$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9F94A2A81B8711F0A14E4651C4F9AE02.roa File: 9F94A2A81B8711F0A14E4651C4F9AE02.roa (raw, json) Hash identifier: gdaWEgW+B06ipFytkscJwZ/+RMGAfVFOLfWdWgCSWjc= Subject key identifier: 24:49:68:B1:5B:0A:D3:46:08:94:A3:CA:F0:17:CB:48:70:1C:D0:0B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E9CE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9F94A2A81B8711F0A14E4651C4F9AE02.roa Signing time: Sun 31 May 2026 17:39:02 +0000 ROA not before: Sun 31 May 2026 17:39:02 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 151156 IP address blocks: 103.129.100.0/24 maxlen: 24 2001:df2:39c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59854 (0xe9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:39:02 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7236-68b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:4b:32:fe:17:51:30:4a:18:57:6a:45:9d:72: 17:6f:bc:50:58:bd:bd:66:35:52:09:df:85:6c:cf: 53:73:25:e5:9f:ed:97:47:c9:a1:7c:25:f2:62:65: 59:3a:37:fb:bd:0d:e7:dd:e2:de:84:5b:f9:14:19: 5a:f5:77:1b:a8:c7:ee:25:97:1c:55:9e:6f:ac:53: 61:e1:70:51:54:0a:38:b9:28:3e:3d:cd:9a:60:ee: 71:55:c3:37:ad:8e:91:f5:62:60:c3:87:7b:d4:7e: c8:5e:d0:7e:53:b0:85:4b:e9:e9:5f:56:0a:06:9e: 1c:ef:a4:6b:cb:86:cf:cf:1d:ca:ca:fd:66:b9:43: 2b:00:87:fc:c2:a7:42:99:9e:b7:6e:b0:48:74:fa: d7:f9:22:9a:a9:36:f8:a0:35:c2:4c:16:e9:2c:16: e6:6e:00:62:34:35:97:1c:91:34:2d:c1:bd:95:84: 67:fc:2d:71:1c:c3:33:3d:03:d3:dc:fb:55:2d:59: b4:6d:b5:c2:92:b1:91:ee:14:7a:c5:fd:80:bb:7d: 72:71:82:f4:0c:70:38:73:15:8d:c9:fa:b1:0d:f3: 9b:b1:51:0d:8f:52:c2:6c:a9:2b:d5:3e:6f:cf:a7: 0c:0d:8d:48:fb:02:67:0a:08:42:5e:06:32:89:c2: 77:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:49:68:B1:5B:0A:D3:46:08:94:A3:CA:F0:17:CB:48:70:1C:D0:0B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9F94A2A81B8711F0A14E4651C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.129.100.0/24 IPv6: 2001:df2:39c0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:39:5f:89:b1:ce:f0:ff:3f:f2:7f:64:08:9e:b1:50:97:8d: a6:b3:6b:dd:27:8c:bf:e0:de:96:b0:77:6c:ba:86:74:a4:3e: a4:76:f9:aa:7b:1c:8d:91:c5:2f:d6:9f:6a:b4:fa:4c:45:c5: 7a:d8:6b:37:12:fd:26:0c:3f:4c:be:d8:28:77:c0:4a:3a:53: 10:23:c8:96:f2:1c:6f:93:7b:cc:51:1e:83:d9:70:ea:a6:38: ad:0d:db:e0:cb:8d:89:92:c2:ab:34:b7:47:be:fd:6f:d5:fc: d9:02:19:06:09:08:c1:d2:47:8e:66:39:a6:f4:07:6d:06:c3: 67:8d:b3:cb:2a:37:5d:0b:00:ee:d3:70:de:29:7f:e4:e4:09: 50:2f:8b:9f:19:4c:9d:43:b2:6a:d4:0b:e7:cf:e3:15:46:29: 46:78:d9:f4:63:d0:f9:2f:65:15:14:81:7e:69:d1:91:f5:44: 76:6f:a8:0f:e3:e6:4d:4d:42:ff:7d:9f:ce:a8:37:11:d5:db: d7:e6:7c:f3:a6:8e:33:1a:f1:2a:84:c0:fc:68:99:0e:3b:bd: c3:a8:c7:c9:54:fa:d4:5f:96:ee:1e:b7:f6:cb:97:eb:7a:cb: d8:4f:59:01:27:ba:97:c3:19:4d:49:44:b3:0e:04:43:39:ab: 14:19:9c:5a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAOnOMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MzkwMloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzcyMzYtNjhiMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI5LMv4XUTBKGFdqRZ1yF2+8UFi9vWY1UgnfhWzPU3Ml5Z/tl0fJoXwl8mJl WTo3+70N593i3oRb+RQZWvV3G6jH7iWXHFWeb6xTYeFwUVQKOLkoPj3NmmDucVXD N62OkfViYMOHe9R+yF7QflOwhUvp6V9WCgaeHO+ka8uGz88dysr9ZrlDKwCH/MKn Qpmet26wSHT61/kimqk2+KA1wkwW6SwW5m4AYjQ1lxyRNC3BvZWEZ/wtcRzDMz0D 09z7VS1ZtG21wpKxke4UesX9gLt9cnGC9AxwOHMVjcn6sQ3zm7FRDY9SwmypK9U+ b8+nDA2NSPsCZwoIQl4GMonCd+8CAwEAAaOCAnEwggJtMB0GA1UdDgQWBBQkSWix WwrTRgiUo8rwF8tIcBzQCzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlGOTRBMkE4 MUI4NzExRjBBMTRFNDY1MUM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeBZDAPBAIAAjAJAwcAIAEN8jnAMA0GCSqGSIb3DQEBCwUAA4IB AQA/OV+Jsc7w/z/yf2QInrFQl42ms2vdJ4y/4N6WsHdsuoZ0pD6kdvmqexyNkcUv 1p9qtPpMRcV62Gs3Ev0mDD9Mvtgod8BKOlMQI8iW8hxvk3vMUR6D2XDqpjitDdvg y42JksKrNLdHvv1v1fzZAhkGCQjB0keOZjmm9AdtBsNnjbPLKjddCwDu03DeKX/k 5AlQL4ufGUydQ7Jq1Avnz+MVRilGeNn0Y9D5L2UVFIF+adGR9UR2b6gP4+ZNTUL/ fZ/OqDcR1dvX5nzzpo4zGvEqhMD8aJkOO73DqMfJVPrUX5buHrf2y5fresvYT1kB J7qXwxlNSUSzDgRDOasUGZxa -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:44 2026 by rpki-client