$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/735B08EC3CF511EF9963F76FC4F9AE02.roa File: 735B08EC3CF511EF9963F76FC4F9AE02.roa (raw, json) Hash identifier: MFksNv923/fkqnrul9iyGRIIDqLvb8HcPKK5SF721+g= Subject key identifier: E0:8E:F6:1D:76:4F:26:13:72:46:5B:22:A6:92:44:19:06:3A:10:6E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D17A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/735B08EC3CF511EF9963F76FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:15:34 +0000 ROA not before: Thu 08 May 2025 15:56:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131459 IP address blocks: 43.250.40.0/22 maxlen: 24 103.5.112.0/22 maxlen: 24 103.242.136.0/22 maxlen: 24 2402:900::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53626 (0xd17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:56:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4ba86-2911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:82:9e:7b:76:3b:07:30:0c:01:8c:26:4c:e1: eb:cb:95:61:85:6e:a3:8d:79:9f:14:58:07:36:e8: 06:83:61:ff:79:3e:25:99:a2:51:e4:49:e5:78:4d: 7e:43:5f:5b:28:6e:d8:53:7e:37:32:6d:78:a9:9f: bf:90:a9:57:9a:51:91:ca:e4:a0:4a:4d:c3:50:5b: 7e:12:bf:06:80:04:72:5c:72:61:89:50:93:9a:3e: 41:9c:6d:d8:d8:69:62:ca:25:d8:8b:99:cb:ff:bb: d7:1e:3e:99:d9:a4:1f:3a:8d:51:b7:35:c4:d0:8e: e9:f1:0d:61:4b:c6:2f:1a:0c:cc:72:64:14:49:bf: 6d:0d:eb:f7:29:7d:9b:59:3b:43:a4:7d:f7:24:86: 34:d8:a7:ce:1a:e9:27:77:df:d3:0c:da:08:f9:f0: 68:3a:b0:8b:b0:ce:33:84:32:e2:d7:96:60:59:43: 29:52:23:08:38:05:e1:3b:02:64:51:19:a4:1a:5d: d0:29:d6:56:ee:65:c7:d8:d2:39:92:30:b1:71:53: 10:9c:79:57:19:7b:b3:db:ab:e9:e0:89:62:72:ff: b1:bb:ed:ad:87:84:63:f9:1e:f5:3b:0b:9c:03:1b: e9:65:89:05:a1:c3:67:8b:d5:fd:d6:e1:f8:0e:3b: 30:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8E:F6:1D:76:4F:26:13:72:46:5B:22:A6:92:44:19:06:3A:10:6E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/735B08EC3CF511EF9963F76FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.40.0/22 103.5.112.0/22 103.242.136.0/22 IPv6: 2402:900::/32 Signature Algorithm: sha256WithRSAEncryption a6:b1:da:37:2a:51:ac:25:69:58:37:4d:42:e8:75:d9:46:a2: b4:21:d3:d2:3a:0b:c9:4c:7a:87:58:0e:95:b8:22:4f:1c:2f: 4a:51:1a:ac:2f:32:15:00:ae:de:86:ed:ad:ef:dd:78:bf:5e: 81:6b:d3:2f:33:00:42:66:35:57:d0:a7:27:c5:62:52:3f:50: da:76:af:c4:9b:d8:ff:e0:b2:4f:79:2c:2c:11:64:36:77:e9: 50:13:32:91:ca:75:ad:3d:ed:f7:29:9d:a2:f9:60:75:c8:0e: 90:14:dc:8a:ce:b5:4b:06:61:92:23:13:a9:f0:8b:76:00:f2: 2e:d9:dc:b1:37:4a:b3:5c:18:94:27:41:ae:6b:9b:a2:dd:7a: 21:31:ec:6d:45:be:67:7b:7a:37:e9:a0:83:ae:8e:e5:81:6f: 40:f1:ff:2a:c5:1e:88:77:a3:36:ca:15:a2:b6:f9:4e:4c:7f: 96:69:6f:40:56:74:05:68:e4:a7:e4:5a:21:7c:2f:4f:47:02: 80:0e:b4:52:0d:ae:ec:8f:f4:e9:f1:11:d6:0b:12:72:19:ec: 3e:b8:45:11:0b:1f:cc:95:12:ff:d5:ba:ec:8f:be:ed:65:bc: e7:e6:37:63:ff:97:e4:03:9c:46:23:ef:82:09:91:28:d9:0a: 4e:d6:e6:a7 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIDANF6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTYwMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJhODYtMjkxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2Cnnt2OwcwDAGMJkzh68uVYYVuo415nxRYBzboBoNh/3k+JZmiUeRJ5XhN fkNfWyhu2FN+NzJteKmfv5CpV5pRkcrkoEpNw1BbfhK/BoAEclxyYYlQk5o+QZxt 2NhpYsol2IuZy/+71x4+mdmkHzqNUbc1xNCO6fENYUvGLxoMzHJkFEm/bQ3r9yl9 m1k7Q6R99ySGNNinzhrpJ3ff0wzaCPnwaDqwi7DOM4Qy4teWYFlDKVIjCDgF4TsC ZFEZpBpd0CnWVu5lx9jSOZIwsXFTEJx5Vxl7s9ur6eCJYnL/sbvtrYeEY/ke9TsL nAMb6WWJBaHDZ4vV/dbh+A47MNsCAwEAAaOCAnswggJ3MB0GA1UdDgQWBBTgjvYd dk8mE3JGWyKmkkQZBjoQbjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzczNUIwOEVD M0NGNTExRUY5OTYzRjc2RkM0RjlBRTAyLnJvYTA6BggrBgEFBQcBBwEB/wQrMCkw GAQCAAEwEgMEAiv6KAMEAmcFcAMEAmfyiDANBAIAAjAHAwUAJAIJADANBgkqhkiG 9w0BAQsFAAOCAQEAprHaNypRrCVpWDdNQuh12UaitCHT0joLyUx6h1gOlbgiTxwv SlEarC8yFQCu3obtre/deL9egWvTLzMAQmY1V9CnJ8ViUj9Q2navxJvY/+CyT3ks LBFkNnfpUBMykcp1rT3t9ymdovlgdcgOkBTcis61SwZhkiMTqfCLdgDyLtncsTdK s1wYlCdBrmubot16ITHsbUW+Z3t6N+mgg66O5YFvQPH/KsUeiHejNsoVorb5Tkx/ lmlvQFZ0BWjkp+RaIXwvT0cCgA60Ug2u7I/06fER1gsSchnsPrhFEQsfzJUS/9W6 7I++7WW85+Y3Y/+X5AOcRiPvggmRKNkKTtbmpw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:23 2026 by rpki-client