$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6919D7209E6011EE89BC023CC4F9AE02.roa File: 6919D7209E6011EE89BC023CC4F9AE02.roa (raw, json) Hash identifier: 2jcoavxwsMIL3VcveDgn+6e9GIkd5fmDZ+kWfQPWmEw= Subject key identifier: E8:90:C1:8A:BC:0F:32:52:84:F0:11:34:EC:12:B8:7B:08:2E:A8:C7 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D576 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6919D7209E6011EE89BC023CC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:38:08 +0000 ROA not before: Thu 08 May 2025 16:16:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141490 IP address blocks: 43.239.80.0/22 maxlen: 24 45.123.216.0/22 maxlen: 24 103.162.120.0/23 maxlen: 24 103.192.60.0/23 maxlen: 24 103.192.62.0/23 maxlen: 24 2001:df0:b1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54646 (0xd576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:16:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bfd0-b76e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:75:b0:90:6d:5b:8a:bd:ae:be:ea:c6:9d:d5: dd:ac:a5:a6:ca:00:a7:a2:87:cc:dc:09:d8:e8:b1: 31:3a:c8:63:ee:e5:99:75:9e:4f:79:9c:8e:1e:64: 87:6c:97:a7:52:5f:7c:fa:28:bc:bd:fe:f8:73:f4: 91:65:ea:44:12:b6:0c:4e:71:d9:56:6f:a9:c7:6d: 44:15:90:c8:50:09:df:12:ae:77:36:3c:ef:0f:86: b8:bc:4e:19:18:6c:eb:12:5b:95:8e:cf:48:5c:c5: 61:a0:e0:9d:81:43:9f:17:84:ac:9a:8a:75:57:d4: 96:13:e2:21:f0:8b:d5:5a:b5:04:43:27:6c:d7:7c: 66:8c:24:1e:22:27:86:8a:ae:4a:3c:54:90:67:19: 87:24:cf:0b:a8:0b:01:e0:89:a2:79:28:b9:50:97: 13:e1:c0:e6:96:7b:22:73:35:df:7e:f6:35:6a:af: af:b5:c7:5e:24:37:bb:ac:63:0e:93:a4:0f:d6:c4: 40:d5:c9:50:41:1a:d8:dd:3f:09:15:42:e3:3c:28: 9c:43:c3:a9:0f:09:86:c7:36:01:a4:8d:27:fd:67: ee:0a:15:09:ca:af:8b:ab:7f:71:72:52:0d:e0:57: 60:21:e0:ef:61:a4:05:40:94:05:b3:b0:91:a9:99: 5e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:90:C1:8A:BC:0F:32:52:84:F0:11:34:EC:12:B8:7B:08:2E:A8:C7 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6919D7209E6011EE89BC023CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.80.0/22 45.123.216.0/22 103.162.120.0/23 103.192.60.0/22 IPv6: 2001:df0:b1c0::/48 Signature Algorithm: sha256WithRSAEncryption ac:33:ac:7b:55:37:79:f9:16:d9:44:88:bd:f4:bc:4b:dc:75: b5:50:b1:e4:de:44:90:06:67:f4:fd:52:d1:7f:f6:4b:07:fa: 00:57:2e:46:0f:7c:34:0b:e8:ea:7d:3b:a9:08:18:30:56:6c: af:cd:ec:b7:64:c5:ac:db:be:e4:8b:52:3b:80:52:53:e4:17: 36:8c:fe:47:11:6d:da:77:20:91:62:41:31:e3:a8:d0:b1:a8: 37:8d:5d:39:f3:59:37:20:04:e1:33:3f:1d:2e:07:b6:f6:ca: c4:63:37:a6:67:42:3a:a7:e3:42:79:0f:d9:bc:13:b7:c5:ec: 73:07:68:72:7d:1f:5f:07:4e:c8:fc:59:41:3a:50:0a:23:47: 19:d5:9a:af:11:0c:cc:43:ec:47:55:02:cc:88:88:76:f6:49: ff:a2:e1:a4:ee:47:4b:64:94:e9:87:27:88:cc:cc:bf:eb:40: 1b:19:5a:a7:e6:88:31:30:ce:49:07:3f:91:4b:69:57:e0:9b: 01:20:d1:6b:7a:f5:4e:e5:17:45:b9:63:8c:a3:9f:81:19:61: e2:1e:f6:9a:9a:f3:21:5c:ff:a2:5e:20:ce:1f:18:2f:7b:f4: f1:03:b2:ef:8d:f9:47:5f:7e:59:0b:1f:b6:81:76:67:6f:d0: 01:d6:9e:5d -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIDANV2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTYxOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJmZDAtYjc2ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJt1sJBtW4q9rr7qxp3V3aylpsoAp6KHzNwJ2OixMTrIY+7lmXWeT3mcjh5k h2yXp1JffPoovL3++HP0kWXqRBK2DE5x2VZvqcdtRBWQyFAJ3xKudzY87w+GuLxO GRhs6xJblY7PSFzFYaDgnYFDnxeErJqKdVfUlhPiIfCL1Vq1BEMnbNd8ZowkHiIn hoquSjxUkGcZhyTPC6gLAeCJonkouVCXE+HA5pZ7InM13372NWqvr7XHXiQ3u6xj DpOkD9bEQNXJUEEa2N0/CRVC4zwonEPDqQ8Jhsc2AaSNJ/1n7goVCcqvi6t/cXJS DeBXYCHg72GkBUCUBbOwkamZXuECAwEAAaOCAoMwggJ/MB0GA1UdDgQWBBTokMGK vA8yUoTwETTsErh7CC6oxzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY5MTlENzIw OUU2MDExRUU4OUJDMDIzQ0M0RjlBRTAyLnJvYTBCBggrBgEFBQcBBwEB/wQzMDEw HgQCAAEwGAMEAivvUAMEAi172AMEAWeieAMEAmfAPDAPBAIAAjAJAwcAIAEN8LHA MA0GCSqGSIb3DQEBCwUAA4IBAQCsM6x7VTd5+RbZRIi99LxL3HW1ULHk3kSQBmf0 /VLRf/ZLB/oAVy5GD3w0C+jqfTupCBgwVmyvzey3ZMWs277ki1I7gFJT5Bc2jP5H EW3adyCRYkEx46jQsag3jV0581k3IAThMz8dLge29srEYzemZ0I6p+NCeQ/ZvBO3 xexzB2hyfR9fB07I/FlBOlAKI0cZ1ZqvEQzMQ+xHVQLMiIh29kn/ouGk7kdLZJTp hyeIzMy/60AbGVqn5ogxMM5JBz+RS2lX4JsBINFrevVO5RdFuWOMo5+BGWHiHvaa mvMhXP+iXiDOHxgve/TxA7LvjflHX35ZCx+2gXZnb9AB1p5d -----END CERTIFICATE-----Generated at Mon Mar 2 13:37:11 2026 by rpki-client