$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa File: 9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa (raw, json) Hash identifier: tfX7j6n/WhZPFEIzGELGaMlI6zRPcVX6lhTvbx1JXMQ= Subject key identifier: E4:CE:20:5D:BF:32:AE:21:7D:3B:9D:31:7E:3D:C5:0C:C4:C4:93:84 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E4CE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa Signing time: Sun 31 May 2026 16:56:48 +0000 ROA not before: Sun 31 May 2026 16:56:48 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 136667 IP address blocks: 103.99.192.0/22 maxlen: 24 2001:df0:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58574 (0xe4ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:56:48 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6850-8768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:86:1b:b7:79:3e:61:ee:76:2c:e1:e4:2c:78: 76:d2:60:f2:31:39:6d:d7:0c:08:cf:86:b3:cf:9e: 2e:f1:d2:34:a4:10:60:bf:53:bd:06:ea:bf:8b:4b: 45:28:cd:2f:17:c4:c4:e9:02:26:db:41:ed:e2:9a: 1f:c2:ae:15:83:1e:98:03:f0:87:c8:cb:1a:d3:79: b7:10:5b:6a:84:14:05:bd:30:a7:c5:83:a6:93:37: 78:54:7a:9a:eb:78:b1:cf:a8:8a:2b:7d:65:6a:f0: 90:26:35:47:d0:e0:dd:0d:21:6e:82:db:bf:6c:a8: b2:81:7c:11:67:60:0b:76:95:64:b6:c8:bf:6a:91: 8f:85:0c:e9:3f:84:13:d7:fb:9a:6e:6a:ca:ed:34: 1f:ca:f2:09:93:99:30:0d:fb:8c:79:3d:c2:f0:40: fd:cb:b9:9b:b5:1c:77:14:04:9d:72:8f:18:bb:94: bc:eb:a9:40:97:ce:87:a5:ef:49:f5:8e:27:1f:32: 92:65:a5:77:b8:c5:2b:80:6b:98:a6:b7:eb:35:91: f8:4a:9e:c0:67:24:9d:3a:f2:5c:c0:d7:01:29:6c: 50:c9:e5:eb:a8:aa:8f:31:45:06:3b:3f:4f:c6:55: 26:cb:b6:0d:78:32:e4:ed:70:24:6d:e9:a8:95:8f: dd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CE:20:5D:BF:32:AE:21:7D:3B:9D:31:7E:3D:C5:0C:C4:C4:93:84 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9DFF02D4BD2C11EBBF4ADC26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.192.0/22 IPv6: 2001:df0:4840::/48 Signature Algorithm: sha256WithRSAEncryption 60:b3:75:6b:76:c5:b4:fe:b8:c1:a5:da:64:3a:24:57:5a:f5: 49:d6:fe:ce:50:ac:77:45:fc:32:e5:5c:9c:b8:f0:08:87:ba: 21:4b:c7:f7:b7:2b:ca:95:1d:60:22:5f:fc:c9:0c:85:ce:1c: 71:05:da:9b:01:74:30:9c:c1:73:a2:72:d7:fd:47:94:8f:42: 26:1d:30:7a:9d:0b:24:50:5c:de:b9:57:e1:a0:78:1f:91:ee: a8:16:99:e2:0a:ca:ca:c2:9a:62:15:d7:fe:35:64:af:e0:d7: 5c:ba:a2:10:14:fc:23:ae:a3:ab:f2:41:35:15:ca:f0:9a:d4: 4d:f0:da:eb:7a:74:c3:f4:69:ef:de:4c:d9:e1:1e:b3:e8:ff: b3:4e:7f:89:91:80:82:10:1c:f5:41:0c:55:f5:9c:de:5c:98: bc:24:9f:32:c3:8f:a0:23:1e:e2:00:d3:0c:b7:0d:9e:8b:b4: a7:62:5f:17:da:da:64:4a:dc:b1:74:d1:47:0f:33:db:3d:18: c4:1b:04:44:7d:91:9c:15:b5:bb:40:78:0e:e7:be:af:3f:86: 7e:ed:83:21:40:b9:6d:13:27:76:17:12:6e:0a:43:5a:d3:4a: aa:91:ff:6c:cf:9f:51:94:9e:ad:21:09:77:2e:52:77:5a:6a: 78:94:d9:f5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAOTOMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NTY0OFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY4NTAtODc2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK6GG7d5PmHudizh5Cx4dtJg8jE5bdcMCM+Gs8+eLvHSNKQQYL9TvQbqv4tL RSjNLxfExOkCJttB7eKaH8KuFYMemAPwh8jLGtN5txBbaoQUBb0wp8WDppM3eFR6 mut4sc+oiit9ZWrwkCY1R9Dg3Q0hboLbv2yosoF8EWdgC3aVZLbIv2qRj4UM6T+E E9f7mm5qyu00H8ryCZOZMA37jHk9wvBA/cu5m7UcdxQEnXKPGLuUvOupQJfOh6Xv SfWOJx8ykmWld7jFK4BrmKa36zWR+EqewGcknTryXMDXASlsUMnl66iqjzFFBjs/ T8ZVJsu2DXgy5O1wJG3pqJWP3cMCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBTkziBd vzKuIX07nTF+PcUMxMSThDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlERkYwMkQ0 QkQyQzExRUJCRjRBREMyNkM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAmdjwDAPBAIAAjAJAwcAIAEN8EhAMA0GCSqGSIb3DQEBCwUAA4IB AQBgs3VrdsW0/rjBpdpkOiRXWvVJ1v7OUKx3Rfwy5VycuPAIh7ohS8f3tyvKlR1g Il/8yQyFzhxxBdqbAXQwnMFzonLX/UeUj0ImHTB6nQskUFzeuVfhoHgfke6oFpni CsrKwppiFdf+NWSv4NdcuqIQFPwjrqOr8kE1FcrwmtRN8NrrenTD9Gnv3kzZ4R6z 6P+zTn+JkYCCEBz1QQxV9ZzeXJi8JJ8yw4+gIx7iANMMtw2ei7SnYl8X2tpkStyx dNFHDzPbPRjEGwREfZGcFbW7QHgO576vP4Z+7YMhQLltEyd2FxJuCkNa00qqkf9s z59RlJ6tIQl3LlJ3Wmp4lNn1 -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:14 2026 by rpki-client