$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B00D8CFA776411EC9457F949C4F9AE02.roa File: B00D8CFA776411EC9457F949C4F9AE02.roa (raw, json) Hash identifier: VkR5seJ9Vr9zpRoxKGw6Q8gPA9xP3fh57lr+pqiy5mg= Subject key identifier: FC:51:1E:AE:9E:62:0B:7C:F0:58:7F:09:42:80:C5:CF:F6:F8:82:78 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D898 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B00D8CFA776411EC9457F949C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:55:32 +0000 ROA not before: Thu 08 May 2025 16:30:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45284 IP address blocks: 45.127.108.0/22 maxlen: 24 103.115.236.0/23 maxlen: 24 103.196.28.0/24 maxlen: 24 103.196.29.0/24 maxlen: 24 103.196.30.0/24 maxlen: 24 103.196.31.0/24 maxlen: 24 121.200.48.0/21 maxlen: 21 121.200.48.0/22 maxlen: 22 121.200.48.0/24 maxlen: 24 121.200.49.0/24 maxlen: 24 121.200.50.0/24 maxlen: 24 121.200.51.0/24 maxlen: 24 121.200.52.0/24 maxlen: 24 121.200.53.0/24 maxlen: 24 121.200.54.0/24 maxlen: 24 121.200.55.0/24 maxlen: 24 202.129.196.0/22 maxlen: 22 202.129.196.0/24 maxlen: 24 202.129.197.0/24 maxlen: 24 202.129.198.0/24 maxlen: 24 202.129.199.0/24 maxlen: 24 2406:dec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55448 (0xd898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:30:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c3e4-e1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:aa:e5:ef:cb:25:f3:3a:cc:f4:f9:83:2c:eb: de:8b:9b:c0:14:f1:6d:1f:cf:ac:93:ae:17:ff:68: 92:dc:ac:d3:45:c0:5c:63:42:e7:58:95:78:d4:bb: 20:ce:cc:9e:eb:1b:d4:45:e5:01:59:7d:7e:30:09: 96:9d:82:e8:d4:57:8a:4c:37:03:5d:87:f0:97:6c: d3:6d:75:b0:2e:2c:89:c1:cf:8b:31:0b:e9:bf:ba: 1d:55:39:de:44:80:83:31:45:f3:36:28:87:6a:53: 39:0b:d8:2a:04:15:e7:d5:6a:2b:e8:d3:b5:04:06: 8a:6c:b7:a9:c5:7c:ed:c0:75:7b:8c:95:f0:e8:1c: c8:d6:50:34:89:55:9c:e1:2d:1e:7c:55:df:e4:79: 93:da:5e:57:c3:96:4d:6e:82:cd:5d:1d:24:0c:c9: 95:39:5e:28:47:da:79:b0:4a:17:42:0b:05:25:e8: 57:42:b5:b4:8c:1f:24:3c:2c:f4:70:c9:b9:67:01: fa:a3:48:13:0c:bc:4c:04:95:49:4a:29:37:cf:8c: aa:f0:92:ba:5d:a8:65:8f:31:20:60:4f:e5:78:23: c7:8a:2b:a7:b9:b8:88:5e:a9:fa:ea:7a:73:82:cc: 27:0c:b7:05:05:98:aa:65:1a:6d:29:5d:ec:08:96: 97:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:51:1E:AE:9E:62:0B:7C:F0:58:7F:09:42:80:C5:CF:F6:F8:82:78 