$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/23E97F7462F411F19B1C13207247A888.roa File: 23E97F7462F411F19B1C13207247A888.roa (raw, json) Hash identifier: RblSXvFNXAZeX06zGe/B2ZAHQQVnoDcM+ZJbR5NkGpg= Subject key identifier: 98:1B:21:7F:11:49:B7:F1:FC:A2:20:BD:0E:7F:27:9E:53:FD:A5:FF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: EC40 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/23E97F7462F411F19B1C13207247A888.roa Signing time: Mon 08 Jun 2026 04:40:14 +0000 ROA not before: Mon 08 Jun 2026 04:40:14 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 150596 IP address blocks: 45.123.9.0/24 maxlen: 24 45.123.11.0/24 maxlen: 24 103.38.200.0/24 maxlen: 24 103.38.201.0/24 maxlen: 24 103.77.42.0/24 maxlen: 24 103.77.43.0/24 maxlen: 24 103.83.145.0/24 maxlen: 24 103.110.16.0/22 maxlen: 22 103.110.16.0/24 maxlen: 24 103.110.17.0/24 maxlen: 24 103.110.18.0/24 maxlen: 24 103.110.19.0/24 maxlen: 24 103.110.180.0/23 maxlen: 24 103.134.114.0/24 maxlen: 24 103.141.91.0/24 maxlen: 24 103.168.177.0/24 maxlen: 24 103.172.59.0/24 maxlen: 24 103.176.176.0/24 maxlen: 24 103.188.127.0/24 maxlen: 24 2400:e9a0::/34 maxlen: 34 2400:e9a0:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60480 (0xec40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 8 04:40:14 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a2647ae-4029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f9:e9:5b:f7:1b:f2:3b:2f:b9:a8:32:cc:b6: 3f:6e:cc:65:3c:a5:f2:8f:05:69:24:91:cd:c4:b0: 62:04:00:b5:5f:95:a4:9f:96:a4:ea:de:ba:13:e5: 4b:15:64:4d:96:6b:da:42:a8:c3:b6:b4:2a:77:a0: db:8d:37:f7:cd:4e:fb:89:08:31:d1:9c:49:9d:a6: 27:04:44:32:16:13:4c:97:9b:f6:78:50:99:31:9a: 8f:b4:2e:93:8a:4f:f6:46:64:92:f5:68:ac:0a:03: dc:a4:11:73:b8:ce:c1:23:38:5b:84:ca:ff:b3:0e: e8:a7:8d:d1:fd:c9:1d:79:22:d8:a1:0f:8f:b6:86: ff:7c:b8:b0:53:44:4f:8a:fb:9e:3b:13:f8:45:50: 68:04:26:37:c6:67:fd:95:c3:41:e0:ac:a9:0c:1b: 82:2f:c9:7a:c8:d1:62:de:3f:5f:3b:55:ad:21:8c: 30:6b:3e:2c:62:39:35:f9:eb:76:e6:91:91:ce:cc: b0:f1:3e:e4:04:72:1d:e7:31:a1:26:a6:6e:f7:51: 1d:e7:43:8b:79:5a:a8:68:7d:f6:0c:84:e9:a6:5f: 44:93:c1:ee:ae:8f:eb:5b:40:40:c4:c0:11:b0:8d: 5e:bd:f2:4f:e8:9d:3f:58:50:3d:1a:59:00:6a:fe: d0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1B:21:7F:11:49:B7:F1:FC:A2:20:BD:0E:7F:27:9E:53:FD:A5:FF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/23E97F7462F411F19B1C13207247A888.roa sbgp-ipAddrBlock: critical IPv4: 