$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A345C8CC427611EFA0BE0B11C4F9AE02.roa File: A345C8CC427611EFA0BE0B11C4F9AE02.roa (raw, json) Hash identifier: zIPUaFoIpQMHRT2nI3ZafwhBQqKtzBI+WCRfieUJg7Y= Subject key identifier: 88:D1:6E:02:8C:C5:1A:9A:95:A8:F5:C7:16:5F:4E:98:E6:45:B5:14 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E976 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A345C8CC427611EFA0BE0B11C4F9AE02.roa Signing time: Sun 31 May 2026 17:36:16 +0000 ROA not before: Sun 31 May 2026 17:36:16 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 150617 IP address blocks: 103.72.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59766 (0xe976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:36:16 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c718f-b813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:20:86:98:c9:5b:9b:30:6e:6c:2a:2d:9f:4c: 5b:c5:38:5e:d1:f2:e0:f1:cb:0d:76:43:86:a7:89: 05:5e:7b:f0:42:62:2b:7f:fc:54:16:2e:7f:23:af: ae:05:37:e7:eb:0a:b6:4d:00:b8:e8:37:f4:47:e8: 29:92:a8:1a:4a:14:73:d8:dc:24:58:c2:bc:1a:20: 34:72:64:0e:8e:46:e2:59:c7:2b:c0:b8:83:7d:1c: 55:4e:6e:9b:dd:f6:19:14:98:13:46:d2:10:ae:14: 7a:9a:69:a3:98:2f:44:2e:92:1b:79:de:19:55:07: c5:b0:59:de:91:8b:37:2b:cb:42:90:f3:1a:2d:54: 93:44:25:aa:66:8a:1d:f2:46:c4:72:8a:5a:c8:82: 40:4e:66:da:59:0d:4d:57:e0:3f:5c:89:19:6e:15: 08:b8:ff:27:97:cb:83:f2:35:20:88:35:cb:65:91: 3d:bb:60:7c:df:48:99:69:94:18:07:76:54:87:7b: 73:33:f8:87:59:61:6c:0a:ef:58:be:ab:98:a5:9f: a0:a8:8a:ce:49:47:7d:89:31:04:1f:bf:2a:e1:be: df:eb:0e:14:bf:7f:ba:b7:d6:4d:cb:62:c5:ef:6d: de:02:30:ce:04:ef:e9:64:29:8c:87:dc:20:bc:94: 5a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D1:6E:02:8C:C5:1A:9A:95:A8:F5:C7:16:5F:4E:98:E6:45:B5:14 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A345C8CC427611EFA0BE0B11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.196.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:4e:f8:0e:3b:57:24:56:35:20:e0:de:3b:2f:ed:8f:ee:4f: 36:3b:0d:be:17:b8:a5:8b:e1:a7:43:64:28:44:60:b8:15:cb: 9b:dd:16:ec:01:e4:8a:c6:29:30:92:39:5f:5f:e8:0f:56:ea: a1:52:a6:22:c0:c5:1b:38:3f:f0:f0:5f:69:f9:48:5b:d9:da: 92:7e:cc:fb:7f:10:13:3c:bc:65:c7:b6:65:6a:58:64:2b:c3: fd:62:b4:48:b8:43:a7:93:29:46:ae:73:c0:06:9f:b7:14:b1: c5:5c:80:63:1e:e0:6f:48:3b:b1:78:01:d1:8d:d4:be:11:8a: 3f:51:90:2c:bd:53:ff:d9:aa:61:ae:c5:a8:e9:32:89:3f:bd: 4e:da:1c:ee:32:21:aa:65:08:02:7f:36:b7:eb:23:ab:bb:d6: 63:17:c5:60:af:82:e4:73:5a:70:a8:b0:a4:31:dd:44:dd:a0: eb:93:e8:0b:59:01:28:89:1b:f5:3b:8b:10:f1:35:e6:b9:de: 65:75:6b:9c:d6:2b:f4:06:27:90:bb:27:96:1f:a7:91:4b:f7: c9:e2:89:42:35:f1:71:d3:9b:e5:60:3d:ad:15:fc:1a:7b:80: 85:61:c9:5c:d3:47:65:42:2a:a1:0f:30:04:df:04:8f:1e:f7: bd:28:4f:50 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDAOl2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MzYxNloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzcxOGYtYjgxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0ghpjJW5swbmwqLZ9MW8U4XtHy4PHLDXZDhqeJBV578EJiK3/8VBYufyOv rgU35+sKtk0AuOg39EfoKZKoGkoUc9jcJFjCvBogNHJkDo5G4lnHK8C4g30cVU5u m932GRSYE0bSEK4Uepppo5gvRC6SG3neGVUHxbBZ3pGLNyvLQpDzGi1Uk0QlqmaK HfJGxHKKWsiCQE5m2lkNTVfgP1yJGW4VCLj/J5fLg/I1IIg1y2WRPbtgfN9ImWmU GAd2VId7czP4h1lhbArvWL6rmKWfoKiKzklHfYkxBB+/KuG+3+sOFL9/urfWTcti xe9t3gIwzgTv6WQpjIfcILyUWj0CAwEAAaOCAmAwggJcMB0GA1UdDgQWBBSI0W4C jMUampWo9ccWX06Y5kW1FDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0EzNDVDOEND NDI3NjExRUZBMEJFMEIxMUM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdIxDANBgkqhkiG9w0BAQsFAAOCAQEAPk74DjtXJFY1IODeOy/t j+5PNjsNvhe4pYvhp0NkKERguBXLm90W7AHkisYpMJI5X1/oD1bqoVKmIsDFGzg/ 8PBfaflIW9nakn7M+38QEzy8Zce2ZWpYZCvD/WK0SLhDp5MpRq5zwAaftxSxxVyA Yx7gb0g7sXgB0Y3UvhGKP1GQLL1T/9mqYa7FqOkyiT+9Ttoc7jIhqmUIAn82t+sj q7vWYxfFYK+C5HNacKiwpDHdRN2g65PoC1kBKIkb9TuLEPE15rneZXVrnNYr9AYn kLsnlh+nkUv3yeKJQjXxcdOb5WA9rRX8GnuAhWHJXNNHZUIqoQ8wBN8Ejx73vShP UA== -----END CERTIFICATE-----Generated at Thu Jun 4 09:08:10 2026 by rpki-client