$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4F5D2FCD00E11F0AC8E2751C4F9AE02.roa File: B4F5D2FCD00E11F0AC8E2751C4F9AE02.roa (raw, json) Hash identifier: ctz0vHlA8k5WKlsq32KFqv/K/0MHBDG1JWTfV1Hjxio= Subject key identifier: F9:17:92:2F:C3:6A:ED:AC:25:52:4F:FC:50:6A:40:EC:B4:DE:7B:61 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EB77 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4F5D2FCD00E11F0AC8E2751C4F9AE02.roa Signing time: Sun 31 May 2026 17:52:20 +0000 ROA not before: Sun 31 May 2026 17:52:20 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 56268 IP address blocks: 43.224.128.0/22 maxlen: 24 103.252.24.0/22 maxlen: 24 202.38.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60279 (0xeb77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:52:20 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7554-3f3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0f:e2:be:a5:e8:e1:62:27:6b:a5:e5:ab:25: 7e:92:3f:f4:cd:ca:00:0a:08:17:ec:3c:3a:b7:00: 55:6a:cf:90:28:35:fa:93:3b:b7:ff:99:f6:d5:7e: 35:41:35:d4:22:19:ca:4f:1f:82:28:d5:fd:9d:a8: 07:ea:13:6c:53:49:ca:a4:89:f4:2d:a2:54:91:80: 55:5a:68:6d:ce:69:34:4e:7a:9a:e1:00:f8:23:6d: fd:87:e0:83:77:7d:de:b3:c5:76:85:62:8f:77:f0: 8e:87:e3:9d:ee:b4:f3:39:9b:29:e6:e2:d8:31:3a: fa:c0:45:59:3b:ff:da:f7:a3:60:fe:39:ea:36:4d: 60:81:63:b9:36:9d:87:e3:aa:4d:ce:80:1c:f0:7e: 9d:14:60:f2:06:cd:cc:02:af:ea:97:e4:64:27:44: ae:43:8c:56:11:c5:d4:1c:e4:16:1f:d9:13:47:44: d6:2a:fb:a7:59:ed:25:27:61:53:3b:3c:c7:6a:0a: d0:c9:90:80:90:47:2e:0c:d1:e6:fb:13:39:e6:ad: b9:2a:1d:c8:39:aa:16:73:eb:ff:a8:9b:ad:5e:50: c0:0b:a6:ae:72:73:c0:c0:0a:a2:19:cc:1c:c8:6e: be:1b:fa:54:63:02:ac:32:1b:57:97:90:a1:c9:85: 17:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:92:2F:C3:6A:ED:AC:25:52:4F:FC:50:6A:40:EC:B4:DE:7B:61 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4F5D2FCD00E11F0AC8E2751C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.128.0/22 103.252.24.0/22 202.38.180.0/22 Signature Algorithm: sha256WithRSAEncryption 48:48:f4:4a:71:22:75:f9:41:3e:92:32:86:3a:40:9f:d6:f8: e5:60:d3:80:c8:f8:6f:52:73:ae:4f:46:3b:21:b3:f0:97:17: e9:38:58:2e:b9:44:6c:66:ce:5b:a8:ce:be:6f:ec:bf:98:46: 39:05:a1:78:14:35:00:77:66:f7:58:0f:7b:29:80:f1:e5:8d: 30:c1:e5:b7:37:b1:c6:d9:71:9f:a0:be:15:cd:51:c1:86:62: 2e:cf:ae:48:00:b3:e8:05:0b:4e:34:39:f9:1b:04:c2:82:72: 9b:79:6b:9f:58:f5:e8:81:2a:98:33:e0:d0:15:9b:48:15:57: de:d4:54:cb:25:48:bd:6b:34:7f:7c:ae:77:0c:ee:0c:ee:65: 85:1a:fc:af:f2:d6:83:06:d0:1d:19:de:aa:6e:d3:9f:60:d2: 5a:f3:ee:3f:c1:00:5f:20:62:d2:67:ad:25:2f:49:3b:bb:1b: 36:fd:af:a4:b8:0e:89:e4:9e:86:96:05:4b:8a:04:c4:1b:03: 4d:5b:56:e0:2b:22:70:4e:86:fb:14:63:40:dd:7a:90:02:cc: 6b:f0:67:52:b6:a0:84:36:87:db:46:b1:9a:da:14:a9:b1:5e: 3a:b4:54:7b:14:da:ed:19:2e:c9:a2:1c:6f:f2:f1:43:61:99: 0f:ca:14:9d -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIDAOt3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTIyMFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc1NTQtM2YzZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIP4r6l6OFiJ2ul5aslfpI/9M3KAAoIF+w8OrcAVWrPkCg1+pM7t/+Z9tV+ NUE11CIZyk8fgijV/Z2oB+oTbFNJyqSJ9C2iVJGAVVpobc5pNE56muEA+CNt/Yfg g3d93rPFdoVij3fwjofjne608zmbKebi2DE6+sBFWTv/2vejYP456jZNYIFjuTad h+OqTc6AHPB+nRRg8gbNzAKv6pfkZCdErkOMVhHF1BzkFh/ZE0dE1ir7p1ntJSdh Uzs8x2oK0MmQgJBHLgzR5vsTOeatuSodyDmqFnPr/6ibrV5QwAumrnJzwMAKohnM HMhuvhv6VGMCrDIbV5eQocmFF60CAwEAAaOCAmwwggJoMB0GA1UdDgQWBBT5F5Iv w2rtrCVST/xQakDstN57YTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I0RjVEMkZD RDAwRTExRjBBQzhFMjc1MUM0RjlBRTAyLnJvYTArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAivggAMEAmf8GAMEAsomtDANBgkqhkiG9w0BAQsFAAOCAQEASEj0 SnEidflBPpIyhjpAn9b45WDTgMj4b1Jzrk9GOyGz8JcX6ThYLrlEbGbOW6jOvm/s v5hGOQWheBQ1AHdm91gPeymA8eWNMMHltzexxtlxn6C+Fc1RwYZiLs+uSACz6AUL TjQ5+RsEwoJym3lrn1j16IEqmDPg0BWbSBVX3tRUyyVIvWs0f3yudwzuDO5lhRr8 r/LWgwbQHRneqm7Tn2DSWvPuP8EAXyBi0metJS9JO7sbNv2vpLgOieSehpYFS4oE xBsDTVtW4CsicE6G+xRjQN16kALMa/BnUraghDaH20axmtoUqbFeOrRUexTa7Rku yaIcb/LxQ2GZD8oUnQ== -----END CERTIFICATE-----Generated at Thu Jun 4 09:05:21 2026 by rpki-client