$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa File: 5997C4D0719A11EEBBA64415C4F9AE02.roa (raw, json) Hash identifier: aSxgIlw8nZiN+6lgLNU5XvZ1FdnFtkSevs0pTTJMvJY= Subject key identifier: 4F:9F:AE:B0:CF:5D:3F:86:61:B8:D4:CF:28:7C:C0:EC:D5:AB:A5:94 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 077C Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:57:46 +0000 ROA not before: Wed 02 Jul 2025 22:32:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 6134 IP address blocks: 43.254.216.0/22 maxlen: 24 103.238.224.0/22 maxlen: 24 103.244.88.0/22 maxlen: 24 116.206.176.0/22 maxlen: 24 2001:df5:8300::/48 maxlen: 48 2401:e9e0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1916 (0x77c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Jul 2 22:32:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47e19-e93d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:70:0a:84:8c:db:58:cc:80:b6:2b:94:ae:d8: a8:b6:26:31:44:20:99:73:5b:c2:4b:b5:c8:39:3d: 4d:6e:26:63:af:c1:c5:41:dc:64:af:f0:b1:c1:d2: f3:b3:b8:c5:5f:55:1d:9f:33:82:12:a3:ed:8b:df: a3:7c:97:72:c5:81:5f:01:4f:68:2a:b2:6e:47:6f: d6:f0:b5:fe:5c:60:19:73:73:ea:7f:ba:06:af:1e: b3:67:0c:79:64:56:eb:11:45:a7:d6:c8:4b:9b:b4: bc:7e:db:f6:bc:84:d2:9d:77:e4:a2:89:3b:01:be: 09:9f:c3:27:01:f8:99:f2:ed:8d:9c:78:41:4b:21: 0a:40:03:93:9b:40:3e:50:7f:1d:e7:37:dc:39:b4: e5:17:bd:03:f7:82:00:7c:b0:b2:3b:c5:40:cd:b0: c8:35:28:fa:c4:b3:3f:2e:f0:a5:5d:4f:cd:d8:20: c7:6f:b1:f3:42:17:ed:4d:27:fa:18:67:d1:26:33: 76:c4:16:72:aa:a9:2d:ae:64:95:7d:75:08:e1:a0: 57:4a:7a:24:79:0f:aa:7d:e3:c1:05:d2:82:47:1f: 84:da:07:4b:af:ae:66:0b:84:f6:d6:62:e9:3a:da: 64:71:e1:2a:69:1b:8d:ef:d6:9b:16:9f:ad:79:32: 2f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9F:AE:B0:CF:5D:3F:86:61:B8:D4:CF:28:7C:C0:EC:D5:AB:A5:94 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.254.216.0/22 103.238.224.0/22 103.244.88.0/22 116.206.176.0/22 IPv6: 2001:df5:8300::/48 2401:e9e0::/36 Signature Algorithm: sha256WithRSAEncryption 1e:07:0e:cb:c4:de:d9:27:58:de:f7:a9:33:83:54:03:6b:9d: ba:f8:d6:e0:f1:b5:0e:e1:54:83:68:5a:64:f6:e8:b7:41:a9: 7f:ff:f9:90:2c:ef:77:9c:e4:15:e3:98:6b:6e:4e:dd:0b:65: 1f:6b:67:1c:7b:bb:87:e7:f7:ba:dc:4c:d6:62:de:63:d7:4e: be:af:93:5b:9e:58:4a:2d:76:b4:4d:aa:1a:0c:d2:01:86:8e: 25:f8:f5:84:f6:0d:29:db:0d:25:9c:93:f3:69:7d:c4:33:9e: 35:23:26:03:08:32:06:82:9a:0f:d7:92:ad:2f:68:48:c2:c6: 43:b2:a4:07:ea:e8:f4:7d:0c:0b:0e:35:d5:83:9e:68:0f:b8: 1f:d4:1e:f9:dd:1e:bf:48:5c:63:b1:c0:a7:c7:fb:85:39:81: 58:d5:23:65:21:ca:40:7f:1d:af:6a:2f:8f:d3:0f:38:da:17: d8:f6:89:55:1e:fe:cb:83:08:19:c5:70:49:c5:39:d6:4a:c4: 3c:11:24:a0:cb:86:35:dc:58:64:58:ce:99:6b:7e:c8:dc:b4: fa:6c:f4:56:2b:ba:1b:cb:6b:5a:74:d8:5c:24:09:88:72:aa: 3b:cb:1d:b8:20:91:d2:f4:d1:8c:88:ae:66:ea:a2:df:14:cd: 3c:b8:2c:74 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgICB3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNzAyMjIzMjAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2UxOS1lOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HAKhIzbWMyAtiuUrtiotiYxRCCZc1vCS7XIOT1NbiZjr8HFQdxkr/CxwdLz s7jFX1UdnzOCEqPti9+jfJdyxYFfAU9oKrJuR2/W8LX+XGAZc3Pqf7oGrx6zZwx5 ZFbrEUWn1shLm7S8ftv2vITSnXfkook7Ab4Jn8MnAfiZ8u2NnHhBSyEKQAOTm0A+ UH8d5zfcObTlF70D94IAfLCyO8VAzbDINSj6xLM/LvClXU/N2CDHb7HzQhftTSf6 GGfRJjN2xBZyqqktrmSVfXUI4aBXSnokeQ+qfePBBdKCRx+E2gdLr65mC4T21mLp OtpkceEqaRuN79abFp+teTIvzQIDAQABo4ICizCCAocwHQYDVR0OBBYEFE+frrDP XT+GYbjUzyh8wOzVq6WUMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvNTk5N0M0RDA3 MTlBMTFFRUJCQTY0NDE1QzRGOUFFMDIucm9hMEoGCCsGAQUFBwEHAQH/BDswOTAe BAIAATAYAwQCK/7YAwQCZ+7gAwQCZ/RYAwQCdM6wMBcEAgACMBEDBwAgAQ31gwAD BgQkAengADANBgkqhkiG9w0BAQsFAAOCAQEAHgcOy8Te2SdY3vepM4NUA2uduvjW 4PG1DuFUg2haZPbot0Gpf//5kCzvd5zkFeOYa25O3QtlH2tnHHu7h+f3utxM1mLe Y9dOvq+TW55YSi12tE2qGgzSAYaOJfj1hPYNKdsNJZyT82l9xDOeNSMmAwgyBoKa D9eSrS9oSMLGQ7KkB+ro9H0MCw411YOeaA+4H9Qe+d0ev0hcY7HAp8f7hTmBWNUj ZSHKQH8dr2ovj9MPONoX2PaJVR7+y4MIGcVwScU51krEPBEkoMuGNdxYZFjOmWt+ yNy0+mz0Viu6G8trWnTYXCQJiHKqO8sduCCR0vTRjIiuZuqi3xTNPLgsdA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:13:54 2026 by rpki-client