$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B0DC32400E4011F194D1800D193D8C67.roa File: B0DC32400E4011F194D1800D193D8C67.roa (raw, json) Hash identifier: TJD5o3BR0g30K5QQ4SQfche/eTIMzcrmvksKTiLJg9g= Subject key identifier: 8A:50:93:8A:CF:66:4A:11:43:33:DF:39:19:B2:27:98:A5:AC:98:D5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E3D1 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B0DC32400E4011F194D1800D193D8C67.roa Signing time: Sun 31 May 2026 16:48:41 +0000 ROA not before: Sun 31 May 2026 16:48:41 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135268 IP address blocks: 103.120.252.0/24 maxlen: 24 103.120.253.0/24 maxlen: 24 103.120.254.0/24 maxlen: 24 103.120.255.0/24 maxlen: 24 2001:df2:5240::/48 maxlen: 48 2001:df2:5241::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58321 (0xe3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:48:41 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6668-7b6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8b:a5:c6:80:5a:da:e0:ef:75:3d:c2:02:ec: 9e:6a:11:c1:90:8f:d5:e4:10:5a:52:79:d3:f8:d0: b3:40:37:38:a2:a5:10:70:11:7d:f0:89:78:3a:a6: 1c:5f:68:7b:6a:12:c7:e7:d5:94:ae:7c:42:4f:7f: ec:56:4d:b2:3e:02:7a:48:c5:a2:43:9b:96:62:01: 73:79:e1:6e:1e:65:03:cb:38:a4:0e:2c:cc:91:29: d2:82:bf:3c:e6:55:c5:f0:39:d3:70:bd:b8:98:d0: f5:09:4a:f1:ec:a5:b1:8d:77:08:79:5d:29:56:e2: 3e:6f:3a:f0:a1:38:67:b8:68:a7:e7:d1:51:bf:37: 24:77:3c:5f:69:75:9f:3a:44:12:6b:98:f6:b6:bd: 09:ee:5e:47:b3:cb:a7:43:ff:2a:df:9d:dc:22:a9: 69:5a:77:2a:41:6e:96:59:b2:f7:70:c6:74:40:7a: a6:99:3a:2e:20:06:90:0c:bd:36:3b:21:43:6e:0c: a3:34:8f:a3:32:d4:0e:89:d9:d6:19:44:0e:36:c0: 01:b3:a2:29:fb:1f:22:21:37:2c:b7:c7:0e:c2:3a: 76:1b:7e:85:12:7f:f2:f7:53:38:bc:10:b5:19:42: 71:22:98:72:82:c9:61:da:5e:6a:80:47:aa:b9:dc: ba:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:50:93:8A:CF:66:4A:11:43:33:DF:39:19:B2:27:98:A5:AC:98:D5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B0DC32400E4011F194D1800D193D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.120.252.0/22 IPv6: 2001:df2:5240::/47 Signature Algorithm: sha256WithRSAEncryption 82:62:18:cc:bd:72:16:6b:31:91:19:b3:3c:ab:9e:72:60:ea: e4:92:27:1d:2c:5b:a3:16:a2:73:5a:3f:34:21:7c:7f:07:c1: 37:ae:84:11:e3:76:e1:b0:56:bd:e0:8c:0b:93:eb:01:e4:64: 6f:96:23:d3:c6:0b:68:95:4f:35:a1:c4:eb:63:d8:60:22:c6: 02:bc:6c:49:30:25:98:19:a7:3a:b3:85:0b:ce:37:0d:4e:47: 10:5d:d0:1e:58:75:12:1c:07:47:a8:24:9d:91:89:fb:2b:bf: 9f:90:5f:19:88:93:02:fa:bb:51:5e:ad:da:b2:57:f4:1b:b2: 06:b6:95:74:f2:a4:e0:75:38:f1:d4:91:c0:ac:9e:64:a1:97: 16:d7:d7:53:39:44:26:24:e9:4a:6f:d4:5c:78:23:02:89:38: ae:b8:b9:31:99:39:d5:b9:8d:84:75:b1:3c:46:75:04:60:c6: b9:2b:a8:7b:91:99:d3:5e:fa:c4:ec:93:fd:fe:dc:2e:87:7b: f7:47:83:0d:99:95:07:79:e3:cb:39:8c:fe:d1:85:60:a5:95: f9:da:5d:af:0b:5a:04:5f:92:16:10:9d:6c:01:21:8a:7b:ae: f6:21:2f:5e:15:ab:d2:fd:99:8d:c2:0e:a6:c3:7e:fc:a8:fd: 09:35:c9:0f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAOPRMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDg0MVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY2NjgtN2I2ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKiLpcaAWtrg73U9wgLsnmoRwZCP1eQQWlJ50/jQs0A3OKKlEHARffCJeDqm HF9oe2oSx+fVlK58Qk9/7FZNsj4CekjFokOblmIBc3nhbh5lA8s4pA4szJEp0oK/ POZVxfA503C9uJjQ9QlK8eylsY13CHldKVbiPm868KE4Z7hop+fRUb83JHc8X2l1 nzpEEmuY9ra9Ce5eR7PLp0P/Kt+d3CKpaVp3KkFullmy93DGdEB6ppk6LiAGkAy9 NjshQ24MozSPozLUDonZ1hlEDjbAAbOiKfsfIiE3LLfHDsI6dht+hRJ/8vdTOLwQ tRlCcSKYcoLJYdpeaoBHqrncur0CAwEAAaOCAnEwggJtMB0GA1UdDgQWBBSKUJOK z2ZKEUMz3zkZsieYpayY1TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IwREMzMjQw MEU0MDExRjE5NEQxODAwRDE5M0Q4QzY3LnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAmd4/DAPBAIAAjAJAwcBIAEN8lJAMA0GCSqGSIb3DQEBCwUAA4IB AQCCYhjMvXIWazGRGbM8q55yYOrkkicdLFujFqJzWj80IXx/B8E3roQR43bhsFa9 4IwLk+sB5GRvliPTxgtolU81ocTrY9hgIsYCvGxJMCWYGac6s4ULzjcNTkcQXdAe WHUSHAdHqCSdkYn7K7+fkF8ZiJMC+rtRXq3aslf0G7IGtpV08qTgdTjx1JHArJ5k oZcW19dTOUQmJOlKb9RceCMCiTiuuLkxmTnVuY2EdbE8RnUEYMa5K6h7kZnTXvrE 7JP9/twuh3v3R4MNmZUHeePLOYz+0YVgpZX52l2vC1oEX5IWEJ1sASGKe672IS9e FavS/ZmNwg6mw378qP0JNckP -----END CERTIFICATE-----Generated at Thu Jun 4 10:07:42 2026 by rpki-client