$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A39437365AF411F0A0DD9C59C4F9AE02.roa File: A39437365AF411F0A0DD9C59C4F9AE02.roa (raw, json) Hash identifier: Ad7jJ2r6iDmbpzTOHVHfKm4cEVwFnve183q169VmlnY= Subject key identifier: 4D:EB:F6:D4:F9:B4:2A:14:FC:80:0C:8A:63:E4:6F:A0:75:1D:CA:C6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EB66 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A39437365AF411F0A0DD9C59C4F9AE02.roa Signing time: Sun 31 May 2026 17:51:51 +0000 ROA not before: Sun 31 May 2026 17:51:51 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 55470 IP address blocks: 49.50.64.0/18 maxlen: 24 103.10.188.0/22 maxlen: 24 103.36.104.0/22 maxlen: 24 103.158.65.0/24 maxlen: 24 103.170.3.0/24 maxlen: 24 111.118.176.0/20 maxlen: 24 2404:8500:f000::/48 maxlen: 48 2404:8500:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 11:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60262 (0xeb66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:51:51 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7537-d395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:52:c7:77:2c:c2:35:89:41:62:b3:7f:f3:24: 04:1a:d9:8f:7b:c5:3a:4f:f5:a6:df:53:7e:61:b8: 81:67:ad:60:00:06:5b:c5:37:cc:fc:fa:a1:6c:e7: c7:24:53:45:d7:5b:89:16:29:dd:8b:9c:79:5e:f0: 19:ff:01:57:b4:3f:c9:b9:c4:95:55:0b:91:68:81: ab:9c:c2:94:19:84:ee:17:b8:d0:f0:d3:93:a9:7a: b8:95:4d:ad:be:3c:11:f3:53:92:ee:99:e8:8f:88: ba:a1:4a:25:cd:d7:3a:5d:66:c1:6b:47:f0:ef:45: f9:ef:c0:5c:09:21:e4:ce:e1:4c:f4:61:71:c5:e3: 73:8c:d0:78:91:f0:cd:2c:8a:02:08:78:37:5c:35: bf:6e:6c:0e:f6:85:ac:0a:3a:7c:91:03:58:dd:4b: db:fa:56:64:0a:d4:4c:10:5e:40:f4:6d:c7:aa:ce: 04:2d:04:bb:4a:4b:a2:4d:4c:bf:c9:78:bb:f5:1d: ec:3b:5a:81:32:7c:94:d9:06:9e:9f:17:ef:bc:31: b0:af:74:05:39:13:b4:39:f1:cb:69:e1:c6:b9:af: 01:ca:20:d1:66:dc:4d:bb:91:bb:2e:6c:78:53:fd: 0f:d2:eb:25:2d:a2:0e:4b:51:d7:c3:d9:23:b6:e6: e1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EB:F6:D4:F9:B4:2A:14:FC:80:0C:8A:63:E4:6F:A0:75:1D:CA:C6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A39437365AF411F0A0DD9C59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.50.64.0/18 103.10.188.0/22 103.36.104.0/22 103.158.65.0/24 103.170.3.0/24 111.118.176.0/20 IPv6: 2404:8500:f000::/48 2404:8500:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 9a:3f:f3:70:cf:d1:28:fe:0b:08:36:1e:2c:eb:a9:51:06:f8: a6:04:e1:80:b0:15:4f:23:91:8b:48:49:54:ed:68:b9:f5:1c: 0a:ac:b4:e5:b6:a5:b4:74:31:bd:4b:6e:4b:61:d5:d2:97:7e: 4f:ea:6b:5b:40:0a:a1:a4:a3:2b:8f:44:3b:0f:90:a3:43:59: 70:34:4a:3f:d4:87:35:c6:c6:da:4e:ea:90:35:b3:aa:99:69: e7:01:ab:3e:cb:31:9e:74:f2:73:80:70:bb:60:1d:9e:c9:51: d6:10:6c:5b:84:c4:b0:e0:7d:38:15:18:07:7b:b3:37:c7:95: 96:0b:1e:5d:5d:8e:cd:70:c4:21:11:d3:26:8d:ef:e7:ee:9e: 64:0d:5e:f2:89:3b:0f:e0:4e:b4:7f:9e:4d:f2:90:8f:88:77: 8c:7b:2c:43:ea:02:28:6d:0d:b8:f4:6c:e5:1b:02:81:28:52: 39:55:5e:ab:5f:4d:7a:d9:71:5c:85:ad:12:c9:05:7d:95:12: 36:11:c9:e0:51:c3:dd:65:9b:31:86:7c:f0:6d:29:62:84:96: c3:cf:c7:21:32:3c:ba:0f:64:cf:b2:a4:d3:f3:79:b3:af:cd: 8a:86:5a:62:53:d1:51:fe:ce:a0:54:5a:6b:d7:b6:11:84:02: 23:c9:35:62 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAOtmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTE1MVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc1MzctZDM5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtSx3cswjWJQWKzf/MkBBrZj3vFOk/1pt9TfmG4gWetYAAGW8U3zPz6oWzn xyRTRddbiRYp3YuceV7wGf8BV7Q/ybnElVULkWiBq5zClBmE7he40PDTk6l6uJVN rb48EfNTku6Z6I+IuqFKJc3XOl1mwWtH8O9F+e/AXAkh5M7hTPRhccXjc4zQeJHw zSyKAgh4N1w1v25sDvaFrAo6fJEDWN1L2/pWZArUTBBeQPRtx6rOBC0Eu0pLok1M v8l4u/Ud7DtagTJ8lNkGnp8X77wxsK90BTkTtDnxy2nhxrmvAcog0WbcTbuRuy5s eFP9D9LrJS2iDktR18PZI7bm4QsCAwEAAaOCApgwggKUMB0GA1UdDgQWBBRN6/bU +bQqFPyADIpj5G+gdR3KxjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0EzOTQzNzM2 NUFGNDExRjBBMEREOUM1OUM0RjlBRTAyLnJvYTBXBggrBgEFBQcBBwEB/wRIMEYw KgQCAAEwJAMEBjEyQAMEAmcKvAMEAmckaAMEAGeeQQMEAGeqAwMEBG92sDAYBAIA AjASAwcAJASFAPAAAwcAJASFAP//MA0GCSqGSIb3DQEBCwUAA4IBAQCaP/Nwz9Eo /gsINh4s66lRBvimBOGAsBVPI5GLSElU7Wi59RwKrLTltqW0dDG9S25LYdXSl35P 6mtbQAqhpKMrj0Q7D5CjQ1lwNEo/1Ic1xsbaTuqQNbOqmWnnAas+yzGedPJzgHC7 YB2eyVHWEGxbhMSw4H04FRgHe7M3x5WWCx5dXY7NcMQhEdMmje/n7p5kDV7yiTsP 4E60f55N8pCPiHeMeyxD6gIobQ249GzlGwKBKFI5VV6rX0162XFcha0SyQV9lRI2 EcngUcPdZZsxhnzwbSlihJbDz8chMjy6D2TPsqTT83mzr82KhlpiU9FR/s6gVFpr 17YRhAIjyTVi -----END CERTIFICATE-----Generated at Thu Jun 11 16:50:49 2026 by rpki-client