$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2D89DDC4AA3411EE9D1B7580C4F9AE02.roa File: 2D89DDC4AA3411EE9D1B7580C4F9AE02.roa (raw, json) Hash identifier: v1cmn8DPIhtkJNS19yVeQhYJqryF2topRjCqEg8Ukjg= Subject key identifier: B9:3A:EE:D8:EB:52:EB:61:49:58:C1:68:51:9B:B0:0B:00:15:C7:DF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D75A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2D89DDC4AA3411EE9D1B7580C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:38 +0000 ROA not before: Thu 08 May 2025 16:24:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150106 IP address blocks: 103.78.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55130 (0xd75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:24:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c282-5a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7f:dc:1a:78:77:51:49:10:de:4b:1f:24:70: ea:91:bd:17:60:1b:85:fb:be:96:be:1f:9d:e0:87: cb:9f:f9:0c:a4:a4:8d:19:ca:d0:17:95:5b:84:91: d6:05:c7:ff:a3:08:e5:95:77:34:02:74:02:81:18: 86:96:41:ea:f2:a7:31:a3:6c:a5:76:95:a9:45:d9: 52:aa:8f:b0:3f:d1:6c:f5:92:ac:6b:8d:ca:0e:43: c4:ac:e2:1c:0e:de:87:48:20:66:5a:ca:5a:7d:0e: a3:67:13:4a:f9:a1:fe:56:fb:41:b4:a3:a5:f8:19: 51:ea:f9:c9:e2:96:46:fa:b5:ae:b0:16:a3:ac:b3: a8:23:17:45:17:7f:93:18:42:6b:51:84:8c:56:62: 7a:3d:d6:26:57:a2:8e:10:52:01:b2:19:5c:7a:d9: 20:3a:6b:21:ff:e2:9a:56:0e:06:8b:de:42:c6:44: e5:a5:7c:bb:92:30:67:14:dd:28:b5:9a:b1:d9:14: a1:de:44:00:d7:1c:fc:41:5b:93:a2:3e:a2:ca:7f: 4c:b1:47:2b:8b:0f:4a:08:8d:6d:dd:d0:96:9d:89: c3:7a:32:cc:5f:e4:52:b0:ba:e0:55:74:86:6b:b1: 43:53:16:de:b5:8c:d3:06:63:70:1a:77:f4:83:55: 77:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3A:EE:D8:EB:52:EB:61:49:58:C1:68:51:9B:B0:0B:00:15:C7:DF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2D89DDC4AA3411EE9D1B7580C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.78.204.0/22 Signature Algorithm: sha256WithRSAEncryption 62:3c:e0:d3:62:78:23:39:bd:80:0c:ec:44:cd:02:7c:d5:9a: 12:d2:8d:f1:a2:65:dc:a4:02:bf:41:ae:e4:39:c5:c5:d6:8f: 0f:41:6c:29:90:43:42:99:c4:fd:6f:92:c2:c1:a7:2c:84:c3: c6:c7:50:f4:44:c8:61:89:b2:e7:6a:19:fe:12:1a:51:9a:eb: d5:91:65:54:6d:ae:4c:90:f7:32:c2:98:c0:cd:c2:87:f0:1c: 55:a9:35:2c:f7:1c:07:31:c4:f1:8e:20:37:f8:84:00:cd:db: 18:c4:1d:bf:ba:ec:2a:a4:e4:d5:3a:e1:bd:19:3b:3e:c4:57: 7c:51:ff:8b:74:e4:16:a2:b7:32:74:78:2e:42:d6:89:04:3b: 1f:9e:60:d9:ac:54:6b:c1:0c:ff:73:e3:28:22:75:ce:0e:43: 07:fb:68:d4:37:99:82:36:e2:b3:f1:48:3c:e3:f5:1f:e9:32: 4f:7c:ac:6f:57:12:56:7d:b4:29:65:fc:e4:0c:ff:dd:74:83: 3a:75:c2:c8:7e:ce:c5:03:a0:05:26:d1:8a:9f:87:3d:43:5a: 89:3d:d2:7d:92:a5:3b:55:58:65:b1:9c:ad:88:0b:07:6b:17: bd:40:df:e8:f3:0b:c4:76:5a:ee:b9:94:72:56:7d:41:79:9c: d0:90:8f:b3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANdaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjQ0OVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMyODItNWEwZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKl/3Bp4d1FJEN5LHyRw6pG9F2Abhfu+lr4fneCHy5/5DKSkjRnK0BeVW4SR 1gXH/6MI5ZV3NAJ0AoEYhpZB6vKnMaNspXaVqUXZUqqPsD/RbPWSrGuNyg5DxKzi HA7eh0ggZlrKWn0Oo2cTSvmh/lb7QbSjpfgZUer5yeKWRvq1rrAWo6yzqCMXRRd/ kxhCa1GEjFZiej3WJleijhBSAbIZXHrZIDprIf/imlYOBoveQsZE5aV8u5IwZxTd KLWasdkUod5EANcc/EFbk6I+osp/TLFHK4sPSgiNbd3Qlp2Jw3oyzF/kUrC64FV0 hmuxQ1MW3rWM0wZjcBp39INVd9kCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBS5Ou7Y 61LrYUlYwWhRm7ALABXH3zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJEODlEREM0 QUEzNDExRUU5RDFCNzU4MEM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdOzDANBgkqhkiG9w0BAQsFAAOCAQEAYjzg02J4Izm9gAzsRM0C fNWaEtKN8aJl3KQCv0Gu5DnFxdaPD0FsKZBDQpnE/W+SwsGnLITDxsdQ9ETIYYmy 52oZ/hIaUZrr1ZFlVG2uTJD3MsKYwM3Ch/AcVak1LPccBzHE8Y4gN/iEAM3bGMQd v7rsKqTk1TrhvRk7PsRXfFH/i3TkFqK3MnR4LkLWiQQ7H55g2axUa8EM/3PjKCJ1 zg5DB/to1DeZgjbis/FIPOP1H+kyT3ysb1cSVn20KWX85Az/3XSDOnXCyH7OxQOg BSbRip+HPUNaiT3SfZKlO1VYZbGcrYgLB2sXvUDf6PMLxHZa7rmUclZ9QXmc0JCP sw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:28 2026 by rpki-client