$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CB1A9916EEA311EFABE3837AC4F9AE02.roa File: CB1A9916EEA311EFABE3837AC4F9AE02.roa (raw, json) Hash identifier: l3hAvZ1zBVdSO+RY38gUs9WZWbJWD+F9e4nuMysiAmo= Subject key identifier: 0B:34:BC:C8:B2:AC:AB:2C:29:EB:C6:73:BD:71:91:87:2A:DA:72:8F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D702 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CB1A9916EEA311EFABE3837AC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:47:35 +0000 ROA not before: Thu 08 May 2025 16:23:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149589 IP address blocks: 103.190.52.0/24 maxlen: 24 103.190.53.0/24 maxlen: 24 2400:8d20::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55042 (0xd702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:23:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c206-4853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:07:db:28:1a:d4:b5:f3:6e:54:93:8c:3f:79: 0b:42:c3:85:f1:27:17:05:d1:69:15:69:d4:d1:18: 61:92:b1:3e:7a:67:d7:d2:a8:32:49:22:2e:9a:4e: 6b:5c:3c:70:14:6e:b7:ba:2e:00:c7:27:3f:06:3b: 0d:89:91:39:2a:f3:4a:44:45:22:b5:ae:57:61:32: e5:f6:42:ad:d0:50:74:ac:08:7c:20:fc:d6:9c:56: 1d:ad:17:d7:01:7a:fd:74:c9:01:8c:a2:04:73:ac: 1b:55:82:8d:04:b1:9f:71:90:84:e3:36:45:67:02: 15:69:3a:71:bf:64:76:b6:91:74:f3:18:69:a6:b6: e4:06:b0:6a:a8:ad:67:27:af:61:78:12:d9:f7:4b: dd:61:6a:b9:91:cc:eb:a8:17:4d:a7:4a:64:88:95: 86:02:89:7d:73:0a:a4:72:1e:6f:c4:ef:8b:66:b8: 19:e4:dc:59:4b:3e:61:bc:30:41:9b:a9:19:c9:88: 28:df:42:ce:91:8a:84:d8:d9:34:bf:71:3f:e4:3d: d2:09:0e:96:25:d2:5d:f4:ad:a1:b4:83:dd:41:34: 34:e8:7e:4e:10:3e:69:36:fd:23:e5:7d:8a:8a:5e: dd:65:4d:80:cd:d1:45:f6:fb:75:5d:3c:88:a2:7f: 12:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:34:BC:C8:B2:AC:AB:2C:29:EB:C6:73:BD:71:91:87:2A:DA:72:8F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CB1A9916EEA311EFABE3837AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.190.52.0/23 IPv6: 2400:8d20::/32 Signature Algorithm: sha256WithRSAEncryption 0e:ea:99:88:6d:13:f5:da:94:22:71:f9:e1:ca:a3:a9:35:9c: a8:ef:35:26:1a:cc:b4:ca:f7:ed:39:87:9e:af:58:f4:8c:88: fe:02:57:d9:f3:f0:92:27:e4:f6:72:70:62:2e:9c:aa:44:34: 69:0f:ce:8e:63:38:54:20:c6:d6:9f:3f:64:91:f5:0b:33:44: bc:14:d6:48:eb:06:50:e7:5e:4b:8e:38:2c:f1:94:72:19:38: ec:cb:fc:b9:0d:e1:e4:52:f4:10:a1:9b:e9:e1:73:28:58:28: e5:3f:1d:58:34:7d:57:68:08:5b:5d:ee:30:66:35:9e:1e:69: fc:b8:72:55:9b:49:ca:51:e7:2e:d5:9a:3b:a3:a6:7b:d9:40: 70:f9:74:5c:52:6b:9a:4e:f4:77:40:1e:3b:dd:a5:74:ec:6e: 6f:71:bf:04:ed:7a:6e:ea:38:fa:f9:43:a2:89:f3:dd:1d:4b: 5c:d2:4c:44:24:1e:15:ca:50:14:b0:0b:66:bb:a7:a8:d5:4f: 52:8a:6f:16:24:80:5e:40:17:c8:5c:3a:92:ef:2b:c4:37:88: b9:d3:b0:17:e1:8a:42:27:a3:15:03:5b:a0:87:57:6a:7d:44: 9d:b5:5d:dc:2a:73:8a:d5:c4:a3:7f:90:06:c6:50:f7:f5:eb: c5:76:62:8e -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDANcCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjMyMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMyMDYtNDg1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYH2yga1LXzblSTjD95C0LDhfEnFwXRaRVp1NEYYZKxPnpn19KoMkkiLppO a1w8cBRut7ouAMcnPwY7DYmROSrzSkRFIrWuV2Ey5fZCrdBQdKwIfCD81pxWHa0X 1wF6/XTJAYyiBHOsG1WCjQSxn3GQhOM2RWcCFWk6cb9kdraRdPMYaaa25Aawaqit ZyevYXgS2fdL3WFquZHM66gXTadKZIiVhgKJfXMKpHIeb8Tvi2a4GeTcWUs+Ybww QZupGcmIKN9CzpGKhNjZNL9xP+Q90gkOliXSXfStobSD3UE0NOh+ThA+aTb9I+V9 iope3WVNgM3RRfb7dV08iKJ/EvkCAwEAAaOCAm8wggJrMB0GA1UdDgQWBBQLNLzI sqyrLCnrxnO9cZGHKtpyjzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NCMUE5OTE2 RUVBMzExRUZBQkUzODM3QUM0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWe+NDANBAIAAjAHAwUAJACNIDANBgkqhkiG9w0BAQsFAAOCAQEA DuqZiG0T9dqUInH54cqjqTWcqO81JhrMtMr37TmHnq9Y9IyI/gJX2fPwkifk9nJw Yi6cqkQ0aQ/OjmM4VCDG1p8/ZJH1CzNEvBTWSOsGUOdeS444LPGUchk47Mv8uQ3h 5FL0EKGb6eFzKFgo5T8dWDR9V2gIW13uMGY1nh5p/LhyVZtJylHnLtWaO6Ome9lA cPl0XFJrmk70d0AeO92ldOxub3G/BO16buo4+vlDoonz3R1LXNJMRCQeFcpQFLAL ZrunqNVPUopvFiSAXkAXyFw6ku8rxDeIudOwF+GKQiejFQNboIdXan1EnbVd3Cpz itXEo3+QBsZQ9/XrxXZijg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:12:17 2026 by rpki-client