$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7B6ED014E5FA11EAB447406FC4F9AE02.roa File: 7B6ED014E5FA11EAB447406FC4F9AE02.roa (raw, json) Hash identifier: /JPuksSS1LRe1AkBJ4srnlFS+cqQ6gOLyybq7tDVtMM= Subject key identifier: 10:E6:E2:AB:05:85:32:26:B2:6D:FE:69:C0:9D:21:BA:62:90:D0:88 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D329 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7B6ED014E5FA11EAB447406FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:24:24 +0000 ROA not before: Thu 08 May 2025 16:04:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135763 IP address blocks: 103.70.152.0/22 maxlen: 24 103.146.156.0/23 maxlen: 24 2400:ec20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54057 (0xd329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:04:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bc98-4b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:91:f8:1b:12:bc:5c:be:0a:17:d9:33:5d:ca: 16:24:20:5c:78:71:48:e3:4e:8e:2f:5c:2f:fe:0b: b5:3a:f3:01:f0:a7:ca:7b:8d:7b:ea:d5:0e:76:6d: bc:e6:23:e1:07:c3:84:47:67:80:45:85:34:c9:99: a0:c6:33:72:23:c7:13:a2:4a:d1:86:76:a6:93:31: 4e:8a:2d:a6:08:57:29:12:d0:c8:c2:72:44:fd:62: 0f:a9:b0:e1:4b:f6:dc:fe:0b:80:e3:be:10:9b:ac: a1:a6:27:c1:e1:fb:37:ed:b5:d7:8b:14:9d:a4:9e: dc:a8:1a:c6:d7:40:b1:ca:b0:26:fd:a0:8f:da:60: f0:07:59:73:79:b6:dd:69:13:52:94:31:82:07:c8: 36:18:0c:56:72:2d:a3:74:42:99:77:a0:35:b8:46: 7d:51:6d:69:60:13:ba:41:a7:8a:fe:1a:04:60:a9: 7d:54:b0:ad:1a:3a:03:91:69:f2:13:82:0b:34:41: c8:20:ce:62:22:e3:e3:3c:63:36:3c:64:c4:17:08: 99:09:04:d6:02:c6:a5:2c:1d:d9:1a:9e:f7:cc:a2: b9:0c:4a:80:a6:0b:29:e8:0f:8c:44:86:30:53:b3: ae:8d:08:b7:ff:23:46:8d:3d:9d:de:1b:46:c7:98: 6f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E6:E2:AB:05:85:32:26:B2:6D:FE:69:C0:9D:21:BA:62:90:D0:88 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7B6ED014E5FA11EAB447406FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.70.152.0/22 103.146.156.0/23 IPv6: 2400:ec20::/32 Signature Algorithm: sha256WithRSAEncryption 34:f2:d6:e2:ee:c9:5c:5a:36:d7:da:5e:79:de:7f:28:fb:15: 73:5e:b6:13:5c:c7:4e:66:b9:d0:0b:ab:2e:2f:f4:cb:32:ec: 83:66:d5:3e:79:73:8e:0e:09:20:93:d9:09:e5:af:cd:5b:d5: 76:bb:76:d5:39:ea:9a:c9:ce:31:5a:7c:ba:eb:89:a3:7d:01: d6:f3:8b:93:a6:21:ab:7d:ad:18:c3:20:6b:5e:95:2b:6f:29: 2d:8a:b7:f3:92:51:15:2e:80:36:46:3f:59:a7:ba:de:5d:a7: 4d:c2:24:84:5a:46:4f:a9:33:91:16:ce:62:5a:87:d6:51:42: c8:6d:99:5e:31:d1:c1:b0:2b:c6:fd:98:ff:65:8c:79:b5:04: 5b:1a:67:94:54:02:dc:48:29:4d:06:f2:74:e1:26:ed:fc:b8: 47:c6:75:ac:5f:ab:72:81:eb:17:5d:3f:88:a5:63:72:32:14: f4:cc:34:a2:d1:5c:e7:d4:7e:97:c9:cf:f8:1f:04:3b:18:10: 52:3f:d6:ed:5b:8b:03:f7:ab:b5:17:21:81:25:b6:35:dc:e1: 61:f9:48:a6:82:1d:64:50:2f:b9:36:9c:00:00:46:7c:e7:a2: 4b:31:b4:f3:e8:e9:66:da:f3:30:cf:3e:e0:a1:26:b8:0b:1a: 71:d5:c6:26 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIDANMpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDQ1NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJjOTgtNGIyZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCR+BsSvFy+ChfZM13KFiQgXHhxSONOji9cL/4LtTrzAfCnynuNe+rVDnZt vOYj4QfDhEdngEWFNMmZoMYzciPHE6JK0YZ2ppMxTootpghXKRLQyMJyRP1iD6mw 4Uv23P4LgOO+EJusoaYnweH7N+2114sUnaSe3KgaxtdAscqwJv2gj9pg8AdZc3m2 3WkTUpQxggfINhgMVnIto3RCmXegNbhGfVFtaWATukGniv4aBGCpfVSwrRo6A5Fp 8hOCCzRByCDOYiLj4zxjNjxkxBcImQkE1gLGpSwd2Rqe98yiuQxKgKYLKegPjESG MFOzro0It/8jRo09nd4bRseYb4MCAwEAAaOCAnUwggJxMB0GA1UdDgQWBBQQ5uKr BYUyJrJt/mnAnSG6YpDQiDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzdCNkVEMDE0 RTVGQTExRUFCNDQ3NDA2RkM0RjlBRTAyLnJvYTA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmdGmAMEAWeSnDANBAIAAjAHAwUAJADsIDANBgkqhkiG9w0BAQsF AAOCAQEANPLW4u7JXFo219peed5/KPsVc162E1zHTma50AurLi/0yzLsg2bVPnlz jg4JIJPZCeWvzVvVdrt21TnqmsnOMVp8uuuJo30B1vOLk6Yhq32tGMMga16VK28p LYq385JRFS6ANkY/Wae63l2nTcIkhFpGT6kzkRbOYlqH1lFCyG2ZXjHRwbArxv2Y /2WMebUEWxpnlFQC3EgpTQbydOEm7fy4R8Z1rF+rcoHrF10/iKVjcjIU9Mw0otFc 59R+l8nP+B8EOxgQUj/W7VuLA/ertRchgSW2NdzhYflIpoIdZFAvuTacAABGfOei SzG08+jpZtrzMM8+4KEmuAsacdXGJg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:04 2026 by rpki-client