$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BDAFFE5438B911F1AF6F9C1E96833773.roa File: BDAFFE5438B911F1AF6F9C1E96833773.roa (raw, json) Hash identifier: /xbOUf1TNR7vo6zLoIJI8ZOW08Hm8i0py+MnIrj1W9k= Subject key identifier: 64:15:A7:F0:7B:65:13:E8:DF:2A:8E:CA:DD:10:02:A9:40:C6:E4:69 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DE6E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BDAFFE5438B911F1AF6F9C1E96833773.roa Signing time: Wed 15 Apr 2026 11:04:23 +0000 ROA not before: Wed 15 Apr 2026 11:04:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149214 IP address blocks: 103.148.65.0/24 maxlen: 24 103.178.253.0/24 maxlen: 24 103.187.123.0/24 maxlen: 24 163.128.164.0/24 maxlen: 24 163.128.165.0/24 maxlen: 24 2001:df0:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 11:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56942 (0xde6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 15 11:04:23 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69df70b7-3188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cb:2a:24:3c:18:01:72:a7:5c:68:2e:0e:85: 3b:8b:25:7c:a7:29:03:a7:d5:de:f1:7b:24:88:72: a4:fa:27:15:ae:bb:fc:09:77:0d:52:3f:a5:cb:ce: 83:df:78:20:9b:1b:92:12:81:0c:99:02:73:58:b7: 57:56:63:f6:41:d3:2e:7e:56:77:7f:de:1e:d0:91: 94:0c:0c:38:ee:b6:0a:4e:7b:a3:ac:1a:4f:ef:27: 1b:3c:d8:54:9b:37:17:11:76:19:b9:e2:69:95:b8: 8d:23:a6:0e:52:0f:15:f3:5d:a3:e0:d7:87:a7:d1: a9:7b:c0:76:5f:66:0f:ff:5a:74:df:9b:7a:df:d6: b7:2c:d2:f7:5f:d1:83:31:0e:ff:0d:96:66:cf:49: 95:e9:45:88:00:cb:3e:66:ea:35:57:85:b9:8a:b6: 98:66:a5:54:60:60:22:08:de:a9:61:4c:c4:b5:bd: 8f:51:be:cb:7b:b0:4f:14:35:6a:e4:f0:cf:2c:85: f7:59:33:a3:55:13:72:b5:6f:e3:37:6e:3a:bc:c0: 2e:7b:29:6a:91:cf:67:a8:a8:75:75:df:cb:9f:f1: 1a:5b:ff:23:3a:e1:13:08:d3:e5:b1:8d:12:74:ca: 8d:76:93:5d:f6:77:9c:38:fd:d0:df:63:12:2c:6b: 3d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:15:A7:F0:7B:65:13:E8:DF:2A:8E:CA:DD:10:02:A9:40:C6:E4:69 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BDAFFE5438B911F1AF6F9C1E96833773.roa sbgp-ipAddrBlock: critical IPv4: 103.148.65.0/24 103.178.253.0/24 103.187.123.0/24 163.128.164.0/23 IPv6: 2001:df0:44c0::/48 Signature Algorithm: sha256WithRSAEncryption 58:90:1b:1d:26:6e:a5:b8:e9:37:01:d0:98:a8:ab:f4:54:f3: 64:4f:3d:7a:2b:18:38:09:d8:8a:91:41:94:34:c9:f4:05:d7: d6:97:e7:a5:32:9e:ac:71:43:33:4d:95:3d:d5:eb:d6:f7:95: eb:00:b7:18:eb:0b:43:a7:6f:4d:4c:99:f6:c5:5d:94:75:c9: eb:55:8e:d9:b8:94:83:32:03:32:3c:95:30:d8:4c:68:00:38: 42:de:9c:e8:42:2f:d4:93:0e:cd:a9:25:59:c1:b6:ee:cd:4e: 28:9f:fd:76:83:14:63:60:d0:ee:a2:56:95:76:0a:b6:de:ea: 98:eb:21:17:56:17:0b:43:5c:c9:64:20:eb:f4:e9:67:27:60: 02:84:14:ad:3c:25:9a:aa:95:57:02:13:f9:ea:e9:be:33:92: d7:90:3a:ed:ee:97:cb:a2:fc:75:16:de:92:89:af:ed:80:28: d2:89:c4:4e:2e:53:05:c4:77:3d:0c:30:8d:ab:3a:3c:72:9c: 06:15:97:bc:5a:95:f1:73:dd:2a:41:f2:3a:01:80:2e:c4:d7: 7a:20:21:c7:7a:e6:08:81:c0:50:a7:1e:26:25:49:d4:44:3c: e6:c4:16:e2:62:07:a7:3b:bf:4a:da:18:b8:49:7d:c0:61:3b: e3:0a:c1:aa -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIDAN5uMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDQxNTExMDQyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlkZjcwYjctMzE4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANrLKiQ8GAFyp1xoLg6FO4slfKcpA6fV3vF7JIhypPonFa67/Al3DVI/pcvO g994IJsbkhKBDJkCc1i3V1Zj9kHTLn5Wd3/eHtCRlAwMOO62Ck57o6waT+8nGzzY VJs3FxF2GbniaZW4jSOmDlIPFfNdo+DXh6fRqXvAdl9mD/9adN+bet/WtyzS91/R gzEO/w2WZs9JlelFiADLPmbqNVeFuYq2mGalVGBgIgjeqWFMxLW9j1G+y3uwTxQ1 auTwzyyF91kzo1UTcrVv4zduOrzALnspapHPZ6iodXXfy5/xGlv/IzrhEwjT5bGN EnTKjXaTXfZ3nDj90N9jEixrPYUCAwEAAaOCAoMwggJ/MB0GA1UdDgQWBBRkFafw e2UT6N8qjsrdEAKpQMbkaTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0JEQUZGRTU0 MzhCOTExRjFBRjZGOUMxRTk2ODMzNzczLnJvYTBCBggrBgEFBQcBBwEB/wQzMDEw HgQCAAEwGAMEAGeUQQMEAGey/QMEAGe7ewMEAaOApDAPBAIAAjAJAwcAIAEN8ETA MA0GCSqGSIb3DQEBCwUAA4IBAQBYkBsdJm6luOk3AdCYqKv0VPNkTz16Kxg4CdiK kUGUNMn0BdfWl+elMp6scUMzTZU91evW95XrALcY6wtDp29NTJn2xV2UdcnrVY7Z uJSDMgMyPJUw2ExoADhC3pzoQi/Ukw7NqSVZwbbuzU4on/12gxRjYNDuolaVdgq2 3uqY6yEXVhcLQ1zJZCDr9OlnJ2AChBStPCWaqpVXAhP56um+M5LXkDrt7pfLovx1 Ft6Sia/tgCjSicROLlMFxHc9DDCNqzo8cpwGFZe8WpXxc90qQfI6AYAuxNd6ICHH euYIgcBQpx4mJUnURDzmxBbiYgenO79K2hi4SX3AYTvjCsGq -----END CERTIFICATE-----Generated at Fri Apr 17 17:11:46 2026 by rpki-client