$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/709A163E8A8B11ED942E6F74C4F9AE02.roa File: 709A163E8A8B11ED942E6F74C4F9AE02.roa (raw, json) Hash identifier: UdqGP4likYhrqCG5A5PqAPpXR5BgblRrgUQVVU8MnYg= Subject key identifier: 90:05:F1:EE:51:C0:96:2A:71:84:A7:4D:8C:DF:BC:BE:70:FF:06:8E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D251 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/709A163E8A8B11ED942E6F74C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:19:17 +0000 ROA not before: Thu 08 May 2025 16:00:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134049 IP address blocks: 103.180.222.0/24 maxlen: 24 103.228.125.0/24 maxlen: 24 2001:df0:61c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53841 (0xd251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:00:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bb65-ecb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c7:2a:4b:8b:b8:90:a7:a6:03:15:d0:ab:05: 44:9a:0b:19:dd:4f:f4:2f:7c:ae:b5:49:59:b6:8f: 58:a3:fa:2d:e2:20:bd:57:38:2c:b9:0c:06:56:ba: a7:99:ec:a9:fd:21:05:5f:4e:81:c1:a8:bb:0a:a4: 1a:ab:d8:85:8c:83:07:56:87:e6:0e:99:d6:eb:55: 33:71:de:fa:33:9f:1f:33:58:d4:fb:5f:90:34:34: 57:02:03:09:a8:28:e4:6e:3a:90:f4:73:b9:19:7a: c7:d9:46:c6:db:1c:0a:01:73:97:0e:2b:e6:6f:56: 65:2b:49:55:34:1b:a1:02:72:74:0f:13:73:4b:e7: 7c:af:78:bf:8a:ed:e0:2d:25:b3:59:05:49:eb:ee: ec:e7:19:1f:20:ec:9d:84:7f:19:0e:a1:56:18:d8: 04:e9:ef:7c:0e:7d:05:b9:9f:dc:a7:42:ec:86:71: 5b:36:03:c5:44:91:f3:1e:73:cb:34:e5:4d:f6:bf: 87:c5:a4:f5:8d:d7:ac:05:36:2f:0e:4f:32:11:1a: 7a:88:21:e1:16:2d:40:66:68:1f:ea:e3:49:6d:e6: e9:67:73:36:a2:da:5e:d3:27:89:0b:6c:f8:5f:0a: d6:1e:0c:75:63:7f:67:82:e7:2f:d1:6c:8d:52:9f: 29:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:05:F1:EE:51:C0:96:2A:71:84:A7:4D:8C:DF:BC:BE:70:FF:06:8E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/709A163E8A8B11ED942E6F74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.180.222.0/24 103.228.125.0/24 IPv6: 2001:df0:61c0::/48 Signature Algorithm: sha256WithRSAEncryption 01:d6:97:33:67:62:a4:19:44:cc:a1:b4:66:98:92:46:8f:2c: 19:56:8e:8d:9e:ad:30:39:ec:68:4b:f2:4a:89:ad:cb:c0:e1: 93:f7:07:8d:37:25:5b:ce:5a:99:58:4e:ef:6b:06:ab:90:16: 73:30:36:64:cc:3b:ac:ee:f6:2d:12:17:2b:55:cd:ae:44:0f: 25:9a:25:95:0c:4a:2a:42:4b:1b:ca:0a:31:ba:69:f6:fb:79: 41:6e:65:48:85:d6:dd:fe:e4:a6:96:9d:ea:7b:65:02:69:55: 05:77:63:e3:17:31:ab:90:52:ad:f2:68:52:21:b8:f1:e0:38: 44:02:b3:6d:87:50:5b:ba:e6:a4:06:a0:bb:c0:d1:8d:61:1b: a1:f8:e0:a7:3d:26:e5:f5:ac:fb:68:f1:de:c3:0f:28:fc:70: 2a:9e:0b:cc:bc:3d:24:fc:fc:67:27:11:80:ba:59:ef:73:56: 68:fb:8d:39:57:0d:37:62:ab:43:28:ae:7f:9e:f3:82:a5:5f: 51:d6:e9:ba:6a:99:a4:3a:cd:d1:01:bc:2f:ec:7c:91:19:49: 65:ad:e0:74:9e:03:36:4b:a4:95:30:0d:2c:ea:ce:bd:9b:9e: 85:02:00:36:e1:45:49:3d:90:2b:a9:e2:e4:70:a5:e4:6a:bb: 6c:b5:92:ad -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDANJRMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDAzN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJiNjUtZWNiNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOzHKkuLuJCnpgMV0KsFRJoLGd1P9C98rrVJWbaPWKP6LeIgvVc4LLkMBla6 p5nsqf0hBV9OgcGouwqkGqvYhYyDB1aH5g6Z1utVM3He+jOfHzNY1PtfkDQ0VwID Cago5G46kPRzuRl6x9lGxtscCgFzlw4r5m9WZStJVTQboQJydA8Tc0vnfK94v4rt 4C0ls1kFSevu7OcZHyDsnYR/GQ6hVhjYBOnvfA59Bbmf3KdC7IZxWzYDxUSR8x5z yzTlTfa/h8Wk9Y3XrAU2Lw5PMhEaeogh4RYtQGZoH+rjSW3m6WdzNqLaXtMniQts +F8K1h4MdWN/Z4LnL9FsjVKfKV0CAwEAAaOCAncwggJzMB0GA1UdDgQWBBSQBfHu UcCWKnGEp02M37y+cP8GjjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzcwOUExNjNF OEE4QjExRUQ5NDJFNkY3NEM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGe03gMEAGfkfTAPBAIAAjAJAwcAIAEN8GHAMA0GCSqGSIb3DQEB CwUAA4IBAQAB1pczZ2KkGUTMobRmmJJGjywZVo6Nnq0wOexoS/JKia3LwOGT9weN NyVbzlqZWE7vawarkBZzMDZkzDus7vYtEhcrVc2uRA8lmiWVDEoqQksbygoxumn2 +3lBbmVIhdbd/uSmlp3qe2UCaVUFd2PjFzGrkFKt8mhSIbjx4DhEArNth1Bbuuak BqC7wNGNYRuh+OCnPSbl9az7aPHeww8o/HAqngvMvD0k/PxnJxGAulnvc1Zo+405 Vw03YqtDKK5/nvOCpV9R1um6apmkOs3RAbwv7HyRGUllreB0ngM2S6SVMA0s6s69 m56FAgA24UVJPZArqeLkcKXkartstZKt -----END CERTIFICATE-----Generated at Mon Mar 2 17:25:49 2026 by rpki-client