$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A65C08E72A811ECA515D152C4F9AE02.roa File: 1A65C08E72A811ECA515D152C4F9AE02.roa (raw, json) Hash identifier: d81MB4MDl3c8MzuF67NppAQojLh3wrKHGBYW4RXmQNY= Subject key identifier: 27:7C:EB:4E:3F:0A:FB:8D:81:04:FC:47:D4:B1:16:8D:E9:69:A6:DF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D541 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A65C08E72A811ECA515D152C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:36:56 +0000 ROA not before: Thu 08 May 2025 16:15:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141257 IP address blocks: 45.248.175.0/24 maxlen: 24 103.105.94.0/23 maxlen: 24 103.158.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54593 (0xd541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:15:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bf88-4c93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:10:42:27:6c:6b:37:6b:4b:81:bd:92:cc:b5: 1a:ca:6a:f8:02:2a:57:6a:64:0e:9c:da:75:e5:0d: 7e:22:8b:b9:2a:14:aa:d4:2d:3f:a2:51:0d:4e:ab: 38:05:e0:72:39:08:0f:42:81:79:f2:52:93:88:0c: d6:4d:9e:f8:b0:c3:52:be:30:7f:10:e1:6e:9b:0f: b6:3d:3b:20:39:fe:52:59:74:0f:86:b6:36:e6:9b: 32:0d:9c:1e:60:70:d0:37:02:2e:9b:bb:fb:dd:b8: 73:75:c5:b7:b6:24:55:e7:df:32:7d:60:71:5b:88: bd:aa:c9:b7:aa:04:19:83:cb:da:c2:72:86:3a:bf: 3a:30:ea:a4:4a:a5:b4:9d:e4:4d:48:0d:13:b8:b9: 72:a2:86:22:aa:86:ff:0c:8d:3b:49:ef:1e:66:b6: 06:dd:0b:5c:57:77:cf:12:00:0f:d6:75:24:de:81: 46:0b:26:c1:5e:4b:e7:a3:ce:f4:ad:70:5f:00:40: 2d:e4:b1:0a:bd:9d:4d:c3:e4:7d:be:4c:37:4b:1a: dc:c9:d9:bc:eb:bf:ff:bf:ad:12:36:bf:d5:5a:80: 85:ed:9d:26:f8:80:71:02:26:53:4c:37:3d:0d:f3: c4:51:8b:54:0c:b1:4b:8b:c8:21:92:c8:ae:87:dd: 28:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:7C:EB:4E:3F:0A:FB:8D:81:04:FC:47:D4:B1:16:8D:E9:69:A6:DF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1A65C08E72A811ECA515D152C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.248.175.0/24 103.105.94.0/23 103.158.94.0/23 Signature Algorithm: sha256WithRSAEncryption 14:8b:f0:a3:7b:5e:0d:ab:b3:a9:57:e4:36:01:e0:ef:b3:ae: 80:19:e9:bf:b8:79:e1:87:3f:05:95:72:ac:d7:54:ef:2c:18: 41:40:d3:6a:86:56:88:1e:be:26:ad:17:2d:f7:28:a5:0f:d3: c7:51:c1:05:f4:83:e0:1d:55:d6:cc:ab:87:8e:3f:47:0b:c5: b2:18:d3:59:ef:d9:16:94:f7:ee:ca:ed:2b:88:13:eb:ee:0d: d4:e9:f7:8e:2d:80:65:1b:f6:dd:9f:91:64:92:f9:ce:eb:09: 15:dc:72:d5:57:a2:df:65:a1:a2:a1:d2:a7:c5:e8:30:4e:53: b2:02:f3:72:78:ca:4b:3e:70:37:86:4c:22:61:a3:3b:94:f8: 25:aa:ef:cb:9d:09:c2:cd:18:8d:99:af:ae:2a:dc:cd:8d:99: 52:9f:5d:23:1e:65:59:3a:fe:e7:c9:8d:77:f8:5f:33:7e:4c: af:1c:59:e6:09:e6:13:24:f2:89:cf:9e:4d:d7:d9:11:ea:3d: a1:f5:9c:b3:cb:b0:cd:b2:d6:a2:68:2d:01:d7:a7:8e:e1:ee: c4:da:41:b9:95:1c:ae:33:1a:b3:0b:57:85:aa:b1:26:cb:1c: 5e:d0:0b:d7:48:27:54:5a:02:6c:88:6e:c1:45:08:cf:9b:1d: d9:38:51:bb -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIDANVBMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTUxM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJmODgtNGM5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0QQidsazdrS4G9ksy1Gspq+AIqV2pkDpzadeUNfiKLuSoUqtQtP6JRDU6r OAXgcjkID0KBefJSk4gM1k2e+LDDUr4wfxDhbpsPtj07IDn+Ull0D4a2NuabMg2c HmBw0DcCLpu7+924c3XFt7YkVeffMn1gcVuIvarJt6oEGYPL2sJyhjq/OjDqpEql tJ3kTUgNE7i5cqKGIqqG/wyNO0nvHma2Bt0LXFd3zxIAD9Z1JN6BRgsmwV5L56PO 9K1wXwBALeSxCr2dTcPkfb5MN0sa3MnZvOu//7+tEja/1VqAhe2dJviAcQImU0w3 PQ3zxFGLVAyxS4vIIZLIrofdKM0CAwEAAaOCAmwwggJoMB0GA1UdDgQWBBQnfOtO Pwr7jYEE/EfUsRaN6Wmm3zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFBNjVDMDhF NzJBODExRUNBNTE1RDE1MkM0RjlBRTAyLnJvYTArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAC34rwMEAWdpXgMEAWeeXjANBgkqhkiG9w0BAQsFAAOCAQEAFIvw o3teDauzqVfkNgHg77OugBnpv7h54Yc/BZVyrNdU7ywYQUDTaoZWiB6+Jq0XLfco pQ/Tx1HBBfSD4B1V1syrh44/RwvFshjTWe/ZFpT37srtK4gT6+4N1On3ji2AZRv2 3Z+RZJL5zusJFdxy1Vei32WhoqHSp8XoME5TsgLzcnjKSz5wN4ZMImGjO5T4Jarv y50Jws0YjZmvrirczY2ZUp9dIx5lWTr+58mNd/hfM35MrxxZ5gnmEyTyic+eTdfZ Eeo9ofWcs8uwzbLWomgtAdenjuHuxNpBuZUcrjMaswtXhaqxJsscXtAL10gnVFoC bIhuwUUIz5sd2ThRuw== -----END CERTIFICATE-----Generated at Mon Mar 2 15:00:22 2026 by rpki-client