$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9E16318C147311F09DFBEA86C4F9AE02.roa File: 9E16318C147311F09DFBEA86C4F9AE02.roa (raw, json) Hash identifier: unPLYWQO6fdDg/JPc3PZ7wFIqIuWcAk2/qbQjEbJzjY= Subject key identifier: 07:9D:79:2A:21:A2:AE:20:BB:57:8E:0A:0C:CC:23:6C:21:CE:6B:C5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DE9F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9E16318C147311F09DFBEA86C4F9AE02.roa Signing time: Fri 17 Apr 2026 08:03:09 +0000 ROA not before: Fri 17 Apr 2026 08:03:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136716 IP address blocks: 43.227.128.0/22 maxlen: 24 103.46.232.0/22 maxlen: 24 103.49.52.0/22 maxlen: 24 103.80.12.0/22 maxlen: 24 2403:75c0::/32 maxlen: 32 2403:75c0::/48 maxlen: 48 2403:75c0:1::/48 maxlen: 48 2403:75c0:2::/48 maxlen: 48 2403:75c0:3::/48 maxlen: 48 2403:75c0:4::/48 maxlen: 48 2403:75c0:5::/48 maxlen: 48 2403:75c0:6::/48 maxlen: 48 2403:75c0:7::/48 maxlen: 48 2403:75c0:8::/48 maxlen: 48 2403:75c0:13::/48 maxlen: 48 2403:75c0:14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 11:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56991 (0xde9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 17 08:03:09 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69e1e93d-4494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:50:77:b1:a4:19:e3:15:2d:6c:b0:de:48:3f: 8c:49:25:f1:a7:97:e0:14:b8:77:65:c5:2d:d8:bf: b9:19:cf:7e:2e:62:82:61:7d:1b:98:03:c8:dd:fa: 05:87:c9:e1:7c:56:f3:48:d8:ad:3e:24:09:da:a6: 56:53:45:c9:7f:c4:3f:03:67:3a:0e:66:91:5a:fc: b6:78:4c:7c:cf:83:11:a3:cc:c0:8c:ac:65:bf:64: d3:a2:29:99:f4:0a:72:8c:50:e6:cc:36:29:38:fa: 4f:4f:7d:c1:88:75:65:70:89:45:db:c9:85:15:c1: 37:46:b8:63:c8:f0:05:18:5e:ed:56:b5:f2:fd:cb: 4f:4d:a4:c3:f8:bb:1f:09:8e:98:85:70:df:93:40: f9:18:4e:ba:92:ec:0d:87:92:83:4d:cd:6b:db:d0: 35:99:89:60:25:91:97:1f:63:84:f3:bf:61:99:56: ae:6a:88:fe:42:79:b9:d2:3c:0f:b0:f5:b0:0a:99: 6e:34:da:2c:e7:4d:16:13:a3:28:3d:ac:e5:5b:c9: 78:d9:c3:5f:be:bf:c6:0d:3e:d6:6e:d5:7d:2b:67: fe:c3:a0:7a:a1:b0:df:9f:d3:d9:89:64:7d:89:cf: 52:1d:02:4d:61:bb:56:b5:a2:e1:41:5c:a3:15:00: 00:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9D:79:2A:21:A2:AE:20:BB:57:8E:0A:0C:CC:23:6C:21:CE:6B:C5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9E16318C147311F09DFBEA86C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.227.128.0/22 103.46.232.0/22 103.49.52.0/22 103.80.12.0/22 IPv6: 2403:75c0::/32 Signature Algorithm: sha256WithRSAEncryption 2f:0f:e0:e4:b7:97:fc:89:9c:fb:c3:c2:e8:95:e0:df:bd:b4: d0:ce:b3:bc:4a:07:3e:64:a9:2f:97:37:9b:b3:8a:95:77:5e: 85:0d:fd:eb:56:fd:47:db:6b:32:8e:8b:06:ba:6a:17:7c:61: 6d:c1:57:95:e9:70:1f:5f:02:d1:c6:b4:45:9f:7f:f2:f4:ec: 16:09:c5:b0:a2:7b:04:07:b6:64:c3:c5:36:c4:bb:7e:3a:f2: 05:4f:d7:59:be:27:e2:90:65:b1:80:05:65:1d:95:41:f1:23: a4:8f:f7:d1:31:ee:8c:d3:1d:8b:4f:ff:8c:0e:82:95:da:fa: c8:40:67:da:77:66:21:fe:a6:dc:b4:87:56:0f:49:45:7d:a9: 50:f0:02:6d:bb:53:ce:f2:f7:ff:ff:df:df:aa:0a:9a:60:70: 45:0e:5e:df:34:87:ea:97:4f:29:b7:2a:c5:60:8b:15:d6:f2: 88:13:b7:67:49:14:6c:f2:67:c8:27:83:f5:23:16:b6:1d:b9: 07:f9:90:c7:7a:c6:5b:b1:d8:1a:7d:c9:9b:73:4c:5a:2f:d2: 03:07:38:6c:b0:86:1b:4b:d9:6d:a1:99:1d:2b:c7:e5:4f:4a: 39:ef:3e:29:70:d6:da:2c:d3:f7:31:12:6d:6c:0e:75:eb:33: 63:16:3a:6e -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIDAN6fMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDQxNzA4MDMwOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjllMWU5M2QtNDQ5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpQd7GkGeMVLWyw3kg/jEkl8aeX4BS4d2XFLdi/uRnPfi5igmF9G5gDyN36 BYfJ4XxW80jYrT4kCdqmVlNFyX/EPwNnOg5mkVr8tnhMfM+DEaPMwIysZb9k06Ip mfQKcoxQ5sw2KTj6T099wYh1ZXCJRdvJhRXBN0a4Y8jwBRhe7Va18v3LT02kw/i7 HwmOmIVw35NA+RhOupLsDYeSg03Na9vQNZmJYCWRlx9jhPO/YZlWrmqI/kJ5udI8 D7D1sAqZbjTaLOdNFhOjKD2s5VvJeNnDX76/xg0+1m7VfStn/sOgeqGw35/T2Ylk fYnPUh0CTWG7VrWi4UFcoxUAAHkCAwEAAaOCAoEwggJ9MB0GA1UdDgQWBBQHnXkq IaKuILtXjgoMzCNsIc5rxTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlFMTYzMThD MTQ3MzExRjA5REZCRUE4NkM0RjlBRTAyLnJvYTBABggrBgEFBQcBBwEB/wQxMC8w HgQCAAEwGAMEAivjgAMEAmcu6AMEAmcxNAMEAmdQDDANBAIAAjAHAwUAJAN1wDAN BgkqhkiG9w0BAQsFAAOCAQEALw/g5LeX/Imc+8PC6JXg37200M6zvEoHPmSpL5c3 m7OKlXdehQ3961b9R9trMo6LBrpqF3xhbcFXlelwH18C0ca0RZ9/8vTsFgnFsKJ7 BAe2ZMPFNsS7fjryBU/XWb4n4pBlsYAFZR2VQfEjpI/30THujNMdi0//jA6Cldr6 yEBn2ndmIf6m3LSHVg9JRX2pUPACbbtTzvL3///f36oKmmBwRQ5e3zSH6pdPKbcq xWCLFdbyiBO3Z0kUbPJnyCeD9SMWth25B/mQx3rGW7HYGn3Jm3NMWi/SAwc4bLCG G0vZbaGZHSvH5U9KOe8+KXDW2izT9zESbWwOdeszYxY6bg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:03:29 2026 by rpki-client