$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/052B1D7648C211EE8AAB1160C4F9AE02.roa File: 052B1D7648C211EE8AAB1160C4F9AE02.roa (raw, json) Hash identifier: x/JTSqlJNToem+3joKCUWTFeQjGrRNSp7+1rthz3TJo= Subject key identifier: 7B:3B:34:55:03:70:A1:35:A9:54:8B:AD:06:79:64:4C:E7:34:70:E7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D88A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/052B1D7648C211EE8AAB1160C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:55:18 +0000 ROA not before: Thu 08 May 2025 16:30:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 32787 IP address blocks: 103.167.152.0/24 maxlen: 24 103.167.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55434 (0xd88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:30:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c3d6-ab39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:77:11:df:47:26:e6:17:e0:23:10:6d:97:63: 66:3a:74:36:ec:00:c3:2e:8c:58:ac:32:03:51:ce: 41:86:14:5e:dd:8c:74:87:0a:e6:13:d4:2b:87:ae: c9:f8:fa:a6:ed:eb:a1:fc:75:44:02:3d:8d:0c:aa: 5f:d4:1b:09:62:a3:f5:65:82:d3:9f:6a:90:90:ae: f9:52:e5:ef:56:01:ee:d8:f2:5e:b2:1e:47:f3:42: 79:29:82:04:a9:d5:53:81:da:d2:4d:16:b8:5d:8b: e2:6b:cf:05:71:f9:0f:da:1a:83:d8:a8:54:0e:cd: d3:b4:c4:78:70:16:28:69:0f:05:0e:19:72:1d:77: 31:59:22:6f:a1:b9:9d:be:b8:17:97:c5:b7:72:a8: 96:05:b6:34:cb:3a:2d:65:1e:f5:35:65:75:e2:3d: ff:1d:3e:f0:15:c6:fe:52:40:49:ea:eb:78:fa:31: 49:60:22:e3:84:cd:fa:25:79:a2:01:7f:f4:bd:cf: 27:31:81:ed:aa:99:88:98:bf:5f:86:c4:d9:14:87: 43:b4:42:67:cc:61:7d:30:5e:06:bb:85:7a:9e:af: 53:47:23:75:4c:57:16:be:bb:8b:18:f6:d0:cf:9f: 91:52:01:01:0c:10:50:c7:0e:a9:44:52:a2:7d:ba: 57:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3B:34:55:03:70:A1:35:A9:54:8B:AD:06:79:64:4C:E7:34:70:E7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/052B1D7648C211EE8AAB1160C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.152.0/23 Signature Algorithm: sha256WithRSAEncryption 75:d8:2a:59:4d:79:91:32:37:9a:a8:4f:e6:e3:c6:ef:ec:45: 0f:d1:7b:e0:a7:50:19:bf:06:d7:08:b4:f1:36:f9:ab:94:22: 44:a2:5a:4f:57:86:6c:79:31:29:eb:7b:41:4e:3d:f9:b2:7d: 8d:c8:a7:34:6d:6b:9f:f5:8a:35:05:88:d1:a2:15:45:bc:32: d4:80:f2:31:7b:d9:c9:c3:62:b5:a1:a2:a3:4d:80:7c:8f:08: 1b:a7:9d:5c:fc:17:06:55:a0:7e:6d:bb:d1:b3:22:e1:ef:74: f5:14:0d:53:ca:2e:f1:f9:be:0f:2a:a2:31:b1:3a:80:5e:34: 57:4d:30:af:7f:97:6b:0a:1c:3d:ee:8d:66:49:c5:ec:f1:63: 90:71:c8:13:2f:80:54:30:d5:a7:25:26:73:9b:50:29:f3:db: e2:d1:c9:35:8f:ba:5e:94:8e:c9:ea:f3:24:2f:9e:57:87:88: 25:f8:c7:2a:a5:ea:d1:73:d4:c9:bc:ef:52:ac:d9:c7:15:b3: 50:3f:a8:9d:cd:50:9b:c1:0c:3f:3c:b0:45:01:69:25:13:0c: 8e:58:f4:ab:3c:05:60:7e:02:74:7f:65:a9:96:39:fd:14:e0: 7c:4b:86:4b:ff:a3:e8:78:ed:0b:fe:3b:05:60:eb:cb:d7:17: a1:d2:63:da -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANiKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzAzNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzZDYtYWIzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL93Ed9HJuYX4CMQbZdjZjp0NuwAwy6MWKwyA1HOQYYUXt2MdIcK5hPUK4eu yfj6pu3rofx1RAI9jQyqX9QbCWKj9WWC059qkJCu+VLl71YB7tjyXrIeR/NCeSmC BKnVU4Ha0k0WuF2L4mvPBXH5D9oag9ioVA7N07TEeHAWKGkPBQ4Zch13MVkib6G5 nb64F5fFt3KolgW2NMs6LWUe9TVldeI9/x0+8BXG/lJASerrePoxSWAi44TN+iV5 ogF/9L3PJzGB7aqZiJi/X4bE2RSHQ7RCZ8xhfTBeBruFep6vU0cjdUxXFr67ixj2 0M+fkVIBAQwQUMcOqURSon26V70CAwEAAaOCAmAwggJcMB0GA1UdDgQWBBR7OzRV A3ChNalUi60GeWRM5zRw5zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzA1MkIxRDc2 NDhDMjExRUU4QUFCMTE2MEM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWenmDANBgkqhkiG9w0BAQsFAAOCAQEAddgqWU15kTI3mqhP5uPG 7+xFD9F74KdQGb8G1wi08Tb5q5QiRKJaT1eGbHkxKet7QU49+bJ9jcinNG1rn/WK NQWI0aIVRbwy1IDyMXvZycNitaGio02AfI8IG6edXPwXBlWgfm270bMi4e909RQN U8ou8fm+DyqiMbE6gF40V00wr3+XawocPe6NZknF7PFjkHHIEy+AVDDVpyUmc5tQ KfPb4tHJNY+6XpSOyerzJC+eV4eIJfjHKqXq0XPUybzvUqzZxxWzUD+onc1Qm8EM PzywRQFpJRMMjlj0qzwFYH4CdH9lqZY5/RTgfEuGS/+j6HjtC/47BWDry9cXodJj 2g== -----END CERTIFICATE-----Generated at Mon Mar 2 15:15:58 2026 by rpki-client