$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D9232DCF6A611F08D7B2A8A406F56BC.roa File: 8D9232DCF6A611F08D7B2A8A406F56BC.roa (raw, json) Hash identifier: 6PlTNUlSMar79pHj1aOaXFCrxkMO6u3LVQf1fXhYnyw= Subject key identifier: 20:D5:B1:DD:E1:81:B2:97:A1:AD:51:BB:E3:3E:B8:F4:0A:93:5D:A1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DAEB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D9232DCF6A611F08D7B2A8A406F56BC.roa Signing time: Sun 01 Mar 2026 23:06:04 +0000 ROA not before: Wed 21 Jan 2026 08:52:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136374 IP address blocks: 103.27.2.0/24 maxlen: 24 103.52.220.0/24 maxlen: 24 103.52.221.0/24 maxlen: 24 103.52.222.0/24 maxlen: 24 103.52.223.0/24 maxlen: 24 103.66.54.0/24 maxlen: 24 103.94.84.0/22 maxlen: 24 103.228.250.0/24 maxlen: 24 103.228.251.0/24 maxlen: 24 2404:8c40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56043 (0xdaeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 21 08:52:45 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c65c-b7b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:33:1c:6d:11:43:17:84:18:4c:3f:29:97:b2: b2:e2:27:83:a2:c3:37:c1:d7:c9:87:d9:1a:16:50: d6:f2:de:dd:71:a9:4b:e4:7f:ac:40:9e:15:d3:95: df:1b:f5:87:7e:10:9e:9e:f7:a9:18:26:a0:05:93: cd:e2:a4:08:c5:f4:d8:5b:0b:ff:56:6d:ea:fa:4e: 6d:56:80:3c:47:58:f8:ca:2d:7a:58:b8:42:91:18: 70:3d:94:a2:ed:d4:cb:26:6a:9d:90:52:f9:d0:5e: 47:0a:9a:6a:ca:d3:ee:e8:03:68:39:cd:5d:21:99: 9e:ef:3a:ea:5c:3d:4d:9e:19:b7:2b:70:96:12:0e: de:8c:fe:5d:70:a4:5a:47:0f:d8:2f:97:68:02:53: 86:f9:4b:6c:a7:82:b6:5b:9d:82:96:eb:27:91:e7: 2f:17:4c:9e:40:6a:0a:15:58:da:43:64:c2:cf:d7: c3:95:a7:f7:93:d7:be:7f:42:01:57:71:a5:b6:e2: ac:38:aa:51:59:54:8a:b0:d7:07:65:b3:dc:78:71: 6a:bb:bc:8a:c6:e5:9d:90:1a:f9:6f:88:51:3c:2c: 47:c1:e4:02:e9:cc:c9:df:83:3b:66:95:8d:a1:e3: 43:df:27:f3:a3:6e:fe:88:c2:66:56:0f:ee:e3:9e: 42:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D5:B1:DD:E1:81:B2:97:A1:AD:51:BB:E3:3E:B8:F4:0A:93:5D:A1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8D9232DCF6A611F08D7B2A8A406F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.27.2.0/24 103.52.220.0/22 103.66.54.0/24 103.94.84.0/22 103.228.250.0/23 IPv6: 2404:8c40::/32 Signature Algorithm: sha256WithRSAEncryption 97:b1:f1:48:a8:b8:02:60:1e:97:ab:48:65:8c:f6:f8:f7:51: b4:48:77:f2:cf:66:37:e3:84:54:81:49:f9:53:81:0d:72:e5: c2:0e:6a:c8:8a:f1:1d:c6:cf:ea:5b:ac:a1:73:47:79:1d:82: 6d:3a:bb:71:ce:88:2a:cc:1e:1a:69:a2:f8:9f:25:d6:b8:43: a1:d3:bf:f3:5a:e2:02:13:ed:3d:f5:0c:00:23:77:a8:0e:1c: 59:2a:c1:34:61:2b:7c:f1:e0:93:7a:03:9f:95:f9:70:d9:e2: fe:7b:03:ae:4f:6d:6a:94:ed:57:d8:f6:25:b2:c8:27:32:8f: c1:68:9e:bb:0f:23:5b:a5:6d:80:3b:80:d2:ad:93:c9:49:67: a2:78:82:65:38:19:0e:d8:cf:2c:7c:4b:26:55:08:23:5d:35: b3:cd:7d:b5:02:90:96:fe:b1:68:2c:cb:ba:4a:b4:df:43:96: 36:98:df:b7:31:cf:e2:d0:61:e0:f0:cd:f5:a0:10:d3:a3:6e: b8:7c:f6:03:60:19:ee:e1:0a:2c:ce:25:71:cf:51:ed:e8:38: b7:3f:7d:60:b2:01:6d:1e:e8:d4:3a:9c:c4:3e:b6:3b:2b:2c: c8:79:59:9c:c6:af:ea:e8:6a:3a:5c:cf:cd:2f:c9:a4:5e:d1: ab:85:de:67 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIDANrrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEyMTA4NTI0NVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM2NWMtYjdiODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOkzHG0RQxeEGEw/KZeysuIng6LDN8HXyYfZGhZQ1vLe3XGpS+R/rECeFdOV 3xv1h34Qnp73qRgmoAWTzeKkCMX02FsL/1Zt6vpObVaAPEdY+Moteli4QpEYcD2U ou3UyyZqnZBS+dBeRwqaasrT7ugDaDnNXSGZnu866lw9TZ4ZtytwlhIO3oz+XXCk WkcP2C+XaAJThvlLbKeCtludgpbrJ5HnLxdMnkBqChVY2kNkws/Xw5Wn95PXvn9C AVdxpbbirDiqUVlUirDXB2Wz3Hhxaru8isblnZAa+W+IUTwsR8HkAunMyd+DO2aV jaHjQ98n86Nu/ojCZlYP7uOeQtUCAwEAAaOCAocwggKDMB0GA1UdDgQWBBQg1bHd 4YGyl6GtUbvjPrj0CpNdoTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhEOTIzMkRD RjZBNjExRjA4RDdCMkE4QTQwNkY1NkJDLnJvYTBGBggrBgEFBQcBBwEB/wQ3MDUw JAQCAAEwHgMEAGcbAgMEAmc03AMEAGdCNgMEAmdeVAMEAWfk+jANBAIAAjAHAwUA JASMQDANBgkqhkiG9w0BAQsFAAOCAQEAl7HxSKi4AmAel6tIZYz2+PdRtEh38s9m N+OEVIFJ+VOBDXLlwg5qyIrxHcbP6lusoXNHeR2CbTq7cc6IKsweGmmi+J8l1rhD odO/81riAhPtPfUMACN3qA4cWSrBNGErfPHgk3oDn5X5cNni/nsDrk9tapTtV9j2 JbLIJzKPwWieuw8jW6VtgDuA0q2TyUlnoniCZTgZDtjPLHxLJlUII101s819tQKQ lv6xaCzLukq030OWNpjftzHP4tBh4PDN9aAQ06NuuHz2A2AZ7uEKLM4lcc9R7eg4 tz99YLIBbR7o1DqcxD62OyssyHlZnMav6uhqOlzPzS/JpF7Rq4XeZw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:05:53 2026 by rpki-client