$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0DDF2488CA4611EAA810CC64C4F9AE02.roa File: 0DDF2488CA4611EAA810CC64C4F9AE02.roa (raw, json) Hash identifier: Cs+ZfmTI+Luu4kIDk7QzBOZ5n1rg4vRlTt86lQx6pr4= Subject key identifier: 6D:AB:92:9E:C2:F0:10:1F:FE:82:46:98:FB:30:8C:FD:A3:2F:AF:93 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D1F6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0DDF2488CA4611EAA810CC64C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:17:37 +0000 ROA not before: Thu 08 May 2025 15:58:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133308 IP address blocks: 103.139.237.0/24 maxlen: 24 2001:df0:9c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53750 (0xd1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:58:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bb01-f621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c5:85:c3:1e:aa:15:1d:8c:67:df:cf:d2:ca: 0e:52:d6:1a:3c:8b:3e:4e:b7:20:4b:1b:eb:bc:f1: 3c:5a:12:a0:e3:c1:45:18:3f:b4:58:fa:e7:4a:ce: 5e:7b:55:df:28:aa:c3:3a:7d:84:ff:f2:39:1e:da: 8f:a8:7e:0e:b9:6d:4b:a0:05:3c:db:a1:c5:2d:e1: 94:7c:17:21:c1:e9:cb:03:4f:5b:a4:7a:c7:cc:9c: 1c:41:b3:43:a6:09:d2:3a:41:17:ac:29:1d:d2:b9: 8f:49:19:77:4c:77:ef:45:88:91:12:fd:26:d9:d4: ce:21:32:1e:95:39:73:9f:23:4c:a9:cf:d3:7d:c4: a4:74:d9:ae:61:0f:3f:21:47:95:c1:33:dc:9f:63: 5f:ba:5c:2c:7a:42:cc:d5:3b:3b:0a:c4:c9:1d:5d: 26:87:89:70:7d:7c:3c:ce:ae:92:e6:11:13:c5:6d: 1d:b6:1b:1c:94:2e:1e:91:7f:ba:c5:04:6f:ed:24: a0:03:03:c6:a7:2a:84:3c:11:f8:a0:9c:3f:03:86: 20:a3:f6:37:19:aa:5e:e5:39:9c:bd:7f:63:ab:cd: b7:33:7a:fd:1f:07:1f:27:8f:59:ea:ca:8c:4c:e5: ca:99:40:62:69:12:29:1b:b9:fd:ec:24:3e:a5:d3: ea:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AB:92:9E:C2:F0:10:1F:FE:82:46:98:FB:30:8C:FD:A3:2F:AF:93 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0DDF2488CA4611EAA810CC64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.139.237.0/24 IPv6: 2001:df0:9c80::/48 Signature Algorithm: sha256WithRSAEncryption 4a:8d:3f:45:5e:2e:c3:6b:5c:7a:3a:82:1d:2f:dd:95:68:c4: 2e:2d:66:29:30:5e:bf:f9:1e:73:de:c6:31:37:04:b5:f2:1b: 46:5e:10:a2:2b:61:67:54:b5:fd:f0:e7:f3:05:25:75:01:19: 98:04:64:f6:64:ae:6c:e1:89:fc:51:57:38:54:ce:2d:62:b9: 05:5e:bd:26:bf:d1:47:a2:b4:5b:f5:41:cc:6f:72:cb:76:09: 3d:97:b9:d7:e2:67:6d:2b:ce:e0:7b:bf:5e:78:0f:16:12:d5: fe:70:2d:7f:65:19:87:9b:33:be:e5:c0:eb:fc:7b:3f:eb:5b: d1:58:e4:b5:46:73:73:94:b4:2a:b2:fc:55:9f:b3:91:45:a3: 4d:38:dc:04:bb:a7:c6:bc:57:90:4c:d8:b7:07:48:6f:ae:7b: 83:3a:e2:32:db:aa:bb:27:6a:04:37:cb:2e:21:9d:85:5e:76: 68:aa:36:40:94:c4:d5:94:ac:57:0f:98:41:a2:5f:c4:a5:18: db:d9:db:cc:23:4a:e2:76:3f:68:d0:8c:39:96:3f:07:63:fe: 4f:e0:ee:7a:16:5e:90:31:c9:ba:8b:8e:0e:3d:4c:13:8c:38: 98:d7:a1:81:33:e3:6b:48:06:c5:72:37:4c:7e:d7:43:86:1c: be:f8:b7:ee -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDANH2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTgzN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJiMDEtZjYyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/FhcMeqhUdjGffz9LKDlLWGjyLPk63IEsb67zxPFoSoOPBRRg/tFj650rO XntV3yiqwzp9hP/yOR7aj6h+DrltS6AFPNuhxS3hlHwXIcHpywNPW6R6x8ycHEGz Q6YJ0jpBF6wpHdK5j0kZd0x370WIkRL9JtnUziEyHpU5c58jTKnP033EpHTZrmEP PyFHlcEz3J9jX7pcLHpCzNU7OwrEyR1dJoeJcH18PM6ukuYRE8VtHbYbHJQuHpF/ usUEb+0koAMDxqcqhDwR+KCcPwOGIKP2NxmqXuU5nL1/Y6vNtzN6/R8HHyePWerK jEzlyplAYmkSKRu5/ewkPqXT6oMCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBRtq5Ke wvAQH/6CRpj7MIz9oy+vkzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBEREYyNDg4 Q0E0NjExRUFBODEwQ0M2NEM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGeL7TAPBAIAAjAJAwcAIAEN8JyAMA0GCSqGSIb3DQEBCwUAA4IB AQBKjT9FXi7Da1x6OoIdL92VaMQuLWYpMF6/+R5z3sYxNwS18htGXhCiK2FnVLX9 8OfzBSV1ARmYBGT2ZK5s4Yn8UVc4VM4tYrkFXr0mv9FHorRb9UHMb3LLdgk9l7nX 4mdtK87ge79eeA8WEtX+cC1/ZRmHmzO+5cDr/Hs/61vRWOS1RnNzlLQqsvxVn7OR RaNNONwEu6fGvFeQTNi3B0hvrnuDOuIy26q7J2oEN8suIZ2FXnZoqjZAlMTVlKxX D5hBol/EpRjb2dvMI0ridj9o0Iw5lj8HY/5P4O56Fl6QMcm6i44OPUwTjDiY16GB M+NrSAbFcjdMftdDhhy++Lfu -----END CERTIFICATE-----Generated at Mon Mar 2 13:03:42 2026 by rpki-client