$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4D0D406BDD411EAA2D98325C4F9AE02.roa File: E4D0D406BDD411EAA2D98325C4F9AE02.roa (raw, json) Hash identifier: meikl6wjLZ6ofCCxdHShmmuyowuITUk/TuSjvwpWGSc= Subject key identifier: 53:8E:ED:48:1A:8D:49:89:EE:13:58:8F:50:FC:88:6F:81:C5:97:24 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E305 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4D0D406BDD411EAA2D98325C4F9AE02.roa Signing time: Sun 31 May 2026 16:42:02 +0000 ROA not before: Sun 31 May 2026 16:42:02 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 134262 IP address blocks: 103.70.128.0/24 maxlen: 24 103.70.131.0/24 maxlen: 24 2001:df1:1b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58117 (0xe305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:42:02 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c64da-0ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:64:4b:c3:73:51:fa:4c:6b:97:f7:a1:15:52: 22:1f:5f:0e:ca:5f:96:6f:0a:ef:98:c0:3e:9f:86: 95:2e:9d:2b:c0:91:1a:b5:33:0e:a0:57:4a:8f:2a: b3:81:50:28:e8:b6:7e:36:de:64:98:35:66:79:2b: 7f:cc:d7:70:5b:a2:29:b8:6a:b4:42:24:e5:45:22: 24:73:8d:58:6a:8b:93:ca:a4:2e:0f:b9:5c:e9:f1: c5:a6:78:06:6b:0e:8b:6d:a0:8e:6c:89:10:c0:a4: 0d:65:8a:6f:cb:21:be:ca:98:46:7e:dc:82:8d:c3: 75:51:8c:d6:48:54:c6:e7:31:6c:88:cd:74:3b:c5: e7:3f:39:2d:19:79:89:1a:22:ab:57:76:53:1d:24: b5:0f:a0:25:e4:61:b8:2c:07:3b:ec:ac:28:e3:88: 6c:46:ee:78:22:56:80:31:94:cb:34:b4:e5:98:22: f0:1d:c0:5d:84:a5:18:f9:9f:6e:3f:92:52:ef:39: da:a5:cf:f5:58:de:f6:a0:6d:6c:89:5b:bf:77:f5: 86:b1:03:11:11:69:59:2b:ee:18:97:89:14:24:2b: 36:c9:99:6f:6b:46:0e:b3:f5:6f:16:a5:00:f0:d4: 32:88:1e:b3:01:d8:bb:d9:65:8b:8b:79:79:09:33: 43:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8E:ED:48:1A:8D:49:89:EE:13:58:8F:50:FC:88:6F:81:C5:97:24 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E4D0D406BDD411EAA2D98325C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.70.128.0/24 103.70.131.0/24 IPv6: 2001:df1:1b40::/48 Signature Algorithm: sha256WithRSAEncryption 34:68:82:b4:2a:6f:b7:58:22:3b:f4:28:5c:fc:8a:ec:87:c7: 87:d0:ca:2c:1b:4f:b0:9a:4d:8e:06:40:fb:44:24:ec:41:02: aa:81:6c:64:fa:c8:54:1a:59:36:4e:f4:7d:9e:9a:68:c5:b9: 6b:52:39:2c:95:91:a5:ec:47:95:95:76:62:09:ec:e3:b3:69: 52:3a:90:54:89:13:9a:ac:bb:f8:4a:a4:4f:94:ef:b8:4e:2a: 4b:7c:1d:50:90:bb:34:8c:45:eb:f7:ee:46:17:e0:3b:2f:5d: 18:b9:0c:58:a6:c9:01:29:27:e2:28:15:99:c7:52:e5:3b:39: ce:06:c8:54:e0:9d:a4:d1:7c:53:67:dd:e4:82:f7:f7:11:5f: be:68:d7:78:fe:23:dd:03:5c:2d:95:c9:b5:5f:25:75:17:60: e2:0e:e9:32:8c:77:28:a4:da:79:94:01:6d:e0:ad:1f:bb:b1: 73:52:e5:d2:16:48:5c:0d:30:bc:49:9a:ab:ed:50:22:8e:80: c4:70:62:ed:c5:24:ab:4d:cf:3a:d4:a9:67:d5:ef:d5:8c:a0: c4:d5:e2:72:fc:40:c8:2d:d0:24:f3:6c:38:c8:ab:f3:4f:c5: e4:96:0d:d2:ea:b6:6d:85:53:36:ae:d9:5e:8d:d1:0c:8e:61: 24:29:1f:98 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDAOMFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NDIwMloXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY0ZGEtMGRkYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANBkS8NzUfpMa5f3oRVSIh9fDspflm8K75jAPp+GlS6dK8CRGrUzDqBXSo8q s4FQKOi2fjbeZJg1Znkrf8zXcFuiKbhqtEIk5UUiJHONWGqLk8qkLg+5XOnxxaZ4 BmsOi22gjmyJEMCkDWWKb8shvsqYRn7cgo3DdVGM1khUxucxbIjNdDvF5z85LRl5 iRoiq1d2Ux0ktQ+gJeRhuCwHO+ysKOOIbEbueCJWgDGUyzS05Zgi8B3AXYSlGPmf bj+SUu852qXP9Vje9qBtbIlbv3f1hrEDERFpWSvuGJeJFCQrNsmZb2tGDrP1bxal APDUMogeswHYu9lli4t5eQkzQ00CAwEAAaOCAncwggJzMB0GA1UdDgQWBBRTju1I Go1Jie4TWI9Q/IhvgcWXJDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0U0RDBENDA2 QkRENDExRUFBMkQ5ODMyNUM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGdGgAMEAGdGgzAPBAIAAjAJAwcAIAEN8RtAMA0GCSqGSIb3DQEB CwUAA4IBAQA0aIK0Km+3WCI79Chc/Irsh8eH0MosG0+wmk2OBkD7RCTsQQKqgWxk +shUGlk2TvR9nppoxblrUjkslZGl7EeVlXZiCezjs2lSOpBUiROarLv4SqRPlO+4 TipLfB1QkLs0jEXr9+5GF+A7L10YuQxYpskBKSfiKBWZx1LlOznOBshU4J2k0XxT Z93kgvf3EV++aNd4/iPdA1wtlcm1XyV1F2DiDukyjHcopNp5lAFt4K0fu7FzUuXS FkhcDTC8SZqr7VAijoDEcGLtxSSrTc861Kln1e/VjKDE1eJy/EDILdAk82w4yKvz T8Xklg3S6rZthVM2rtlejdEMjmEkKR+Y -----END CERTIFICATE-----Generated at Thu Jun 4 09:08:42 2026 by rpki-client