$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/630A91CCA58E11EFAE7E806FC4F9AE02.roa File: 630A91CCA58E11EFAE7E806FC4F9AE02.roa (raw, json) Hash identifier: P41zUsGCB4qMYgGgh6HWdfwgoKqfuc5GgPBlyk1GcvM= Subject key identifier: 08:91:8E:A4:B2:A0:DD:08:FF:42:58:84:7F:6D:31:97:D8:8C:33:BB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D880 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/630A91CCA58E11EFAE7E806FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:55:08 +0000 ROA not before: Thu 08 May 2025 16:30:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23682 IP address blocks: 101.0.43.0/24 maxlen: 24 101.0.44.0/24 maxlen: 24 101.0.51.0/24 maxlen: 24 101.0.59.0/24 maxlen: 24 101.0.61.0/24 maxlen: 24 180.188.225.0/24 maxlen: 24 203.76.176.0/24 maxlen: 24 203.76.179.0/24 maxlen: 24 203.76.184.0/24 maxlen: 24 203.76.187.0/24 maxlen: 24 203.76.189.0/24 maxlen: 24 210.89.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55424 (0xd880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:30:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c3cc-c603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:23:9c:69:78:bc:f0:16:32:12:19:e2:d0:3f: 96:33:be:76:7d:15:4c:10:95:e6:74:75:74:9e:f3: 5d:c2:01:77:a6:e3:d1:ef:21:b7:5c:3b:95:8e:48: 02:11:e2:ef:82:72:3b:c5:28:25:6c:aa:89:e1:dc: fc:d2:6d:7c:15:5a:2f:a3:a3:00:a9:da:53:92:f3: 02:bb:f7:ed:83:16:9c:7f:5a:b9:69:13:b2:18:ea: df:4c:00:de:fa:a6:8d:23:e3:4e:93:34:8e:77:c3: 3c:9e:19:26:c3:20:97:c6:9a:b7:95:25:55:c5:74: 5e:a9:b1:8c:83:b0:41:41:65:11:a1:86:31:de:04: f4:39:94:df:ba:b1:fc:88:21:d4:64:1b:0c:3e:a3: dc:a7:e1:20:06:16:a3:25:d4:ad:56:72:26:23:85: 94:25:cb:0c:54:15:46:49:1b:3d:3f:a7:5f:25:f7: 23:6d:ca:58:0d:2b:d6:8e:13:b8:5c:24:5c:23:f8: 5d:51:a6:2b:12:b9:35:1d:43:42:30:08:d0:c1:6a: 1f:45:da:c5:f1:87:50:40:c0:1c:06:bb:b7:bd:74: 28:ff:94:e4:cb:e8:f3:d7:8f:95:e4:9a:d8:4b:24: f3:49:75:20:d6:7d:70:09:76:23:8f:7e:b8:b2:2e: ad:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:91:8E:A4:B2:A0:DD:08:FF:42:58:84:7F:6D:31:97:D8:8C:33:BB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/630A91CCA58E11EFAE7E806FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 101.0.43.0-101.0.44.255 101.0.51.0/24 101.0.59.0/24 101.0.61.0/24 180.188.225.0/24 203.76.176.0/24 203.76.179.0/24 203.76.184.0/24 203.76.187.0/24 203.76.189.0/24 210.89.56.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:83:ec:4d:32:4a:cb:fa:1c:b7:02:d2:3a:32:06:06:d5:c7: de:a7:ce:02:fb:65:04:f5:bf:4f:36:da:fe:bb:a0:08:d1:53: 53:45:20:e4:92:b9:c1:4e:58:47:74:43:ac:a9:46:8b:64:13: 29:49:7e:84:b1:34:3d:d4:52:a6:71:9e:9d:96:eb:7b:86:16: 96:39:93:df:af:23:4d:52:75:18:2c:76:a7:2c:55:20:bb:87: 29:e6:66:52:38:91:12:c2:04:c7:07:56:e0:6a:26:9a:dc:fa: c0:73:89:56:2c:0e:a9:28:27:5a:ce:1a:37:58:69:38:c3:45: c0:fa:50:6a:0d:80:44:4a:f0:bb:e7:3a:8c:52:c0:6e:fc:cd: 83:20:78:c0:e5:af:34:f8:2e:d5:88:07:a1:b0:3f:fb:01:06: d4:d9:96:c6:cc:01:6f:43:25:8f:05:03:61:af:ca:8c:08:b4: bc:6a:ec:87:6c:c1:66:da:a0:0e:0e:2e:84:22:da:36:ce:12: b7:c7:de:8f:57:41:63:a1:1a:6e:29:13:20:fa:31:1a:48:a5: bb:45:56:37:8c:34:79:76:cc:46:55:85:34:53:60:0d:1c:23: e6:40:f1:89:07:25:fa:7f:85:0e:0b:2e:8e:37:12:7f:38:b5: c0:f3:90:f2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDANiAMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzAyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzY2MtYzYwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwjnGl4vPAWMhIZ4tA/ljO+dn0VTBCV5nR1dJ7zXcIBd6bj0e8ht1w7lY5I AhHi74JyO8UoJWyqieHc/NJtfBVaL6OjAKnaU5LzArv37YMWnH9auWkTshjq30wA 3vqmjSPjTpM0jnfDPJ4ZJsMgl8aat5UlVcV0XqmxjIOwQUFlEaGGMd4E9DmU37qx /Igh1GQbDD6j3KfhIAYWoyXUrVZyJiOFlCXLDFQVRkkbPT+nXyX3I23KWA0r1o4T uFwkXCP4XVGmKxK5NR1DQjAI0MFqH0XaxfGHUEDAHAa7t710KP+U5Mvo89ePleSa 2Esk80l1INZ9cAl2I49+uLIurWUCAwEAAaOCAqQwggKgMB0GA1UdDgQWBBQIkY6k sqDdCP9CWIR/bTGX2IwzuzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzYzMEE5MUND QTU4RTExRUZBRTdFODA2RkM0RjlBRTAyLnJvYTBjBggrBgEFBQcBBwEB/wRUMFIw UAQCAAEwSjAMAwQAZQArAwQAZQAsAwQAZQAzAwQAZQA7AwQAZQA9AwQAtLzhAwQA y0ywAwQAy0yzAwQAy0y4AwQAy0y7AwQAy0y9AwQA0lk4MA0GCSqGSIb3DQEBCwUA A4IBAQBeg+xNMkrL+hy3AtI6MgYG1cfep84C+2UE9b9PNtr+u6AI0VNTRSDkkrnB TlhHdEOsqUaLZBMpSX6EsTQ91FKmcZ6dlut7hhaWOZPfryNNUnUYLHanLFUgu4cp 5mZSOJESwgTHB1bgaiaa3PrAc4lWLA6pKCdazho3WGk4w0XA+lBqDYBESvC75zqM UsBu/M2DIHjA5a80+C7ViAehsD/7AQbU2ZbGzAFvQyWPBQNhr8qMCLS8auyHbMFm 2qAODi6EIto2zhK3x96PV0FjoRpuKRMg+jEaSKW7RVY3jDR5dsxGVYU0U2ANHCPm QPGJByX6f4UOCy6ONxJ/OLXA85Dy -----END CERTIFICATE-----Generated at Mon Mar 2 13:55:15 2026 by rpki-client