$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B331A964432A11EEA004DA1AC4F9AE02.roa File: B331A964432A11EEA004DA1AC4F9AE02.roa (raw, json) Hash identifier: oc6pFA49dqfw2KfCDzlC8TO4/hRqyeZf279S9WXR+40= Subject key identifier: 76:45:D5:75:B0:0C:C2:A7:AB:A2:8A:43:40:5B:09:D5:AF:10:D8:98 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D258 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B331A964432A11EEA004DA1AC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:19:27 +0000 ROA not before: Thu 08 May 2025 16:00:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134257 IP address blocks: 103.194.70.0/23 maxlen: 24 103.208.20.0/24 maxlen: 24 103.208.21.0/24 maxlen: 24 2001:df1:4b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53848 (0xd258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:00:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bb6f-0a28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:aa:18:f5:45:d4:88:36:b7:ba:33:6c:59:8b: 26:e1:ac:39:0d:21:c0:20:2f:51:44:74:38:c7:be: 0c:59:93:97:72:21:5b:e8:a9:eb:67:58:71:ec:c0: 67:f0:d0:88:95:60:7a:89:f8:43:fc:1f:cb:fb:e6: 85:1f:a4:fe:36:2c:53:c1:75:cc:f0:b0:3c:bd:5e: 64:33:83:c6:9d:32:3a:78:e3:20:e8:9e:f7:cf:f9: 76:44:0e:42:80:1f:da:81:2d:db:77:da:39:37:20: 8c:e5:6e:29:5a:eb:b3:6e:82:32:ad:0d:57:29:2a: 05:84:3b:e9:42:3f:43:e4:40:2f:b5:8f:65:fa:ba: 96:e3:68:aa:a9:46:2d:a8:54:47:22:57:b5:87:fa: 55:9e:5a:23:2a:92:32:45:5e:26:d0:2f:a7:2f:c5: 33:a8:0a:73:95:54:3f:47:fe:3b:a0:ab:cf:c2:fa: a4:60:56:34:43:ca:aa:32:79:ba:2d:41:1f:f7:cd: 98:d6:db:54:a3:38:59:89:a9:9d:3d:e4:f9:89:31: 0d:8b:56:9e:b0:a8:6a:46:70:ed:24:56:c2:48:5c: e6:48:75:18:c8:b2:70:8b:3d:8b:86:1d:6f:9e:61: a4:a7:e1:9c:c1:68:43:11:48:f3:52:8c:ef:70:cc: ed:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:45:D5:75:B0:0C:C2:A7:AB:A2:8A:43:40:5B:09:D5:AF:10:D8:98 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B331A964432A11EEA004DA1AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.194.70.0/23 103.208.20.0/23 IPv6: 2001:df1:4b40::/48 Signature Algorithm: sha256WithRSAEncryption 87:88:2e:90:65:b1:57:0a:41:9f:49:1d:0b:b8:5b:b0:08:39: 45:79:cb:3b:b7:aa:00:ca:7c:90:68:c3:0b:a1:8b:f0:06:3a: 1d:0e:22:7a:8b:68:f0:0e:85:93:03:90:54:7b:ff:57:98:a7: 64:7b:70:0d:f3:df:86:30:ca:66:48:5c:37:b5:8e:8b:53:17: 64:df:61:66:7b:80:e0:1d:b7:1a:7c:ca:bc:55:bc:b7:6a:fb: 62:4a:99:c0:c4:8a:8b:c3:28:79:8b:ab:8f:76:4a:49:94:e5: 47:53:81:58:19:6c:31:1e:55:c2:99:df:ab:6c:4c:72:05:6d: 76:bf:1f:fd:b6:71:d2:e4:84:fb:7c:6e:03:9f:a5:a2:d3:c4: f1:6a:b1:4a:e3:23:9e:bd:49:de:60:94:ca:fd:51:e2:d6:e0: 1f:df:32:9d:5b:62:dd:88:fb:2a:4c:69:1c:6d:c9:c2:cb:68: 09:83:dc:5a:ba:26:38:92:f7:16:37:52:18:83:20:2a:29:c7: 09:cc:6b:89:c2:06:f9:1c:0f:a6:bb:17:21:36:59:7d:0d:63: 07:e6:e8:07:4e:6f:69:84:a6:e9:66:1b:ed:74:1f:cb:24:b5: f0:43:72:dd:20:ae:b2:b5:8b:95:4e:78:76:e9:27:0f:ee:b8: 90:66:f0:b8 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDANJYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDA0OFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJiNmYtMGEyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ6qGPVF1Ig2t7ozbFmLJuGsOQ0hwCAvUUR0OMe+DFmTl3IhW+ip62dYcezA Z/DQiJVgeon4Q/wfy/vmhR+k/jYsU8F1zPCwPL1eZDODxp0yOnjjIOie98/5dkQO QoAf2oEt23faOTcgjOVuKVrrs26CMq0NVykqBYQ76UI/Q+RAL7WPZfq6luNoqqlG LahURyJXtYf6VZ5aIyqSMkVeJtAvpy/FM6gKc5VUP0f+O6Crz8L6pGBWNEPKqjJ5 ui1BH/fNmNbbVKM4WYmpnT3k+YkxDYtWnrCoakZw7SRWwkhc5kh1GMiycIs9i4Yd b55hpKfhnMFoQxFI81KM73DM7fMCAwEAAaOCAncwggJzMB0GA1UdDgQWBBR2RdV1 sAzCp6uiikNAWwnVrxDYmDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IzMzFBOTY0 NDMyQTExRUVBMDA0REExQUM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAWfCRgMEAWfQFDAPBAIAAjAJAwcAIAEN8UtAMA0GCSqGSIb3DQEB CwUAA4IBAQCHiC6QZbFXCkGfSR0LuFuwCDlFecs7t6oAynyQaMMLoYvwBjodDiJ6 i2jwDoWTA5BUe/9XmKdke3AN89+GMMpmSFw3tY6LUxdk32Fme4DgHbcafMq8Vby3 avtiSpnAxIqLwyh5i6uPdkpJlOVHU4FYGWwxHlXCmd+rbExyBW12vx/9tnHS5IT7 fG4Dn6Wi08TxarFK4yOevUneYJTK/VHi1uAf3zKdW2LdiPsqTGkcbcnCy2gJg9xa uiY4kvcWN1IYgyAqKccJzGuJwgb5HA+muxchNll9DWMH5ugHTm9phKbpZhvtdB/L JLXwQ3LdIK6ytYuVTnh26ScP7riQZvC4 -----END CERTIFICATE-----Generated at Mon Mar 2 11:09:04 2026 by rpki-client