$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/487BBF90C42711EFA3BE1C71C4F9AE02.roa File: 487BBF90C42711EFA3BE1C71C4F9AE02.roa (raw, json) Hash identifier: cFIE85fAonkrcIo1oCNAIiBd23hNQJhUgZBdU/W76+k= Subject key identifier: E7:29:9C:F8:5D:C2:06:FD:D2:39:34:07:94:E7:55:64:AF:6C:C2:27 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D635 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/487BBF90C42711EFA3BE1C71C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:42:32 +0000 ROA not before: Thu 08 May 2025 16:19:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 146886 IP address blocks: 103.173.22.0/23 maxlen: 24 103.173.23.0/26 maxlen: 26 103.173.23.64/26 maxlen: 26 103.173.23.128/26 maxlen: 26 103.173.23.192/26 maxlen: 26 2407:de40:4200::/48 maxlen: 48 2407:de40:4300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54837 (0xd635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:19:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c0d8-e248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:2d:d2:e6:02:7b:e4:8c:13:89:95:52:22: 2c:88:92:1c:86:12:d2:71:af:99:6a:2f:70:b9:ba: 36:23:d6:ed:8a:78:16:17:f8:89:50:55:33:8b:09: 70:f0:45:7f:39:a6:08:07:12:db:1d:09:cd:5d:75: 19:b9:5e:92:a6:91:3e:44:04:b0:28:eb:b0:eb:14: 53:63:b8:66:cb:46:37:57:3f:19:f3:c0:63:5d:14: f0:10:c3:90:b7:a8:1b:01:cf:cf:08:9e:63:cb:32: 65:c7:47:7f:2a:1c:46:16:25:80:e2:94:4d:35:8e: d3:6c:f5:0d:79:b2:b9:d2:03:f2:3a:bc:99:da:a9: 28:1e:d8:98:d7:e9:6c:2a:22:db:98:bb:8e:d0:22: 5f:22:14:a3:b4:90:f7:8b:61:eb:6d:66:65:90:fa: cc:84:01:81:2b:b3:54:ef:4e:c7:94:14:89:91:82: d2:bc:20:6d:2c:2d:ef:4d:9b:cd:39:7a:24:a7:b2: ed:53:a3:e5:c4:03:ed:e6:19:8f:62:4b:0f:4f:ab: 7b:fb:da:e2:ea:05:07:66:25:1a:74:51:79:22:11: 09:80:1d:c5:3f:e1:0b:a9:aa:6c:05:c3:e4:92:59: 66:7e:83:0d:9b:67:05:6e:26:81:e1:d9:c2:18:3d: 51:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:29:9C:F8:5D:C2:06:FD:D2:39:34:07:94:E7:55:64:AF:6C:C2:27 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/487BBF90C42711EFA3BE1C71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.22.0/23 IPv6: 2407:de40:4200::/48 2407:de40:4300::/48 Signature Algorithm: sha256WithRSAEncryption 2f:75:4c:a5:01:8c:c6:cd:b1:1a:f0:d1:e4:70:c3:84:d8:68: de:d9:cf:20:d2:2f:3d:58:96:5a:8b:e5:ee:c7:f6:d6:96:4c: 0e:c4:ee:48:0f:c7:dd:1b:24:e9:77:8f:f6:34:6f:35:ef:3a: e7:8b:18:57:a7:a2:27:93:f7:6e:25:79:ce:d9:36:f0:f8:82: 2b:a4:97:aa:e1:2b:dd:8a:28:85:c0:78:fa:df:69:2a:cc:a9: b0:88:95:09:28:b8:37:a1:b0:03:34:12:f2:f7:79:74:ef:28: 5a:ed:1d:d4:de:1e:08:84:a1:07:b6:3e:c3:9c:5c:02:5c:84: 49:e5:db:b7:69:9a:d8:b5:29:bb:dc:15:fc:ef:d5:38:bf:cc: f6:72:f2:28:d5:7a:2c:c4:6a:63:cf:3d:15:59:15:cd:e2:d5: 39:94:dd:91:b1:0d:fc:1a:18:6f:51:fb:8c:96:3b:bb:8d:b2: dc:ba:65:2a:2c:5f:3d:84:80:20:46:aa:20:d9:27:3f:c2:4e: 9a:83:25:f4:94:e4:b3:f3:b9:85:6d:97:4f:ab:0e:5c:20:6b: 07:d3:0b:6e:22:06:eb:d5:64:74:0c:df:dd:78:96:ee:87:91: 18:f8:b1:7a:00:8c:8d:b3:af:54:1b:08:8b:84:9c:3b:d3:ef: ee:d8:62:26 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgIDANY1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTk1MFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMwZDgtZTI0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALV0LdLmAnvkjBOJlVIiLIiSHIYS0nGvmWovcLm6NiPW7Yp4Fhf4iVBVM4sJ cPBFfzmmCAcS2x0JzV11GblekqaRPkQEsCjrsOsUU2O4ZstGN1c/GfPAY10U8BDD kLeoGwHPzwieY8syZcdHfyocRhYlgOKUTTWO02z1DXmyudID8jq8mdqpKB7YmNfp bCoi25i7jtAiXyIUo7SQ94th621mZZD6zIQBgSuzVO9Ox5QUiZGC0rwgbSwt702b zTl6JKey7VOj5cQD7eYZj2JLD0+re/va4uoFB2YlGnRReSIRCYAdxT/hC6mqbAXD 5JJZZn6DDZtnBW4mgeHZwhg9USECAwEAAaOCAnowggJ2MB0GA1UdDgQWBBTnKZz4 XcIG/dI5NAeU51Vkr2zCJzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ4N0JCRjkw QzQyNzExRUZBM0JFMUM3MUM0RjlBRTAyLnJvYTA5BggrBgEFBQcBBwEB/wQqMCgw DAQCAAEwBgMEAWetFjAYBAIAAjASAwcAJAfeQEIAAwcAJAfeQEMAMA0GCSqGSIb3 DQEBCwUAA4IBAQAvdUylAYzGzbEa8NHkcMOE2Gje2c8g0i89WJZai+Xux/bWlkwO xO5ID8fdGyTpd4/2NG817zrnixhXp6Ink/duJXnO2Tbw+IIrpJeq4SvdiiiFwHj6 32kqzKmwiJUJKLg3obADNBLy93l07yha7R3U3h4IhKEHtj7DnFwCXIRJ5du3aZrY tSm73BX879U4v8z2cvIo1XosxGpjzz0VWRXN4tU5lN2RsQ38GhhvUfuMlju7jbLc umUqLF89hIAgRqog2Sc/wk6agyX0lOSz87mFbZdPqw5cIGsH0wtuIgbr1WR0DN/d eJbuh5EY+LF6AIyNs69UGwiLhJw70+/u2GIm -----END CERTIFICATE-----Generated at Mon Mar 2 12:52:05 2026 by rpki-client