45.123.9.0/24 45.123.11.0/24 103.38.200.0/23 103.77.42.0/23 103.83.145.0/24 103.110.16.0/22 103.110.180.0/23 103.134.114.0/24 103.141.91.0/24 103.168.177.0/24 103.172.59.0/24 103.176.176.0/24 103.188.127.0/24 IPv6: 2400:e9a0::/33 Signature Algorithm: sha256WithRSAEncryption 0c:11:39:d3:d6:a4:5a:12:0e:06:29:ea:7e:27:44:05:7b:6c: 06:4c:66:f3:8e:b8:40:3e:b0:51:8c:86:2c:7b:86:e7:a6:72: 4a:b5:64:26:3e:73:32:f8:ea:74:f9:27:63:a7:60:95:b8:81: d1:ac:66:fa:45:c5:5f:21:2c:27:15:0e:5d:20:22:0b:80:a6: 33:2a:b1:07:7b:04:16:9d:c5:11:0d:6f:04:96:f9:78:d0:92: 2c:b5:eb:68:73:4c:f4:85:da:65:e3:6d:dc:07:f0:bc:43:e4: 30:c0:b2:b5:98:28:0a:8d:04:20:cc:f4:02:12:4e:e6:b8:33: 73:34:69:05:cc:77:9b:7a:36:cd:06:f6:89:ed:82:cf:60:24: 72:55:f7:76:c3:57:34:3d:59:2e:57:32:52:f8:17:fb:f6:5a: 75:c1:78:2d:a3:42:41:9b:16:7c:5e:8a:c4:61:80:47:0a:68: df:66:dd:5a:0f:c3:0f:2d:88:09:44:24:f6:c9:70:0b:dc:82: 33:32:6d:0b:fd:a2:61:3c:61:68:e2:d8:86:6d:78:80:22:42: 78:5b:06:ff:cc:30:96:00:37:69:30:64:66:f8:5e:e1:e8:df: 91:8b:bf:d2:71:b8:62:a5:72:08:af:4f:0d:7a:76:84:df:32: cb:8d:c0:20 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIDAOxAMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDYwODA0NDAxNFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmEyNjQ3YWUtNDAyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJD56Vv3G/I7L7moMsy2P27MZTyl8o8FaSSRzcSwYgQAtV+VpJ+WpOreuhPl SxVkTZZr2kKow7a0Kneg2403981O+4kIMdGcSZ2mJwREMhYTTJeb9nhQmTGaj7Qu k4pP9kZkkvVorAoD3KQRc7jOwSM4W4TK/7MO6KeN0f3JHXki2KEPj7aG/3y4sFNE T4r7njsT+EVQaAQmN8Zn/ZXDQeCsqQwbgi/JesjRYt4/XztVrSGMMGs+LGI5Nfnr duaRkc7MsPE+5ARyHecxoSambvdRHedDi3laqGh99gyE6aZfRJPB7q6P61tAQMTA EbCNXr3yT+idP1hQPRpZAGr+0HUCAwEAAaOCArgwggK0MB0GA1UdDgQWBBSYGyF/ EUm38fyiIL0OfyeeU/2l/zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzIzRTk3Rjc0 NjJGNDExRjE5QjFDMTMyMDcyNDdBODg4LnJvYTB3BggrBgEFBQcBBwEB/wRoMGYw VAQCAAEwTgMEAC17CQMEAC17CwMEAWcmyAMEAWdNKgMEAGdTkQMEAmduEAMEAWdu tAMEAGeGcgMEAGeNWwMEAGeosQMEAGesOwMEAGewsAMEAGe8fzAOBAIAAjAIAwYH JADpoAAwDQYJKoZIhvcNAQELBQADggEBAAwROdPWpFoSDgYp6n4nRAV7bAZMZvOO uEA+sFGMhix7huemckq1ZCY+czL46nT5J2OnYJW4gdGsZvpFxV8hLCcVDl0gIguA pjMqsQd7BBadxRENbwSW+XjQkiy162hzTPSF2mXjbdwH8LxD5DDAsrWYKAqNBCDM 9AISTua4M3M0aQXMd5t6Ns0G9ontgs9gJHJV93bDVzQ9WS5XMlL4F/v2WnXBeC2j QkGbFnxeisRhgEcKaN9m3VoPww8tiAlEJPbJcAvcgjMybQv9omE8YWji2IZteIAi QnhbBv/MMJYAN2kwZGb4XuHo35GLv9JxuGKlcgivTw16doTfMsuNwCA= -----END CERTIFICATE-----Generated at Sun Jun 14 02:07:41 2026 by rpki-client