$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa File: 518ED8E0B10511EAA4771B5BC4F9AE02.roa (raw, json) Hash identifier: lO2EASI04fGTQtmx7kLRqIG2rTluSOr7y7abxeESm5g= Subject key identifier: C5:3C:17:39:34:D8:09:12:D4:D3:44:08:8E:2E:7C:04:21:DC:0B:41 Certificate issuer: /CN=A912A3C4/serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Certificate serial: 0978 Authority key identifier: 95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:23:07 +0000 ROA not before: Fri 20 Feb 2026 03:58:39 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38887 IP address blocks: 103.60.216.0/24 maxlen: 24 103.150.248.0/23 maxlen: 24 103.240.222.0/23 maxlen: 24 2406:fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2424 (0x978) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3C4, serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Validity Not Before: Feb 20 03:58:39 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a475fb-54cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:6f:68:77:45:7b:17:05:17:8f:90:3a:5a:19: 00:a4:ae:86:46:c8:45:df:3d:d7:b5:8f:f3:a8:a1: 2d:2f:a2:0f:14:86:c0:15:aa:03:77:9c:bf:94:7d: 3f:8d:28:9c:fc:bc:6c:68:3d:22:7e:c6:c9:04:99: 3b:4c:5d:d9:1a:2b:28:70:3a:36:bc:4c:96:bf:e7: 26:64:63:7a:6f:b2:80:d7:a4:fb:5f:6a:4c:18:39: c6:44:06:66:29:ad:79:ff:e1:ed:4f:d4:4a:04:0f: 0f:49:f5:94:ff:57:7e:e3:f1:40:cc:95:c0:1d:de: e0:9b:b7:15:88:3e:a0:92:13:ee:4b:1c:b0:11:08: b0:ff:ce:04:a9:71:19:62:ed:73:a8:e3:8f:45:83: 34:4c:95:16:38:6f:d3:a8:72:5a:01:1a:e5:c6:dc: 24:c1:bb:45:20:5b:7f:28:9e:a0:3d:65:6a:61:a5: e6:c1:c4:b4:70:5c:a1:c9:e5:82:df:9c:85:c5:8f: 79:16:2b:3d:90:c5:36:45:97:5a:69:30:23:4d:ce: b2:10:27:d8:58:05:de:b7:e0:fb:d0:ea:c1:37:40: 46:b2:71:88:12:0f:25:b7:c0:32:68:5a:15:ba:bf: 1f:b1:e1:20:33:68:a2:90:d4:ce:fc:e6:47:5d:53: 31:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3C:17:39:34:D8:09:12:D4:D3:44:08:8E:2E:7C:04:21:DC:0B:41 X509v3 Authority Key Identifier: keyid:95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.60.216.0/24 103.150.248.0/23 103.240.222.0/23 IPv6: 2406:fc0::/32 Signature Algorithm: sha256WithRSAEncryption 01:5d:df:f3:51:3e:72:cf:21:6c:4d:06:d2:a6:b5:35:25:63: 61:a8:71:96:14:ad:a9:8b:76:d6:1f:d8:f0:92:70:24:2d:fa: 8d:16:b2:a7:b0:5f:53:07:a0:00:21:02:11:aa:f4:f9:ea:87: 04:90:69:df:55:5d:1c:95:bc:e0:b4:7d:39:93:f4:bf:9e:58: da:25:68:de:65:0c:ec:b1:37:a5:ef:74:cc:30:91:ba:47:d4: 37:d9:60:77:fc:ed:e5:0a:57:b9:62:21:44:50:cc:7c:f3:47: 7d:fa:a5:63:55:44:f9:67:dd:fe:b2:38:36:99:ec:8a:2f:4e: 2e:a5:c8:ce:13:87:e0:98:65:8f:91:ec:2a:92:ce:1f:5e:de: c5:01:77:b0:cd:71:c4:dc:15:58:08:10:9f:c7:d9:79:52:a3: b6:a7:c1:00:ae:e8:00:8d:de:1e:53:85:91:4e:3e:20:2d:0a: bf:bd:d1:53:8a:d4:b2:f4:74:d3:36:ae:4b:aa:a9:e8:be:80: 4f:96:7a:7c:e5:d6:72:a4:1f:f5:1c:c6:a4:b3:2d:db:f2:ca: a7:14:bd:b1:6b:8f:5c:dd:aa:4f:55:01:86:7a:24:7a:c1:cf: 8c:7e:89:de:c6:67:dd:60:83:01:ce:84:b7:21:14:2a:02:a4: e9:f9:b3:7c -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzQzQxMTAvBgNVBAUTKDk1MjNBRDI1RUNBRDVDQzUyNUVDNDJFOUVDMURBRTRG REZEODYwNTcwHhcNMjYwMjIwMDM1ODM5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzVmYi01NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlG9od0V7FwUXj5A6WhkApK6GRshF3z3XtY/zqKEtL6IPFIbAFaoDd5y/lH0/ jSic/LxsaD0ifsbJBJk7TF3ZGisocDo2vEyWv+cmZGN6b7KA16T7X2pMGDnGRAZm Ka15/+HtT9RKBA8PSfWU/1d+4/FAzJXAHd7gm7cViD6gkhPuSxywEQiw/84EqXEZ Yu1zqOOPRYM0TJUWOG/TqHJaARrlxtwkwbtFIFt/KJ6gPWVqYaXmwcS0cFyhyeWC 35yFxY95Fis9kMU2RZdaaTAjTc6yECfYWAXet+D70OrBN0BGsnGIEg8lt8AyaFoV ur8fseEgM2iikNTO/OZHXVMx4wIDAQABo4ICezCCAncwHQYDVR0OBBYEFMU8Fzk0 2AkS1NNECI4ufAQh3AtBMB8GA1UdIwQYMBaAFJUjrSXsrVzFJexC6ewdrk/f2GBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNDNC8zRUU2NEMxQUIx MDQxMUVBQTM4NDE2NUFDNEY5QUUwMi9sU090SmV5dFhNVWw3RUxwN0IydVQ5X1lZ RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTT3RKZXl0WE1VbDdFTHA3QjJ1VDlfWVlGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzQzQvM0VFNjRDMUFCMTA0MTFFQUEzODQxNjVBQzRGOUFFMDIvNTE4RUQ4RTBC MTA1MTFFQUE0NzcxQjVCQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAZzzYAwQBZ5b4AwQBZ/DeMA0EAgACMAcDBQAkBg/AMA0GCSqGSIb3 DQEBCwUAA4IBAQABXd/zUT5yzyFsTQbSprU1JWNhqHGWFK2pi3bWH9jwknAkLfqN FrKnsF9TB6AAIQIRqvT56ocEkGnfVV0clbzgtH05k/S/nljaJWjeZQzssTel73TM MJG6R9Q32WB3/O3lCle5YiFEUMx880d9+qVjVUT5Z93+sjg2meyKL04upcjOE4fg mGWPkewqks4fXt7FAXewzXHE3BVYCBCfx9l5UqO2p8EArugAjd4eU4WRTj4gLQq/ vdFTitSy9HTTNq5LqqnovoBPlnp85dZypB/1HMaksy3b8sqnFL2xa49c3apPVQGG eiR6wc+MfonexmfdYIMBzoS3IRQqAqTp+bN8 -----END CERTIFICATE-----Generated at Mon Mar 2 14:41:22 2026 by rpki-client