$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ED4375E23C4D11F0BF747077C4F9AE02.roa File: ED4375E23C4D11F0BF747077C4F9AE02.roa (raw, json) Hash identifier: F1PP4TN3dLFo6hKAd6QvnLXt54q+UNNBv4WMnSCnRNU= Subject key identifier: 03:7D:1D:CF:C8:3B:C5:3B:D2:57:E7:0B:6F:EF:F1:16:6C:20:D2:80 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EB43 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ED4375E23C4D11F0BF747077C4F9AE02.roa Signing time: Sun 31 May 2026 17:50:48 +0000 ROA not before: Sun 31 May 2026 17:50:48 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 45235 IP address blocks: 43.227.244.0/22 maxlen: 24 43.231.52.0/22 maxlen: 24 45.250.212.0/22 maxlen: 24 103.8.40.0/22 maxlen: 24 103.48.64.0/22 maxlen: 24 103.50.144.0/22 maxlen: 24 103.98.38.0/23 maxlen: 24 103.199.124.0/22 maxlen: 24 103.219.132.0/22 maxlen: 24 103.230.20.0/22 maxlen: 24 119.42.152.0/21 maxlen: 24 2400:8460::/32 maxlen: 32 2402:d500::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60227 (0xeb43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:50:48 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c74f8-388c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:fa:35:59:33:f7:67:25:f7:b4:6f:8f:62: 33:be:c4:87:e0:41:45:90:ee:48:3f:a4:c9:33:9a: cf:25:14:83:0f:e2:99:ad:d6:81:d0:82:16:8d:37: c6:11:57:32:a8:20:a1:20:25:d8:77:1e:ce:ea:90: 37:e2:72:33:c2:1b:35:9c:87:be:1c:56:84:40:84: 43:7a:e1:3c:f3:71:3d:bc:d3:7c:6f:fb:df:61:e4: 83:30:f2:3d:45:ed:cd:05:2b:bc:a7:2f:58:82:3d: 77:99:7b:7e:9b:02:da:97:f2:0c:ca:8a:c7:e9:9a: 95:fe:db:6d:b7:bf:26:aa:e0:c8:f5:43:56:53:57: eb:65:3b:74:ce:cd:c3:09:d0:db:ed:85:ca:d0:f2: 60:2d:8d:71:f4:06:e7:d9:85:0f:99:e9:c3:c4:77: 01:31:3c:09:b9:b4:e7:21:87:95:ea:15:ff:b9:e7: d0:31:3c:df:35:50:e2:f6:6f:f0:44:aa:07:76:54: 4e:01:5b:66:54:fe:b7:e5:21:eb:69:25:5e:2b:dd: a2:98:cc:7c:e4:94:03:0a:6f:04:db:90:24:4d:8f: 5e:19:ed:8e:69:b0:3d:b1:15:2f:e3:03:25:31:c5: 46:4f:6e:de:85:8b:3f:d0:78:8d:15:37:e4:6c:06: 12:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:7D:1D:CF:C8:3B:C5:3B:D2:57:E7:0B:6F:EF:F1:16:6C:20:D2:80 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ED4375E23C4D11F0BF747077C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.227.244.0/22 43.231.52.0/22 45.250.212.0/22 103.8.40.0/22 103.48.64.0/22 103.50.144.0/22 103.98.38.0/23 103.199.124.0/22 103.219.132.0/22 103.230.20.0/22 119.42.152.0/21 IPv6: 2400:8460::/32 2402:d500::/32 Signature Algorithm: sha256WithRSAEncryption 7c:ca:25:a1:23:ae:0e:7b:0f:eb:93:e4:53:c5:f9:2f:c9:c7: 92:39:22:af:82:ec:ac:af:40:66:1e:5c:27:d8:20:c7:6c:83: ff:e3:e4:eb:b1:e0:57:19:30:05:c1:fe:51:50:78:2b:50:3a: d3:d5:07:0b:95:5c:68:8d:35:59:cf:d2:2d:84:e4:ba:ad:09: 5e:01:c4:0e:92:d6:e3:f7:64:35:56:39:03:05:be:27:19:c3: d7:d0:b0:1a:72:f7:a4:7e:5c:a7:ad:f7:0d:51:b0:21:b8:cd: ec:37:4b:d5:a3:38:f3:73:2a:c6:9c:48:52:a4:eb:6d:81:35: 62:31:6b:66:1a:59:1e:1f:97:4e:17:1b:0d:47:a7:e7:e6:75: 96:1f:40:61:96:f1:48:ea:03:0e:aa:75:7b:13:e9:36:c6:76: 98:60:9f:0f:39:56:54:48:50:55:b9:39:53:7a:5b:5a:b4:67: 71:cc:a6:c2:9b:30:b6:0b:07:92:c5:ad:d0:68:30:4f:a1:fa: dc:a9:d6:24:60:db:9f:e0:2c:4f:3c:7c:fd:26:9d:e9:8a:01: d0:b2:3a:e9:2a:a0:32:68:42:53:d8:b3:59:13:0a:32:85:b3: e9:56:d5:88:ba:b1:25:4f:0f:c7:70:25:fa:06:a1:3e:7a:e2: 17:5e:aa:df -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDAOtDMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3NTA0OFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzc0ZjgtMzg4YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqi+jVZM/dnJfe0b49iM77Eh+BBRZDuSD+kyTOazyUUgw/ima3WgdCCFo03 xhFXMqggoSAl2HcezuqQN+JyM8IbNZyHvhxWhECEQ3rhPPNxPbzTfG/732HkgzDy PUXtzQUrvKcvWII9d5l7fpsC2pfyDMqKx+malf7bbbe/JqrgyPVDVlNX62U7dM7N wwnQ2+2FytDyYC2NcfQG59mFD5npw8R3ATE8Cbm05yGHleoV/7nn0DE83zVQ4vZv 8ESqB3ZUTgFbZlT+t+Uh62klXivdopjMfOSUAwpvBNuQJE2PXhntjmmwPbEVL+MD JTHFRk9u3oWLP9B4jRU35GwGEjECAwEAAaOCArIwggKuMB0GA1UdDgQWBBQDfR3P yDvFO9JX5wtv7/EWbCDSgDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VENDM3NUUy M0M0RDExRjBCRjc0NzA3N0M0RjlBRTAyLnJvYTBxBggrBgEFBQcBBwEB/wRiMGAw SAQCAAEwQgMEAivj9AMEAivnNAMEAi361AMEAmcIKAMEAmcwQAMEAmcykAMEAWdi JgMEAmfHfAMEAmfbhAMEAmfmFAMEA3cqmDAUBAIAAjAOAwUAJACEYAMFACQC1QAw DQYJKoZIhvcNAQELBQADggEBAHzKJaEjrg57D+uT5FPF+S/Jx5I5Iq+C7KyvQGYe XCfYIMdsg//j5Oux4FcZMAXB/lFQeCtQOtPVBwuVXGiNNVnP0i2E5LqtCV4BxA6S 1uP3ZDVWOQMFvicZw9fQsBpy96R+XKet9w1RsCG4zew3S9WjOPNzKsacSFKk622B NWIxa2YaWR4fl04XGw1Hp+fmdZYfQGGW8UjqAw6qdXsT6TbGdphgnw85VlRIUFW5 OVN6W1q0Z3HMpsKbMLYLB5LFrdBoME+h+typ1iRg25/gLE88fP0mnemKAdCyOukq oDJoQlPYs1kTCjKFs+lW1Yi6sSVPD8dwJfoGoT564hdeqt8= -----END CERTIFICATE-----Generated at Thu Jun 4 11:17:18 2026 by rpki-client