$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/40A9CE12EA6F11EDA7EDB55CC4F9AE02.roa File: 40A9CE12EA6F11EDA7EDB55CC4F9AE02.roa (raw, json) Hash identifier: 6XqtIBxPEA2TuXUcr5fODCMZAnx+T/G62GG925BUKQM= Subject key identifier: 3B:5C:B1:BB:9B:C8:F9:0F:15:E6:4E:F7:E5:27:CE:66:99:18:2D:51 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D47A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/40A9CE12EA6F11EDA7EDB55CC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:32:15 +0000 ROA not before: Thu 08 May 2025 16:11:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138274 IP address blocks: 103.132.204.0/22 maxlen: 24 103.250.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54394 (0xd47a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:11:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4be6f-78fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:93:61:64:c3:c6:21:d2:e4:eb:18:2a:80:bd: 2d:0e:08:fc:b1:3b:7d:f9:02:b5:4f:92:d1:91:e0: c7:e3:c6:3b:f0:c7:ec:38:78:05:ed:25:5e:6d:b2: 96:95:25:a7:bd:22:56:a4:d3:a2:7a:1e:1f:13:a9: b9:ba:73:6d:ea:c4:ff:28:0c:02:f0:db:0d:e9:55: ec:22:9a:0f:65:a9:18:91:7e:29:72:46:6d:2b:32: f7:51:1b:15:c0:31:75:cb:d3:8c:89:17:a2:df:31: aa:03:68:16:fd:14:0c:b9:4f:be:3e:64:86:18:6f: df:76:b6:05:ea:2c:16:8b:74:e5:5e:87:2c:7b:c5: 91:21:21:4a:43:91:20:ee:f7:77:05:0e:e1:d0:cb: 7a:58:41:41:37:df:09:91:63:47:3a:cb:39:c2:ed: e5:42:de:dc:da:a9:2a:0b:9b:92:e6:42:ad:f5:d4: 8b:c7:c7:39:dc:82:b2:82:3a:f2:d3:19:dc:74:ca: 2a:22:bc:7b:de:3c:0f:e9:de:5f:f2:21:44:fc:f4: 2d:20:fa:fe:26:58:3c:bd:5b:d3:9f:61:01:c9:99: 56:df:c8:61:89:59:6b:e4:17:bc:f1:44:31:43:a2: fe:07:d5:67:b5:5d:3e:f7:c5:5f:93:b7:22:55:30: 6e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5C:B1:BB:9B:C8:F9:0F:15:E6:4E:F7:E5:27:CE:66:99:18:2D:51 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/40A9CE12EA6F11EDA7EDB55CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.204.0/22 103.250.120.0/23 Signature Algorithm: sha256WithRSAEncryption 49:b4:b1:75:75:8f:c4:e4:0c:39:eb:78:be:2c:96:5d:16:22: d8:8d:9f:f5:5c:d7:7b:71:82:d8:02:8c:58:5e:f8:bc:db:d8: c7:1b:d0:7e:e2:52:5e:be:3a:b6:08:a1:6c:94:99:3d:7c:62: 12:27:3b:4a:68:35:bb:4a:f1:d5:86:4b:37:b5:f7:4e:05:fb: 55:a8:98:8c:1a:05:68:6b:2f:01:0c:08:e0:ca:21:fc:32:93: 98:b8:e4:aa:cf:4c:a3:71:c9:49:4a:41:ce:46:b3:d9:40:52: 54:61:c9:de:83:c5:e4:fa:f6:a2:48:11:92:21:b2:49:e6:86: 27:f3:f1:89:82:84:1d:75:5d:c1:e9:81:aa:04:ba:12:d2:21: 96:a7:f5:a9:1f:fa:10:5d:59:f1:6b:52:40:44:c5:99:b9:67: 35:da:b5:b3:87:49:91:eb:84:a4:c3:4a:1c:23:4d:b1:60:b6: 1f:58:c0:7c:cd:49:83:41:b1:65:9e:58:30:1d:65:d1:5f:44: 4b:e0:66:45:3a:14:84:9a:33:66:6d:de:e2:9b:85:8b:78:47: b1:a8:44:54:20:e1:71:22:50:15:bf:df:57:38:16:c7:a2:ee: 18:f9:e4:dd:49:68:f7:2b:b9:7f:3f:e0:84:2f:43:64:a7:92: 53:d0:04:c3 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIDANR6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTEyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJlNmYtNzhmZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI+TYWTDxiHS5OsYKoC9LQ4I/LE7ffkCtU+S0ZHgx+PGO/DH7Dh4Be0lXm2y lpUlp70iVqTTonoeHxOpubpzberE/ygMAvDbDelV7CKaD2WpGJF+KXJGbSsy91Eb FcAxdcvTjIkXot8xqgNoFv0UDLlPvj5khhhv33a2BeosFot05V6HLHvFkSEhSkOR IO73dwUO4dDLelhBQTffCZFjRzrLOcLt5ULe3NqpKgubkuZCrfXUi8fHOdyCsoI6 8tMZ3HTKKiK8e948D+neX/IhRPz0LSD6/iZYPL1b059hAcmZVt/IYYlZa+QXvPFE MUOi/gfVZ7VdPvfFX5O3IlUwbukCAwEAAaOCAmYwggJiMB0GA1UdDgQWBBQ7XLG7 m8j5DxXmTvflJ85mmRgtUTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQwQTlDRTEy RUE2RjExRURBN0VEQjU1Q0M0RjlBRTAyLnJvYTAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAmeEzAMEAWf6eDANBgkqhkiG9w0BAQsFAAOCAQEASbSxdXWPxOQM Oet4viyWXRYi2I2f9VzXe3GC2AKMWF74vNvYxxvQfuJSXr46tgihbJSZPXxiEic7 Smg1u0rx1YZLN7X3TgX7VaiYjBoFaGsvAQwI4Moh/DKTmLjkqs9Mo3HJSUpBzkaz 2UBSVGHJ3oPF5Pr2okgRkiGySeaGJ/PxiYKEHXVdwemBqgS6EtIhlqf1qR/6EF1Z 8WtSQETFmblnNdq1s4dJkeuEpMNKHCNNsWC2H1jAfM1Jg0GxZZ5YMB1l0V9ES+Bm RToUhJozZm3e4puFi3hHsahEVCDhcSJQFb/fVzgWx6LuGPnk3Ulo9yu5fz/ghC9D ZKeSU9AEww== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:37 2026 by rpki-client