$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9B1EB8868E2211F0A399EF11C4F9AE02.roa File: 9B1EB8868E2211F0A399EF11C4F9AE02.roa (raw, json) Hash identifier: si6rcTweY8h2z4Lqlfi60PEQ0V2wuzgcwkuFOofEaCA= Subject key identifier: 87:1E:66:B2:CF:EA:15:B0:E2:C0:AF:61:A1:38:6E:85:0D:F4:DC:57 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DA03 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9B1EB8868E2211F0A399EF11C4F9AE02.roa Signing time: Sun 01 Mar 2026 23:02:06 +0000 ROA not before: Wed 10 Sep 2025 08:46:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141834 IP address blocks: 103.167.126.0/23 maxlen: 24 103.187.110.0/23 maxlen: 24 2001:df6:b680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55811 (0xda03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 10 08:46:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c56e-2f81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:be:8b:62:cd:1a:fd:60:4b:0c:8d:d4:a9: cf:84:73:86:26:4d:84:de:26:7d:02:3f:fe:9f:9d: 71:08:14:04:bd:af:31:a6:95:a5:50:d1:78:13:56: 9f:fe:ca:dd:fd:61:7d:67:d2:d1:4a:72:25:3f:f5: 17:98:9f:a2:70:b2:42:53:1c:9e:07:22:59:2e:1c: 15:d0:ac:f2:a6:c1:ca:9b:d4:d5:4f:ae:1c:e7:5f: 43:84:1d:ce:61:79:e3:5c:e2:08:94:4a:69:ed:6c: dc:e2:cd:65:8b:88:0d:ff:00:f2:1b:2c:c6:9b:84: c0:7d:34:bb:54:97:09:c4:ab:02:22:3f:85:ee:ee: 18:19:d3:23:54:ef:44:c3:f5:88:6a:92:95:ea:fa: c1:14:c1:73:e9:02:73:cf:94:ea:d7:6f:dc:c8:7f: fd:44:49:b5:13:2c:27:73:59:e0:1b:f3:fe:bc:34: 14:e4:7f:ca:92:01:40:0d:c0:96:69:d6:80:c3:cb: 39:09:3c:49:fa:76:2a:f9:2a:4e:cd:ec:3a:c9:8a: 57:7f:b9:0f:df:9c:a9:cd:4b:d2:22:02:8b:5a:d3: 58:ab:96:3b:0c:02:29:d7:8b:ab:e6:b8:76:72:f8: 59:e7:02:5d:31:0e:c3:44:d7:21:76:bb:05:e6:5e: c7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1E:66:B2:CF:EA:15:B0:E2:C0:AF:61:A1:38:6E:85:0D:F4:DC:57 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9B1EB8868E2211F0A399EF11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.126.0/23 103.187.110.0/23 IPv6: 2001:df6:b680::/48 Signature Algorithm: sha256WithRSAEncryption 88:7d:d1:95:9b:ab:60:d6:b0:5c:64:62:12:48:72:3f:ae:fc: 25:8d:68:83:be:c3:7a:ee:23:c0:32:ad:18:32:0d:99:41:c9: c0:ba:71:b7:6a:a0:b2:8d:f5:fd:d3:2e:97:e7:43:3a:54:c7: b4:66:1b:5d:b6:d8:7e:87:44:29:2f:f0:67:1d:7b:1c:a2:62: 51:80:78:90:11:f6:ad:1b:24:6f:d3:da:21:5a:c7:15:dd:21: a9:06:c5:b3:95:bd:a5:a3:8e:21:1a:db:80:13:fa:42:5a:f6: 30:dd:5e:b4:1b:ec:b8:d4:45:8c:eb:63:1a:59:e8:9d:4b:4c: 44:fc:62:ce:43:a7:7c:b9:19:99:db:44:e7:0d:16:d4:bf:f3: cf:08:cc:c6:9b:64:16:f6:e7:1f:54:50:d8:8c:c2:03:8b:b0: a2:33:12:2b:1b:ba:61:7e:b0:c6:e1:21:5a:55:a2:f9:ae:5e: e8:b2:57:cd:48:b8:18:3b:b8:ca:d3:70:bc:bd:f0:f6:10:7a: 5f:d1:6c:8b:23:43:fa:9b:d4:0f:c7:29:14:27:bd:45:b3:98: da:6a:01:8d:33:45:72:19:14:89:b0:54:82:43:5e:48:53:7e: 64:c3:6c:47:7b:f1:6e:9a:1d:31:f6:01:d7:05:6f:00:59:d6: 08:85:6d:01 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDANoDMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkxMDA4NDYxM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM1NmUtMmY4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMmvotizRr9YEsMjdSpz4RzhiZNhN4mfQI//p+dcQgUBL2vMaaVpVDReBNW n/7K3f1hfWfS0UpyJT/1F5ifonCyQlMcngciWS4cFdCs8qbBypvU1U+uHOdfQ4Qd zmF541ziCJRKae1s3OLNZYuIDf8A8hssxpuEwH00u1SXCcSrAiI/he7uGBnTI1Tv RMP1iGqSler6wRTBc+kCc8+U6tdv3Mh//URJtRMsJ3NZ4Bvz/rw0FOR/ypIBQA3A lmnWgMPLOQk8Sfp2KvkqTs3sOsmKV3+5D9+cqc1L0iICi1rTWKuWOwwCKdeLq+a4 dnL4WecCXTEOw0TXIXa7BeZexy0CAwEAAaOCAncwggJzMB0GA1UdDgQWBBSHHmay z+oVsOLAr2GhOG6FDfTcVzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlCMUVCODg2 OEUyMjExRjBBMzk5RUYxMUM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAWenfgMEAWe7bjAPBAIAAjAJAwcAIAEN9raAMA0GCSqGSIb3DQEB CwUAA4IBAQCIfdGVm6tg1rBcZGISSHI/rvwljWiDvsN67iPAMq0YMg2ZQcnAunG3 aqCyjfX90y6X50M6VMe0Zhtdtth+h0QpL/BnHXscomJRgHiQEfatGyRv09ohWscV 3SGpBsWzlb2lo44hGtuAE/pCWvYw3V60G+y41EWM62MaWeidS0xE/GLOQ6d8uRmZ 20TnDRbUv/PPCMzGm2QW9ucfVFDYjMIDi7CiMxIrG7phfrDG4SFaVaL5rl7oslfN SLgYO7jK03C8vfD2EHpf0WyLI0P6m9QPxykUJ71Fs5jaagGNM0VyGRSJsFSCQ15I U35kw2xHe/Fumh0x9gHXBW8AWdYIhW0B -----END CERTIFICATE-----Generated at Mon Mar 2 17:28:28 2026 by rpki-client