$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8C488D7AD4D411EBB9EBD141C4F9AE02.roa File: 8C488D7AD4D411EBB9EBD141C4F9AE02.roa (raw, json) Hash identifier: 04KqPrmR1nS0Xr9vEpKI7EsshDBmMDkWaQNyNFwvdKY= Subject key identifier: 98:BD:5D:F0:8D:D1:E9:BC:03:D5:23:4B:7A:DC:33:08:75:6B:23:40 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D472 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8C488D7AD4D411EBB9EBD141C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:32:03 +0000 ROA not before: Thu 08 May 2025 16:11:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138259 IP address blocks: 103.124.168.0/24 maxlen: 24 103.124.169.0/24 maxlen: 24 103.124.170.0/24 maxlen: 24 103.124.171.0/24 maxlen: 24 2406:1d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54386 (0xd472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:11:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4be63-a664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c4:12:81:04:0d:53:6d:11:8b:a1:33:e9:ff: 48:85:89:9b:77:6c:5c:0b:3c:49:e0:3c:0f:2b:fe: c1:4c:92:13:0f:cd:a8:33:64:23:5d:55:1b:43:05: f4:96:96:eb:0b:92:73:00:34:e7:5d:1a:ce:4c:6e: e3:44:5f:d1:ec:08:9a:00:15:07:29:6a:66:d7:b7: 0c:1a:f4:06:ff:e7:1e:f3:7f:fb:e8:4b:68:a6:c9: 59:f8:69:fc:20:a3:eb:19:28:50:8c:9a:f6:d1:b5: f0:eb:3e:a1:80:c5:66:50:e4:19:3e:44:c3:69:8d: 63:68:bd:f5:4c:85:bf:f8:cb:55:20:f3:52:49:f7: 52:ee:20:ef:cf:b4:ae:da:dd:19:76:7c:94:ba:e0: 29:bc:91:fb:08:4a:4c:ea:9c:01:ff:cb:f4:af:4b: 5c:d1:78:88:5a:d0:43:d6:41:db:b0:8a:42:6e:ca: b0:29:12:f1:02:37:d2:56:33:05:db:3d:c3:fa:bd: 67:69:aa:15:10:98:1b:09:ae:3d:25:c1:62:66:0a: 1b:63:b6:c0:0e:7e:49:b9:0f:b6:74:a3:7f:19:3d: d2:cb:ef:a3:44:01:05:7b:75:34:7d:c5:3d:1d:eb: a1:55:4d:99:6e:77:93:25:37:b5:b1:34:3b:76:98: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:BD:5D:F0:8D:D1:E9:BC:03:D5:23:4B:7A:DC:33:08:75:6B:23:40 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8C488D7AD4D411EBB9EBD141C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.124.168.0/22 IPv6: 2406:1d40::/32 Signature Algorithm: sha256WithRSAEncryption 88:f5:59:b6:b3:f6:9a:c5:a2:c7:cd:c0:85:dd:74:96:cb:59: 48:a0:74:4b:fc:c9:61:00:de:b5:e2:74:ef:9e:14:7a:56:66: ec:1f:7c:56:98:a3:95:db:72:45:2c:6f:d9:6b:90:c0:ea:5e: d7:af:e9:7f:0c:9e:24:5f:85:fb:14:1f:cb:cc:56:a8:e5:db: 26:40:56:ec:3b:1f:ab:ab:5f:48:6c:f0:bb:89:1c:c3:35:9d: 34:4c:49:80:77:18:c3:3b:da:a9:0b:61:f8:4a:dd:3f:4a:ac: 63:bd:2e:e9:f2:75:5c:88:f1:be:63:3a:17:d3:40:3a:29:cb: 9e:ea:f4:b9:39:56:32:4d:2c:6d:48:44:12:72:33:c4:58:8f: 57:e9:50:88:9e:5b:70:94:b1:2a:73:8c:08:9e:8e:7d:57:67: f5:a2:5c:26:a2:49:51:b5:46:dc:db:41:f0:80:b7:0c:bb:9d: 9b:7f:e2:ad:3f:fb:13:fe:a7:3a:a7:c9:d4:3e:96:07:68:30: cb:90:e6:c7:82:b5:39:4f:e4:33:d4:9b:ea:d6:bc:a0:26:e7: 63:a5:44:9a:ac:dd:a6:f2:83:6c:05:75:90:fc:aa:c4:3d:ca: f3:11:7e:5a:b0:d6:72:49:ac:71:17:c9:f4:be:63:16:5d:6a: d2:c9:81:aa -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDANRyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTExNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJlNjMtYTY2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3EEoEEDVNtEYuhM+n/SIWJm3dsXAs8SeA8Dyv+wUySEw/NqDNkI11VG0MF 9JaW6wuScwA0510azkxu40Rf0ewImgAVBylqZte3DBr0Bv/nHvN/++hLaKbJWfhp /CCj6xkoUIya9tG18Os+oYDFZlDkGT5Ew2mNY2i99UyFv/jLVSDzUkn3Uu4g78+0 rtrdGXZ8lLrgKbyR+whKTOqcAf/L9K9LXNF4iFrQQ9ZB27CKQm7KsCkS8QI30lYz Bds9w/q9Z2mqFRCYGwmuPSXBYmYKG2O2wA5+SbkPtnSjfxk90svvo0QBBXt1NH3F PR3roVVNmW53kyU3tbE0O3aYxkkCAwEAAaOCAm8wggJrMB0GA1UdDgQWBBSYvV3w jdHpvAPVI0t63DMIdWsjQDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhDNDg4RDdB RDRENDExRUJCOUVCRDE0MUM0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmd8qDANBAIAAjAHAwUAJAYdQDANBgkqhkiG9w0BAQsFAAOCAQEA iPVZtrP2msWix83Ahd10lstZSKB0S/zJYQDeteJ0754UelZm7B98VpijldtyRSxv 2WuQwOpe16/pfwyeJF+F+xQfy8xWqOXbJkBW7Dsfq6tfSGzwu4kcwzWdNExJgHcY wzvaqQth+ErdP0qsY70u6fJ1XIjxvmM6F9NAOinLnur0uTlWMk0sbUhEEnIzxFiP V+lQiJ5bcJSxKnOMCJ6OfVdn9aJcJqJJUbVG3NtB8IC3DLudm3/irT/7E/6nOqfJ 1D6WB2gwy5Dmx4K1OU/kM9Sb6ta8oCbnY6VEmqzdpvKDbAV1kPyqxD3K8xF+WrDW ckmscRfJ9L5jFl1q0smBqg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:14:03 2026 by rpki-client