58:86:5a:ff:5c:69:d7:32: 93:98:82:8d:a8:90:13:46:4a:af:59:45:09:eb:35:fa:00:7c: 4c:4e:15:60:b3:ec:b0:7f:28:26:02:44:15:77:d6:95:3d:9a: c3:6e:fd:9e:3c:26:18:a8:3c:c8:81:b8:00:95:94:f9:91:c7: 33:14:ad:63:94:16:a0:b2:1b:05:83:32:ca:95:d0:29:b2:39: 2a:c0:8b:51:39:00:1d:42:32:ce:49:60:db:d8:59:ab:53:4a: 17:21:fd:11:fb:c3:74:66:6a:a5:31:fd:04:6b:4f:d7:20:73: b4:e3:9e:39:0b:3d:a3:86:b7:93:6b:30:a6:7e:f4:91:c0:3e: 87:f4:43:1e:96:93:eb:71:33:22:99:cf:5a:bd:ce:91:af:dd: e9:67:d2:e5:32:9c:83:c6:9b:f3:15:7b:84:83:57:16:da:37: 63:bd:a2:d3:c5:44:0a:34:31:5d:b8:bc:52:fe:50:c4:79:c0: 64:e9:c3:50 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIDAORPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NTI0OVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY3NjEtMzlmYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALakz2fX1WSZRQRpnfK9MYorUeZnJGXhViVAcZrzWEYT4aLnnkvxOOpvRcjU Rx1FIOplTzKk2gEgY/xNrI7YRBdBQci1W8TTyAK22YW7HAjKKXcYfeDhGvCSwoZH /TDnOKS+ueeLg8oE9LCT56Ah1GZqfYRbA07elcB1L2pK0D3WYjZqXZd/TXDDlo7T Drb4BCNDG9ic96cnNPoPcUR0jfpOhe3EXnl2JoSzdrIsVkA1O7gRBSkFAHdz77u/ GFaQFzJQfe8AlOCWm+lF1B/8dboLNb59oTqK8OkKwB9qFKO3egefJzauf2csLs+l OzhaqBwyeHhC9nXl7X5gAfM+H2ECAwEAAaOCAoEwggJ9MB0GA1UdDgQWBBQ6UDVl QFjD/5/y8zRjUEiL6LhIiDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzkwOTI5NjA4 RThENDExRUQ4RDBGQUQ0NUM0RjlBRTAyLnJvYTBABggrBgEFBQcBBwEB/wQxMC8w HgQCAAEwGAMEATHuKgMEAmdR7AMEAGd1JQMEAGd1JzANBAIAAjAHAwUAJAaiwDAN BgkqhkiG9w0BAQsFAAOCAQEAHDcq7frk0anTnu+fKCL6/ak8YwDdTuoKe7OKLG6B cl19rQsf032Runv5AEhqiQBslwwHR/DjSpKGevnqXYlI+FiGWv9cadcyk5iCjaiQ E0ZKr1lFCes1+gB8TE4VYLPssH8oJgJEFXfWlT2aw279njwmGKg8yIG4AJWU+ZHH MxStY5QWoLIbBYMyypXQKbI5KsCLUTkAHUIyzklg29hZq1NKFyH9EfvDdGZqpTH9 BGtP1yBztOOeOQs9o4a3k2swpn70kcA+h/RDHpaT63EzIpnPWr3Oka/d6WfS5TKc g8ab8xV7hINXFto3Y72i08VECjQxXbi8Uv5QxHnAZOnDUA== -----END CERTIFICATE-----Generated at Thu Jun 4 09:06:58 2026 by rpki-client