$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7561AC21E8611F0A16A566AC4F9AE02.roa File: C7561AC21E8611F0A16A566AC4F9AE02.roa (raw, json) Hash identifier: blZljvuwJMzo3Tng+Qlls8jrKb56T5MY7LeQDnIRQbQ= Subject key identifier: 7F:37:1C:E8:B6:AE:CA:C5:2D:31:88:DB:64:D9:F1:F6:DF:F9:D1:75 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D9B2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7561AC21E8611F0A16A566AC4F9AE02.roa Signing time: Sun 01 Mar 2026 23:00:29 +0000 ROA not before: Fri 08 Aug 2025 06:13:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140201 IP address blocks: 103.155.40.0/23 maxlen: 24 103.160.238.0/23 maxlen: 24 103.217.249.0/24 maxlen: 24 2001:df1:cbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55730 (0xd9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 8 06:13:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c50d-3dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:3b:47:fa:56:14:da:3b:ce:f0:06:ad:12: 8e:5a:bb:fb:9f:86:db:6a:1a:ff:e6:0b:52:20:6e: 83:bc:05:e5:d3:52:8f:08:ec:4e:99:7b:6d:91:a1: b5:09:4d:46:31:da:68:e6:10:50:42:53:d8:18:6e: 21:a3:3b:fb:8d:7c:4f:a5:a0:50:c5:9b:19:db:bb: c5:99:b3:d2:ab:ef:de:f8:fe:03:84:be:0b:3a:34: fc:62:d8:10:3b:c7:f3:be:8a:79:d4:c3:09:9c:d8: 73:e9:f0:84:40:f9:19:31:e1:7c:5a:61:e8:25:0f: 4d:94:36:35:b7:78:30:82:b9:b4:4a:6f:a7:dc:e5: 40:a7:fa:b5:45:48:63:30:b4:fd:2a:57:3b:c6:b8: 10:80:f0:43:cc:2a:65:6a:05:1b:17:92:00:ca:c8: b2:ba:13:eb:bf:89:cc:5f:69:7e:89:b3:08:6a:df: e3:0d:9f:d0:ce:2f:eb:09:3c:80:f7:1c:a0:e2:1b: f7:c8:67:9f:17:d3:a2:c1:97:ea:ca:be:28:84:13: af:3d:f6:c0:d4:0e:97:a0:d3:19:ee:77:c6:5b:09: b3:3d:48:67:cf:01:b3:39:37:6d:fc:41:6f:d0:82: c7:10:3f:09:60:34:80:a7:60:a5:78:70:83:ce:ae: 3d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:37:1C:E8:B6:AE:CA:C5:2D:31:88:DB:64:D9:F1:F6:DF:F9:D1:75 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7561AC21E8611F0A16A566AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.155.40.0/23 103.160.238.0/23 103.217.249.0/24 IPv6: 2001:df1:cbc0::/48 Signature Algorithm: sha256WithRSAEncryption 19:0b:96:73:e4:76:a5:ce:09:d0:3c:60:03:8c:30:b6:3a:52: 2f:26:43:0f:69:cd:91:53:b2:59:53:58:2d:fa:be:11:1c:9d: 41:ae:09:8e:94:db:ea:b9:c9:ec:b8:e5:17:48:85:72:9c:e9: 50:2d:d2:4f:98:00:a2:d8:7a:42:f8:56:17:63:d3:71:06:7f: ea:4a:f8:55:b3:38:51:c1:20:66:71:e1:4f:d5:74:fb:d3:3b: c4:a6:f6:43:bd:94:3e:57:ae:77:2a:83:10:db:58:aa:52:c3: 0f:90:0e:2c:c3:2b:1a:01:e2:d7:a7:6a:f8:b2:c3:16:b1:b0: 94:8b:90:cf:c7:c6:46:dd:06:53:39:b8:29:3d:9a:b0:c9:ba: b5:0d:c6:f6:34:c7:21:7d:65:4b:7e:47:96:c2:85:f8:35:36: 3c:5f:1a:a5:49:ee:5a:df:54:ea:dd:08:4d:29:3f:e9:8d:26: 3d:02:c7:71:46:de:eb:41:3f:3c:16:e2:8a:00:9b:c6:7c:b7: 46:ee:7f:bb:ae:e2:a0:ce:73:3a:7b:92:99:ca:8d:5c:ff:28: 0e:de:c5:3e:60:e0:a8:ae:31:f0:86:40:8d:e0:77:dc:f5:0f: f1:3a:f4:0a:29:98:eb:0b:8c:0a:9a:04:94:5f:a5:75:3b:4c: be:bc:55:b4 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIDANmyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgwODA2MTMwMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM1MGQtM2RmZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcSO0f6VhTaO87wBq0Sjlq7+5+G22oa/+YLUiBug7wF5dNSjwjsTpl7bZGh tQlNRjHaaOYQUEJT2BhuIaM7+418T6WgUMWbGdu7xZmz0qvv3vj+A4S+Czo0/GLY EDvH876KedTDCZzYc+nwhED5GTHhfFph6CUPTZQ2Nbd4MIK5tEpvp9zlQKf6tUVI YzC0/SpXO8a4EIDwQ8wqZWoFGxeSAMrIsroT67+JzF9pfomzCGrf4w2f0M4v6wk8 gPccoOIb98hnnxfTosGX6sq+KIQTrz32wNQOl6DTGe53xlsJsz1IZ88Bszk3bfxB b9CCxxA/CWA0gKdgpXhwg86uPXkCAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBR/Nxzo tq7KxS0xiNtk2fH23/nRdTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M3NTYxQUMy MUU4NjExRjBBMTZBNTY2QUM0RjlBRTAyLnJvYTA8BggrBgEFBQcBBwEB/wQtMCsw GAQCAAEwEgMEAWebKAMEAWeg7gMEAGfZ+TAPBAIAAjAJAwcAIAEN8cvAMA0GCSqG SIb3DQEBCwUAA4IBAQAZC5Zz5HalzgnQPGADjDC2OlIvJkMPac2RU7JZU1gt+r4R HJ1BrgmOlNvqucnsuOUXSIVynOlQLdJPmACi2HpC+FYXY9NxBn/qSvhVszhRwSBm ceFP1XT70zvEpvZDvZQ+V653KoMQ21iqUsMPkA4swysaAeLXp2r4ssMWsbCUi5DP x8ZG3QZTObgpPZqwybq1Dcb2NMchfWVLfkeWwoX4NTY8XxqlSe5a31Tq3QhNKT/p jSY9AsdxRt7rQT88FuKKAJvGfLdG7n+7ruKgznM6e5KZyo1c/ygO3sU+YOCorjHw hkCN4Hfc9Q/xOvQKKZjrC4wKmgSUX6V1O0y+vFW0 -----END CERTIFICATE-----Generated at Mon Mar 2 11:09:24 2026 by rpki-client