$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4C5651A623C11F0955BD477C4F9AE02.roa File: D4C5651A623C11F0955BD477C4F9AE02.roa (raw, json) Hash identifier: greMn1hme1JoQiiWA8z8BbDC1EyOaxJeRF43x8OiJ7g= Subject key identifier: 91:14:DA:D4:C1:52:A0:08:C4:29:ED:81:AD:B5:1F:17:5F:3D:C5:1F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EA4C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4C5651A623C11F0955BD477C4F9AE02.roa Signing time: Sun 31 May 2026 17:43:05 +0000 ROA not before: Sun 31 May 2026 17:43:05 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152542 IP address blocks: 103.201.136.0/24 maxlen: 24 103.201.137.0/24 maxlen: 24 103.201.138.0/24 maxlen: 24 103.201.139.0/24 maxlen: 24 2001:df6:f180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59980 (0xea4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:43:05 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7329-6697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:e4:6e:e7:57:a4:78:37:06:d9:24:eb:49: 6d:98:2d:92:36:03:cb:bc:9e:9b:49:91:88:c4:73: d9:08:96:41:5c:0f:ac:8b:d8:c5:50:a5:fd:9e:38: 83:9f:9d:51:88:7f:d1:6e:41:ce:da:bb:74:d0:66: 57:c9:02:f5:85:c8:8c:14:be:be:61:6a:2f:64:74: 36:0c:78:53:2e:35:d1:fe:ea:98:fd:15:49:f8:88: 64:5b:bd:c7:1c:79:3c:03:44:21:ca:f7:2e:0b:c1: 01:f1:c9:7f:e1:72:54:e5:e0:ee:8b:4b:12:c8:9e: 54:e3:c2:da:83:37:ca:03:6e:e3:fb:e5:64:9e:08: ee:68:68:fc:51:ab:a9:8e:95:2d:f8:42:e7:a8:2b: 6e:5d:a7:bf:d9:be:d0:88:0b:08:47:13:72:e0:fd: 43:df:b8:a7:a1:1d:77:09:aa:a8:32:af:b4:54:dc: c2:9f:a5:cf:77:70:ad:a8:f2:24:ee:09:48:0c:f9: 91:b2:83:d7:e5:40:e1:52:30:94:6c:00:f7:43:34: 23:8c:4c:d1:46:9f:1d:76:8c:e5:df:5a:54:62:db: c0:b2:23:db:07:44:68:6c:d1:8e:6e:3f:91:06:09: 18:65:5e:cf:ee:f1:a6:ee:51:dc:5a:ab:44:23:e2: db:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:14:DA:D4:C1:52:A0:08:C4:29:ED:81:AD:B5:1F:17:5F:3D:C5:1F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4C5651A623C11F0955BD477C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.201.136.0/22 IPv6: 2001:df6:f180::/48 Signature Algorithm: sha256WithRSAEncryption b7:31:93:c8:65:84:81:da:07:5f:75:6c:c8:84:d3:76:62:1b: 74:cb:bc:a2:6c:80:f1:29:7f:8e:d2:4f:96:1b:6f:78:fa:ed: ae:e8:65:e4:e1:0d:58:9c:76:c6:0c:2d:15:9f:57:30:2a:7e: c7:e7:78:6b:61:91:09:22:5c:1c:e2:f0:d9:d6:cf:9f:d9:b9: b5:b7:e2:50:60:d8:9f:13:3d:a7:f7:0b:69:fa:08:33:55:c4: 0f:9e:df:72:aa:75:bc:5d:54:ca:27:e8:94:5a:07:38:84:6d: 10:dc:72:77:b8:c7:87:8d:1e:a9:01:86:84:57:54:5e:0f:61: a9:8e:45:25:c8:e7:b8:91:ed:15:0c:ce:18:4d:f1:00:5f:39: c7:c1:16:e0:4d:b4:ae:15:47:b4:77:57:8a:b9:3e:de:74:a4: b7:a1:52:f2:8e:01:23:eb:86:dc:9d:49:52:9b:8a:00:28:0c: cd:77:17:d5:d9:65:05:ed:77:22:02:dc:fa:6b:0b:02:59:61: 9d:de:3d:59:35:0e:05:9b:96:91:b5:86:06:c3:bc:36:ef:f0: 2d:3c:a1:5a:36:1c:60:12:48:e7:fa:37:3d:6c:d6:60:ae:7b: bd:16:8f:d0:3f:f0:b7:d4:8d:2d:12:5a:31:7d:58:8e:68:aa: fa:23:48:c4 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDAOpMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NDMwNVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzczMjktNjY5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsR5G7nV6R4NwbZJOtJbZgtkjYDy7yem0mRiMRz2QiWQVwPrIvYxVCl/Z44 g5+dUYh/0W5Bztq7dNBmV8kC9YXIjBS+vmFqL2R0Ngx4Uy410f7qmP0VSfiIZFu9 xxx5PANEIcr3LgvBAfHJf+FyVOXg7otLEsieVOPC2oM3ygNu4/vlZJ4I7mho/FGr qY6VLfhC56grbl2nv9m+0IgLCEcTcuD9Q9+4p6EddwmqqDKvtFTcwp+lz3dwrajy JO4JSAz5kbKD1+VA4VIwlGwA90M0I4xM0UafHXaM5d9aVGLbwLIj2wdEaGzRjm4/ kQYJGGVez+7xpu5R3FqrRCPi29UCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBSRFNrU wVKgCMQp7YGttR8XXz3FHzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q0QzU2NTFB NjIzQzExRjA5NTVCRDQ3N0M0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAmfJiDAPBAIAAjAJAwcAIAEN9vGAMA0GCSqGSIb3DQEBCwUAA4IB AQC3MZPIZYSB2gdfdWzIhNN2Yht0y7yibIDxKX+O0k+WG294+u2u6GXk4Q1YnHbG DC0Vn1cwKn7H53hrYZEJIlwc4vDZ1s+f2bm1t+JQYNifEz2n9wtp+ggzVcQPnt9y qnW8XVTKJ+iUWgc4hG0Q3HJ3uMeHjR6pAYaEV1ReD2GpjkUlyOe4ke0VDM4YTfEA XznHwRbgTbSuFUe0d1eKuT7edKS3oVLyjgEj64bcnUlSm4oAKAzNdxfV2WUF7Xci Atz6awsCWWGd3j1ZNQ4Fm5aRtYYGw7w27/AtPKFaNhxgEkjn+jc9bNZgrnu9Fo/Q P/C31I0tEloxfViOaKr6I0jE -----END CERTIFICATE-----Generated at Thu Jun 4 09:08:12 2026 by rpki-client