$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/36651CDCEEBD11EFAFE9FA67C4F9AE02.roa File: 36651CDCEEBD11EFAFE9FA67C4F9AE02.roa (raw, json) Hash identifier: HxDNk1y3DC1r5UeD42e3PIrKKJHxmTOkIOkXymwiR2c= Subject key identifier: 47:38:22:CB:02:7B:E2:31:0C:90:CE:2B:D4:1A:D1:B5:F2:E2:82:67 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D884 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/36651CDCEEBD11EFAFE9FA67C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:55:12 +0000 ROA not before: Thu 08 May 2025 16:30:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24029 IP address blocks: 103.97.92.0/22 maxlen: 24 203.119.49.0/24 maxlen: 24 203.119.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55428 (0xd884) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:30:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c3d0-0967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:cd:c3:69:e9:0c:7c:f2:b7:50:bd:6a:08:c1: 1f:cc:e4:8d:24:1d:6b:dd:f9:7d:54:bc:50:27:a0: f3:ad:b6:42:45:b1:c9:aa:5e:71:51:cf:db:b8:f7: 48:f4:14:08:0a:ca:e9:f3:c7:83:63:43:5c:a2:92: 9d:14:74:33:0f:61:6e:5e:2b:cf:2c:b0:e5:fd:2a: de:f7:a9:e8:b0:4b:35:49:cc:9f:d2:cb:24:bf:8f: 2f:d2:1e:ae:8f:84:53:ca:4b:89:bf:8a:df:bb:33: cc:d1:bf:9c:dc:57:c4:f6:67:d4:cf:d4:de:f4:0b: f0:45:18:62:ba:0d:11:94:a9:ef:55:45:ef:94:51: 64:e6:a7:73:ff:56:36:1a:94:15:52:22:6a:fa:0a: 03:90:e7:95:d8:d9:a0:58:06:db:8c:dd:36:a7:c5: 5c:e1:a4:07:f0:2c:ec:15:93:f4:7c:e7:b2:9c:19: 9a:0d:22:f1:a6:97:17:55:59:a2:2d:8b:22:1c:f7: 18:d6:37:35:29:3b:31:9c:64:30:87:e4:cf:41:ec: 49:e9:fc:b8:92:0c:2d:06:2b:82:ef:44:ff:71:e6: 0f:7c:0a:a3:1c:c3:02:2e:e6:b9:33:7c:1f:f3:8f: 30:24:0b:eb:cc:6f:6f:f8:14:db:af:67:10:33:bc: 88:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:38:22:CB:02:7B:E2:31:0C:90:CE:2B:D4:1A:D1:B5:F2:E2:82:67 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/36651CDCEEBD11EFAFE9FA67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.97.92.0/22 203.119.49.0-203.119.50.255 Signature Algorithm: sha256WithRSAEncryption 2b:52:18:34:05:f6:a0:f1:04:ef:0f:72:49:be:59:e5:cb:c2: 8f:4b:af:38:85:10:87:ee:6d:69:41:07:7a:a4:65:cb:e2:60: 1b:b0:ab:d9:e1:5d:47:d4:dc:67:78:46:3d:e8:48:8c:79:a6: e7:a2:f7:40:ed:fb:e4:e9:d2:b8:48:85:dd:01:94:1e:7b:aa: 2e:55:9b:33:45:68:24:33:15:6c:93:e2:08:94:f5:7c:c2:9b: f5:57:aa:0a:21:f6:ea:a2:f0:b9:5a:cc:4a:6b:52:d4:3d:b1: 41:01:ae:1a:5f:e2:01:a9:a7:af:05:9a:16:0b:d1:19:38:f6: 76:4e:fd:bb:2d:55:fd:33:84:8e:a7:ad:74:20:18:9e:fd:8d: 13:ec:f1:94:60:c2:5e:ee:58:eb:5d:b0:fb:be:82:2f:ed:22: b5:28:93:8a:78:59:72:de:09:d2:7e:d9:64:02:b0:d3:a8:33: f3:01:eb:47:e8:d0:09:4b:b8:bc:a5:8f:f3:98:02:e6:d0:e4: b7:1b:57:08:ed:04:30:6f:2a:c7:5c:c8:da:29:fe:1f:8b:04: a2:d3:4b:77:ee:92:d8:6d:1e:64:bd:e6:9f:d0:8f:a1:e7:20: 7b:c2:64:58:0e:b2:5c:62:25:49:f2:36:34:2b:4d:9c:f4:a0: 2a:2a:12:fd -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIDANiEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzAyOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzZDAtMDk2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJDNw2npDHzyt1C9agjBH8zkjSQda935fVS8UCeg8622QkWxyapecVHP27j3 SPQUCArK6fPHg2NDXKKSnRR0Mw9hbl4rzyyw5f0q3vep6LBLNUnMn9LLJL+PL9Ie ro+EU8pLib+K37szzNG/nNxXxPZn1M/U3vQL8EUYYroNEZSp71VF75RRZOanc/9W NhqUFVIiavoKA5DnldjZoFgG24zdNqfFXOGkB/As7BWT9HznspwZmg0i8aaXF1VZ oi2LIhz3GNY3NSk7MZxkMIfkz0HsSen8uJIMLQYrgu9E/3HmD3wKoxzDAi7muTN8 H/OPMCQL68xvb/gU269nEDO8iIMCAwEAAaOCAm4wggJqMB0GA1UdDgQWBBRHOCLL AnviMQyQzivUGtG18uKCZzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzM2NjUxQ0RD RUVCRDExRUZBRkU5RkE2N0M0RjlBRTAyLnJvYTAtBggrBgEFBQcBBwEB/wQeMBww GgQCAAEwFAMEAmdhXDAMAwQAy3cxAwQAy3cyMA0GCSqGSIb3DQEBCwUAA4IBAQAr Uhg0Bfag8QTvD3JJvlnly8KPS684hRCH7m1pQQd6pGXL4mAbsKvZ4V1H1NxneEY9 6EiMeabnovdA7fvk6dK4SIXdAZQee6ouVZszRWgkMxVsk+IIlPV8wpv1V6oKIfbq ovC5WsxKa1LUPbFBAa4aX+IBqaevBZoWC9EZOPZ2Tv27LVX9M4SOp610IBie/Y0T 7PGUYMJe7ljrXbD7voIv7SK1KJOKeFly3gnSftlkArDTqDPzAetH6NAJS7i8pY/z mALm0OS3G1cI7QQwbyrHXMjaKf4fiwSi00t37pLYbR5kveaf0I+h5yB7wmRYDrJc YiVJ8jY0K02c9KAqKhL9 -----END CERTIFICATE-----Generated at Mon Mar 2 17:09:45 2026 by rpki-client