$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2B6F4FC086E11F0AE478E38C4F9AE02.roa File: B2B6F4FC086E11F0AE478E38C4F9AE02.roa (raw, json) Hash identifier: AatMt60CxEcPst6N4xt/DYk1MYfxOHFxzyOd1Q8JbUY= Subject key identifier: 45:18:A9:A3:50:00:98:28:A7:57:17:1E:08:9B:76:F0:B7:9F:0F:1C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E910 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2B6F4FC086E11F0AE478E38C4F9AE02.roa Signing time: Sun 31 May 2026 17:32:54 +0000 ROA not before: Sun 31 May 2026 17:32:54 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 150027 IP address blocks: 43.243.80.0/24 maxlen: 24 43.243.81.0/24 maxlen: 24 43.243.83.0/24 maxlen: 24 45.250.227.0/24 maxlen: 24 103.69.220.0/24 maxlen: 24 103.69.223.0/24 maxlen: 24 103.131.92.0/23 maxlen: 24 103.167.74.0/24 maxlen: 24 103.167.75.0/24 maxlen: 24 103.167.247.0/24 maxlen: 24 103.175.116.0/23 maxlen: 24 103.185.10.0/24 maxlen: 24 103.230.220.0/22 maxlen: 24 103.232.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59664 (0xe910) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:32:54 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c70c6-a973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5a:7c:9c:d0:be:9d:20:f9:69:1c:4d:bb:90: fa:f0:b4:91:f9:8f:01:ec:ab:cd:58:bf:66:6b:01: 8f:c4:3a:09:4b:2b:66:e4:a0:97:c1:8e:4d:9c:d9: 7a:15:b9:e8:18:22:6a:b8:35:07:22:60:8a:64:63: 24:e9:1e:b4:c6:d8:57:ef:4b:49:73:16:78:8b:82: 1d:49:c9:ed:e6:3e:8f:f5:1c:a5:0a:d9:3c:7d:21: 5c:02:6c:66:ae:ea:36:ab:aa:29:41:77:99:53:a2: f0:2a:db:cd:af:aa:8b:c0:9a:0c:f3:2b:58:c7:5b: 38:32:ac:d1:fe:4c:40:98:c7:3e:a5:2a:9e:86:15: f9:7f:ba:c6:c7:55:c5:87:b2:ec:3e:01:5a:61:3f: a8:2b:2a:ca:73:1f:3a:50:67:e7:19:e9:2a:4e:6a: f0:cb:0c:96:2e:f6:35:d8:e8:d7:23:4d:fe:33:89: 8c:bb:e4:cd:4d:21:5c:29:1e:7e:46:0c:19:86:75: 24:af:72:b6:bd:3d:c2:71:9c:22:63:c2:8b:bf:b1: a7:71:e0:b9:2f:59:33:39:b0:d2:4d:6f:bc:b2:1b: c6:b7:21:66:bb:fa:14:dd:fc:4d:19:9d:eb:30:7f: e6:f3:c3:6e:79:42:eb:b8:69:9d:16:a1:85:7f:f3: 2c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:18:A9:A3:50:00:98:28:A7:57:17:1E:08:9B:76:F0:B7:9F:0F:1C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2B6F4FC086E11F0AE478E38C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.243.80.0/23 43.243.83.0/24 45.250.227.0/24 103.69.220.0/24 103.69.223.0/24 103.131.92.0/23 103.167.74.0/23 103.167.247.0/24 103.175.116.0/23 103.185.10.0/24 103.230.220.0/22 103.232.239.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:9c:f5:b6:e8:3a:96:9d:73:a2:87:e2:d1:1c:29:65:e8:71: 96:51:1b:e8:e0:76:0c:14:30:4e:70:80:99:7d:4a:51:c7:2f: 7c:3d:ed:f0:5c:36:13:43:44:36:98:6f:0e:a8:0a:24:5d:53: 23:b2:7f:ac:6b:a4:41:9e:08:cf:1a:d2:0d:fd:f0:7d:22:ac: 0e:a9:5e:64:2c:98:db:58:86:5f:b8:fa:fb:e0:7a:5d:a1:fa: fb:43:46:c5:c9:c7:9c:9b:64:80:3c:f0:c7:0e:05:16:f9:00: 39:03:7e:2c:78:fb:4b:01:b0:d2:df:77:7c:9d:2d:77:61:b8: b2:3e:f1:bf:7a:27:c6:f2:3d:27:b7:a7:da:8b:e8:ed:95:20: a3:c0:a8:b6:90:06:47:29:5d:6c:19:18:82:46:ac:44:cf:ff: e4:4b:af:f5:dc:cf:88:f9:69:5e:7b:cb:27:8c:ae:f6:13:8d: 05:93:51:a2:22:c8:f5:b9:fa:d6:cb:83:05:41:01:9c:ce:5b: 12:82:27:0a:04:0a:30:10:f7:6c:cf:0f:f1:91:2a:97:d6:9c: cc:f4:14:37:33:71:88:3c:37:bb:e6:bf:e9:aa:34:87:13:29: 78:ee:00:65:7c:a9:8c:7e:99:77:b0:74:6e:84:1d:29:96:f7: 11:74:b3:87 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIDAOkQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MzI1NFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzcwYzYtYTk3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANlafJzQvp0g+WkcTbuQ+vC0kfmPAeyrzVi/ZmsBj8Q6CUsrZuSgl8GOTZzZ ehW56Bgiarg1ByJgimRjJOketMbYV+9LSXMWeIuCHUnJ7eY+j/UcpQrZPH0hXAJs Zq7qNquqKUF3mVOi8Crbza+qi8CaDPMrWMdbODKs0f5MQJjHPqUqnoYV+X+6xsdV xYey7D4BWmE/qCsqynMfOlBn5xnpKk5q8MsMli72Ndjo1yNN/jOJjLvkzU0hXCke fkYMGYZ1JK9ytr09wnGcImPCi7+xp3HguS9ZMzmw0k1vvLIbxrchZrv6FN38TRmd 6zB/5vPDbnlC67hpnRahhX/zLAMCAwEAAaOCAqIwggKeMB0GA1UdDgQWBBRFGKmj UACYKKdXFx4Im3bwt58PHDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IyQjZGNEZD MDg2RTExRjBBRTQ3OEUzOEM0RjlBRTAyLnJvYTBhBggrBgEFBQcBBwEB/wRSMFAw TgQCAAEwSAMEASvzUAMEACvzUwMEAC364wMEAGdF3AMEAGdF3wMEAWeDXAMEAWen SgMEAGen9wMEAWevdAMEAGe5CgMEAmfm3AMEAGfo7zANBgkqhkiG9w0BAQsFAAOC AQEAXZz1tug6lp1zoofi0RwpZehxllEb6OB2DBQwTnCAmX1KUccvfD3t8Fw2E0NE NphvDqgKJF1TI7J/rGukQZ4IzxrSDf3wfSKsDqleZCyY21iGX7j6++B6XaH6+0NG xcnHnJtkgDzwxw4FFvkAOQN+LHj7SwGw0t93fJ0td2G4sj7xv3onxvI9J7en2ovo 7ZUgo8CotpAGRyldbBkYgkasRM//5Euv9dzPiPlpXnvLJ4yu9hONBZNRoiLI9bn6 1suDBUEBnM5bEoInCgQKMBD3bM8P8ZEql9aczPQUNzNxiDw3u+a/6ao0hxMpeO4A ZXypjH6Zd7B0boQdKZb3EXSzhw== -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:23 2026 by rpki-client