$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/901F9394702B11EF9CC22083C4F9AE02.roa File: 901F9394702B11EF9CC22083C4F9AE02.roa (raw, json) Hash identifier: YVPz+3z+IZLoQLan8cfCPjxhrlaRBHt9kiH/vadEFs4= Subject key identifier: 8F:4D:88:C5:6C:E2:B2:EC:B0:00:D0:1A:51:9C:63:EC:72:4E:27:B4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D222 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/901F9394702B11EF9CC22083C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:18:18 +0000 ROA not before: Thu 08 May 2025 15:59:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133724 IP address blocks: 103.44.116.0/24 maxlen: 24 103.44.117.0/24 maxlen: 24 103.44.118.0/24 maxlen: 24 103.44.119.0/24 maxlen: 24 160.19.220.0/24 maxlen: 24 160.19.221.0/24 maxlen: 24 160.19.222.0/24 maxlen: 24 160.19.223.0/24 maxlen: 24 2401:320::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53794 (0xd222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:59:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bb2a-a019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:32:89:33:9b:f5:29:b2:d1:4f:65:c5:f9:00: a4:ea:ad:0e:08:e1:67:36:e0:9f:d8:54:d4:36:dc: ce:0b:de:ce:ed:4a:bf:42:69:a0:bd:4b:1e:7b:aa: 95:35:8a:69:ba:26:46:fb:45:3b:86:42:e8:32:45: d0:a1:dc:0e:a7:57:5e:76:08:44:e2:1b:44:72:2a: 26:a9:39:82:ed:10:ee:65:c5:56:6a:33:4f:82:ad: 24:b8:04:98:3b:50:b7:1e:e9:8b:18:0a:46:24:26: a6:2e:7d:54:0d:c1:61:8e:3c:af:ee:3c:39:c3:69: 8a:75:dd:7c:73:83:71:37:07:fa:25:3e:b7:91:0f: 05:ab:6c:aa:ff:d4:5e:53:28:a0:96:85:cd:82:b4: 7c:27:84:62:4c:18:00:83:8a:d7:50:20:1d:5f:f4: 18:6b:77:b3:48:7e:4f:80:b2:a7:1c:60:be:5e:a2: d4:e4:6e:eb:83:ba:83:41:97:ee:c1:e8:7d:3c:18: 31:72:ae:46:3e:db:e6:e0:6f:c2:29:ec:07:db:7d: a9:ae:91:cf:66:0b:40:49:66:05:fe:ab:15:3e:0d: 9c:3c:1c:c5:25:ff:7c:84:db:07:c0:b4:43:38:d1: 46:68:07:8e:d0:54:de:94:9b:56:03:05:0e:cd:ad: df:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4D:88:C5:6C:E2:B2:EC:B0:00:D0:1A:51:9C:63:EC:72:4E:27:B4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/901F9394702B11EF9CC22083C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.44.116.0/22 160.19.220.0/22 IPv6: 2401:320::/32 Signature Algorithm: sha256WithRSAEncryption 5d:52:4a:e9:68:01:9b:00:0c:ef:56:64:f8:b5:de:eb:33:de: 0c:57:63:9d:da:e6:d6:2a:3d:f9:d8:df:b7:5d:b6:18:85:a1: db:12:40:ea:49:5b:ae:87:b3:9c:fa:f5:58:c2:fd:69:a4:2a: cb:2c:4b:48:40:a6:49:84:86:ea:97:63:ba:8f:10:c4:10:7a: f0:73:b3:f3:f3:8e:b6:6a:3d:26:67:b8:44:67:3e:1f:9b:17: 2c:0e:b1:8b:96:f2:e0:50:9f:6a:dc:86:1d:0e:17:fc:4e:e6: b8:79:69:48:4f:18:fc:67:88:5d:d9:6a:52:24:e5:bf:e8:ea: f7:cf:74:af:e2:60:ba:a6:70:c7:34:97:b4:b7:cd:2a:b6:73: fb:1e:fe:a6:5f:53:06:d3:fc:0d:10:6c:7b:57:6f:ea:19:44: 10:a4:bb:e2:20:02:8a:b7:2e:20:6d:87:86:4c:86:34:79:d3: c9:70:85:05:70:b4:4a:50:3c:55:65:65:6c:4c:f3:7c:ea:ff: 62:36:f9:08:a3:64:ee:e3:f2:6a:63:1c:01:39:be:85:5a:5a: ed:3d:9a:12:e1:9c:9d:b5:fe:8a:ef:23:ed:08:99:4d:b4:27: d7:d9:69:51:1a:38:e0:47:21:b8:3b:82:5d:50:11:f5:b3:f8: 65:83:e4:2e -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIDANIiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTkzOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJiMmEtYTAxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUyiTOb9Smy0U9lxfkApOqtDgjhZzbgn9hU1Dbczgvezu1Kv0JpoL1LHnuq lTWKabomRvtFO4ZC6DJF0KHcDqdXXnYIROIbRHIqJqk5gu0Q7mXFVmozT4KtJLgE mDtQtx7pixgKRiQmpi59VA3BYY48r+48OcNpinXdfHODcTcH+iU+t5EPBatsqv/U XlMooJaFzYK0fCeEYkwYAIOK11AgHV/0GGt3s0h+T4Cypxxgvl6i1ORu64O6g0GX 7sHofTwYMXKuRj7b5uBvwinsB9t9qa6Rz2YLQElmBf6rFT4NnDwcxSX/fITbB8C0 QzjRRmgHjtBU3pSbVgMFDs2t3/8CAwEAAaOCAnUwggJxMB0GA1UdDgQWBBSPTYjF bOKy7LAA0BpRnGPsck4ntDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzkwMUY5Mzk0 NzAyQjExRUY5Q0MyMjA4M0M0RjlBRTAyLnJvYTA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmcsdAMEAqAT3DANBAIAAjAHAwUAJAEDIDANBgkqhkiG9w0BAQsF AAOCAQEAXVJK6WgBmwAM71Zk+LXe6zPeDFdjndrm1io9+djft122GIWh2xJA6klb roeznPr1WML9aaQqyyxLSECmSYSG6pdjuo8QxBB68HOz8/OOtmo9Jme4RGc+H5sX LA6xi5by4FCfatyGHQ4X/E7muHlpSE8Y/GeIXdlqUiTlv+jq9890r+JguqZwxzSX tLfNKrZz+x7+pl9TBtP8DRBse1dv6hlEEKS74iACircuIG2HhkyGNHnTyXCFBXC0 SlA8VWVlbEzzfOr/Yjb5CKNk7uPyamMcATm+hVpa7T2aEuGcnbX+iu8j7QiZTbQn 19lpURo44EchuDuCXVAR9bP4ZYPkLg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:15:58 2026 by rpki-client