$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa File: 251361A4E2F111EB8C6B4E40C4F9AE02.roa (raw, json) Hash identifier: zN55XYnHJ4zFRn5oH6t+sNCoNXAiQjkwtHu7kPARcZY= Subject key identifier: AF:A9:8A:37:98:A1:8E:C2:A8:3C:7F:0B:8E:44:CA:55:DB:FB:C5:D6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D1B5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:16:29 +0000 ROA not before: Thu 08 May 2025 15:57:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132956 IP address blocks: 103.212.16.0/24 maxlen: 24 103.212.17.0/24 maxlen: 24 103.212.18.0/24 maxlen: 24 103.212.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53685 (0xd1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:57:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4babd-6d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:29:47:66:d7:42:df:9f:f2:c4:9b:43:c7:d1: a6:55:17:e7:58:45:48:0e:bc:70:7c:c3:4b:eb:0e: 52:ee:3a:7d:cb:e9:e5:11:05:61:75:9d:7b:e0:32: 94:14:79:9a:33:33:86:5f:91:a5:82:e2:3c:19:03: 2a:c0:14:9f:48:47:6d:5c:24:1a:56:30:11:7c:57: 2d:84:67:57:45:c1:a1:1b:e5:c1:80:62:43:54:9b: 3b:34:86:82:c4:c7:ab:19:78:50:6b:ff:f5:64:0e: 09:59:07:80:13:d6:09:5a:1a:12:70:1f:c6:5d:28: 3b:b5:6c:27:88:19:82:40:1a:0f:2e:8e:e5:e7:2f: f5:87:0c:de:06:7c:dc:33:f4:9f:73:02:b1:23:b1: 27:bd:a8:a1:ea:5c:8f:b4:e8:bd:b8:cb:68:6d:92: cc:6a:ec:8e:82:e1:ca:c7:9a:ef:04:0f:ce:11:cf: d9:66:97:9f:35:ed:35:8c:ef:62:13:ae:af:b6:38: d4:cd:60:48:1a:d7:da:b3:ec:90:8b:74:39:d5:7c: 39:02:06:df:dd:ad:db:3f:56:b2:9c:7e:8b:a2:aa: 12:8b:94:6f:65:f8:12:f6:15:3d:d3:29:94:36:be: 91:f2:95:b3:69:9e:03:85:c5:4d:ac:db:32:49:90: 39:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A9:8A:37:98:A1:8E:C2:A8:3C:7F:0B:8E:44:CA:55:DB:FB:C5:D6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.212.16.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:8f:d3:91:35:a9:d1:be:a2:00:c2:7d:ea:90:e3:af:ab:77: af:50:6f:a5:b5:f7:74:e8:45:e9:fe:90:0b:84:4d:4a:57:65: 71:70:d9:54:d1:51:60:88:c1:4c:d2:a8:a8:b0:cf:60:0f:29: e6:8a:29:4e:21:30:ca:48:08:c1:31:df:85:fd:e3:4f:99:90: c0:29:67:e7:3f:70:ce:7d:a0:69:5d:73:a5:76:64:cb:61:25: 06:af:50:9a:92:19:14:4e:f9:fa:36:40:a3:82:7f:cc:a2:d3: 76:fd:b0:be:df:c7:58:55:04:2e:08:93:08:b0:ae:9e:1d:40: 07:23:80:18:ab:c6:14:a2:bb:b0:ea:42:50:24:05:ce:84:26: 2b:b5:b5:59:e1:d4:b7:c3:d7:9b:ab:57:3d:fc:db:f7:56:fa: 77:62:83:ae:46:cf:5a:eb:56:4a:ec:a2:f3:48:0c:33:c8:40: 7e:f8:5b:e1:a3:62:64:0c:ff:15:10:de:b4:7c:f7:04:30:96: 13:a2:2a:24:d5:67:6d:86:7c:1f:44:ae:97:ab:13:9b:83:08: 72:20:5f:ce:b0:6d:c4:f0:aa:59:05:fb:3f:c2:c3:cb:96:fd: 0d:18:c2:77:45:b4:8e:6e:1f:6a:cb:58:f2:db:8d:ed:b1:9f: 45:20:71:5d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANG1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTcxNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJhYmQtNmQ4ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkpR2bXQt+f8sSbQ8fRplUX51hFSA68cHzDS+sOUu46fcvp5REFYXWde+Ay lBR5mjMzhl+RpYLiPBkDKsAUn0hHbVwkGlYwEXxXLYRnV0XBoRvlwYBiQ1SbOzSG gsTHqxl4UGv/9WQOCVkHgBPWCVoaEnAfxl0oO7VsJ4gZgkAaDy6O5ecv9YcM3gZ8 3DP0n3MCsSOxJ72ooepcj7TovbjLaG2SzGrsjoLhysea7wQPzhHP2WaXnzXtNYzv YhOur7Y41M1gSBrX2rPskIt0OdV8OQIG392t2z9Wspx+i6KqEouUb2X4EvYVPdMp lDa+kfKVs2meA4XFTazbMkmQOSECAwEAAaOCAmAwggJcMB0GA1UdDgQWBBSvqYo3 mKGOwqg8fwuORMpV2/vF1jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI1MTM2MUE0 RTJGMTExRUI4QzZCNEU0MEM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfUEDANBgkqhkiG9w0BAQsFAAOCAQEAb4/TkTWp0b6iAMJ96pDj r6t3r1BvpbX3dOhF6f6QC4RNSldlcXDZVNFRYIjBTNKoqLDPYA8p5oopTiEwykgI wTHfhf3jT5mQwCln5z9wzn2gaV1zpXZky2ElBq9QmpIZFE75+jZAo4J/zKLTdv2w vt/HWFUELgiTCLCunh1AByOAGKvGFKK7sOpCUCQFzoQmK7W1WeHUt8PXm6tXPfzb 91b6d2KDrkbPWutWSuyi80gMM8hAfvhb4aNiZAz/FRDetHz3BDCWE6IqJNVnbYZ8 H0Sul6sTm4MIciBfzrBtxPCqWQX7P8LDy5b9DRjCd0W0jm4fastY8tuN7bGfRSBx XQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:53 2026 by rpki-client