$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D5F819E28A9311ED9F4B8F13C4F9AE02.roa File: D5F819E28A9311ED9F4B8F13C4F9AE02.roa (raw, json) Hash identifier: 7RQV3vdd5vLfCTaWZi1hI7+5WdA8rQVd+1sDMwuVQBc= Subject key identifier: E6:75:C5:CC:DB:D1:CB:C2:19:57:F1:CC:94:14:A1:E5:0B:39:40:6B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E688 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D5F819E28A9311ED9F4B8F13C4F9AE02.roa Signing time: Sun 31 May 2026 17:11:25 +0000 ROA not before: Sun 31 May 2026 17:11:25 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 140158 IP address blocks: 103.149.196.0/23 maxlen: 24 103.182.158.0/24 maxlen: 24 103.182.159.0/24 maxlen: 24 2407:96c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59016 (0xe688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:11:25 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6bbd-551d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:04:6b:ec:9d:93:d4:70:e5:14:5b:47:c5:4a: 20:12:03:c4:b6:53:3b:6e:34:b4:c3:cd:cd:f6:62: 12:8b:70:bd:ad:ce:94:81:1b:4f:96:85:50:68:50: 9b:7c:1f:30:43:ec:9a:9f:85:72:95:ee:1f:9b:e5: 34:1a:8e:26:17:34:f6:12:71:3f:fe:2a:1c:bb:ec: c5:d9:40:33:d7:ab:da:31:ec:26:2a:f8:f8:0f:03: bc:e7:be:8c:7c:6b:63:8e:26:e1:87:95:1f:96:5f: c7:64:5c:22:f7:2a:5d:87:17:c3:2f:ac:4d:67:be: de:e2:72:19:ef:00:a0:9f:d1:16:24:02:2a:75:ad: fe:ad:cf:13:3d:4b:78:3c:da:d0:91:39:6f:cb:ef: 33:5a:83:69:c0:c7:59:bc:35:b2:17:ec:73:7b:b4: 6e:84:bc:7e:db:ec:61:12:63:63:e6:c7:5f:0c:3e: b1:6b:c2:a3:2b:31:58:f4:ea:9e:40:4c:0e:9d:9a: 47:c9:7f:c2:e4:23:43:f9:ed:09:71:5d:8c:3c:b3: 36:d3:6f:71:3b:ea:f8:b5:94:9c:98:3b:ff:e8:07: f1:a3:c4:46:f6:d8:19:92:9d:70:a1:ca:82:93:f3: ff:d0:72:09:46:58:2c:53:49:de:ac:ca:9f:bb:43: 95:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:75:C5:CC:DB:D1:CB:C2:19:57:F1:CC:94:14:A1:E5:0B:39:40:6B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D5F819E28A9311ED9F4B8F13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.196.0/23 103.182.158.0/23 IPv6: 2407:96c0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:86:78:20:22:d3:e5:88:d5:8c:6c:be:ea:20:9a:d3:18:5d: 5d:51:fe:5c:4e:11:d5:92:81:ab:91:ab:4d:75:5c:ae:07:99: 15:6a:86:ae:15:60:2c:57:cb:13:21:fb:b9:13:db:fa:df:5e: d4:ce:a9:e6:ed:25:b2:a5:97:ad:20:14:43:cf:b7:0d:9f:3e: 09:15:d8:73:63:f1:75:a6:8e:99:d0:b1:da:09:5e:bd:6b:5c: be:ef:f2:b4:4a:f5:e2:dd:a0:34:1f:e5:e1:c6:d6:ba:50:d8: 0f:db:2c:93:71:e9:27:f9:f1:45:1b:57:02:24:4a:b6:f4:5d: 8e:49:53:c0:18:50:3f:d1:2a:6e:40:17:a0:a2:33:6b:3a:bb: 33:00:54:59:e4:71:88:17:92:b0:d5:55:40:fc:e6:94:58:f8: 68:29:16:0b:5f:75:97:f1:56:b8:eb:e2:e9:56:eb:97:e4:92: 40:16:0f:52:a3:29:e0:d6:8f:3a:33:c3:71:18:7b:47:d1:08: d8:bd:92:48:58:aa:57:12:d1:5f:73:52:77:8d:e9:0c:d4:09: 26:2e:be:ff:41:d2:50:b9:cd:a8:d3:6a:a8:58:b6:e4:0a:ac: 0a:e8:61:01:1a:f6:5b:82:6b:95:1f:d0:a7:5d:96:ee:90:ec: c3:37:4c:e6 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIDAOaIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MTEyNVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZiYmQtNTUxZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgEa+ydk9Rw5RRbR8VKIBIDxLZTO240tMPNzfZiEotwva3OlIEbT5aFUGhQ m3wfMEPsmp+FcpXuH5vlNBqOJhc09hJxP/4qHLvsxdlAM9er2jHsJir4+A8DvOe+ jHxrY44m4YeVH5Zfx2RcIvcqXYcXwy+sTWe+3uJyGe8AoJ/RFiQCKnWt/q3PEz1L eDza0JE5b8vvM1qDacDHWbw1shfsc3u0boS8ftvsYRJjY+bHXww+sWvCoysxWPTq nkBMDp2aR8l/wuQjQ/ntCXFdjDyzNtNvcTvq+LWUnJg7/+gH8aPERvbYGZKdcKHK gpPz/9ByCUZYLFNJ3qzKn7tDlekCAwEAAaOCAnUwggJxMB0GA1UdDgQWBBTmdcXM 29HLwhlX8cyUFKHlCzlAazAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q1RjgxOUUy OEE5MzExRUQ5RjRCOEYxM0M0RjlBRTAyLnJvYTA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAWeVxAMEAWe2njANBAIAAjAHAwUAJAeWwDANBgkqhkiG9w0BAQsF AAOCAQEAjoZ4ICLT5YjVjGy+6iCa0xhdXVH+XE4R1ZKBq5GrTXVcrgeZFWqGrhVg LFfLEyH7uRPb+t9e1M6p5u0lsqWXrSAUQ8+3DZ8+CRXYc2PxdaaOmdCx2glevWtc vu/ytEr14t2gNB/l4cbWulDYD9ssk3HpJ/nxRRtXAiRKtvRdjklTwBhQP9EqbkAX oKIzazq7MwBUWeRxiBeSsNVVQPzmlFj4aCkWC191l/FWuOvi6Vbrl+SSQBYPUqMp 4NaPOjPDcRh7R9EI2L2SSFiqVxLRX3NSd43pDNQJJi6+/0HSULnNqNNqqFi25Aqs CuhhARr2W4JrlR/Qp12W7pDswzdM5g== -----END CERTIFICATE-----Generated at Thu Jun 4 09:07:16 2026 by rpki-client