$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599A4CE6E20A11EFB6D59522C4F9AE02.roa File: 599A4CE6E20A11EFB6D59522C4F9AE02.roa (raw, json) Hash identifier: UEutcKrKTLDRE9ulGuCrBIpCxfRs6nnWrjFb6lHAGA4= Subject key identifier: 47:A8:65:FD:F7:34:DD:3E:80:FB:7D:77:88:7C:AD:FF:C0:95:90:AF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D44C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599A4CE6E20A11EFB6D59522C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:31:05 +0000 ROA not before: Thu 08 May 2025 16:10:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137650 IP address blocks: 45.114.70.0/24 maxlen: 24 103.134.250.0/23 maxlen: 24 103.157.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54348 (0xd44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:10:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4be29-4733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:86:e1:36:67:4a:95:b3:0c:47:40:00:18:3b: d1:b1:85:dc:e8:89:1b:50:23:ca:77:7b:67:3e:1f: 3a:84:81:1a:eb:16:f9:94:8f:f6:77:72:ca:1f:26: d7:1a:71:ac:40:4d:d5:ec:df:1d:8f:08:d4:e6:d5: c4:6c:e6:e2:d2:d1:04:31:90:35:52:df:40:99:e4: 89:21:3f:37:ff:cb:e1:1a:0b:11:f7:13:04:ff:b0: 01:19:08:f2:f1:ef:ef:4c:84:18:cb:1b:b7:b6:b0: 6b:9f:de:ba:e9:9e:78:af:b0:f4:ef:b2:af:7b:1f: a3:80:d4:08:fe:c4:12:6f:ca:cd:d5:53:0a:59:dc: 57:79:e4:ce:86:30:49:fc:f0:7d:a1:94:4f:74:96: 8c:4e:52:ff:69:29:00:0e:f3:0d:5f:0e:e6:94:cf: 91:eb:4d:7d:2d:2c:19:c9:f3:12:f4:4f:e7:d7:54: 34:86:70:7e:72:e2:bc:e3:ad:4c:90:5b:7b:fe:65: 48:23:2c:6a:ce:9b:af:51:f5:d4:3d:ca:4e:2c:14: a8:c6:ee:83:46:4b:9f:0c:ad:6d:da:27:f9:8e:18: 02:f5:fb:c4:9b:ed:dc:f0:da:e1:70:5d:2e:6b:02: bf:14:87:78:6d:84:78:c3:f5:83:2c:1e:ce:e2:26: 2c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A8:65:FD:F7:34:DD:3E:80:FB:7D:77:88:7C:AD:FF:C0:95:90:AF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599A4CE6E20A11EFB6D59522C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.114.70.0/24 103.134.250.0/23 103.157.126.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:bf:b8:61:c3:4e:3c:49:90:25:24:d3:58:b9:97:fa:65:39: 51:00:87:21:d7:37:00:de:37:67:be:02:ab:ff:6a:15:a5:6e: 31:eb:61:73:eb:92:2b:fd:38:33:82:7b:1f:72:cc:99:29:a0: a5:39:e2:1c:bc:f6:e3:cd:de:94:38:68:d5:22:19:2a:b0:95: d3:b0:90:31:53:50:a0:95:6a:8a:87:bf:dd:e1:17:c5:13:28: fd:c5:67:97:4f:cc:fa:d7:3e:b0:6f:8f:39:62:64:57:e8:52: 7f:51:ba:e1:e0:27:d2:48:33:6f:20:f7:f6:fe:af:87:d2:bf: 8c:60:e8:66:a2:e2:dc:20:8c:ed:a2:8a:2d:3d:0f:1c:5b:14: b6:c3:a7:bc:a0:77:dd:bd:61:0e:36:38:16:6f:6c:2b:cb:fb: b7:26:08:2a:36:d6:dd:de:b2:72:c4:59:f8:6f:ab:fa:81:8f: 94:61:88:c3:36:75:8b:69:e2:b1:d7:cf:0d:38:dc:55:84:1b: 39:5c:84:0d:5f:6f:4d:f6:35:33:e9:f5:b5:cd:66:2e:02:f9: 77:7b:15:87:7d:2b:46:d4:83:28:d8:9a:8e:1a:9d:ec:45:de: b4:cb:f3:ca:59:5c:1f:0f:b1:27:f4:77:eb:16:a1:0e:c7:12: 15:49:a9:5f -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIDANRMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTAyOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJlMjktNDczMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmG4TZnSpWzDEdAABg70bGF3OiJG1Ajynd7Zz4fOoSBGusW+ZSP9ndyyh8m 1xpxrEBN1ezfHY8I1ObVxGzm4tLRBDGQNVLfQJnkiSE/N//L4RoLEfcTBP+wARkI 8vHv70yEGMsbt7awa5/euumeeK+w9O+yr3sfo4DUCP7EEm/KzdVTClncV3nkzoYw SfzwfaGUT3SWjE5S/2kpAA7zDV8O5pTPketNfS0sGcnzEvRP59dUNIZwfnLivOOt TJBbe/5lSCMsas6br1H11D3KTiwUqMbug0ZLnwytbdon+Y4YAvX7xJvt3PDa4XBd LmsCvxSHeG2EeMP1gywezuImLDMCAwEAAaOCAmwwggJoMB0GA1UdDgQWBBRHqGX9 9zTdPoD7fXeIfK3/wJWQrzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU5OUE0Q0U2 RTIwQTExRUZCNkQ1OTUyMkM0RjlBRTAyLnJvYTArBggrBgEFBQcBBwEB/wQcMBow GAQCAAEwEgMEAC1yRgMEAWeG+gMEAWedfjANBgkqhkiG9w0BAQsFAAOCAQEAe7+4 YcNOPEmQJSTTWLmX+mU5UQCHIdc3AN43Z74Cq/9qFaVuMethc+uSK/04M4J7H3LM mSmgpTniHLz2483elDho1SIZKrCV07CQMVNQoJVqioe/3eEXxRMo/cVnl0/M+tc+ sG+POWJkV+hSf1G64eAn0kgzbyD39v6vh9K/jGDoZqLi3CCM7aKKLT0PHFsUtsOn vKB33b1hDjY4Fm9sK8v7tyYIKjbW3d6ycsRZ+G+r+oGPlGGIwzZ1i2nisdfPDTjc VYQbOVyEDV9vTfY1M+n1tc1mLgL5d3sVh30rRtSDKNiajhqd7EXetMvzyllcHw+x J/R36xahDscSFUmpXw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:24:36 2026 by rpki-client