$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa File: 236A1054BDD211EAA55BEE1AC4F9AE02.roa (raw, json) Hash identifier: lZhtoPZWhDBUb+VUSsJ/xrArorTF3I7KqjhHkUBjYIE= Subject key identifier: 55:2A:C7:EE:5D:A4:FA:C6:1E:C9:7D:C6:E5:27:8F:B9:79:7C:99:5E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D1E6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:17:20 +0000 ROA not before: Thu 08 May 2025 15:58:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133266 IP address blocks: 103.175.70.0/24 maxlen: 24 103.239.124.0/24 maxlen: 24 2001:df2:9600::/48 maxlen: 48 2001:df2:9601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53734 (0xd1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:58:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4baf0-8038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:91:52:ad:a5:e9:d8:f8:78:c1:37:aa:4d: ad:c2:80:d8:2d:c8:0a:1e:eb:6b:dc:0d:1f:91:40: 13:20:01:b7:9e:56:f9:00:8b:d6:20:0f:0a:f5:fc: 17:a1:e2:10:53:02:3c:74:8e:b7:26:15:10:98:00: 72:67:fc:8e:0f:6f:10:0c:ac:48:09:af:ff:2a:c0: 11:23:8a:b5:ee:85:a6:fc:d8:de:91:0f:60:7f:71: be:39:80:d9:c4:3a:5b:00:5b:0b:2c:ce:28:12:27: 35:e4:6a:a0:24:59:5a:63:72:5c:02:29:25:21:74: 52:c8:16:a7:69:fa:03:9c:30:e9:5f:72:2f:2e:12: a1:9e:32:9a:c4:25:07:1c:e8:c6:cd:75:ac:5e:ff: c8:ea:44:35:16:ae:b1:eb:fd:60:41:d5:08:2e:dc: e7:40:35:fa:d4:39:f3:2b:91:54:83:99:7f:c7:bd: c6:11:a2:73:15:2a:00:3b:49:71:40:e7:9e:63:95: 3d:44:34:56:6d:0c:d1:4d:82:5b:36:4d:b1:3f:5e: 18:a0:d4:36:64:14:85:c5:c3:3e:d8:e9:ee:70:ec: 1a:a3:15:66:d4:ae:25:50:d8:9f:24:8c:65:d1:7d: 6d:80:71:86:57:c3:ae:17:6a:d1:c0:11:ef:46:33: cd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2A:C7:EE:5D:A4:FA:C6:1E:C9:7D:C6:E5:27:8F:B9:79:7C:99:5E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/236A1054BDD211EAA55BEE1AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.175.70.0/24 103.239.124.0/24 IPv6: 2001:df2:9600::/47 Signature Algorithm: sha256WithRSAEncryption 8a:f7:ca:a5:c0:63:92:24:db:79:47:5b:05:fa:2e:db:65:24: 35:40:c7:f7:f8:82:da:82:3f:6b:71:71:6f:89:36:22:bc:45: 82:81:41:36:03:4f:ed:b0:7d:19:0f:f8:dd:0f:6e:74:a0:2f: 33:fc:dd:47:bd:24:c3:20:3a:21:ed:fb:aa:3d:0d:91:9b:bb: de:15:bd:b8:8b:cf:d3:8f:9b:40:72:0b:c0:80:22:48:14:bc: 41:8a:d0:7b:81:01:b8:a5:d3:b2:1e:9f:6a:43:a8:17:b1:e7: b1:79:eb:3b:1a:cd:b1:bd:51:19:54:41:40:9e:89:e5:ac:62: df:80:c6:9a:85:32:d2:b8:8e:8f:36:5d:00:c1:63:c9:77:6f: b4:e7:18:b7:de:1a:de:3a:2e:87:b8:0b:a3:38:9c:3f:fe:74: 95:2c:28:72:f4:71:1f:64:ee:76:c1:40:7c:60:c7:44:74:de: 0b:e3:51:45:4a:3b:f0:c9:4e:39:20:1f:66:46:b4:1e:fa:13: 4c:00:b1:a1:4f:29:d8:d0:c3:2a:39:4c:51:ae:ac:94:3d:61: 20:82:4e:19:e2:6f:c0:30:22:b2:2f:13:b4:e3:50:40:83:47: 37:26:ba:15:a3:8a:2c:3d:f8:60:87:e9:27:48:2a:d8:a2:24: 5d:b4:73:bc -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDANHmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTgxNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJhZjAtODAzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYTkVKtpenY+HjBN6pNrcKA2C3ICh7ra9wNH5FAEyABt55W+QCL1iAPCvX8 F6HiEFMCPHSOtyYVEJgAcmf8jg9vEAysSAmv/yrAESOKte6FpvzY3pEPYH9xvjmA 2cQ6WwBbCyzOKBInNeRqoCRZWmNyXAIpJSF0UsgWp2n6A5ww6V9yLy4SoZ4ymsQl Bxzoxs11rF7/yOpENRausev9YEHVCC7c50A1+tQ58yuRVIOZf8e9xhGicxUqADtJ cUDnnmOVPUQ0Vm0M0U2CWzZNsT9eGKDUNmQUhcXDPtjp7nDsGqMVZtSuJVDYnySM ZdF9bYBxhlfDrhdq0cAR70YzzXsCAwEAAaOCAncwggJzMB0GA1UdDgQWBBRVKsfu XaT6xh7JfcblJ4+5eXyZXjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIzNkExMDU0 QkREMjExRUFBNTVCRUUxQUM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGevRgMEAGfvfDAPBAIAAjAJAwcBIAEN8pYAMA0GCSqGSIb3DQEB CwUAA4IBAQCK98qlwGOSJNt5R1sF+i7bZSQ1QMf3+ILagj9rcXFviTYivEWCgUE2 A0/tsH0ZD/jdD250oC8z/N1HvSTDIDoh7fuqPQ2Rm7veFb24i8/Tj5tAcgvAgCJI FLxBitB7gQG4pdOyHp9qQ6gXseexees7Gs2xvVEZVEFAnonlrGLfgMaahTLSuI6P Nl0AwWPJd2+05xi33hreOi6HuAujOJw//nSVLChy9HEfZO52wUB8YMdEdN4L41FF SjvwyU45IB9mRrQe+hNMALGhTynY0MMqOUxRrqyUPWEggk4Z4m/AMCKyLxO041BA g0c3JroVo4osPfhgh+knSCrYoiRdtHO8 -----END CERTIFICATE-----Generated at Mon Mar 2 16:31:51 2026 by rpki-client