$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa File: 1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa (raw, json) Hash identifier: KsInz0G+zuBeWPJxKh3rSuIdK6UxQuOo49pwXnfVFK0= Subject key identifier: A5:BE:B0:5B:F1:B6:B0:42:D8:CA:30:C3:9D:70:19:27:D3:7C:97:40 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D72B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:48:33 +0000 ROA not before: Thu 08 May 2025 16:24:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150028 IP address blocks: 103.191.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55083 (0xd72b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:24:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c241-9e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:96:41:16:08:00:58:7f:f9:01:d6:bd:69:b5: 1a:2a:11:db:ff:8f:4e:2a:85:25:a7:14:2f:5e:b2: 79:da:7b:64:04:8f:48:27:c6:fa:69:68:cf:cc:cb: 6c:f6:f8:3d:1a:0c:ee:54:1f:2c:eb:eb:ab:5b:63: de:d6:9b:55:74:53:e8:d9:a0:5a:a1:46:26:39:b7: 53:14:f9:1b:56:06:ae:39:95:ce:ed:5d:0c:68:e1: e7:56:eb:fc:de:fb:71:7e:62:8a:7e:a9:1f:86:b2: 3b:3e:3a:29:0e:62:14:78:9c:97:bf:0f:a2:90:50: 81:3f:a6:9d:ea:67:49:5a:6d:a4:08:bd:6d:64:b4: ad:d8:88:ca:bd:bd:38:61:97:17:95:9e:4c:c6:2a: db:1c:17:48:ea:25:dd:6f:a2:e1:b5:44:99:57:6e: 11:80:c1:b4:5c:cd:17:21:9b:f7:46:b5:7c:c3:64: 94:f6:6c:18:9b:8c:a7:31:ad:28:06:eb:57:32:29: 89:50:0f:8d:54:53:03:b1:d2:c0:1d:b6:56:73:95: 1e:83:e9:ae:33:a0:42:1f:87:c1:f7:b7:84:9d:bb: 33:16:94:07:31:d1:55:41:a3:c0:c3:4d:c7:9d:b7: 4c:62:28:a6:a7:98:5f:e3:13:bb:a4:e2:d1:7b:72: 45:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BE:B0:5B:F1:B6:B0:42:D8:CA:30:C3:9D:70:19:27:D3:7C:97:40 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D4C5F061E2E11EDB2F1F03FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.191.136.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:92:98:2d:53:49:73:cb:21:6f:29:40:e3:fc:89:bb:04:9e: 79:b4:9d:12:23:6b:fd:6b:78:fc:1b:d3:ca:7a:e4:be:3a:1e: d4:2f:57:35:ac:5e:bd:fc:25:d1:ae:d4:2f:43:0c:6a:bf:2f: ce:31:4a:e1:79:4f:ac:5c:5c:b0:32:bb:ba:25:ab:c0:02:13: d6:59:b8:20:6d:40:41:7a:ec:54:57:0c:e0:cc:ff:12:f6:59: 5c:44:7d:31:16:7e:29:54:f4:b7:7f:1f:6a:d1:8c:e8:22:47: cf:d3:ef:57:f7:26:54:d7:8b:41:bb:f6:84:f1:ff:a8:34:a2: 16:42:fa:ee:a5:25:87:6f:f4:ae:a5:de:1c:fd:61:ee:d7:76: e9:0e:84:eb:e0:e7:81:d7:62:aa:b2:5e:90:72:0e:97:71:74: 83:88:bc:40:1d:1a:80:fb:36:01:44:e8:df:49:92:31:75:79: 38:73:1e:4a:56:41:65:c9:89:20:25:1e:c8:0f:6d:45:74:9a: 53:2f:78:5d:dd:03:85:e3:a0:d6:8a:85:d8:82:c3:a7:88:5d: 2a:1f:ff:b8:06:98:49:46:df:4a:9a:36:91:ee:23:e4:2c:d8: 8f:b5:b0:a7:df:fb:0b:4c:5e:8b:f3:0a:2b:ba:f2:ee:9c:68: c3:2e:54:e7 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANcrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjQwNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMyNDEtOWUzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJqWQRYIAFh/+QHWvWm1GioR2/+PTiqFJacUL16yedp7ZASPSCfG+mloz8zL bPb4PRoM7lQfLOvrq1tj3tabVXRT6NmgWqFGJjm3UxT5G1YGrjmVzu1dDGjh51br /N77cX5iin6pH4ayOz46KQ5iFHicl78PopBQgT+mnepnSVptpAi9bWS0rdiIyr29 OGGXF5WeTMYq2xwXSOol3W+i4bVEmVduEYDBtFzNFyGb90a1fMNklPZsGJuMpzGt KAbrVzIpiVAPjVRTA7HSwB22VnOVHoPprjOgQh+Hwfe3hJ27MxaUBzHRVUGjwMNN x523TGIopqeYX+MTu6Ti0XtyRV8CAwEAAaOCAmAwggJcMB0GA1UdDgQWBBSlvrBb 8bawQtjKMMOdcBkn03yXQDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFENEM1RjA2 MUUyRTExRURCMkYxRjAzRkM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe/iDANBgkqhkiG9w0BAQsFAAOCAQEADZKYLVNJc8shbylA4/yJ uwSeebSdEiNr/Wt4/BvTynrkvjoe1C9XNaxevfwl0a7UL0MMar8vzjFK4XlPrFxc sDK7uiWrwAIT1lm4IG1AQXrsVFcM4Mz/EvZZXER9MRZ+KVT0t38fatGM6CJHz9Pv V/cmVNeLQbv2hPH/qDSiFkL67qUlh2/0rqXeHP1h7td26Q6E6+DngddiqrJekHIO l3F0g4i8QB0agPs2AUTo30mSMXV5OHMeSlZBZcmJICUeyA9tRXSaUy94Xd0DheOg 1oqF2ILDp4hdKh//uAaYSUbfSpo2ke4j5CzYj7Wwp9/7C0xei/MKK7ry7pxowy5U 5w== -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:56 2026 by rpki-client