$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/900E0ED889C111ECA9865C1DC4F9AE02.roa File: 900E0ED889C111ECA9865C1DC4F9AE02.roa (raw, json) Hash identifier: KBr0nZs+WkEaIff2Ny7eB+jnePnewzGxp8FyrDrVOeg= Subject key identifier: 7F:53:11:BC:80:85:A6:A6:02:6E:A4:37:5F:8A:57:43:2E:0E:56:6A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D470 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/900E0ED889C111ECA9865C1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:32:00 +0000 ROA not before: Thu 08 May 2025 16:11:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138257 IP address blocks: 45.250.216.0/24 maxlen: 24 45.250.217.0/24 maxlen: 24 45.250.218.0/24 maxlen: 24 45.250.219.0/24 maxlen: 24 103.69.4.0/22 maxlen: 24 103.154.246.0/23 maxlen: 24 157.119.88.0/22 maxlen: 22 157.119.88.0/24 maxlen: 24 157.119.89.0/24 maxlen: 24 157.119.90.0/24 maxlen: 24 157.119.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54384 (0xd470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:11:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4be60-ba7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:51:33:a7:c2:b5:c4:6f:f7:ca:84:0b:2e:4e: b7:69:a6:4e:51:3d:8b:d2:95:1d:24:e3:42:8d:41: 68:bd:2f:43:ed:7e:5c:24:35:79:f4:a7:e0:8b:67: ec:d2:b9:44:c6:21:6a:b0:39:a2:a8:d4:17:2f:f3: 43:e1:d1:a1:2b:14:e7:c5:af:e9:e2:66:7f:e2:ba: 3b:ba:18:7c:01:17:e6:1c:5e:a8:cf:3b:f4:7b:13: e8:a7:b9:be:3a:1a:7a:05:62:37:ea:92:5e:5d:fa: e3:1a:f1:b6:78:6e:56:d0:2e:a2:b8:67:5b:d8:7c: 30:82:d8:32:84:cc:a5:43:0c:5b:ed:84:2e:3c:be: 6f:4c:f1:97:ce:26:a1:dd:aa:e3:e7:f5:f0:73:b1: c5:ce:ca:e2:6b:c0:7d:1c:0f:49:c4:e7:8d:d0:ac: da:e6:7a:c1:f3:bb:8f:72:7e:ea:57:47:9b:d7:ff: dc:c6:28:6f:f0:93:9c:20:62:80:d6:9f:33:f3:75: 6c:24:f5:e5:b6:5e:70:9c:36:bf:b4:27:9e:3b:d5: b7:3e:bb:05:c6:a8:62:55:23:46:c2:7c:a5:8d:30: b0:d6:b6:b2:51:7d:e0:ff:7b:45:83:54:a1:a8:88: f1:b6:e5:86:42:09:eb:f1:08:19:2f:c1:88:cb:b9: a5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:53:11:BC:80:85:A6:A6:02:6E:A4:37:5F:8A:57:43:2E:0E:56:6A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/900E0ED889C111ECA9865C1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.250.216.0/22 103.69.4.0/22 103.154.246.0/23 157.119.88.0/22 Signature Algorithm: sha256WithRSAEncryption ad:8e:77:76:67:b5:55:3f:27:8c:5f:bf:1a:da:6c:5a:01:2d: a0:ac:09:f0:cb:18:6c:58:f9:04:fa:54:1e:3a:bf:f6:47:87: ca:c9:1e:78:ba:95:9a:89:6f:91:14:28:19:9a:cb:ac:84:92: 9a:75:6a:3d:26:67:53:22:79:c7:a6:da:97:f6:80:19:08:d0: cf:aa:bc:8a:a1:20:ac:d2:09:b4:c1:ab:4c:bf:02:36:d5:d4: 46:32:b8:ac:0a:7a:35:16:3b:e0:e5:9a:7c:ad:0b:ab:63:37: b3:6a:ae:f3:f9:75:d7:98:08:13:94:f4:1a:02:e2:c3:a0:39: 7c:dd:a3:53:91:b5:4b:4e:cd:e6:7a:6d:43:73:96:51:39:e4: 42:33:46:5c:01:a2:f3:f8:40:59:05:1e:43:de:42:02:41:5b: 7d:a3:34:d2:83:99:f6:05:17:01:d3:6e:36:84:c4:b6:6a:db: ab:72:57:38:bb:1b:0e:e7:8c:4e:8c:70:d1:25:06:e4:da:20: 0b:58:97:69:5f:75:59:79:c1:7f:b0:5f:aa:64:18:51:25:96: 2e:fd:67:b8:40:23:4a:91:51:f4:b9:cc:8d:07:9c:7e:5d:7f: d2:50:83:aa:26:65:c7:53:3e:bc:97:ce:eb:e6:28:39:52:79: 92:f8:4f:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIDANRwMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTExM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJlNjAtYmE3ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVRM6fCtcRv98qECy5Ot2mmTlE9i9KVHSTjQo1BaL0vQ+1+XCQ1efSn4Itn 7NK5RMYharA5oqjUFy/zQ+HRoSsU58Wv6eJmf+K6O7oYfAEX5hxeqM879HsT6Ke5 vjoaegViN+qSXl364xrxtnhuVtAuorhnW9h8MILYMoTMpUMMW+2ELjy+b0zxl84m od2q4+f18HOxxc7K4mvAfRwPScTnjdCs2uZ6wfO7j3J+6ldHm9f/3MYob/CTnCBi gNafM/N1bCT15bZecJw2v7QnnjvVtz67BcaoYlUjRsJ8pY0wsNa2slF94P97RYNU oaiI8bblhkIJ6/EIGS/BiMu5pWUCAwEAAaOCAnIwggJuMB0GA1UdDgQWBBR/UxG8 gIWmpgJupDdfildDLg5WajAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzkwMEUwRUQ4 ODlDMTExRUNBOTg2NUMxREM0RjlBRTAyLnJvYTAxBggrBgEFBQcBBwEB/wQiMCAw HgQCAAEwGAMEAi362AMEAmdFBAMEAWea9gMEAp13WDANBgkqhkiG9w0BAQsFAAOC AQEArY53dme1VT8njF+/GtpsWgEtoKwJ8MsYbFj5BPpUHjq/9keHyskeeLqVmolv kRQoGZrLrISSmnVqPSZnUyJ5x6bal/aAGQjQz6q8iqEgrNIJtMGrTL8CNtXURjK4 rAp6NRY74OWafK0Lq2M3s2qu8/l115gIE5T0GgLiw6A5fN2jU5G1S07N5nptQ3OW UTnkQjNGXAGi8/hAWQUeQ95CAkFbfaM00oOZ9gUXAdNuNoTEtmrbq3JXOLsbDueM Toxw0SUG5NogC1iXaV91WXnBf7BfqmQYUSWWLv1nuEAjSpFR9LnMjQecfl1/0lCD qiZlx1M+vJfO6+YoOVJ5kvhPYw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:16 2026 by rpki-client