$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/69270F98DC5E11EABC33397AC4F9AE02.roa File: 69270F98DC5E11EABC33397AC4F9AE02.roa (raw, json) Hash identifier: fsV/kDjC7G1ykinJ069iEyH6l1ofM6jiBCGDIKhd/Y8= Subject key identifier: 24:3E:27:22:9A:A1:85:8A:21:44:88:F3:A4:BC:94:00:4A:59:9E:13 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D8B2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/69270F98DC5E11EABC33397AC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:55:58 +0000 ROA not before: Thu 08 May 2025 16:31:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56272 IP address blocks: 43.254.108.0/22 maxlen: 24 103.3.228.0/22 maxlen: 24 103.249.80.0/22 maxlen: 24 103.249.204.0/22 maxlen: 24 180.235.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55474 (0xd8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:31:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c3fe-bae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:71:60:a4:74:55:fd:1c:43:b8:32:46:6c:68: 83:c1:7b:67:df:6b:8f:09:6f:c6:38:28:c4:88:c7: e1:47:44:89:fb:64:54:1e:1e:c3:dc:c7:ae:05:7c: 59:3f:dd:17:9d:27:c3:da:ca:36:d2:e5:5c:96:7c: b6:8d:e4:07:cc:9e:73:2b:84:0b:72:ae:2b:43:09: d3:d4:f2:cd:15:68:52:9b:87:6a:02:c6:80:f3:a8: 21:08:88:1d:03:90:5d:90:70:a3:62:93:00:d0:c9: d6:32:e4:33:78:c9:94:49:9d:7d:1e:9b:80:65:d2: 75:98:f1:b7:3d:1b:9c:8f:68:5a:b0:6c:99:e8:86: 5f:e2:d4:ed:3b:75:8b:21:1d:69:14:fa:c2:19:6a: de:f7:a2:ba:ea:c6:83:63:5e:aa:1f:2a:7f:2d:51: 14:6c:c1:fc:17:fe:18:b3:1c:cb:60:09:ba:8e:a1: 42:6e:86:ca:50:03:a3:83:cd:35:ac:d3:59:87:cf: 47:5b:19:ff:e1:3e:7b:48:21:59:76:93:3a:49:47: 95:96:ad:18:7d:4a:4d:f8:18:39:c9:e6:07:5b:38: e6:f3:21:7c:89:b3:d8:b9:b2:44:fc:62:4f:49:5e: 14:c9:85:33:68:d2:90:57:e1:11:8c:70:77:af:b0: 7c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:3E:27:22:9A:A1:85:8A:21:44:88:F3:A4:BC:94:00:4A:59:9E:13 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/69270F98DC5E11EABC33397AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.254.108.0/22 103.3.228.0/22 103.249.80.0/22 103.249.204.0/22 180.235.120.0/22 Signature Algorithm: sha256WithRSAEncryption 72:7e:ba:03:d7:42:33:91:01:45:af:11:d1:a5:7a:c2:56:b0: a1:e7:dd:ce:8e:a6:61:92:f0:c8:37:e4:23:fd:29:de:d0:90: 6f:f6:51:be:00:1f:07:b0:43:dd:37:36:95:8b:a6:56:eb:6d: 55:51:fa:42:f8:d7:e2:71:29:84:52:8e:b4:e6:c3:5c:d4:81: 4b:6d:21:b5:96:6c:6c:17:ea:e0:dd:f0:bb:89:75:73:44:26: b2:d6:9a:51:bf:72:f8:ef:c7:95:13:95:00:1a:de:df:d8:a4: 72:28:09:94:c6:13:4e:47:68:67:8e:ea:ac:70:55:85:f2:59: 13:19:c8:21:e7:90:31:89:53:fb:7e:ad:44:8f:75:f3:7c:bd: a6:73:cb:2b:31:b9:75:b5:d8:83:dd:ee:af:9c:82:9c:33:9d: 20:29:54:c0:a3:f0:74:ca:b1:b8:b8:80:5e:d3:97:cb:be:ed: 83:98:94:43:74:68:e6:77:66:44:e4:09:71:ee:69:33:7c:30: f5:2a:60:85:ac:83:d9:b9:e0:ba:1d:9a:52:07:db:f2:26:5c: 90:8e:3f:ab:ae:8e:e1:5d:5c:7b:8d:25:e1:74:cc:e8:d8:b0: 65:e9:38:08:2d:bc:89:dd:3f:12:7d:f6:af:40:85:5c:8f:ac: 96:3f:ea:70 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIDANiyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzE0MVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzZmUtYmFlNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9xYKR0Vf0cQ7gyRmxog8F7Z99rjwlvxjgoxIjH4UdEiftkVB4ew9zHrgV8 WT/dF50nw9rKNtLlXJZ8to3kB8yecyuEC3KuK0MJ09TyzRVoUpuHagLGgPOoIQiI HQOQXZBwo2KTANDJ1jLkM3jJlEmdfR6bgGXSdZjxtz0bnI9oWrBsmeiGX+LU7Tt1 iyEdaRT6whlq3veiuurGg2Neqh8qfy1RFGzB/Bf+GLMcy2AJuo6hQm6GylADo4PN NazTWYfPR1sZ/+E+e0ghWXaTOklHlZatGH1KTfgYOcnmB1s45vMhfImz2LmyRPxi T0leFMmFM2jSkFfhEYxwd6+wfL8CAwEAAaOCAngwggJ0MB0GA1UdDgQWBBQkPici mqGFiiFEiPOkvJQASlmeEzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY5MjcwRjk4 REM1RTExRUFCQzMzMzk3QUM0RjlBRTAyLnJvYTA3BggrBgEFBQcBBwEB/wQoMCYw JAQCAAEwHgMEAiv+bAMEAmcD5AMEAmf5UAMEAmf5zAMEArTreDANBgkqhkiG9w0B AQsFAAOCAQEAcn66A9dCM5EBRa8R0aV6wlawoefdzo6mYZLwyDfkI/0p3tCQb/ZR vgAfB7BD3Tc2lYumVuttVVH6QvjX4nEphFKOtObDXNSBS20htZZsbBfq4N3wu4l1 c0QmstaaUb9y+O/HlROVABre39ikcigJlMYTTkdoZ47qrHBVhfJZExnIIeeQMYlT +36tRI9183y9pnPLKzG5dbXYg93ur5yCnDOdIClUwKPwdMqxuLiAXtOXy77tg5iU Q3Ro5ndmROQJce5pM3ww9SpghayD2bnguh2aUgfb8iZckI4/q66O4V1ce40l4XTM 6NiwZek4CC28id0/En32r0CFXI+slj/qcA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:12:30 2026 by rpki-client