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B00D8CFA776411EC9457F949C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.127.108.0/22 103.115.236.0/23 103.196.28.0/22 121.200.48.0/21 202.129.196.0/22 IPv6: 2406:dec0::/32 Signature Algorithm: sha256WithRSAEncryption b9:e9:ed:72:72:96:96:47:df:0b:45:76:7b:21:4b:c0:2d:a1: 22:2d:4d:b3:d5:e6:59:d0:2e:55:c7:d1:fc:58:8a:f6:a1:92: f7:c3:cf:2b:b9:ee:58:fc:3c:d3:bd:ea:72:08:12:ec:f8:47: b0:d6:8f:11:b6:ad:21:49:35:12:96:39:0b:b2:f1:b0:26:b1: 77:fd:3e:4d:7b:86:6a:30:26:f9:f7:06:8e:c0:66:ab:92:23: 8e:3c:fa:03:48:22:76:77:f2:d3:17:23:c3:cc:44:c6:3b:a3: 80:fa:3c:07:fd:7b:4f:45:35:67:b4:3b:43:82:1a:8a:ab:49: 1c:09:34:52:9d:47:29:54:ba:e1:3c:dd:ea:56:4a:b3:99:e6: 52:ac:ba:8d:d3:b5:91:b1:c6:f3:fa:8c:12:7f:3f:3d:f1:4e: f6:b1:d0:3d:83:97:f3:2a:8f:42:29:26:53:2f:54:53:10:e2: ba:2e:9a:19:33:13:8e:a4:44:8b:f6:14:85:0d:79:27:c8:19: ad:07:b0:7d:26:86:af:e8:7e:ec:18:53:d1:a6:76:38:cb:65: f4:6f:87:a4:40:b8:31:99:75:c4:af:d8:e1:70:ec:b1:ea:b2: f5:99:42:9c:72:f2:bb:62:4f:e2:48:7b:86:d1:68:0d:f3:44: 2d:82:0f:dc -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIDANiYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzA1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMzZTQtZTFlMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmq5e/LJfM6zPT5gyzr3oubwBTxbR/PrJOuF/9oktys00XAXGNC51iVeNS7 IM7Mnusb1EXlAVl9fjAJlp2C6NRXikw3A12H8Jds0211sC4sicHPizEL6b+6HVU5 3kSAgzFF8zYoh2pTOQvYKgQV59VqK+jTtQQGimy3qcV87cB1e4yV8OgcyNZQNIlV nOEtHnxV3+R5k9peV8OWTW6CzV0dJAzJlTleKEfaebBKF0ILBSXoV0K1tIwfJDws 9HDJuWcB+qNIEwy8TASVSUopN8+MqvCSul2oZY8xIGBP5Xgjx4orp7m4iF6p+up6 c4LMJwy3BQWYqmUabSld7AiWl00CAwEAAaOCAocwggKDMB0GA1UdDgQWBBT8UR6u nmILfPBYfwlCgMXP9viCeDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IwMEQ4Q0ZB Nzc2NDExRUM5NDU3Rjk0OUM0RjlBRTAyLnJvYTBGBggrBgEFBQcBBwEB/wQ3MDUw JAQCAAEwHgMEAi1/bAMEAWdz7AMEAmfEHAMEA3nIMAMEAsqBxDANBAIAAjAHAwUA JAbewDANBgkqhkiG9w0BAQsFAAOCAQEAuentcnKWlkffC0V2eyFLwC2hIi1Ns9Xm WdAuVcfR/FiK9qGS98PPK7nuWPw8073qcggS7PhHsNaPEbatIUk1EpY5C7LxsCax d/0+TXuGajAm+fcGjsBmq5Ijjjz6A0gidnfy0xcjw8xExjujgPo8B/17T0U1Z7Q7 Q4IaiqtJHAk0Up1HKVS64Tzd6lZKs5nmUqy6jdO1kbHG8/qMEn8/PfFO9rHQPYOX 8yqPQikmUy9UUxDiui6aGTMTjqREi/YUhQ15J8gZrQewfSaGr+h+7BhT0aZ2OMtl 9G+HpEC4MZl1xK/Y4XDsseqy9ZlCnHLyu2JP4kh7htFoDfNELYIP3A== -----END CERTIFICATE-----Generated at Mon Mar 2 13:03:40 2026 by rpki-client