$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/449558C0D18111EFA8709F4EC4F9AE02.roa File: 449558C0D18111EFA8709F4EC4F9AE02.roa (raw, json) Hash identifier: FuBW46KuBRvBCsPSKbkWfaNVCTjlV4GMBFXOhP0Vc5c= Subject key identifier: F7:BE:6F:8E:BC:03:63:01:3B:6A:9E:10:A5:DB:51:2A:07:B2:A2:F2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D912 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/449558C0D18111EFA8709F4EC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:57:37 +0000 ROA not before: Fri 30 May 2025 11:05:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150046 IP address blocks: 103.147.128.0/24 maxlen: 24 103.157.69.0/24 maxlen: 24 103.158.111.0/24 maxlen: 24 103.163.60.0/24 maxlen: 24 103.163.126.0/23 maxlen: 24 103.191.114.0/23 maxlen: 24 2001:df0:ffc0::/48 maxlen: 48 2001:df5:8240::/48 maxlen: 48 2001:df6:1780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55570 (0xd912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 11:05:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c461-afb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:40:62:42:16:32:8b:0d:88:db:67:f7:a5:1a: 98:a1:6e:cd:de:ce:6d:af:ac:6e:87:c0:e1:1e:d5: cb:af:3c:de:07:11:ca:b0:03:d7:98:66:1b:a2:a3: ba:45:ee:df:4b:51:b0:58:30:32:ec:87:57:56:ab: e6:d2:d9:c6:f5:0a:18:7e:1c:d6:46:20:5b:1e:aa: f1:24:e8:39:5d:cf:f7:75:e7:4f:a0:6f:39:ee:13: 3e:59:64:2a:de:c6:48:b3:52:2d:17:82:bf:15:5f: 0e:29:24:2c:8b:97:99:a9:17:b8:7b:29:c0:e3:cb: dd:77:30:10:12:a9:71:38:39:79:75:2c:2d:ed:aa: b7:13:fe:93:a8:78:9d:ec:66:a6:cd:10:7f:52:c9: 5d:f4:9b:2c:de:d8:78:a8:fb:a7:39:87:eb:92:61: 7e:26:6c:70:45:45:9b:44:cb:4a:36:cb:30:d3:81: 8b:b2:97:91:2c:ca:81:0b:0e:9d:47:5a:4e:5e:54: b1:e1:e5:c3:12:b4:77:70:5e:6e:aa:d8:d0:d4:ef: 0c:1b:8a:74:c8:ae:97:a0:3d:52:0d:3a:37:56:cd: f0:95:bf:11:ce:8d:a6:ce:51:30:62:f8:86:14:01: ba:99:22:ad:b4:b1:41:71:c7:3e:ca:04:ae:8d:41: 56:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BE:6F:8E:BC:03:63:01:3B:6A:9E:10:A5:DB:51:2A:07:B2:A2:F2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/449558C0D18111EFA8709F4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.147.128.0/24 103.157.69.0/24 103.158.111.0/24 103.163.60.0/24 103.163.126.0/23 103.191.114.0/23 IPv6: 2001:df0:ffc0::/48 2001:df5:8240::/48 2001:df6:1780::/48 Signature Algorithm: sha256WithRSAEncryption 75:5a:9f:d4:eb:c9:d1:3a:24:d4:7f:81:f9:b7:bc:72:2a:21: d6:11:fc:23:2b:a7:07:7b:d5:7c:47:45:d7:6a:76:23:2a:16: bd:f9:94:30:0c:86:38:2d:1f:62:06:82:d4:52:b1:b7:84:80: 4e:53:da:3d:be:0a:61:be:53:86:ac:1f:fc:2f:23:4b:10:9a: 05:65:47:d0:fe:af:04:d6:3c:ff:4b:ba:62:2a:52:db:72:70: 6f:ce:55:af:df:89:16:b0:a2:ef:42:1d:82:7b:f3:57:02:a7: c9:c5:81:b1:a7:87:ed:87:9d:39:c2:40:33:f2:84:08:67:81: e2:75:96:50:61:11:6a:83:e3:2f:ac:cb:f2:48:e5:c6:3f:f9: f2:3f:27:85:5a:e3:f6:34:7d:75:45:c0:ef:c6:90:1f:a0:5a: 0d:0f:d5:de:53:3b:6a:d5:cb:42:12:4a:e3:a9:2e:ea:3b:77: 81:4d:95:b1:3a:cf:d7:e7:17:d0:64:c8:5a:71:15:f3:ea:26: 53:32:15:7b:3b:44:7a:bc:35:73:93:ed:17:c2:35:80:ed:44: f4:a3:d7:c8:1f:cf:3b:7f:ef:75:4b:9d:d9:79:55:49:3c:ca: 26:3e:fa:a9:75:65:bf:f3:32:ab:2f:04:de:1b:06:f1:c0:01: be:92:9a:fa -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIDANkSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUzMDExMDUzOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM0NjEtYWZiMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFAYkIWMosNiNtn96UamKFuzd7Oba+sbofA4R7Vy6883gcRyrAD15hmG6Kj ukXu30tRsFgwMuyHV1ar5tLZxvUKGH4c1kYgWx6q8SToOV3P93XnT6BvOe4TPllk Kt7GSLNSLReCvxVfDikkLIuXmakXuHspwOPL3XcwEBKpcTg5eXUsLe2qtxP+k6h4 nexmps0Qf1LJXfSbLN7YeKj7pzmH65JhfiZscEVFm0TLSjbLMNOBi7KXkSzKgQsO nUdaTl5UseHlwxK0d3BebqrY0NTvDBuKdMiul6A9Ug06N1bN8JW/Ec6Nps5RMGL4 hhQBupkirbSxQXHHPsoEro1BVgcCAwEAAaOCAqEwggKdMB0GA1UdDgQWBBT3vm+O vANjATtqnhCl21EqB7Ki8jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ0OTU1OEMw RDE4MTExRUZBODcwOUY0RUM0RjlBRTAyLnJvYTBgBggrBgEFBQcBBwEB/wRRME8w KgQCAAEwJAMEAGeTgAMEAGedRQMEAGeebwMEAGejPAMEAWejfgMEAWe/cjAhBAIA AjAbAwcAIAEN8P/AAwcAIAEN9YJAAwcAIAEN9heAMA0GCSqGSIb3DQEBCwUAA4IB AQB1Wp/U68nROiTUf4H5t7xyKiHWEfwjK6cHe9V8R0XXanYjKha9+ZQwDIY4LR9i BoLUUrG3hIBOU9o9vgphvlOGrB/8LyNLEJoFZUfQ/q8E1jz/S7piKlLbcnBvzlWv 34kWsKLvQh2Ce/NXAqfJxYGxp4fth505wkAz8oQIZ4HidZZQYRFqg+MvrMvySOXG P/nyPyeFWuP2NH11RcDvxpAfoFoND9XeUztq1ctCEkrjqS7qO3eBTZWxOs/X5xfQ ZMhacRXz6iZTMhV7O0R6vDVzk+0XwjWA7UT0o9fIH887f+91S53ZeVVJPMomPvqp dWW/8zKrLwTeGwbxwAG+kpr6 -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:46 2026 by rpki-client