$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa File: A9717458BED411ECBA66025BC4F9AE02.roa (raw, json) Hash identifier: MVCwkfX+YSZw/wvznnyh0UiaiCB+T3q2VYx6WvsADnA= Subject key identifier: AE:64:48:96:05:96:B4:63:92:1E:F4:CA:12:C1:6E:F7:6D:8F:23:8E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E8AF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa Signing time: Sun 31 May 2026 17:29:26 +0000 ROA not before: Sun 31 May 2026 17:29:26 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 149528 IP address blocks: 43.239.76.0/24 maxlen: 24 43.239.79.0/24 maxlen: 24 103.183.72.0/23 maxlen: 24 2400:60e0::/34 maxlen: 34 2400:60e0::/48 maxlen: 48 2400:60e0:1::/48 maxlen: 48 2400:60e0:2::/48 maxlen: 48 2400:60e0:3::/48 maxlen: 48 2400:60e0:4000::/34 maxlen: 34 2400:60e0:8000::/34 maxlen: 34 2400:60e0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59567 (0xe8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:29:26 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6ff6-e4c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6c:27:c5:01:3a:8b:10:08:b0:ea:2b:56:50: 8a:14:ab:34:4a:25:c7:b6:5f:0a:75:36:df:7d:a4: 02:c5:5d:07:d5:c9:d4:56:53:2f:60:37:d8:93:1b: 93:2e:73:b7:1c:7f:39:52:72:f3:d3:91:a7:7b:26: 76:ec:96:47:9e:5c:dd:c0:5a:8b:2b:2d:0e:27:92: 85:66:fc:3b:d7:51:a1:8d:85:51:f2:7b:ed:0a:ef: 6b:2d:6b:3d:25:5e:ea:22:99:4c:2a:c7:84:cc:4b: 24:4f:d0:c2:4c:e0:a5:e1:67:47:64:75:40:2c:90: d4:87:c7:4a:4a:ad:05:c8:46:b7:60:e9:45:a6:40: fc:57:88:55:70:df:7c:dd:b9:31:e9:b7:fd:14:a3: 48:64:cd:60:b0:16:36:d8:dd:2d:36:b9:8e:39:f3: e3:e2:cc:53:59:2d:11:1f:5b:8c:4c:ed:c1:5b:15: 4a:f0:0a:5c:84:21:6d:ce:c9:06:ca:ef:90:20:7a: f8:f5:20:e0:37:3a:29:26:f2:c5:23:83:2d:04:ad: d4:9c:98:db:f6:b1:5e:8b:44:b5:1e:58:38:45:90: 16:3d:c3:ca:50:96:f2:e9:f6:27:62:e7:27:0a:45: 9c:30:8a:13:b8:ae:b9:a8:35:52:77:29:5b:63:79: a6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:64:48:96:05:96:B4:63:92:1E:F4:CA:12:C1:6E:F7:6D:8F:23:8E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9717458BED411ECBA66025BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.76.0/24 43.239.79.0/24 103.183.72.0/23 IPv6: 2400:60e0::/32 Signature Algorithm: sha256WithRSAEncryption b8:86:8f:ba:41:7f:9b:74:9e:5a:20:67:c5:b2:ce:9e:d6:4b: 88:e2:8e:4d:c5:69:c3:95:87:24:44:d6:b6:7c:50:50:1c:66: c1:9b:9c:86:f6:69:aa:60:e4:71:78:34:66:bb:fe:0c:76:46: e6:ca:b9:44:e0:8f:e5:d5:d0:c8:cd:c7:a6:c2:b4:ba:7c:7e: 49:df:88:fe:5e:6f:bc:12:07:a3:51:6d:32:f5:5b:ad:d4:60: 1e:7f:ab:f9:9a:04:29:81:bd:5b:bb:d6:4c:ec:ab:2e:61:02: 3a:e5:c0:33:15:20:f5:90:e6:5a:d9:e1:bb:78:fb:37:20:05: 59:e7:e9:2d:5a:1f:00:7d:3d:95:f8:c8:87:7f:08:cb:0a:ac: f4:d2:a0:51:93:10:74:8e:23:d2:a4:6f:aa:82:ce:93:ed:9f: ac:db:e5:a2:4a:e4:a4:2f:2c:7e:45:0b:c9:d0:b1:87:d5:83: ea:53:cb:b3:4c:7e:07:86:1f:b8:b6:54:b4:f9:d3:c9:f4:81: ba:93:28:79:47:81:a2:5f:17:53:c9:af:0e:b7:4f:0a:d3:c1: fa:0f:b9:fb:a2:7a:b5:35:da:80:cb:92:4d:83:a0:f5:47:e3: 37:82:6d:44:f1:85:48:5e:bb:9d:05:b0:83:cb:3d:88:f0:69: d4:ae:e6:26 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIDAOivMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MjkyNloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZmZjYtZTRjNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKFsJ8UBOosQCLDqK1ZQihSrNEolx7ZfCnU2332kAsVdB9XJ1FZTL2A32JMb ky5ztxx/OVJy89ORp3smduyWR55c3cBaiystDieShWb8O9dRoY2FUfJ77Qrvay1r PSVe6iKZTCrHhMxLJE/QwkzgpeFnR2R1QCyQ1IfHSkqtBchGt2DpRaZA/FeIVXDf fN25Mem3/RSjSGTNYLAWNtjdLTa5jjnz4+LMU1ktER9bjEztwVsVSvAKXIQhbc7J BsrvkCB6+PUg4Dc6KSbyxSODLQSt1JyY2/axXotEtR5YOEWQFj3DylCW8un2J2Ln JwpFnDCKE7iuuag1UncpW2N5psMCAwEAAaOCAnswggJ3MB0GA1UdDgQWBBSuZEiW BZa0Y5Ie9MoSwW73bY8jjjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E5NzE3NDU4 QkVENDExRUNCQTY2MDI1QkM0RjlBRTAyLnJvYTA6BggrBgEFBQcBBwEB/wQrMCkw GAQCAAEwEgMEACvvTAMEACvvTwMEAWe3SDANBAIAAjAHAwUAJABg4DANBgkqhkiG 9w0BAQsFAAOCAQEAuIaPukF/m3SeWiBnxbLOntZLiOKOTcVpw5WHJETWtnxQUBxm wZuchvZpqmDkcXg0Zrv+DHZG5sq5ROCP5dXQyM3HpsK0unx+Sd+I/l5vvBIHo1Ft MvVbrdRgHn+r+ZoEKYG9W7vWTOyrLmECOuXAMxUg9ZDmWtnhu3j7NyAFWefpLVof AH09lfjIh38Iywqs9NKgUZMQdI4j0qRvqoLOk+2frNvlokrkpC8sfkULydCxh9WD 6lPLs0x+B4YfuLZUtPnTyfSBupMoeUeBol8XU8mvDrdPCtPB+g+5+6J6tTXagMuS TYOg9UfjN4JtRPGFSF67nQWwg8s9iPBp1K7mJg== -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:50 2026 by rpki-client