$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9E7C3D802F911F09303E51BC4F9AE02.roa File: C9E7C3D802F911F09303E51BC4F9AE02.roa (raw, json) Hash identifier: mmP2h7EbxwV+LyWFwh3EROWSUciKFaWesKyS/1z9Fh4= Subject key identifier: 34:6C:EB:A0:25:09:9E:57:8C:B0:BE:9A:6F:03:FB:51:1A:C8:86:46 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D5D8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9E7C3D802F911F09303E51BC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:40:22 +0000 ROA not before: Thu 08 May 2025 16:18:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141856 IP address blocks: 103.168.94.0/23 maxlen: 24 163.223.132.0/24 maxlen: 24 163.223.133.0/24 maxlen: 24 2001:df6:d780::/48 maxlen: 53 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54744 (0xd5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:18:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c056-4c6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:8b:74:5b:c4:28:0e:f0:40:59:af:9d:47: 27:e0:d4:84:ca:9c:81:5e:9c:2a:ea:50:bb:bd:0f: 2a:4d:3f:23:ce:70:a2:4a:75:b6:c2:c5:c4:7d:b1: 78:a4:06:ae:b5:07:0e:61:7e:14:2b:5b:8c:b3:8d: 1c:9e:ae:08:68:ee:2d:77:2a:60:86:db:e4:df:e9: 97:a5:32:42:ce:10:35:78:d4:e1:02:56:27:85:fa: 32:61:98:75:a5:9d:bc:e7:e2:89:90:18:90:00:cb: 58:a2:dc:24:8b:4b:f1:d0:4c:8b:07:60:96:3f:46: a6:38:e0:cc:0e:75:22:ac:a3:fc:5e:1d:3b:c2:ea: ce:b6:4f:23:16:65:34:f4:26:56:d2:48:a6:84:68: 49:e4:bc:4b:3a:b8:c4:7c:08:e7:52:a1:d1:fc:6e: d3:4b:05:17:36:a1:df:de:38:49:cc:c4:26:e3:e9: 98:4f:25:77:7c:49:fa:f0:bd:b7:a1:54:d4:bc:c0: 7e:57:fb:9d:5b:f7:55:5b:ba:17:e1:61:b7:1b:fa: 6f:4d:a1:5c:c5:fa:32:e0:bc:b0:4a:a3:9a:bd:39: 08:08:d2:9c:5e:b7:3b:7a:83:b3:a1:33:bf:11:62: 8a:01:39:f4:3a:2f:01:2d:67:39:c9:54:e6:55:11: be:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6C:EB:A0:25:09:9E:57:8C:B0:BE:9A:6F:03:FB:51:1A:C8:86:46 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9E7C3D802F911F09303E51BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.168.94.0/23 163.223.132.0/23 IPv6: 2001:df6:d780::/48 Signature Algorithm: sha256WithRSAEncryption 23:a2:84:16:10:bc:21:54:a6:3d:cf:5d:de:d5:b8:ee:14:9e: 67:c0:a3:19:0e:f1:6e:d2:fc:f3:3a:0b:81:e9:ad:3d:6c:e3: a8:88:d8:d8:11:49:d5:d8:be:4d:52:91:bd:6c:4e:f1:4c:4d: 4e:8d:35:bc:66:e6:36:d1:4a:03:df:c1:4c:a5:35:f3:86:9c: 6b:20:9d:35:76:65:c8:74:c4:80:88:f0:a4:93:38:d9:ff:8a: 45:e8:85:10:c6:c6:53:ff:2e:25:8c:82:e2:df:5d:d0:94:7f: 50:92:67:11:f1:ca:40:37:af:1e:76:3d:ec:ba:2b:b3:d6:0e: 6c:d5:72:3a:49:b4:b6:a2:f8:2b:c4:10:f2:84:41:3f:0a:2b: 28:4d:fb:70:de:2b:9f:2d:90:9c:89:6f:23:9a:23:ec:6e:79: 2a:22:11:b2:66:c9:88:79:a5:83:01:2c:c4:68:1b:6c:e4:17: 09:fe:92:13:3c:7d:01:5e:a2:82:e4:ba:d7:09:52:f8:43:0c: 06:40:de:d1:c5:d4:6d:8d:17:1a:25:aa:6a:e0:f4:ab:fb:cd: 22:ba:c5:44:7f:6a:52:43:72:60:e6:2f:c7:74:58:ed:7a:8f: 37:93:07:16:46:55:a9:f5:74:a6:3f:df:62:36:98:2e:0d:21: 72:dc:5e:37 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDANXYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTgwN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMwNTYtNGM2YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKDi3RbxCgO8EBZr51HJ+DUhMqcgV6cKupQu70PKk0/I85wokp1tsLFxH2x eKQGrrUHDmF+FCtbjLONHJ6uCGjuLXcqYIbb5N/pl6UyQs4QNXjU4QJWJ4X6MmGY daWdvOfiiZAYkADLWKLcJItL8dBMiwdglj9GpjjgzA51Iqyj/F4dO8LqzrZPIxZl NPQmVtJIpoRoSeS8Szq4xHwI51Kh0fxu00sFFzah3944SczEJuPpmE8ld3xJ+vC9 t6FU1LzAflf7nVv3VVu6F+Fhtxv6b02hXMX6MuC8sEqjmr05CAjSnF63O3qDs6Ez vxFiigE59DovAS1nOclU5lURvqsCAwEAAaOCAncwggJzMB0GA1UdDgQWBBQ0bOug JQmeV4ywvppvA/tRGsiGRjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M5RTdDM0Q4 MDJGOTExRjA5MzAzRTUxQkM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAWeoXgMEAaPfhDAPBAIAAjAJAwcAIAEN9teAMA0GCSqGSIb3DQEB CwUAA4IBAQAjooQWELwhVKY9z13e1bjuFJ5nwKMZDvFu0vzzOguB6a09bOOoiNjY EUnV2L5NUpG9bE7xTE1OjTW8ZuY20UoD38FMpTXzhpxrIJ01dmXIdMSAiPCkkzjZ /4pF6IUQxsZT/y4ljILi313QlH9QkmcR8cpAN68edj3suiuz1g5s1XI6SbS2ovgr xBDyhEE/CisoTftw3iufLZCciW8jmiPsbnkqIhGyZsmIeaWDASzEaBts5BcJ/pIT PH0BXqKC5LrXCVL4QwwGQN7RxdRtjRcaJapq4PSr+80iusVEf2pSQ3Jg5i/HdFjt eo83kwcWRlWp9XSmP99iNpguDSFy3F43 -----END CERTIFICATE-----Generated at Mon Mar 2 11:09:40 2026 by rpki-client