$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa File: 0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa (raw, json) Hash identifier: O0LIDkCWhkzo8Vd1B10CqKcpcHC+y9RIK785vBgiEUY= Subject key identifier: 93:8A:66:48:A9:1C:28:EE:30:D7:52:A7:DB:EB:74:06:51:28:54:EF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D49A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:33:00 +0000 ROA not before: Thu 08 May 2025 16:11:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138712 IP address blocks: 103.71.112.0/23 maxlen: 24 103.137.112.0/23 maxlen: 24 103.153.224.0/23 maxlen: 24 2404:de40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54426 (0xd49a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:11:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4be9c-1c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:64:4f:73:0e:32:3f:aa:cd:77:8d:bf:80:59: 72:2d:fa:a9:51:61:0b:ba:41:60:47:36:a4:44:52: 16:f1:12:6c:aa:17:8c:0e:ab:69:17:f8:b0:ae:f8: 17:cb:6a:10:aa:69:5e:0c:3b:d5:27:04:e8:6c:e8: ce:cc:40:89:0e:b1:29:ab:e0:21:c6:01:31:c4:9f: d8:9f:d6:d0:4d:9f:8e:b3:97:04:72:d5:75:05:46: e3:74:54:d3:c0:72:96:6c:49:d2:eb:e7:d4:7e:1b: c5:0b:f8:09:66:48:8e:ba:46:7c:4e:65:16:9a:0b: 63:a9:13:b9:0d:06:0a:c8:a5:40:d0:87:f1:26:76: 55:16:3e:a0:48:79:d7:58:cf:f3:4b:bf:f5:1c:b4: 23:86:86:21:95:02:8b:11:52:96:fd:a7:34:5f:d2: ac:c8:85:8b:16:5e:92:fb:f1:b5:e2:2c:65:66:3e: fe:4a:5a:65:87:ab:9a:af:d0:58:02:08:58:c4:0e: 09:e0:10:b5:ec:38:ff:76:82:99:10:d1:ed:0a:ec: 38:d6:4c:3a:03:73:2c:cd:5a:42:df:b6:23:65:5c: 0f:9c:3b:fa:26:52:c2:04:3e:4d:44:c1:80:dc:3f: a5:83:f4:c8:c1:86:c5:f2:a2:63:ff:a5:10:bf:26: 94:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:8A:66:48:A9:1C:28:EE:30:D7:52:A7:DB:EB:74:06:51:28:54:EF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F0FD5D4F4A211E9A47FAB30C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.71.112.0/23 103.137.112.0/23 103.153.224.0/23 IPv6: 2404:de40::/32 Signature Algorithm: sha256WithRSAEncryption 4e:4a:24:d6:d7:eb:ee:2c:de:de:cf:3b:f8:86:16:a4:e8:5d: a3:66:b7:27:3d:c8:16:44:4b:30:9c:23:02:f8:5f:4f:86:93: 04:ef:53:3d:47:5a:d6:25:9f:b6:58:f3:42:be:53:48:3f:a3: a0:97:1c:a9:9b:31:05:0d:e0:59:a7:ae:ea:02:03:c3:25:40: b4:66:a3:43:2e:0f:c1:27:3f:f5:8f:99:34:10:df:66:c6:21: cc:97:e9:d1:b6:69:0a:c4:9a:ce:18:58:32:a3:6a:d4:e3:d7: ae:c9:23:b3:26:55:04:2b:24:0c:d0:e5:31:ff:33:80:bf:7d: 62:a7:46:b4:d7:2b:27:04:c5:a6:38:ac:9d:9f:db:81:90:a7: 04:fe:c2:ef:8f:4c:f6:a7:69:1d:a4:79:32:f2:b5:04:cf:0f: 39:6a:9c:c2:e2:f5:09:c4:a2:e9:b7:d1:19:fc:15:de:bc:7a: 50:48:21:1b:90:67:27:79:91:5b:16:19:09:1c:25:9b:6a:e4: 6e:6b:1d:02:a1:d0:c8:29:bb:96:75:76:0d:71:69:ff:ae:88: d7:02:af:a7:87:e6:28:31:45:39:c1:5b:fb:36:45:44:ad:25: 36:93:89:fb:57:25:8c:d2:6c:04:26:e0:a4:c2:40:bd:91:d7: c7:d8:4c:88 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIDANSaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTE1NVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJlOWMtMWMzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJJkT3MOMj+qzXeNv4BZci36qVFhC7pBYEc2pERSFvESbKoXjA6raRf4sK74 F8tqEKppXgw71ScE6GzozsxAiQ6xKavgIcYBMcSf2J/W0E2fjrOXBHLVdQVG43RU 08BylmxJ0uvn1H4bxQv4CWZIjrpGfE5lFpoLY6kTuQ0GCsilQNCH8SZ2VRY+oEh5 11jP80u/9Ry0I4aGIZUCixFSlv2nNF/SrMiFixZekvvxteIsZWY+/kpaZYermq/Q WAIIWMQOCeAQtew4/3aCmRDR7QrsONZMOgNzLM1aQt+2I2VcD5w7+iZSwgQ+TUTB gNw/pYP0yMGGxfKiY/+lEL8mlMECAwEAAaOCAnswggJ3MB0GA1UdDgQWBBSTimZI qRwo7jDXUqfb63QGUShU7zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBGMEZENUQ0 RjRBMjExRTlBNDdGQUIzMEM0RjlBRTAyLnJvYTA6BggrBgEFBQcBBwEB/wQrMCkw GAQCAAEwEgMEAWdHcAMEAWeJcAMEAWeZ4DANBAIAAjAHAwUAJATeQDANBgkqhkiG 9w0BAQsFAAOCAQEATkok1tfr7ize3s87+IYWpOhdo2a3Jz3IFkRLMJwjAvhfT4aT BO9TPUda1iWftljzQr5TSD+joJccqZsxBQ3gWaeu6gIDwyVAtGajQy4PwSc/9Y+Z NBDfZsYhzJfp0bZpCsSazhhYMqNq1OPXrskjsyZVBCskDNDlMf8zgL99YqdGtNcr JwTFpjisnZ/bgZCnBP7C749M9qdpHaR5MvK1BM8POWqcwuL1CcSi6bfRGfwV3rx6 UEghG5BnJ3mRWxYZCRwlm2rkbmsdAqHQyCm7lnV2DXFp/66I1wKvp4fmKDFFOcFb +zZFRK0lNpOJ+1cljNJsBCbgpMJAvZHXx9hMiA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:59 2026 by rpki-client