$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/28EBCD3AA85B11EDB8C4FB20C4F9AE02.roa File: 28EBCD3AA85B11EDB8C4FB20C4F9AE02.roa (raw, json) Hash identifier: RIvtXqH6g9drZcZdN80llmzG90/kuD8Fu1rY8/S8r28= Subject key identifier: B6:0C:59:9F:98:99:6E:CB:F9:44:59:9F:CA:4C:53:07:3B:74:1A:9D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D78B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/28EBCD3AA85B11EDB8C4FB20C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:50:46 +0000 ROA not before: Thu 08 May 2025 16:25:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150632 IP address blocks: 103.81.108.0/23 maxlen: 24 2001:df1:f640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55179 (0xd78b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:25:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c2c6-efe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:51:c0:af:28:8b:0c:dd:ad:3a:9d:4c:15:6f: e0:47:ac:f1:87:09:c7:d8:ce:a7:9c:f3:22:15:b9: 98:bf:9f:7d:36:3d:b0:dd:13:b3:d5:c0:a1:9a:a6: 17:62:9e:0e:e2:28:03:f0:55:2e:4b:2b:c2:d1:57: 66:8b:c2:53:69:24:5b:07:eb:ba:d0:ba:a6:0b:a5: 35:61:3f:56:80:0c:67:6e:84:b1:0d:38:e1:b1:47: d7:f4:c4:20:61:9e:ae:7a:ea:4b:b0:64:fa:82:9e: 73:e6:5e:a7:e2:c5:02:09:45:75:c6:93:18:4b:de: 46:2c:c7:11:c2:d4:1e:58:e9:e6:0e:ec:1a:a0:4c: 85:0e:fc:46:57:a5:9b:f0:f8:7d:39:09:43:9e:83: 3d:b4:ff:e2:43:d3:06:53:7f:d2:e3:fb:dc:73:95: b6:48:e6:49:08:53:e7:1d:5e:93:4a:9f:4d:6a:c4: 7b:46:5f:20:26:97:cd:68:c5:09:26:fa:35:c3:6e: 96:28:11:fb:85:61:6c:7d:8f:b7:24:07:48:d4:23: d5:8b:90:5e:b5:72:39:ff:df:b7:47:32:c8:7b:1f: 84:c8:8b:d7:8a:16:00:f8:7a:59:d0:ae:8a:9c:6d: eb:72:6f:97:9c:32:1a:63:18:3b:ce:7b:c0:58:ad: 27:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0C:59:9F:98:99:6E:CB:F9:44:59:9F:CA:4C:53:07:3B:74:1A:9D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/28EBCD3AA85B11EDB8C4FB20C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.81.108.0/23 IPv6: 2001:df1:f640::/48 Signature Algorithm: sha256WithRSAEncryption 67:9e:e9:6f:22:e8:28:d7:10:96:38:f8:c1:74:c7:4e:99:fd: d0:76:00:d8:ed:45:b6:8f:ef:ee:c8:10:42:e9:22:8b:57:a6: a3:eb:85:3c:35:d2:d9:2a:d1:48:27:b9:6b:79:24:39:8c:53: c2:10:34:48:cc:a7:fa:0c:db:6a:4e:d3:5f:7c:80:7e:bd:50: 07:8d:ab:82:32:2d:1d:56:cd:2e:8f:14:82:04:a4:19:31:6d: 07:2b:fc:d1:25:f3:c4:30:4f:bb:90:1c:bd:10:3c:ca:a2:fd: 10:e6:43:fe:d6:7a:db:60:59:71:d7:44:dd:c3:d2:05:0a:36: 83:45:8e:a1:09:df:02:ec:8f:3d:17:51:a3:de:0f:76:07:83: 91:70:a8:26:50:b1:bb:cc:d2:61:ca:bf:c2:dc:51:5d:e6:f5: c9:c4:13:28:7b:fc:c4:1e:31:12:4d:83:ac:0d:04:17:ef:96: a7:80:15:23:ee:51:b6:d6:74:0e:ec:d8:01:8b:75:e0:4b:38: 2c:e9:6e:fb:91:4e:51:3a:fe:43:ae:35:08:f7:85:05:87:07: fb:d2:ca:37:d1:14:b6:3f:42:8e:b4:14:5d:7d:8c:8c:fb:04: b4:fa:51:a2:03:09:54:b1:cf:f6:b3:98:b0:33:ba:ed:6e:5d: bd:32:b2:3b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDANeLMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjU0N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMyYzYtZWZlMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIhRwK8oiwzdrTqdTBVv4Ees8YcJx9jOp5zzIhW5mL+ffTY9sN0Ts9XAoZqm F2KeDuIoA/BVLksrwtFXZovCU2kkWwfrutC6pgulNWE/VoAMZ26EsQ044bFH1/TE IGGernrqS7Bk+oKec+Zep+LFAglFdcaTGEveRizHEcLUHljp5g7sGqBMhQ78Rlel m/D4fTkJQ56DPbT/4kPTBlN/0uP73HOVtkjmSQhT5x1ek0qfTWrEe0ZfICaXzWjF CSb6NcNuligR+4VhbH2PtyQHSNQj1YuQXrVyOf/ft0cyyHsfhMiL14oWAPh6WdCu ipxt63Jvl5wyGmMYO857wFitJ/sCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBS2DFmf mJluy/lEWZ/KTFMHO3QanTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI4RUJDRDNB QTg1QjExRURCOEM0RkIyMEM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWdRbDAPBAIAAjAJAwcAIAEN8fZAMA0GCSqGSIb3DQEBCwUAA4IB AQBnnulvIugo1xCWOPjBdMdOmf3QdgDY7UW2j+/uyBBC6SKLV6aj64U8NdLZKtFI J7lreSQ5jFPCEDRIzKf6DNtqTtNffIB+vVAHjauCMi0dVs0ujxSCBKQZMW0HK/zR JfPEME+7kBy9EDzKov0Q5kP+1nrbYFlx10Tdw9IFCjaDRY6hCd8C7I89F1Gj3g92 B4ORcKgmULG7zNJhyr/C3FFd5vXJxBMoe/zEHjESTYOsDQQX75angBUj7lG21nQO 7NgBi3XgSzgs6W77kU5ROv5DrjUI94UFhwf70so30RS2P0KOtBRdfYyM+wS0+lGi AwlUsc/2s5iwM7rtbl29MrI7 -----END CERTIFICATE-----Generated at Mon Mar 2 15:00:24 2026 by rpki-client