$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/14EDA02435A511EE99DF844FC4F9AE02.roa File: 14EDA02435A511EE99DF844FC4F9AE02.roa (raw, json) Hash identifier: ReKsWRmmCjGOpRHd9DwfnzUh8f2BWKM4Eu3ZEL14En0= Subject key identifier: 5A:C4:6A:3A:6F:11:44:0B:FD:EE:75:00:71:4E:60:0B:3A:1B:FC:0F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D45A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/14EDA02435A511EE99DF844FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:31:30 +0000 ROA not before: Thu 08 May 2025 16:10:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137677 IP address blocks: 103.117.236.0/22 maxlen: 24 103.168.12.0/23 maxlen: 24 2405:4bc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54362 (0xd45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:10:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4be42-d47e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9f:4f:8a:e1:bc:36:cb:c5:1f:10:f2:81:55: 1c:c6:93:b2:47:2a:92:a2:18:f6:60:42:0b:3a:83: 5d:c2:16:14:ab:00:bd:62:70:b5:fb:16:d1:09:4b: 43:56:3f:93:03:61:07:0b:b1:2b:dd:f5:51:a5:f9: b2:a8:14:e3:a6:51:6f:35:6c:3d:7d:a5:b1:9f:b3: 4e:1a:17:2a:54:c0:88:75:65:c2:96:27:c5:00:2e: 19:46:3f:3d:f7:0d:66:fe:d1:6a:29:7f:bf:ef:6f: eb:49:bc:3b:84:bf:3b:51:8d:59:7f:c6:56:06:97: 7d:be:f0:84:02:83:5b:f8:95:d7:95:dc:ad:08:8c: ac:d9:ad:2c:ed:ce:be:bf:59:b8:5f:6a:9a:e8:76: fa:7c:f5:00:80:b7:65:72:22:db:26:8b:d1:27:12: ce:6e:81:55:94:92:cf:02:5b:fa:67:e3:72:db:2a: bb:79:e9:a0:84:52:75:50:5f:fc:df:15:62:27:94: af:05:12:8e:5b:38:75:14:0b:47:38:9e:eb:67:ef: 4e:31:48:4f:bc:ee:88:86:c2:17:e4:f9:55:af:4e: 6c:df:df:49:3b:10:c9:11:8f:f9:0e:ad:95:10:9d: 52:6b:f9:ed:37:2f:62:67:b1:f8:c6:bf:f3:ca:28: c6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C4:6A:3A:6F:11:44:0B:FD:EE:75:00:71:4E:60:0B:3A:1B:FC:0F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/14EDA02435A511EE99DF844FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.117.236.0/22 103.168.12.0/23 IPv6: 2405:4bc0::/32 Signature Algorithm: sha256WithRSAEncryption 84:11:cd:8d:5c:32:54:8e:dd:fb:54:62:6f:ab:ac:30:33:46: 98:6a:22:ed:23:64:7b:8a:32:39:dd:c3:67:c8:6d:5e:d0:3f: 6e:95:45:c0:c1:14:2a:9f:5c:c0:0d:73:f1:1e:96:3c:13:06: 44:b4:9e:a0:b0:7b:c3:39:8c:42:b4:e7:68:99:cf:31:91:70: 2c:57:85:2e:52:86:34:b5:ea:62:4e:66:fd:ab:87:73:46:d8: e6:0a:01:ce:77:69:38:b8:d5:62:3f:c3:ca:eb:8a:93:55:9f: c1:95:12:b0:fe:dc:97:d7:fc:94:88:6d:df:7c:fa:4f:94:9a: 73:3d:7d:4c:e1:26:c3:fb:b0:46:b9:c7:88:82:59:c1:d1:67: 87:0e:71:dd:41:dd:90:13:2f:d2:46:ac:e9:dc:06:c3:95:23: 61:fe:78:6b:3c:11:d7:e9:b6:27:62:ea:c0:e3:13:c3:c1:8d: 95:79:d7:76:b9:ba:36:e5:ab:0c:fc:b2:2b:48:d8:32:a9:c3: 20:15:09:69:64:96:29:a7:77:f9:c0:ed:a5:c3:d0:1a:92:39: 2e:c2:35:7e:c6:5a:b0:3a:a9:de:d6:27:32:45:67:18:5f:7c: 78:4e:46:07:82:a3:6a:52:2b:65:ad:75:97:ef:51:0d:be:48: 02:d6:6f:d9 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIDANRaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTA0NFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJlNDItZDQ3ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOOfT4rhvDbLxR8Q8oFVHMaTskcqkqIY9mBCCzqDXcIWFKsAvWJwtfsW0QlL Q1Y/kwNhBwuxK931UaX5sqgU46ZRbzVsPX2lsZ+zThoXKlTAiHVlwpYnxQAuGUY/ PfcNZv7Rail/v+9v60m8O4S/O1GNWX/GVgaXfb7whAKDW/iV15XcrQiMrNmtLO3O vr9ZuF9qmuh2+nz1AIC3ZXIi2yaL0ScSzm6BVZSSzwJb+mfjctsqu3npoIRSdVBf /N8VYieUrwUSjls4dRQLRzie62fvTjFIT7zuiIbCF+T5Va9ObN/fSTsQyRGP+Q6t lRCdUmv57TcvYmex+Ma/88ooxj8CAwEAAaOCAnUwggJxMB0GA1UdDgQWBBRaxGo6 bxFEC/3udQBxTmALOhv8DzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE0RURBMDI0 MzVBNTExRUU5OURGODQ0RkM0RjlBRTAyLnJvYTA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmd17AMEAWeoDDANBAIAAjAHAwUAJAVLwDANBgkqhkiG9w0BAQsF AAOCAQEAhBHNjVwyVI7d+1Rib6usMDNGmGoi7SNke4oyOd3DZ8htXtA/bpVFwMEU Kp9cwA1z8R6WPBMGRLSeoLB7wzmMQrTnaJnPMZFwLFeFLlKGNLXqYk5m/auHc0bY 5goBzndpOLjVYj/DyuuKk1WfwZUSsP7cl9f8lIht33z6T5Sacz19TOEmw/uwRrnH iIJZwdFnhw5x3UHdkBMv0kas6dwGw5UjYf54azwR1+m2J2LqwOMTw8GNlXnXdrm6 NuWrDPyyK0jYMqnDIBUJaWSWKad3+cDtpcPQGpI5LsI1fsZasDqp3tYnMkVnGF98 eE5GB4KjalIrZa11l+9RDb5IAtZv2Q== -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:24 2026 by rpki-client