$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AB067244570311F08477624BC4F9AE02.roa File: AB067244570311F08477624BC4F9AE02.roa (raw, json) Hash identifier: WiMh10pTz47/1ILyYg6As2GLW6m7596YTOKXWvaIdYg= Subject key identifier: B3:84:59:96:67:57:FC:4A:76:12:E4:92:87:D5:B2:A4:8A:A4:60:37 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E9A7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AB067244570311F08477624BC4F9AE02.roa Signing time: Sun 31 May 2026 17:37:51 +0000 ROA not before: Sun 31 May 2026 17:37:51 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 151101 IP address blocks: 103.136.189.0/24 maxlen: 24 103.209.172.0/24 maxlen: 24 103.221.238.0/23 maxlen: 24 2001:df1:c940::/48 maxlen: 48 2001:df2:94c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59815 (0xe9a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:37:51 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c71ef-8f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:16:b5:e2:11:46:cb:af:ff:f1:9b:9a:d4:fc: f1:29:e9:fe:57:71:05:a1:b7:f4:fc:10:5d:d8:05: 39:d3:4a:57:84:33:48:21:6c:f2:ee:35:1d:51:bc: 0f:85:83:62:21:7b:ab:c2:47:85:3a:0d:57:55:68: a9:7f:80:90:0a:41:12:2c:c6:5d:85:9b:40:f3:00: 7c:69:7a:e1:a6:49:19:5b:45:69:93:b7:a1:69:53: a6:53:cd:68:03:a7:cb:87:f8:7b:7a:81:07:6a:78: 39:9e:82:05:7e:9e:00:a3:c7:0d:29:4f:5f:af:ad: 72:4f:e1:36:88:4c:83:48:ea:74:a0:30:ae:9b:e7: 64:55:42:5b:9b:d6:19:b2:5c:5c:76:0c:50:3d:95: 8d:0b:90:98:42:f4:df:77:65:1f:b4:81:44:2f:ad: 67:48:4e:db:db:9a:c9:77:1e:3d:06:56:6c:a9:30: 98:ab:16:c8:61:bc:7d:15:5e:42:c7:f7:b4:f8:63: f4:db:49:1f:da:0a:df:bd:63:14:eb:2f:68:fe:3c: c5:f9:13:df:7c:e5:a5:e3:26:cb:2c:d8:e4:78:48: ea:2f:5c:8e:c7:77:40:79:4e:cb:7c:85:71:6f:8c: 74:d3:9c:4a:2d:6d:48:3f:c5:d4:37:a5:ac:c2:bd: 7a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:84:59:96:67:57:FC:4A:76:12:E4:92:87:D5:B2:A4:8A:A4:60:37 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AB067244570311F08477624BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.189.0/24 103.209.172.0/24 103.221.238.0/23 IPv6: 2001:df1:c940::/48 2001:df2:94c0::/48 Signature Algorithm: sha256WithRSAEncryption b9:95:83:cb:c1:a0:7a:5f:bb:d4:22:af:f5:61:5f:1b:af:96: de:67:92:3b:fa:87:c7:b0:01:20:58:92:cf:e0:b4:d2:59:0e: 2a:6a:7e:c3:94:e7:4f:5d:a0:e9:8c:90:cf:9e:e0:2c:ed:60: d7:bf:ea:0d:7d:56:b8:bb:7e:55:5c:c1:77:9c:75:1f:17:c0: a9:95:c8:0b:9e:90:a4:5f:a0:1a:5e:71:f3:98:6d:63:0b:03: 6c:2a:ca:bb:08:ea:76:28:e2:13:0b:3a:19:18:aa:07:d0:90: dc:ad:39:89:75:9b:6f:46:de:eb:03:48:52:64:97:5d:de:27: 90:3d:08:3c:50:ea:08:5c:ff:24:b7:a1:de:4c:c3:9b:29:49: 05:d5:8a:96:4e:29:71:00:a3:09:a1:b5:31:a6:dd:06:75:fe: d9:60:3c:6a:c0:b9:3c:7e:24:ed:89:a9:fe:db:c6:f3:b3:25: 06:64:88:6e:2f:27:3e:bc:20:92:a6:48:8f:72:5e:14:cb:94: 4f:49:84:cd:45:c5:ff:34:3c:fa:e9:bf:44:53:ef:14:18:9b: d5:e0:ec:db:59:83:4b:62:95:04:6e:1b:9a:3e:0f:cc:d8:9a: 97:f3:47:45:47:dd:9d:34:8a:1a:aa:81:42:0c:cc:3f:68:b9: 09:83:d8:fd -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIDAOmnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3Mzc1MVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzcxZWYtOGYxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM0WteIRRsuv//GbmtT88Snp/ldxBaG39PwQXdgFOdNKV4QzSCFs8u41HVG8 D4WDYiF7q8JHhToNV1VoqX+AkApBEizGXYWbQPMAfGl64aZJGVtFaZO3oWlTplPN aAOny4f4e3qBB2p4OZ6CBX6eAKPHDSlPX6+tck/hNohMg0jqdKAwrpvnZFVCW5vW GbJcXHYMUD2VjQuQmEL033dlH7SBRC+tZ0hO29uayXcePQZWbKkwmKsWyGG8fRVe Qsf3tPhj9NtJH9oK371jFOsvaP48xfkT33zlpeMmyyzY5HhI6i9cjsd3QHlOy3yF cW+MdNOcSi1tSD/F1DelrMK9ej0CAwEAAaOCAoYwggKCMB0GA1UdDgQWBBSzhFmW Z1f8SnYS5JKH1bKkiqRgNzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0FCMDY3MjQ0 NTcwMzExRjA4NDc3NjI0QkM0RjlBRTAyLnJvYTBFBggrBgEFBQcBBwEB/wQ2MDQw GAQCAAEwEgMEAGeIvQMEAGfRrAMEAWfd7jAYBAIAAjASAwcAIAEN8clAAwcAIAEN 8pTAMA0GCSqGSIb3DQEBCwUAA4IBAQC5lYPLwaB6X7vUIq/1YV8br5beZ5I7+ofH sAEgWJLP4LTSWQ4qan7DlOdPXaDpjJDPnuAs7WDXv+oNfVa4u35VXMF3nHUfF8Cp lcgLnpCkX6AaXnHzmG1jCwNsKsq7COp2KOITCzoZGKoH0JDcrTmJdZtvRt7rA0hS ZJdd3ieQPQg8UOoIXP8kt6HeTMObKUkF1YqWTilxAKMJobUxpt0Gdf7ZYDxqwLk8 fiTtian+28bzsyUGZIhuLyc+vCCSpkiPcl4Uy5RPSYTNRcX/NDz66b9EU+8UGJvV 4OzbWYNLYpUEbhuaPg/M2JqX80dFR92dNIoaqoFCDMw/aLkJg9j9 -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:37 2026 by rpki-client