$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDE3C72871B311F091DB9E2AC4F9AE02.roa File: DDE3C72871B311F091DB9E2AC4F9AE02.roa (raw, json) Hash identifier: vwC/jp4NfAqvOFRs48FEKRKhYYSE38whTUXvLsX3Lyc= Subject key identifier: 29:3C:74:51:E2:49:BD:7E:C8:B3:DF:E3:14:A7:99:DC:1A:33:F2:AD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E2EF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDE3C72871B311F091DB9E2AC4F9AE02.roa Signing time: Sun 31 May 2026 16:41:19 +0000 ROA not before: Sun 31 May 2026 16:41:19 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134041 IP address blocks: 103.6.90.0/23 maxlen: 24 103.61.195.0/24 maxlen: 24 103.159.182.0/23 maxlen: 24 103.162.178.0/24 maxlen: 24 103.178.193.0/24 maxlen: 24 103.193.255.0/24 maxlen: 24 103.216.200.0/24 maxlen: 24 2402:ccc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58095 (0xe2ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:41:19 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c64af-3e01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f9:28:02:9c:ec:cb:0b:02:c5:16:c1:d3:d9: 57:5f:d0:3c:55:43:dc:dd:fb:20:14:ce:24:72:c3: 88:bb:a1:f4:18:3b:73:a3:ac:f2:c0:f5:20:63:49: 0f:6c:37:7c:1f:76:ac:5e:77:b6:8e:2a:a9:bd:44: c8:8e:7a:33:13:b6:3c:32:5a:a1:b9:b5:fc:82:3d: 10:fd:65:50:6d:3b:45:8b:48:a8:5d:57:95:dc:51: fc:08:81:3b:f7:7d:65:b2:4f:1a:65:82:73:f7:30: 38:19:aa:47:4f:f4:08:7e:61:7a:b3:22:fe:8a:41: 41:fd:01:96:e4:b2:37:6e:2a:cd:2a:57:ba:c8:e2: e7:d7:a2:d0:33:6e:f8:f0:5d:9f:4b:eb:df:68:6b: 4c:96:cf:48:94:bf:82:30:0f:98:05:87:98:f7:7f: 1e:2f:56:f1:d7:eb:93:fa:ae:03:9a:98:58:c2:c8: 3a:33:73:97:34:96:05:c7:c1:7c:7d:69:b7:f8:df: 4a:17:8d:b2:2f:25:8e:a3:b9:86:49:f9:2d:71:4b: 73:62:5a:26:84:65:66:78:06:8b:ab:0d:c1:99:e1: ab:87:84:84:1f:7f:9c:a5:12:40:91:24:68:ba:c1: 6e:2f:15:59:8d:cc:f0:f7:08:1e:8a:2f:6b:25:74: 21:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3C:74:51:E2:49:BD:7E:C8:B3:DF:E3:14:A7:99:DC:1A:33:F2:AD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DDE3C72871B311F091DB9E2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.6.90.0/23 103.61.195.0/24 103.159.182.0/23 103.162.178.0/24 103.178.193.0/24 103.193.255.0/24 103.216.200.0/24 IPv6: 2402:ccc0::/32 Signature Algorithm: sha256WithRSAEncryption 07:6f:eb:79:0d:27:1c:e7:18:d2:fa:fe:ea:0a:f0:a1:58:4c: f4:ba:62:a0:6d:7f:cc:b7:2d:b3:ee:b5:d8:38:b0:a8:be:8f: 0a:d5:69:eb:f5:51:4a:6f:40:dd:62:e8:b8:6e:41:9a:c7:5d: 79:34:f2:97:88:68:8e:f7:52:5f:aa:1d:b0:1e:fc:f7:35:f3: 78:12:e2:79:13:61:6c:23:d2:3a:1e:a8:bd:47:ee:9d:c2:93: 8a:cc:20:2c:ef:e5:1d:11:a3:c0:1b:ec:b3:7e:a3:02:64:a3: b3:d6:0a:9a:7c:30:66:6e:53:da:49:f5:a0:0f:19:3e:c2:a8: cd:83:86:9f:aa:96:2c:79:70:d9:da:91:0e:3f:fd:d4:d7:12: 50:42:77:04:ef:d4:45:2d:65:be:85:7b:30:a1:68:2b:33:25: 8b:b8:2c:cd:c3:0e:54:3e:16:48:34:ce:b7:fe:b2:89:0b:41: 63:63:2a:3d:f5:62:81:f4:db:8e:6e:33:ca:82:3a:4f:fe:4a: 4a:d2:a4:b7:7d:63:74:9e:c2:4d:ad:46:15:17:64:86:31:33: 9f:e2:5a:01:e3:6a:59:3a:a8:3d:51:49:35:d0:a9:70:34:e7: 30:7d:c6:f4:f4:96:41:a5:e0:10:f3:da:70:d0:49:a6:04:93: 3c:1e:78:f6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIDAOLvMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDExOVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY0YWYtM2UwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOH5KAKc7MsLAsUWwdPZV1/QPFVD3N37IBTOJHLDiLuh9Bg7c6Os8sD1IGNJ D2w3fB92rF53to4qqb1EyI56MxO2PDJaobm1/II9EP1lUG07RYtIqF1XldxR/AiB O/d9ZbJPGmWCc/cwOBmqR0/0CH5herMi/opBQf0BluSyN24qzSpXusji59ei0DNu +PBdn0vr32hrTJbPSJS/gjAPmAWHmPd/Hi9W8dfrk/quA5qYWMLIOjNzlzSWBcfB fH1pt/jfSheNsi8ljqO5hkn5LXFLc2JaJoRlZngGi6sNwZnhq4eEhB9/nKUSQJEk aLrBbi8VWY3M8PcIHoovayV0Ib8CAwEAAaOCApMwggKPMB0GA1UdDgQWBBQpPHRR 4km9fsiz3+MUp5ncGjPyrTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0RERTNDNzI4 NzFCMzExRjA5MURCOUUyQUM0RjlBRTAyLnJvYTBSBggrBgEFBQcBBwEB/wRDMEEw MAQCAAEwKgMEAWcGWgMEAGc9wwMEAWeftgMEAGeisgMEAGeywQMEAGfB/wMEAGfY yDANBAIAAjAHAwUAJALMwDANBgkqhkiG9w0BAQsFAAOCAQEAB2/reQ0nHOcY0vr+ 6grwoVhM9LpioG1/zLcts+612DiwqL6PCtVp6/VRSm9A3WLouG5BmsddeTTyl4ho jvdSX6odsB789zXzeBLieRNhbCPSOh6ovUfuncKTiswgLO/lHRGjwBvss36jAmSj s9YKmnwwZm5T2kn1oA8ZPsKozYOGn6qWLHlw2dqRDj/91NcSUEJ3BO/URS1lvoV7 MKFoKzMli7gszcMOVD4WSDTOt/6yiQtBY2MqPfVigfTbjm4zyoI6T/5KStKkt31j dJ7CTa1GFRdkhjEzn+JaAeNqWTqoPVFJNdCpcDTnMH3G9PSWQaXgEPPacNBJpgST PB549g== -----END CERTIFICATE-----Generated at Thu Jun 4 09:04:17 2026 by rpki-client