
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DF3DB502624011F08C72F822C4F9AE02.roa
File: DF3DB502624011F08C72F822C4F9AE02.roa (raw, json)
Hash identifier: Wcqz/5DjWjlWVUpl2BQ0DohzERD5RNuVqc1fds28nJQ=
Subject key identifier: EA:8F:ED:83:71:A3:10:8A:20:E8:8A:1F:CA:2A:DB:16:B4:B5:AE:1E
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: F799
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DF3DB502624011F08C72F822C4F9AE02.roa
Signing time: Mon 06 Jul 2026 17:52:04 +0000
ROA not before: Mon 06 Jul 2026 17:52:04 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 56201
IP address blocks: 43.239.212.0/23 maxlen: 24
43.239.214.0/23 maxlen: 24
43.246.104.0/22 maxlen: 24
103.103.196.0/22 maxlen: 24
103.122.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 13:11:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63385 (0xf799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jul 6 17:52:04 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6a4beb44-e301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bd:1a:7f:84:5e:8e:0f:9d:be:f2:3a:27:3a:
f5:48:4b:7f:74:a2:cf:95:85:ec:93:13:ce:c5:da:
2f:b6:3b:70:f3:a1:14:4f:ad:77:7a:35:8f:a0:ad:
67:3f:bc:2d:3a:68:df:64:da:7c:0d:7e:c6:ee:6d:
c3:5e:8a:66:e3:83:4b:2d:08:73:b2:10:15:91:0f:
3c:17:23:b9:38:4d:9f:a6:27:40:5e:4f:d7:bc:39:
89:0e:ca:28:ea:47:94:53:38:a8:f4:38:57:2e:ec:
a1:62:72:de:89:1a:1f:92:31:d1:36:d7:e7:99:91:
93:52:8e:38:92:7a:c1:ee:39:d2:78:11:4f:99:40:
d4:20:27:76:ee:6f:4e:bc:6b:da:b3:90:7c:de:f2:
19:6e:5a:c5:57:96:a9:b7:4d:69:ab:f2:0b:7f:85:
62:ad:30:ca:ec:c9:2e:6a:f1:78:f7:57:2d:fd:7b:
a6:17:3f:8e:08:a6:e7:28:ec:1c:fb:04:8a:2a:62:
1d:41:a3:d2:88:64:e7:26:fb:98:61:2c:05:2b:c8:
0c:f9:c0:c4:8a:bf:b9:88:66:79:d3:8a:ee:47:bb:
ce:cf:23:67:b5:b9:4e:9b:08:91:64:3e:61:c7:3b:
47:37:36:dc:6d:32:ec:e2:3a:89:d2:92:d6:45:55:
22:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8F:ED:83:71:A3:10:8A:20:E8:8A:1F:CA:2A:DB:16:B4:B5:AE:1E
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DF3DB502624011F08C72F822C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
43.239.212.0/22
43.246.104.0/22
103.103.196.0/22
103.122.78.0/24
Signature Algorithm: sha256WithRSAEncryption
81:23:92:72:18:6b:28:f2:2d:42:53:7d:a3:6d:15:8c:cd:bd:
1c:39:ba:3c:1c:62:c2:3d:18:51:59:75:56:d1:7a:7a:43:c5:
ff:34:c4:95:21:be:d5:7a:f4:b8:e4:46:d8:98:ff:f8:82:35:
eb:0f:01:57:4b:0c:6b:25:59:8a:ba:6d:33:a6:90:7e:aa:9b:
61:55:48:9e:4c:5e:93:77:27:2b:68:d1:ee:5b:7b:8f:2f:cb:
fd:2b:24:e1:92:98:04:c1:e7:e8:a9:65:1a:3b:9c:40:60:04:
ff:c9:65:fb:58:d3:bc:30:a1:ff:6b:27:dd:28:5a:37:78:5c:
36:8c:32:60:10:e9:ac:f1:c6:d4:33:85:0d:6a:26:35:7a:b1:
3d:84:77:32:db:4a:d1:ee:f7:d8:c5:8a:2b:1c:66:8d:ae:ab:
93:79:84:87:a1:18:38:87:09:31:8f:7e:2f:77:03:00:45:a9:
36:c0:cf:d9:48:ae:91:04:c5:ca:34:bb:a0:ab:15:b9:42:8a:
95:cf:ec:89:1a:c2:89:d1:b5:63:b4:86:3a:d8:b1:3d:54:b7:
2d:22:2e:19:35:c2:72:b9:5d:79:61:bb:cb:06:e3:18:c7:96:
91:65:28:7d:49:16:90:65:25:fa:f9:9e:70:19:14:bf:84:71:
e6:b1:e9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:12:06 2026 by rpki-client