$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7AEA89B20AF211ECAF38A916C4F9AE02.roa File: 7AEA89B20AF211ECAF38A916C4F9AE02.roa (raw, json) Hash identifier: NfLEOschuiGac7lL68L6mahc5k0vevdYAm8wm2S0Vg8= Subject key identifier: B0:61:B3:34:6B:FC:0E:02:A7:F5:95:20:BA:74:69:14:39:31:92:DE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D615 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7AEA89B20AF211ECAF38A916C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:41:47 +0000 ROA not before: Thu 08 May 2025 16:19:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142526 IP address blocks: 103.170.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54805 (0xd615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:19:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c0ab-cb3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:09:01:3b:b2:67:e4:cf:2a:48:3e:fe:91:5c: de:e9:da:b3:76:d7:83:0f:35:87:a2:0f:c4:75:a9: a0:88:67:8d:4b:a5:4c:d1:d4:6b:90:07:b3:45:16: f0:c7:5d:22:44:75:8d:11:d0:ce:be:f8:a9:fc:be: ca:53:c7:b8:cd:85:86:6d:af:7d:95:dd:47:55:5d: 69:5b:b0:46:31:81:21:df:02:ea:25:91:4d:a4:6f: 38:38:8a:b7:aa:57:78:46:17:5f:86:a8:47:48:62: 80:d6:d7:4c:03:d4:1f:53:85:c1:0b:8c:6d:49:9a: 02:b2:34:44:37:9c:67:c1:dd:df:12:99:4c:52:36: e3:bf:11:38:7c:1f:90:71:54:b7:ad:c2:b9:b3:f6: 5c:c0:13:7e:a0:f5:a5:51:3a:45:14:91:80:db:5c: fe:cc:8d:c5:5f:ec:b5:ae:0d:7f:8c:37:93:1b:07: f8:51:d0:c1:ca:ff:74:7c:d5:1e:e0:99:63:24:59: 7d:bc:44:4b:db:08:0d:8b:4a:8b:21:4e:14:1a:dd: 7f:a2:b1:e5:14:7e:21:a5:5a:fe:57:b6:17:98:ba: be:3f:f5:05:c5:12:dc:1f:9f:f6:09:8a:0b:c3:ef: 9a:63:4e:fc:88:35:61:54:59:bb:89:71:0e:7b:06: db:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:61:B3:34:6B:FC:0E:02:A7:F5:95:20:BA:74:69:14:39:31:92:DE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7AEA89B20AF211ECAF38A916C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.170.127.0/24 Signature Algorithm: sha256WithRSAEncryption 83:ff:5c:0b:71:38:54:46:9d:8c:4b:5b:d9:a2:59:b9:7c:df: b1:da:c8:0b:73:04:6a:79:fc:a0:59:d9:2f:91:d7:a9:af:7b: ad:82:b9:34:ce:52:43:37:7a:bc:75:54:43:cc:6b:b4:e1:86: 40:91:f3:a0:6c:7e:f0:a1:c7:af:5f:a7:ce:37:31:da:53:3e: 2a:00:2d:52:64:9a:df:da:a0:7a:7d:f4:1d:1e:54:d7:2c:28: df:f2:fa:cc:84:4d:b0:05:b4:11:b3:2e:c9:3a:32:a2:7f:83: a1:d3:70:db:fd:c3:8d:ac:ea:21:70:df:8e:eb:34:da:87:9b: 6d:9b:f1:5e:b7:4e:20:67:07:13:bb:c1:16:7b:68:5c:a7:3c: a0:de:cb:71:26:0e:b9:f8:9c:9c:36:ca:ea:9b:59:20:7e:98: 43:70:c0:00:22:ff:85:d5:02:52:da:de:83:5a:0b:4b:f4:ea: 0b:65:ee:27:2b:60:31:9e:65:9a:89:58:14:09:87:71:f2:17: 25:94:72:0b:53:a8:c9:11:64:55:49:58:92:d9:5c:bf:07:33: aa:1a:12:15:b4:bf:4f:ba:01:44:80:fa:6c:f1:6f:6d:81:fa: b0:f6:c8:a1:e3:d0:ee:54:4b:1a:e5:70:ed:31:ed:4a:90:51: cc:86:c2:45 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANYVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTkxN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMwYWItY2IzZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0JATuyZ+TPKkg+/pFc3unas3bXgw81h6IPxHWpoIhnjUulTNHUa5AHs0UW 8MddIkR1jRHQzr74qfy+ylPHuM2Fhm2vfZXdR1VdaVuwRjGBId8C6iWRTaRvODiK t6pXeEYXX4aoR0higNbXTAPUH1OFwQuMbUmaArI0RDecZ8Hd3xKZTFI2478ROHwf kHFUt63CubP2XMATfqD1pVE6RRSRgNtc/syNxV/sta4Nf4w3kxsH+FHQwcr/dHzV HuCZYyRZfbxES9sIDYtKiyFOFBrdf6Kx5RR+IaVa/le2F5i6vj/1BcUS3B+f9gmK C8PvmmNO/Ig1YVRZu4lxDnsG23cCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBSwYbM0 a/wOAqf1lSC6dGkUOTGS3jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzdBRUE4OUIy MEFGMjExRUNBRjM4QTkxNkM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeqfzANBgkqhkiG9w0BAQsFAAOCAQEAg/9cC3E4VEadjEtb2aJZ uXzfsdrIC3MEann8oFnZL5HXqa97rYK5NM5SQzd6vHVUQ8xrtOGGQJHzoGx+8KHH r1+nzjcx2lM+KgAtUmSa39qgen30HR5U1ywo3/L6zIRNsAW0EbMuyToyon+DodNw 2/3DjazqIXDfjus02oebbZvxXrdOIGcHE7vBFntoXKc8oN7LcSYOuficnDbK6ptZ IH6YQ3DAACL/hdUCUtreg1oLS/TqC2XuJytgMZ5lmolYFAmHcfIXJZRyC1OoyRFk VUlYktlcvwczqhoSFbS/T7oBRID6bPFvbYH6sPbIoePQ7lRLGuVw7THtSpBRzIbC RQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:49 2026 by rpki-client