$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2704B5C24D211F087826555C4F9AE02.roa File: C2704B5C24D211F087826555C4F9AE02.roa (raw, json) Hash identifier: CX3X/euklgkhj8j2Jaj9o/fpFwV7kfrr0IZGsSq0k4k= Subject key identifier: A0:5F:84:E9:DF:9A:EA:9F:95:AD:B8:0B:84:CC:01:E9:AC:CE:DB:3D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E3E7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2704B5C24D211F087826555C4F9AE02.roa Signing time: Sun 31 May 2026 16:49:23 +0000 ROA not before: Sun 31 May 2026 16:49:23 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 135697 IP address blocks: 103.74.227.0/24 maxlen: 24 103.78.201.0/24 maxlen: 24 103.97.210.0/23 maxlen: 24 103.121.114.0/24 maxlen: 24 103.121.115.0/24 maxlen: 24 103.157.194.0/24 maxlen: 24 103.157.195.0/24 maxlen: 24 103.158.182.0/24 maxlen: 24 103.158.183.0/24 maxlen: 24 103.163.200.0/23 maxlen: 24 103.164.210.0/23 maxlen: 24 103.173.220.0/23 maxlen: 24 103.207.88.0/23 maxlen: 24 103.211.104.0/24 maxlen: 24 103.211.105.0/24 maxlen: 24 2406:f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58343 (0xe3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:49:23 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6693-2e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dd:80:a7:63:a0:f8:ce:f5:2c:b2:00:6d:4d: 27:69:b7:29:e7:1e:13:6b:14:57:4c:be:f0:45:d6: 2f:01:f3:88:19:1e:76:10:f3:6e:17:3e:a4:3c:53: d4:f1:68:93:b9:d1:b7:e8:d5:83:e8:e4:7c:cf:84: 22:1a:1a:ac:4c:98:94:5b:b1:54:bc:3f:e8:65:2d: dc:21:0d:18:78:3e:c4:a0:f9:3f:4d:a8:90:9a:fa: 23:8f:39:02:96:55:c8:0e:76:87:51:a1:4b:a1:d2: 76:b6:a9:60:91:75:a3:bf:fd:ab:dc:00:c3:b8:2f: 18:63:35:61:d9:67:3f:25:40:f1:f6:ff:f2:54:71: d9:8d:bd:11:40:a2:78:78:e2:aa:6c:a1:b1:e4:b2: 37:d9:d3:f7:94:1e:e9:94:22:2b:22:58:7d:a1:3f: d7:35:ea:ec:0d:af:7f:75:82:c5:90:3c:16:7e:f0: 5a:86:37:c4:6d:72:16:eb:0e:9e:ff:3a:cc:c4:9c: 85:ae:bd:42:bc:ae:5d:ad:de:88:6f:9c:b5:12:f5: ea:1c:50:0f:a7:a0:24:cd:c7:e4:10:e6:31:9d:cd: a8:63:62:e3:e4:76:91:47:70:85:59:18:c4:b7:05: b3:dd:d4:13:51:4d:29:2f:e5:21:20:4b:ea:15:ed: d3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5F:84:E9:DF:9A:EA:9F:95:AD:B8:0B:84:CC:01:E9:AC:CE:DB:3D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C2704B5C24D211F087826555C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.74.227.0/24 103.78.201.0/24 103.97.210.0/23 103.121.114.0/23 103.157.194.0/23 103.158.182.0/23 103.163.200.0/23 103.164.210.0/23 103.173.220.0/23 103.207.88.0/23 103.211.104.0/23 IPv6: 2406:f40::/32 Signature Algorithm: sha256WithRSAEncryption 72:78:19:da:8e:7a:29:2c:87:cb:51:22:76:39:4b:fe:d7:80: fb:37:26:a2:1b:6b:bd:e2:51:21:16:66:32:fc:fc:3d:b4:f3: 22:af:01:f5:b3:65:7b:66:d2:dd:d4:6c:5b:e8:42:84:b9:e1: 0e:15:bb:16:e3:92:03:62:8e:79:3c:92:3b:12:fe:3e:e1:1b: ce:b9:46:4c:50:67:4d:14:f9:40:ee:58:7f:9e:91:07:68:d7: 97:02:58:ad:2e:47:38:9f:d6:ff:25:a7:dd:c6:88:0f:31:5a: 96:c2:dc:8c:59:8e:17:4a:a1:ee:b0:9c:93:d4:31:93:13:03: eb:90:67:9b:63:13:1c:e9:2b:9c:d3:80:8c:bb:36:eb:2a:b4: 47:4d:3c:3f:a3:cd:31:3d:f6:97:fb:d2:78:f7:a9:c7:c2:b6: bd:82:1c:98:d5:7f:a5:38:cb:45:81:3f:7e:8b:4c:02:fd:1b: a5:c8:ea:a4:d1:29:cd:06:b6:47:2d:29:b3:9a:6b:5a:e9:ba: 74:7c:08:2e:28:59:a2:c1:f1:65:a8:27:44:ca:dc:5b:5d:5d: 9c:7d:96:1d:eb:cb:34:3b:27:c0:41:cc:60:6b:4c:20:56:25: 19:b2:6a:e0:7e:f6:7d:b5:8e:ad:fb:fd:fc:94:a6:0f:68:6b: b7:a6:c5:84 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIDAOPnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDkyM1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY2OTMtMmU1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPdgKdjoPjO9SyyAG1NJ2m3KeceE2sUV0y+8EXWLwHziBkedhDzbhc+pDxT 1PFok7nRt+jVg+jkfM+EIhoarEyYlFuxVLw/6GUt3CENGHg+xKD5P02okJr6I485 ApZVyA52h1GhS6HSdrapYJF1o7/9q9wAw7gvGGM1YdlnPyVA8fb/8lRx2Y29EUCi eHjiqmyhseSyN9nT95Qe6ZQiKyJYfaE/1zXq7A2vf3WCxZA8Fn7wWoY3xG1yFusO nv86zMScha69QryuXa3eiG+ctRL16hxQD6egJM3H5BDmMZ3NqGNi4+R2kUdwhVkY xLcFs93UE1FNKS/lISBL6hXt058CAwEAAaOCAqswggKnMB0GA1UdDgQWBBSgX4Tp 35rqn5WtuAuEzAHprM7bPTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0MyNzA0QjVD MjREMjExRjA4NzgyNjU1NUM0RjlBRTAyLnJvYTBqBggrBgEFBQcBBwEB/wRbMFkw SAQCAAEwQgMEAGdK4wMEAGdOyQMEAWdh0gMEAWd5cgMEAWedwgMEAWeetgMEAWej yAMEAWek0gMEAWet3AMEAWfPWAMEAWfTaDANBAIAAjAHAwUAJAYPQDANBgkqhkiG 9w0BAQsFAAOCAQEAcngZ2o56KSyHy1EidjlL/teA+zcmohtrveJRIRZmMvz8PbTz Iq8B9bNle2bS3dRsW+hChLnhDhW7FuOSA2KOeTySOxL+PuEbzrlGTFBnTRT5QO5Y f56RB2jXlwJYrS5HOJ/W/yWn3caIDzFalsLcjFmOF0qh7rCck9QxkxMD65Bnm2MT HOkrnNOAjLs26yq0R008P6PNMT32l/vSePepx8K2vYIcmNV/pTjLRYE/fotMAv0b pcjqpNEpzQa2Ry0ps5prWum6dHwILihZosHxZagnRMrcW11dnH2WHevLNDsnwEHM YGtMIFYlGbJq4H72fbWOrfv9/JSmD2hrt6bFhA== -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:34 2026 by rpki-client