$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa File: 1ED4125C50C111EFA64C2437C4F9AE02.roa (raw, json) Hash identifier: +IUDW8cw3RCxe8Sc2DGSXyBs2/FEVtOhLz/uMryDXvU= Subject key identifier: 98:31:30:9C:3A:E2:0F:55:8B:5E:1A:B8:86:EF:4C:6A:2D:6C:13:29 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 05BC Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:51:33 +0000 ROA not before: Wed 19 Nov 2025 09:53:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 36007 IP address blocks: 103.6.168.0/24 maxlen: 24 103.6.169.0/24 maxlen: 24 103.6.170.0/24 maxlen: 24 103.6.171.0/24 maxlen: 24 103.102.46.0/24 maxlen: 24 103.125.216.0/24 maxlen: 24 103.125.217.0/24 maxlen: 24 103.125.218.0/24 maxlen: 24 103.125.219.0/24 maxlen: 24 114.29.239.0/24 maxlen: 24 2401:df40:2::/48 maxlen: 48 2403:fa40:1::/48 maxlen: 48 2403:fa40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1468 (0x5bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Nov 19 09:53:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a47ca5-0133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b8:14:81:4b:de:75:c3:8b:4f:2c:d4:9c:62: 88:3a:e7:65:0d:78:30:4c:ac:ee:fc:b9:ca:cd:c4: 0a:6c:dc:d4:af:db:8e:b1:de:f8:3f:18:e1:cd:a6: 05:af:60:d4:0b:1f:31:cb:ed:e7:05:4a:4e:b7:05: 98:52:0a:a4:ad:9f:09:ac:6b:e6:9d:0d:dd:6c:9b: d7:79:44:3b:ef:74:f5:96:20:a1:4e:2b:03:fb:6e: bc:c3:a8:92:a8:71:46:02:c5:49:4c:08:a0:03:99: fa:96:3b:58:eb:60:aa:08:45:89:40:90:a6:08:38: bf:03:73:fc:1a:94:79:22:3c:d2:bb:c1:8f:d0:57: 22:c2:c0:04:a1:10:f0:56:72:09:30:31:45:83:39: 1a:5e:46:25:81:e9:d1:b7:5c:d8:31:85:18:ea:d8: fd:d5:35:fc:1f:ac:4c:29:52:8b:bd:ef:ca:43:be: 81:72:1b:6f:43:d4:a0:58:38:ae:0c:1c:35:c9:ab: eb:05:f4:49:61:50:c3:ac:9f:4f:e3:b9:f9:39:42: 91:88:bd:d0:fc:d1:0e:7f:10:f5:24:0a:ee:6e:d2: 61:c9:f6:63:31:32:92:4b:1d:d5:3b:a1:50:2b:75: ce:66:2c:6c:9b:f8:d5:5a:e5:4b:20:06:80:aa:c1: f1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:31:30:9C:3A:E2:0F:55:8B:5E:1A:B8:86:EF:4C:6A:2D:6C:13:29 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.6.168.0/22 103.102.46.0/24 103.125.216.0/22 114.29.239.0/24 IPv6: 2401:df40:2::/48 2403:fa40:1::-2403:fa40:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a9:41:52:cc:85:cb:c5:bd:21:83:c5:4f:fc:ea:f8:03:78:ac: b1:12:4a:80:d7:b4:fc:9e:d4:bf:1f:0f:8a:b2:35:44:7d:20: 35:a0:d0:62:bf:d6:c9:ce:c4:f4:58:91:9c:ba:18:1c:7e:71: 11:c7:67:91:8c:61:cf:37:7b:05:e0:d3:cf:37:29:86:d2:96: 21:40:36:e3:a1:a3:a2:a3:9f:60:6e:9a:40:3e:df:30:3e:50: 32:07:19:a1:6a:80:e2:36:83:57:80:30:4b:3a:17:79:27:4d: ca:de:9a:9d:6e:8c:cc:8e:01:49:ce:84:23:a9:20:58:f5:51: 08:93:55:73:d0:8a:bd:7b:6d:c9:51:92:20:99:20:58:b0:95: b2:92:96:22:dd:59:a1:92:cd:70:0f:07:cb:65:15:cc:e8:93: f8:e9:80:9f:31:73:e3:f7:b3:27:22:9a:f0:c7:08:86:6a:e8: 46:c3:40:54:cd:04:3d:55:a3:b2:6a:0f:06:2a:86:9b:93:15: d8:5f:ee:aa:2a:f2:7a:2a:e4:7c:2f:f1:dc:ad:77:39:a8:4c: 0c:75:a5:c0:f6:36:d1:51:d9:f7:23:e7:50:a9:79:51:e6:e2: 02:1e:ff:ff:68:59:7f:a4:7c:e1:6e:1c:62:cf:8d:e0:d2:46: c5:c7:a7:2d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjUxMTE5MDk1MzUzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2NhNS0wMTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7gUgUvedcOLTyzUnGKIOudlDXgwTKzu/LnKzcQKbNzUr9uOsd74PxjhzaYF r2DUCx8xy+3nBUpOtwWYUgqkrZ8JrGvmnQ3dbJvXeUQ773T1liChTisD+268w6iS qHFGAsVJTAigA5n6ljtY62CqCEWJQJCmCDi/A3P8GpR5IjzSu8GP0FciwsAEoRDw VnIJMDFFgzkaXkYlgenRt1zYMYUY6tj91TX8H6xMKVKLve/KQ76BchtvQ9SgWDiu DBw1yavrBfRJYVDDrJ9P47n5OUKRiL3Q/NEOfxD1JArubtJhyfZjMTKSSx3VO6FQ K3XOZixsm/jVWuVLIAaAqsHx8wIDAQABo4IClzCCApMwHQYDVR0OBBYEFJgxMJw6 4g9Vi14auIbvTGotbBMpMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMUVENDEyNUM1 MEMxMTFFRkE2NEMyNDM3QzRGOUFFMDIucm9hMFYGCCsGAQUFBwEHAQH/BEcwRTAe BAIAATAYAwQCZwaoAwQAZ2YuAwQCZ33YAwQAch3vMCMEAgACMB0DBwAkAd9AAAIw EgMHACQD+kAAAQMHACQD+kAAAjANBgkqhkiG9w0BAQsFAAOCAQEAqUFSzIXLxb0h g8VP/Or4A3issRJKgNe0/J7Uvx8PirI1RH0gNaDQYr/Wyc7E9FiRnLoYHH5xEcdn kYxhzzd7BeDTzzcphtKWIUA246GjoqOfYG6aQD7fMD5QMgcZoWqA4jaDV4AwSzoX eSdNyt6anW6MzI4BSc6EI6kgWPVRCJNVc9CKvXttyVGSIJkgWLCVspKWIt1ZoZLN cA8Hy2UVzOiT+OmAnzFz4/ezJyKa8McIhmroRsNAVM0EPVWjsmoPBiqGm5MV2F/u qiryeirkfC/x3K13OahMDHWlwPY20VHZ9yPnUKl5UebiAh7//2hZf6R84W4cYs+N 4NJGxcenLQ== -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:16 2026 by rpki-client