$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4ACA00603CD11ECA480B07CC4F9AE02.roa File: D4ACA00603CD11ECA480B07CC4F9AE02.roa (raw, json) Hash identifier: P684EIXX0Ppq9ubtDJYJGQOkMWj8hf16xjZhZnRf7Ow= Subject key identifier: B4:35:FE:25:B6:11:13:4D:54:70:31:65:E9:42:11:DE:26:E4:04:B4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E722 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4ACA00603CD11ECA480B07CC4F9AE02.roa Signing time: Sun 31 May 2026 17:16:20 +0000 ROA not before: Sun 31 May 2026 17:16:20 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 141534 IP address blocks: 103.167.124.0/24 maxlen: 24 163.128.67.0/24 maxlen: 24 2001:df6:b580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59170 (0xe722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:16:20 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6ce4-414d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4c:f6:ad:9c:c6:a6:c9:06:97:b9:5b:19:e7: e3:44:f9:d7:d1:0e:59:9a:d7:ee:69:e0:e1:a1:ea: 69:ff:54:50:7b:25:51:eb:e7:e6:1b:de:d4:4c:20: 09:3c:77:d4:b0:d8:a3:34:f8:93:d0:5f:06:4a:46: f8:2d:f8:6a:ef:ee:4e:0e:6a:07:3a:7b:3a:06:3b: 33:8b:69:cc:4d:f4:ef:01:a1:fb:33:3e:ea:e5:c7: 00:8f:8e:47:8a:f7:64:3d:4a:78:2c:d9:93:9c:59: 60:7a:5b:e1:d3:16:ab:d9:88:2f:ae:ac:19:4e:5e: d1:c7:bd:07:49:f0:c2:f0:89:6f:82:aa:f0:62:f6: 98:17:70:cf:8a:51:b9:3b:26:30:e7:78:61:89:91: ba:e4:ad:3b:f7:82:d4:d8:f8:f5:1d:53:ca:af:69: b1:27:81:7a:36:6a:14:27:ad:fb:a6:8b:33:f8:ca: 1d:ba:d5:5e:d9:c9:89:ed:37:ce:f4:94:d7:62:b2: 3a:82:46:99:c3:9d:0b:9c:5f:06:c5:d7:66:50:86: 7d:bd:47:a1:c7:d7:3c:69:81:c2:19:bb:e3:84:91: 6e:d3:bf:47:0b:b9:92:27:91:4b:b8:1f:5a:a5:20: a4:b3:88:33:47:72:22:82:d9:a7:10:1a:3f:21:b2: ee:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:35:FE:25:B6:11:13:4D:54:70:31:65:E9:42:11:DE:26:E4:04:B4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4ACA00603CD11ECA480B07CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.124.0/24 163.128.67.0/24 IPv6: 2001:df6:b580::/48 Signature Algorithm: sha256WithRSAEncryption 09:07:29:c2:fc:71:db:76:8d:1f:3e:19:aa:af:23:ac:8e:a1: 7a:3f:83:44:19:14:9f:20:95:42:5d:30:8f:8e:17:80:44:3b: 02:56:94:ac:ca:a1:f0:02:e4:13:3a:97:4a:ab:0d:54:dc:ff: ea:a7:2a:c6:d0:f9:19:2d:d2:23:16:df:76:07:b4:d0:fe:62: cc:7d:39:22:1f:46:17:61:ba:c7:02:5d:e8:c4:1c:21:11:2b: a6:27:53:1c:5e:c1:73:99:bd:7d:53:55:f5:1b:16:e6:81:00: db:42:5d:9d:11:ed:e7:f4:45:b1:9e:c9:07:6e:f5:8a:7b:30: 9c:11:a1:48:04:4e:a3:69:37:b7:c7:76:43:9b:68:7b:90:6c: 8b:6a:ea:2e:6e:74:36:05:32:4f:65:9b:2c:0a:f1:26:3d:f0: 1b:13:62:dc:c2:f9:5c:da:0a:51:8a:64:a6:84:84:39:8e:b6: a4:e8:36:3b:3c:cd:ab:c5:21:bc:26:fd:1a:65:0a:d5:ef:e1: 16:b2:dd:d6:9e:47:e7:9a:77:3d:a3:de:e3:b9:37:f7:33:59: 34:e2:8d:b5:5f:60:e8:4f:d9:3c:d1:ab:9a:1d:32:48:e8:d3: 7a:35:15:3e:7e:af:2e:ad:47:7f:f9:db:22:2f:22:6a:97:65: 92:d2:8f:58 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDAOciMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MTYyMFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZjZTQtNDE0ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1M9q2cxqbJBpe5Wxnn40T519EOWZrX7mng4aHqaf9UUHslUevn5hve1Ewg CTx31LDYozT4k9BfBkpG+C34au/uTg5qBzp7OgY7M4tpzE307wGh+zM+6uXHAI+O R4r3ZD1KeCzZk5xZYHpb4dMWq9mIL66sGU5e0ce9B0nwwvCJb4Kq8GL2mBdwz4pR uTsmMOd4YYmRuuStO/eC1Nj49R1Tyq9psSeBejZqFCet+6aLM/jKHbrVXtnJie03 zvSU12KyOoJGmcOdC5xfBsXXZlCGfb1HocfXPGmBwhm744SRbtO/Rwu5kieRS7gf WqUgpLOIM0dyIoLZpxAaPyGy7lkCAwEAAaOCAncwggJzMB0GA1UdDgQWBBS0Nf4l thETTVRwMWXpQhHeJuQEtDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q0QUNBMDA2 MDNDRDExRUNBNDgwQjA3Q0M0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGenfAMEAKOAQzAPBAIAAjAJAwcAIAEN9rWAMA0GCSqGSIb3DQEB CwUAA4IBAQAJBynC/HHbdo0fPhmqryOsjqF6P4NEGRSfIJVCXTCPjheARDsCVpSs yqHwAuQTOpdKqw1U3P/qpyrG0PkZLdIjFt92B7TQ/mLMfTkiH0YXYbrHAl3oxBwh ESumJ1McXsFzmb19U1X1GxbmgQDbQl2dEe3n9EWxnskHbvWKezCcEaFIBE6jaTe3 x3ZDm2h7kGyLauoubnQ2BTJPZZssCvEmPfAbE2Lcwvlc2gpRimSmhIQ5jrak6DY7 PM2rxSG8Jv0aZQrV7+EWst3Wnkfnmnc9o97juTf3M1k04o21X2DoT9k80auaHTJI 6NN6NRU+fq8urUd/+dsiLyJql2WS0o9Y -----END CERTIFICATE-----Generated at Thu Jun 4 09:03:37 2026 by rpki-client