$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5434878CD88F11EA9D654539C4F9AE02.roa File: 5434878CD88F11EA9D654539C4F9AE02.roa (raw, json) Hash identifier: sjeWyCB6AGDq/Ie69g43QR4vm0z7daPPPEtiQw1myBM= Subject key identifier: D9:AC:08:50:B8:46:D4:5C:13:37:D5:D2:5B:3F:1E:87:BC:62:A0:4B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D1C4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5434878CD88F11EA9D654539C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:16:43 +0000 ROA not before: Thu 08 May 2025 15:57:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132986 IP address blocks: 45.126.188.0/22 maxlen: 24 103.195.68.0/22 maxlen: 24 103.240.104.0/22 maxlen: 24 2001:df3:5000::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53700 (0xd1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:57:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bacb-21ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:25:a5:0e:7e:85:cc:02:6b:0c:6a:55:ac:dd: 1b:df:9a:05:43:ec:b6:54:0b:0e:a3:f1:18:c4:df: 22:2d:00:d5:47:18:c9:4f:fb:87:25:97:cb:74:1f: f7:1d:1e:71:05:cf:bf:f4:46:e2:79:04:a4:b4:75: 1e:2b:6a:43:f9:36:b7:93:08:d8:0f:7e:37:90:2f: 7f:80:43:00:fc:59:30:c5:f0:d5:54:93:98:d1:28: 48:11:69:6b:a0:8a:3f:9f:03:6b:23:94:05:aa:64: cf:75:da:ce:f4:b5:da:5b:f6:fd:4d:4b:0d:c7:e7: c4:13:0e:46:7c:13:95:7c:f7:d4:49:29:28:9f:64: 71:11:fe:13:83:76:84:26:d4:9d:41:68:0c:80:13: 0b:b2:07:1c:70:31:29:b5:e9:ff:63:d6:db:82:a2: 9d:e7:08:7c:8f:c9:54:29:85:c8:3f:2a:36:f4:16: d5:18:83:8e:3b:2a:36:9b:30:5e:fd:14:13:f6:52: f4:03:e2:ab:79:69:8d:34:9b:6e:ac:bf:72:f8:e2: 28:83:8a:1a:79:84:04:c0:d2:3d:7f:3e:59:06:e2: 5f:ce:2c:ba:b4:04:f4:5f:36:6d:f0:94:9c:62:81: 72:49:1c:6c:25:4b:fc:f4:1b:36:58:5b:a1:22:12: 98:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AC:08:50:B8:46:D4:5C:13:37:D5:D2:5B:3F:1E:87:BC:62:A0:4B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5434878CD88F11EA9D654539C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.126.188.0/22 103.195.68.0/22 103.240.104.0/22 IPv6: 2001:df3:5000::/48 Signature Algorithm: sha256WithRSAEncryption a2:09:28:5a:fa:95:bf:7b:15:2c:d2:cb:a6:d9:59:ed:9f:41: dd:79:08:6b:7e:f1:13:a1:26:6c:50:f8:4a:7c:30:fc:42:e7: 11:68:42:4f:6b:40:ba:e2:8c:a6:11:e3:fb:0c:9b:c0:d2:c7: 93:46:27:9f:e4:07:68:d8:3c:13:c9:f2:20:d5:23:0b:f4:cc: 26:c2:bd:6d:e9:64:c0:9f:20:39:58:42:58:3d:19:32:4b:b5: 6c:96:e8:54:c8:bc:9a:b2:45:a5:78:9b:16:8d:95:cf:ab:a8: a2:48:af:37:e7:98:5e:6a:d9:aa:96:4e:ad:7b:b2:ea:0b:71: d8:2d:87:2b:d7:9c:dc:f2:65:3b:2d:3f:84:ac:3a:75:f0:88: ea:46:94:97:e7:62:d5:93:3b:cd:a0:91:86:88:8a:f0:b9:3c: e4:5e:87:62:53:92:79:3e:2f:b4:d0:7d:2d:36:80:8e:63:54: b4:65:6a:e8:0c:5c:e9:67:fe:8d:5c:b8:87:8a:3c:07:88:79: 66:03:56:a3:93:ef:28:08:19:ee:1c:d6:a0:a3:7d:5b:5a:dc: d6:cf:fa:45:a1:a6:84:1a:ed:b9:05:de:60:02:1b:44:68:5d: 7c:1c:c1:54:13:4f:1b:3e:57:e4:c9:5b:47:1b:bc:39:a6:86: e3:64:89:df -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIDANHEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTczMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJhY2ItMjFiYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK4lpQ5+hcwCawxqVazdG9+aBUPstlQLDqPxGMTfIi0A1UcYyU/7hyWXy3Qf 9x0ecQXPv/RG4nkEpLR1HitqQ/k2t5MI2A9+N5Avf4BDAPxZMMXw1VSTmNEoSBFp a6CKP58DayOUBapkz3XazvS12lv2/U1LDcfnxBMORnwTlXz31EkpKJ9kcRH+E4N2 hCbUnUFoDIATC7IHHHAxKbXp/2PW24KinecIfI/JVCmFyD8qNvQW1RiDjjsqNpsw Xv0UE/ZS9APiq3lpjTSbbqy/cvjiKIOKGnmEBMDSPX8+WQbiX84surQE9F82bfCU nGKBckkcbCVL/PQbNlhboSISmB0CAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBTZrAhQ uEbUXBM31dJbPx6HvGKgSzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU0MzQ4NzhD RDg4RjExRUE5RDY1NDUzOUM0RjlBRTAyLnJvYTA8BggrBgEFBQcBBwEB/wQtMCsw GAQCAAEwEgMEAi1+vAMEAmfDRAMEAmfwaDAPBAIAAjAJAwcAIAEN81AAMA0GCSqG SIb3DQEBCwUAA4IBAQCiCSha+pW/exUs0sum2Vntn0HdeQhrfvEToSZsUPhKfDD8 QucRaEJPa0C64oymEeP7DJvA0seTRief5Ado2DwTyfIg1SML9Mwmwr1t6WTAnyA5 WEJYPRkyS7VsluhUyLyaskWleJsWjZXPq6iiSK8355heatmqlk6te7LqC3HYLYcr 15zc8mU7LT+ErDp18IjqRpSX52LVkzvNoJGGiIrwuTzkXodiU5J5Pi+00H0tNoCO Y1S0ZWroDFzpZ/6NXLiHijwHiHlmA1ajk+8oCBnuHNago31bWtzWz/pFoaaEGu25 Bd5gAhtEaF18HMFUE08bPlfkyVtHG7w5pobjZInf -----END CERTIFICATE-----Generated at Mon Mar 2 11:09:29 2026 by rpki-client