$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8B63C04A696711EDBF749E6EC4F9AE02.roa File: 8B63C04A696711EDBF749E6EC4F9AE02.roa (raw, json) Hash identifier: bPMyZRbRd4Tk3YAXxtw/M9WHgYkaxXNFey9DCxdJwUk= Subject key identifier: 25:16:6F:ED:A0:F7:0F:14:84:AE:2B:E7:0F:87:AC:C3:C7:76:3F:5C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D758 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8B63C04A696711EDBF749E6EC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:35 +0000 ROA not before: Thu 08 May 2025 16:24:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150104 IP address blocks: 103.38.52.0/23 maxlen: 24 2001:df1:8640::/48 maxlen: 50 2001:df1:8640::/51 maxlen: 52 2001:df1:8640:2000::/52 maxlen: 52 2001:df1:8640:3000::/52 maxlen: 52 2001:df1:8640:4000::/50 maxlen: 52 2001:df1:8640:8000::/49 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55128 (0xd758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:24:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c27f-3150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ba:2a:46:b6:ba:7d:cb:00:87:d7:7a:2b:af: 43:82:e8:70:2d:b5:a9:38:01:78:8b:c7:9d:bf:6d: a1:88:ad:ac:b2:f0:de:1a:37:b7:d6:46:80:90:34: 34:35:96:ed:25:35:9c:ac:f5:6e:ef:a1:fa:8b:94: 55:51:5a:ec:12:12:3f:50:5c:ad:7d:be:27:e6:5c: bf:04:74:43:d5:2d:3b:eb:1a:17:7a:44:38:1d:2f: 43:ad:d3:8b:b4:02:2d:d2:2a:2c:c1:99:3f:08:e3: dc:62:20:7b:83:eb:e5:2c:3e:f6:b7:2d:b5:d0:01: 9f:fb:ea:ef:85:c6:b7:37:66:24:0f:b1:6d:d7:5e: 27:55:ba:72:0d:50:d5:87:2e:04:08:1e:8f:72:2a: ad:b5:c2:9c:4f:cf:40:5c:34:46:0a:ff:99:e9:94: d5:7d:7b:a2:c3:f0:ca:63:90:c8:4a:63:19:a0:c4: 02:98:a6:5a:02:de:99:58:26:38:ab:af:50:8d:e5: cf:75:c6:59:17:aa:da:ab:62:de:34:92:13:6e:39: ab:37:27:b2:f0:12:06:43:02:e7:e6:79:01:bf:23: 9f:94:f2:0c:75:d1:fa:70:ca:a6:96:34:a6:23:99: 72:c5:b2:e3:01:26:22:1c:05:79:41:44:ac:ce:4a: c9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:16:6F:ED:A0:F7:0F:14:84:AE:2B:E7:0F:87:AC:C3:C7:76:3F:5C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8B63C04A696711EDBF749E6EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.38.52.0/23 IPv6: 2001:df1:8640::/48 Signature Algorithm: sha256WithRSAEncryption 5e:33:d5:0c:bc:db:f7:90:cc:bb:c1:4c:0f:99:58:5b:92:79: a2:04:f2:5e:0b:43:78:10:f6:ed:80:16:13:81:5a:73:68:fc: 00:00:87:26:8d:f2:84:53:4c:f0:8d:b5:5f:9e:71:aa:d4:1d: ea:a7:32:52:e4:9a:4a:ae:b3:55:de:71:37:38:b9:97:99:02: df:7f:33:d4:aa:46:f8:2c:cc:d2:7d:b1:b3:3e:56:10:7b:71: dd:f1:ec:88:a6:fd:fa:4b:31:4a:fe:56:69:e2:b9:92:9d:e2: 8a:50:e1:ef:d3:2d:35:08:21:9a:cb:2d:2b:4c:52:7d:40:8e: 09:9c:3c:43:d6:75:63:9d:ad:1c:98:91:35:b8:96:b2:22:bd: ef:41:9d:db:a9:42:62:b2:e3:6e:29:f7:3f:15:8e:c9:cc:8f: 54:0f:34:bf:f4:e7:21:d5:01:d3:2b:e0:2a:76:7e:dd:ad:fe: 90:d3:48:b5:03:1e:0b:58:f8:e9:e0:20:50:72:f0:78:f8:ff: c7:75:74:b9:8b:8a:1e:15:bc:62:3a:dc:3b:1b:f7:3e:31:ec: 91:f5:c7:f5:1c:77:fd:4b:7a:a0:ce:2f:78:77:89:db:73:e9: bd:54:44:3e:f9:7f:9e:b9:a5:b7:1a:f2:59:c9:f7:d9:2a:1b: 81:72:fd:c7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDANdYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjQ0N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMyN2YtMzE1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+6Kka2un3LAIfXeiuvQ4LocC21qTgBeIvHnb9toYitrLLw3ho3t9ZGgJA0 NDWW7SU1nKz1bu+h+ouUVVFa7BISP1BcrX2+J+ZcvwR0Q9UtO+saF3pEOB0vQ63T i7QCLdIqLMGZPwjj3GIge4Pr5Sw+9rcttdABn/vq74XGtzdmJA+xbddeJ1W6cg1Q 1YcuBAgej3IqrbXCnE/PQFw0Rgr/memU1X17osPwymOQyEpjGaDEApimWgLemVgm OKuvUI3lz3XGWReq2qti3jSSE245qzcnsvASBkMC5+Z5Ab8jn5TyDHXR+nDKppY0 piOZcsWy4wEmIhwFeUFErM5Kyd8CAwEAAaOCAnEwggJtMB0GA1UdDgQWBBQlFm/t oPcPFISuK+cPh6zDx3Y/XDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhCNjNDMDRB Njk2NzExRURCRjc0OUU2RUM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWcmNDAPBAIAAjAJAwcAIAEN8YZAMA0GCSqGSIb3DQEBCwUAA4IB AQBeM9UMvNv3kMy7wUwPmVhbknmiBPJeC0N4EPbtgBYTgVpzaPwAAIcmjfKEU0zw jbVfnnGq1B3qpzJS5JpKrrNV3nE3OLmXmQLffzPUqkb4LMzSfbGzPlYQe3Hd8eyI pv36SzFK/lZp4rmSneKKUOHv0y01CCGayy0rTFJ9QI4JnDxD1nVjna0cmJE1uJay Ir3vQZ3bqUJisuNuKfc/FY7JzI9UDzS/9Och1QHTK+Aqdn7drf6Q00i1Ax4LWPjp 4CBQcvB4+P/HdXS5i4oeFbxiOtw7G/c+MeyR9cf1HHf9S3qgzi94d4nbc+m9VEQ+ +X+euaW3GvJZyffZKhuBcv3H -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:39 2026 by rpki-client