$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0B6B4EA868F811EEB6C0D00EC4F9AE02.roa File: 0B6B4EA868F811EEB6C0D00EC4F9AE02.roa (raw, json) Hash identifier: T0L6tEmUC03gfuVbGYPbChELWds3NaeEQHmB3MYZHrw= Subject key identifier: AA:09:76:69:7A:A1:A6:8E:9B:4C:0C:8C:91:FC:2F:4A:7C:09:70:72 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D1E8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0B6B4EA868F811EEB6C0D00EC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:17:22 +0000 ROA not before: Thu 08 May 2025 15:58:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133269 IP address blocks: 36.255.208.0/22 maxlen: 24 103.239.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53736 (0xd1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:58:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4baf2-fdfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b6:60:00:7a:b9:8c:66:e4:25:34:54:64:c3: 9a:03:5c:47:96:26:d6:0c:65:0e:0d:8e:51:93:bf: f9:02:c3:12:18:29:9d:87:5a:ee:bf:fc:52:a5:0b: 1b:ba:68:25:29:5c:4a:35:cc:e4:a0:b7:7d:57:88: 59:af:92:f7:76:03:50:6c:ce:90:ca:dd:2e:1a:32: 83:40:60:38:d5:6d:ac:74:1a:c9:9c:e3:d4:d6:48: 3b:d6:02:c7:06:dc:4c:12:a7:2b:0e:2f:5a:fc:c6: 7b:3e:35:2e:9f:4d:f2:cf:1d:d7:cd:ef:f0:17:df: 13:45:23:50:ce:f9:5a:84:56:ad:08:4c:22:9a:c8: f1:e5:c1:2f:7c:9c:92:d2:c8:e5:32:29:fc:93:d1: 96:c6:13:b0:fa:de:2e:5e:57:3c:9f:1d:2e:e8:7f: 86:0b:b9:90:42:c1:df:7e:96:19:f4:09:a4:01:b7: 12:19:04:b3:f3:a0:9e:af:a7:c6:a6:f2:cb:f6:9d: 17:c1:d6:83:b7:b2:9f:07:e4:4c:28:f7:43:a1:3d: e5:b9:4a:79:1e:53:13:91:b4:59:2c:57:af:79:13: 11:8e:0c:dc:85:6e:ed:32:9f:48:c6:ca:db:61:e0: af:16:fc:d2:dd:7a:c2:01:2b:c8:af:50:ac:b5:94: 4e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:09:76:69:7A:A1:A6:8E:9B:4C:0C:8C:91:FC:2F:4A:7C:09:70:72 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0B6B4EA868F811EEB6C0D00EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.208.0/22 103.239.144.0/22 Signature Algorithm: sha256WithRSAEncryption b3:96:1e:28:9a:e7:b0:aa:fe:42:3d:6e:92:de:4b:98:2c:e4: 8b:75:e3:04:b2:c2:92:76:0a:81:c0:1a:2c:f7:51:83:cf:11: ec:b6:a8:cc:1f:5f:99:16:ad:97:ac:96:7c:6d:aa:c6:e7:97: 09:fe:27:9a:40:60:78:2e:f9:45:24:df:5a:a3:7d:9f:78:11: 7b:9f:58:e4:64:db:33:b6:24:3a:6d:02:86:f3:5d:e6:10:46: da:ec:71:1b:2e:82:ee:0c:fc:4d:68:18:8e:7d:a3:a5:a6:20: 41:e9:c0:00:c7:59:10:db:c9:26:1f:f7:67:94:04:f8:2c:84: 54:1f:84:04:e0:a5:8d:54:d7:16:da:ab:7e:d4:fd:e8:a1:96: a7:c6:c4:d5:01:df:50:07:2d:44:0b:45:07:6a:0e:64:00:4a: b5:e5:55:8f:7b:60:9d:50:05:26:19:60:09:16:44:c6:ef:4f: 3c:b6:89:fd:d8:c2:dc:b3:de:3f:fb:b0:3b:f5:b2:f7:d7:64: 0e:a7:0b:02:ec:84:2d:29:4f:c3:3e:ee:6e:29:43:a5:d4:ee: 76:f3:0f:fe:35:08:41:63:ce:14:b6:24:1a:26:8a:0a:ff:8c: ad:89:21:e2:0c:56:79:3e:2d:0b:ca:2f:3f:8a:fe:e9:33:78: 61:1a:d7:cc -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIDANHoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTgxNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJhZjItZmRmZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMG2YAB6uYxm5CU0VGTDmgNcR5Ym1gxlDg2OUZO/+QLDEhgpnYda7r/8UqUL G7poJSlcSjXM5KC3fVeIWa+S93YDUGzOkMrdLhoyg0BgONVtrHQayZzj1NZIO9YC xwbcTBKnKw4vWvzGez41Lp9N8s8d183v8BffE0UjUM75WoRWrQhMIprI8eXBL3yc ktLI5TIp/JPRlsYTsPreLl5XPJ8dLuh/hgu5kELB336WGfQJpAG3EhkEs/Ognq+n xqbyy/adF8HWg7eynwfkTCj3Q6E95blKeR5TE5G0WSxXr3kTEY4M3IVu7TKfSMbK 22Hgrxb80t16wgEryK9QrLWUTtECAwEAAaOCAmYwggJiMB0GA1UdDgQWBBSqCXZp eqGmjptMDIyR/C9KfAlwcjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBCNkI0RUE4 NjhGODExRUVCNkMwRDAwRUM0RjlBRTAyLnJvYTAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAiT/0AMEAmfvkDANBgkqhkiG9w0BAQsFAAOCAQEAs5YeKJrnsKr+ Qj1ukt5LmCzki3XjBLLCknYKgcAaLPdRg88R7LaozB9fmRatl6yWfG2qxueXCf4n mkBgeC75RSTfWqN9n3gRe59Y5GTbM7YkOm0ChvNd5hBG2uxxGy6C7gz8TWgYjn2j paYgQenAAMdZENvJJh/3Z5QE+CyEVB+EBOCljVTXFtqrftT96KGWp8bE1QHfUAct RAtFB2oOZABKteVVj3tgnVAFJhlgCRZExu9PPLaJ/djC3LPeP/uwO/Wy99dkDqcL AuyELSlPwz7ubilDpdTudvMP/jUIQWPOFLYkGiaKCv+MrYkh4gxWeT4tC8ovP4r+ 6TN4YRrXzA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:34 2026 by rpki-client