$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CCA533CE87E311EC95236C3FC4F9AE02.roa File: CCA533CE87E311EC95236C3FC4F9AE02.roa (raw, json) Hash identifier: dzRaWSRyMjwlecFpxe12+UgSqYqZzaxC3GLizi+9fpw= Subject key identifier: B8:DA:65:D4:0B:57:BD:A9:50:70:FC:1A:A8:3B:30:D6:F9:FB:D3:D0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D6BD Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CCA533CE87E311EC95236C3FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:45:52 +0000 ROA not before: Thu 08 May 2025 16:22:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149241 IP address blocks: 103.178.156.0/23 maxlen: 24 2001:df0:3b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54973 (0xd6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:22:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c1a0-5e55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:80:e7:88:38:c5:66:a3:d8:bb:fc:de:34:07: 8a:00:25:37:71:50:b9:f6:5d:47:18:fa:d9:86:43: 31:14:a8:76:57:c5:3e:07:39:8f:73:3f:47:e9:e9: 0a:40:41:00:0b:11:d4:a6:57:a3:c5:b5:a8:2b:91: d1:84:c0:c5:cc:fb:c8:13:58:65:b9:bf:4e:88:d2: db:c0:df:48:b6:fb:75:e0:d6:39:6e:67:4d:df:c9: 73:e7:9d:a3:eb:15:cf:e6:77:77:50:94:39:b8:eb: 69:25:8b:23:61:43:8a:fd:a9:ec:b5:01:1b:b2:5a: 4f:55:03:77:de:d3:ca:b9:02:ca:1b:da:6a:5a:6d: 58:ae:b9:7e:86:3e:c7:98:2d:b5:cf:47:3a:5a:db: 56:b2:7a:dd:27:a7:fa:5e:2c:4f:49:92:ea:5d:66: a8:6a:81:a7:e2:1d:99:cc:5b:43:c2:4d:f7:9b:05: d4:dc:66:d7:00:9b:20:b3:03:da:cb:2e:05:cc:02: 4a:f9:98:f2:3e:f8:42:99:09:3d:c9:ff:7d:06:54: c5:ac:22:a0:e1:5e:66:b3:54:c2:f0:d0:44:d6:7a: f1:c6:7f:0e:26:7b:77:63:15:a6:10:c5:ae:1d:d6: fd:1a:e8:fc:7d:c4:bc:5d:4b:4b:a0:7a:dc:75:54: a5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DA:65:D4:0B:57:BD:A9:50:70:FC:1A:A8:3B:30:D6:F9:FB:D3:D0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CCA533CE87E311EC95236C3FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.178.156.0/23 IPv6: 2001:df0:3b40::/48 Signature Algorithm: sha256WithRSAEncryption 0d:a5:de:3c:c0:52:84:ac:e5:d3:06:56:cf:18:29:df:a8:d9: 3b:23:4e:74:9e:d3:94:50:2c:6c:03:aa:ab:f5:55:4c:44:eb: e1:0a:93:63:1f:fe:2d:be:5e:52:a6:a6:cd:d2:42:43:89:52: 07:2e:27:78:0f:50:97:c1:47:cb:c9:7e:91:79:03:0e:9e:dc: f0:04:40:54:e2:53:95:7d:5c:89:c0:df:be:fa:9f:59:28:b9: 6c:06:7e:a4:1b:c1:04:57:bf:8b:10:e5:29:ff:5b:44:a4:ec: 24:14:9c:e6:9b:3f:dd:ca:6a:04:34:16:d1:4c:6d:94:94:c4: d6:08:27:3b:f9:2a:8f:ab:24:05:97:ee:2b:71:1a:6f:0c:9f: d2:e3:99:24:89:16:f6:e0:cc:38:d6:6c:bb:63:10:c5:0e:63: df:ee:14:75:8f:6e:8e:f2:9b:89:bb:f7:64:b2:40:d3:f1:ac: c3:eb:68:83:88:8b:42:cf:23:0f:8c:07:59:74:58:a6:86:b9: 1f:e4:94:0c:65:71:8c:54:a3:70:a7:33:0f:c9:e8:fe:6e:b9: 47:52:e7:c2:40:ae:48:7b:74:8d:cd:b8:3e:d8:01:80:28:0d: 09:5f:ca:63:b4:c3:f9:42:8b:d6:35:47:7e:7b:7e:8d:36:27: e8:80:50:4c -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDANa9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjIxMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMxYTAtNWU1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJeA54g4xWaj2Lv83jQHigAlN3FQufZdRxj62YZDMRSodlfFPgc5j3M/R+np CkBBAAsR1KZXo8W1qCuR0YTAxcz7yBNYZbm/TojS28DfSLb7deDWOW5nTd/Jc+ed o+sVz+Z3d1CUObjraSWLI2FDiv2p7LUBG7JaT1UDd97TyrkCyhvaalptWK65foY+ x5gttc9HOlrbVrJ63Sen+l4sT0mS6l1mqGqBp+IdmcxbQ8JN95sF1Nxm1wCbILMD 2ssuBcwCSvmY8j74QpkJPcn/fQZUxawioOFeZrNUwvDQRNZ68cZ/DiZ7d2MVphDF rh3W/Rro/H3EvF1LS6B63HVUpVUCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBS42mXU C1e9qVBw/BqoOzDW+fvT0DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NDQTUzM0NF ODdFMzExRUM5NTIzNkMzRkM0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeynDAPBAIAAjAJAwcAIAEN8DtAMA0GCSqGSIb3DQEBCwUAA4IB AQANpd48wFKErOXTBlbPGCnfqNk7I050ntOUUCxsA6qr9VVMROvhCpNjH/4tvl5S pqbN0kJDiVIHLid4D1CXwUfLyX6ReQMOntzwBEBU4lOVfVyJwN+++p9ZKLlsBn6k G8EEV7+LEOUp/1tEpOwkFJzmmz/dymoENBbRTG2UlMTWCCc7+SqPqyQFl+4rcRpv DJ/S45kkiRb24Mw41my7YxDFDmPf7hR1j26O8puJu/dkskDT8azD62iDiItCzyMP jAdZdFimhrkf5JQMZXGMVKNwpzMPyej+brlHUufCQK5Ie3SNzbg+2AGAKA0JX8pj tMP5QovWNUd+e36NNifogFBM -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:18 2026 by rpki-client