$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FADE6638271E11F0BB35BB52C4F9AE02.roa File: FADE6638271E11F0BB35BB52C4F9AE02.roa (raw, json) Hash identifier: a7a569QGH38/HhoK6BLW/yYhUGvLQRuTikM6UEzDZ3M= Subject key identifier: 19:CA:E0:EE:5B:C1:9B:26:3F:48:EE:B0:D9:45:AC:DC:02:33:EA:F1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E24A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FADE6638271E11F0BB35BB52C4F9AE02.roa Signing time: Sun 31 May 2026 16:36:00 +0000 ROA not before: Sun 31 May 2026 16:36:00 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 133246 IP address blocks: 43.240.8.0/24 maxlen: 24 43.240.9.0/24 maxlen: 24 43.240.10.0/24 maxlen: 24 43.240.11.0/24 maxlen: 24 103.51.216.0/22 maxlen: 24 103.68.95.0/24 maxlen: 24 103.81.208.0/22 maxlen: 24 103.100.178.0/23 maxlen: 24 103.173.191.0/24 maxlen: 24 103.232.124.0/24 maxlen: 24 103.232.125.0/24 maxlen: 24 103.232.126.0/24 maxlen: 24 103.232.127.0/24 maxlen: 24 220.158.136.0/22 maxlen: 24 2001:df2:ab40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 06:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57930 (0xe24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:36:00 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6370-9a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:03:7b:9e:38:f9:52:c9:0f:ce:18:7f:79:23: cb:8f:c4:39:c2:68:5e:56:a2:21:fb:dc:f9:b2:cb: a2:67:4b:9c:8f:47:32:8c:41:e0:8f:a2:2e:d2:bc: df:54:1c:b4:0d:39:6d:f7:d9:e3:b9:41:9c:94:29: 3d:66:fb:98:1d:77:91:02:c6:7a:dd:61:e9:d9:5c: 30:c0:54:5f:d9:9c:62:a3:82:62:01:ff:29:75:bc: 44:16:d4:60:e8:e5:04:9f:02:ff:bc:63:33:cf:70: 35:86:63:9c:c9:3e:8c:d1:73:22:e9:3a:d0:ce:f0: 94:5e:9c:f3:82:10:1b:05:ee:28:b8:27:4e:95:ee: 85:d5:b6:12:97:bd:6e:d9:54:12:8e:4c:06:27:a7: a9:c9:57:02:70:b5:b1:aa:84:f9:46:73:09:53:05: 27:cd:56:c6:cf:b2:4c:52:93:af:33:c7:cc:9f:7c: dc:bf:cf:fb:f4:e5:c7:68:e8:d4:bf:ef:a8:8e:1d: 94:6d:4b:71:f2:3e:30:d3:46:64:ae:24:6c:a4:48: e6:5b:91:21:65:23:1f:eb:80:66:6a:dd:3e:18:7c: 3e:33:56:ad:71:82:2a:3b:75:28:b6:2d:40:ef:a0: ca:5c:1e:06:1a:d1:19:4a:fc:a7:24:2c:9e:0e:4f: 5e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CA:E0:EE:5B:C1:9B:26:3F:48:EE:B0:D9:45:AC:DC:02:33:EA:F1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FADE6638271E11F0BB35BB52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.240.8.0/22 103.51.216.0/22 103.68.95.0/24 103.81.208.0/22 103.100.178.0/23 103.173.191.0/24 103.232.124.0/22 220.158.136.0/22 IPv6: 2001:df2:ab40::/48 Signature Algorithm: sha256WithRSAEncryption 30:63:91:1c:6f:72:b8:18:fe:63:ed:60:1a:84:5c:31:bd:ec: c4:85:65:f7:be:2b:6e:6f:bf:4e:dd:6a:6c:24:7d:33:48:2b: 6a:19:74:6d:86:35:9c:65:c1:f9:8f:77:9d:43:58:1f:0f:4d: f9:c7:de:22:0e:be:38:18:6c:9d:3f:15:c7:20:18:aa:ca:6f: 37:04:c3:e4:47:73:d7:10:ef:61:53:e5:3d:c7:cc:7c:7f:13: d2:ed:a4:2f:28:d2:7f:fe:f5:a3:83:73:e0:14:d5:fd:53:37: 7b:30:39:95:74:29:71:cc:bb:7a:d6:eb:53:8e:07:64:7a:9d: ac:6c:8e:72:4d:e9:71:b2:b1:be:6d:1e:99:dd:d6:97:d7:21: 29:6b:b8:47:ef:b0:0e:16:df:4b:bf:b9:6f:49:88:9f:83:1e: 55:df:ac:82:bb:d3:fb:53:81:18:94:1d:bd:ad:70:21:cf:3b: e1:37:d1:6f:d7:03:a5:66:32:bd:65:98:9d:db:e4:86:31:75: 9e:c9:9d:35:a6:3f:d4:b3:4a:79:01:e4:5b:28:d4:31:e2:f2: fa:85:6a:82:84:4f:6e:5f:61:37:dd:ac:56:d3:9f:a5:5a:4e: 9f:4a:ae:b8:11:3d:b9:50:67:5a:15:a8:1b:b8:77:d2:f6:10: b2:dc:08:2c -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAOJKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2MzYwMFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzYzNzAtOWE2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgDe544+VLJD84Yf3kjy4/EOcJoXlaiIfvc+bLLomdLnI9HMoxB4I+iLtK8 31QctA05bffZ47lBnJQpPWb7mB13kQLGet1h6dlcMMBUX9mcYqOCYgH/KXW8RBbU YOjlBJ8C/7xjM89wNYZjnMk+jNFzIuk60M7wlF6c84IQGwXuKLgnTpXuhdW2Epe9 btlUEo5MBienqclXAnC1saqE+UZzCVMFJ81Wxs+yTFKTrzPHzJ983L/P+/Tlx2jo 1L/vqI4dlG1LcfI+MNNGZK4kbKRI5luRIWUjH+uAZmrdPhh8PjNWrXGCKjt1KLYt QO+gylweBhrRGUr8pyQsng5PXp8CAwEAAaOCApswggKXMB0GA1UdDgQWBBQZyuDu W8GbJj9I7rDZRazcAjPq8TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZBREU2NjM4 MjcxRTExRjBCQjM1QkI1MkM0RjlBRTAyLnJvYTBaBggrBgEFBQcBBwEB/wRLMEkw NgQCAAEwMAMEAivwCAMEAmcz2AMEAGdEXwMEAmdR0AMEAWdksgMEAGetvwMEAmfo fAMEAtyeiDAPBAIAAjAJAwcAIAEN8qtAMA0GCSqGSIb3DQEBCwUAA4IBAQAwY5Ec b3K4GP5j7WAahFwxvezEhWX3vitub79O3WpsJH0zSCtqGXRthjWcZcH5j3edQ1gf D035x94iDr44GGydPxXHIBiqym83BMPkR3PXEO9hU+U9x8x8fxPS7aQvKNJ//vWj g3PgFNX9Uzd7MDmVdClxzLt61utTjgdkep2sbI5yTelxsrG+bR6Z3daX1yEpa7hH 77AOFt9Lv7lvSYifgx5V36yCu9P7U4EYlB29rXAhzzvhN9Fv1wOlZjK9ZZid2+SG MXWeyZ01pj/Us0p5AeRbKNQx4vL6hWqChE9uX2E33axW05+lWk6fSq64ET25UGda FagbuHfS9hCy3Ags -----END CERTIFICATE-----Generated at Thu Jun 4 09:05:32 2026 by rpki-client