$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/08F71754FD8C11EFA3BBA60FC4F9AE02.roa File: 08F71754FD8C11EFA3BBA60FC4F9AE02.roa (raw, json) Hash identifier: 71+PfLIKmbLRAo1il+enc+1IHOyevv3oCkxgzj4t7Js= Subject key identifier: 64:31:DB:DC:7E:73:60:8D:B1:67:D7:51:2D:30:18:3A:7A:D8:D6:53 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D86C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/08F71754FD8C11EFA3BBA60FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:54:48 +0000 ROA not before: Thu 08 May 2025 16:29:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17747 IP address blocks: 45.249.84.0/22 maxlen: 24 103.84.164.0/24 maxlen: 24 103.171.100.0/23 maxlen: 24 103.184.74.0/23 maxlen: 24 103.217.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55404 (0xd86c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:29:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c3b8-d4e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:11:d4:88:95:21:41:ab:f7:1b:22:87:19:c5: ab:45:2f:57:0c:e2:35:f6:19:9f:4e:1d:f0:fc:2e: 10:30:dd:c4:42:73:a2:fa:6d:df:00:7d:c5:9a:1f: ed:5b:5c:77:3b:47:e3:65:1c:b9:7c:85:f5:6e:ab: 8b:2a:33:bc:13:9a:95:70:8b:c3:56:cd:1f:f2:26: 3e:6d:68:f7:e1:db:f7:be:3b:11:12:dc:b4:fb:77: 77:e7:dd:e3:62:56:0e:0e:09:20:0e:bf:42:f2:93: 34:e2:db:6f:49:c3:7e:a6:4d:7b:f4:97:73:83:2c: e5:2e:6d:cd:84:0d:02:62:5c:90:fc:c8:e5:ab:e5: d7:91:7e:ec:96:19:0f:09:27:79:66:7e:68:9c:f8: 6c:f1:a6:87:be:61:fa:21:18:f2:78:56:31:3e:60: 6c:a1:d1:dc:ac:67:c5:27:8d:b0:8e:34:58:39:46: e8:95:39:a8:1f:18:6d:3f:4a:34:36:67:3c:ec:39: 00:69:53:d9:a1:38:dd:f5:47:91:3a:99:48:e8:9c: f5:91:40:c2:dc:e6:38:9a:93:a0:cb:ae:4e:bc:2e: c4:44:88:a1:ca:1a:fd:db:1e:f9:89:9c:3d:db:09: 58:33:e6:ef:3c:8b:db:59:2b:0a:46:7e:8e:96:c8: a1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:31:DB:DC:7E:73:60:8D:B1:67:D7:51:2D:30:18:3A:7A:D8:D6:53 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/08F71754FD8C11EFA3BBA60FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.249.84.0/22 103.84.164.0/24 103.171.100.0/23 103.184.74.0/23 103.217.244.0/22 Signature Algorithm: sha256WithRSAEncryption aa:a6:41:8c:59:62:06:b1:7b:a6:d6:da:8f:46:74:29:4a:47: 2d:6b:d9:3e:e8:00:5b:78:33:e5:e0:fb:74:21:d7:5b:b8:14: 27:26:64:19:f1:5e:c5:82:b0:f1:d0:b4:b5:74:81:7d:8d:ca: 92:15:93:e7:62:36:66:79:8c:cd:a9:c8:36:c9:8d:9d:de:5d: 15:e7:6f:31:eb:95:01:25:7f:85:8e:ca:e9:91:41:7e:ce:ea: 92:98:83:6e:b7:5d:d5:44:78:2b:54:f5:ee:af:6f:97:c8:e9: bf:71:df:af:54:ae:08:be:0c:7d:17:fb:13:9c:6c:ea:98:8e: 26:de:89:25:c4:d6:4d:3f:db:0f:9a:02:23:31:3f:05:b8:dd: 2c:69:07:71:ee:31:53:52:9d:1c:9d:6d:2d:0c:fb:c6:4c:84: 6f:f7:e4:db:9c:90:1e:55:b4:e3:b8:eb:94:50:09:52:1a:b8: 96:f5:a1:6b:a3:2c:18:99:28:f8:e5:69:c1:11:c1:24:17:dd: 3e:e5:02:53:c9:84:ae:51:58:30:7a:aa:4f:d5:71:e6:df:87: 41:9d:97:b6:56:b7:0b:77:e8:0f:49:0f:4d:ce:98:f8:37:b1: 88:51:73:94:44:bd:2e:62:a2:ae:cf:3c:39:cf:03:f1:76:92: ea:39:22:e9 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIDANhsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2Mjk1NVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzYjgtZDRlNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOAR1IiVIUGr9xsihxnFq0UvVwziNfYZn04d8PwuEDDdxEJzovpt3wB9xZof 7VtcdztH42UcuXyF9W6riyozvBOalXCLw1bNH/ImPm1o9+Hb9747ERLctPt3d+fd 42JWDg4JIA6/QvKTNOLbb0nDfqZNe/SXc4Ms5S5tzYQNAmJckPzI5avl15F+7JYZ DwkneWZ+aJz4bPGmh75h+iEY8nhWMT5gbKHR3KxnxSeNsI40WDlG6JU5qB8YbT9K NDZnPOw5AGlT2aE43fVHkTqZSOic9ZFAwtzmOJqToMuuTrwuxESIocoa/dse+Ymc PdsJWDPm7zyL21krCkZ+jpbIofUCAwEAAaOCAngwggJ0MB0GA1UdDgQWBBRkMdvc fnNgjbFn11EtMBg6etjWUzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzA4RjcxNzU0 RkQ4QzExRUZBM0JCQTYwRkM0RjlBRTAyLnJvYTA3BggrBgEFBQcBBwEB/wQoMCYw JAQCAAEwHgMEAi35VAMEAGdUpAMEAWerZAMEAWe4SgMEAmfZ9DANBgkqhkiG9w0B AQsFAAOCAQEAqqZBjFliBrF7ptbaj0Z0KUpHLWvZPugAW3gz5eD7dCHXW7gUJyZk GfFexYKw8dC0tXSBfY3KkhWT52I2ZnmMzanINsmNnd5dFedvMeuVASV/hY7K6ZFB fs7qkpiDbrdd1UR4K1T17q9vl8jpv3Hfr1SuCL4MfRf7E5xs6piOJt6JJcTWTT/b D5oCIzE/BbjdLGkHce4xU1KdHJ1tLQz7xkyEb/fk25yQHlW047jrlFAJUhq4lvWh a6MsGJko+OVpwRHBJBfdPuUCU8mErlFYMHqqT9Vx5t+HQZ2Xtla3C3foD0kPTc6Y +DexiFFzlES9LmKirs88Oc8D8XaS6jki6Q== -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:14 2026 by rpki-client