$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4EFCD26AC3D11ED80AECB5EC4F9AE02.roa File: D4EFCD26AC3D11ED80AECB5EC4F9AE02.roa (raw, json) Hash identifier: TRlfrd4qf0f4hLx19imj0DrC3OEcqo6ZQeGeYk7sNyM= Subject key identifier: 55:5E:3A:91:6A:DC:BD:A0:44:DD:0C:42:4D:32:AD:5D:0C:AB:CA:CF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DAF8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4EFCD26AC3D11ED80AECB5EC4F9AE02.roa Signing time: Sun 01 Mar 2026 23:06:17 +0000 ROA not before: Sat 31 Jan 2026 10:19:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136308 IP address blocks: 43.240.232.0/24 maxlen: 24 43.240.233.0/24 maxlen: 24 103.62.150.0/23 maxlen: 24 103.89.232.0/22 maxlen: 24 103.141.112.0/23 maxlen: 24 103.167.210.0/23 maxlen: 24 103.188.18.0/23 maxlen: 24 103.189.56.0/23 maxlen: 24 2001:df5:f0c0::/48 maxlen: 48 2401:ea20::/32 maxlen: 32 2403:7340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 05:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56056 (0xdaf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 31 10:19:21 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c668-f970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:61:c4:9f:50:b8:5e:d4:da:f5:51:47:61: 29:a0:25:dc:9c:56:b8:db:29:ec:83:b1:9d:eb:54: 84:c4:ec:10:c2:2a:03:b4:fd:99:60:9f:e8:69:11: 22:3f:f4:ee:cd:6b:50:e2:5a:a8:9f:eb:1a:7a:2a: 51:ec:61:c1:a1:1e:86:7e:43:47:da:f1:7f:56:03: 07:55:67:58:78:74:80:c6:e1:38:e4:98:eb:f6:0c: d9:a8:d0:63:91:bf:1b:67:09:b6:b1:e7:64:5d:c2: 4d:9e:6f:b3:12:86:33:b7:24:a9:42:11:31:54:35: 4b:d7:21:41:8d:c3:08:8e:b0:3e:07:e8:e7:b8:b1: 3a:fa:b9:a4:01:c2:c6:89:6e:b9:f6:64:3c:61:71: 54:3b:43:02:d9:c6:5d:47:6d:4f:b6:55:62:83:28: c0:93:78:c5:c7:07:35:10:61:7d:32:c8:81:bb:23: 3b:ac:cc:d5:16:bb:c4:ea:7b:c0:9e:39:a9:4c:0f: 9a:6a:9b:1c:30:ad:d1:92:e4:44:d5:08:96:c0:10: e5:2b:90:28:93:9d:8b:cd:57:62:72:fa:c3:59:76: 7b:4f:48:28:7d:f2:7a:27:29:bb:bc:24:b3:30:da: ea:21:0f:1a:1c:e4:c3:b4:17:ca:55:c2:9a:29:66: 7b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5E:3A:91:6A:DC:BD:A0:44:DD:0C:42:4D:32:AD:5D:0C:AB:CA:CF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D4EFCD26AC3D11ED80AECB5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.240.232.0/23 103.62.150.0/23 103.89.232.0/22 103.141.112.0/23 103.167.210.0/23 103.188.18.0/23 103.189.56.0/23 IPv6: 2001:df5:f0c0::/48 2401:ea20::/32 2403:7340::/32 Signature Algorithm: sha256WithRSAEncryption 0f:42:fd:1e:a2:45:c7:80:b8:b5:35:f8:ad:ee:40:34:7e:ff: b5:80:ab:34:af:38:47:7f:7d:5e:62:23:d5:22:d3:c1:8e:b5: 8c:71:88:0b:ff:e9:7d:f2:4c:97:db:cf:91:aa:4f:88:c4:d5: c2:36:7e:a8:47:ba:10:4f:b9:67:f3:d6:66:06:62:c3:5b:9e: e7:68:ba:99:8d:87:dd:13:80:23:55:9f:61:07:3d:ae:1a:cc: 5b:4c:18:2e:26:30:7d:72:25:d5:ee:17:30:e6:df:9a:f2:7a: 11:f6:93:12:76:0a:75:9f:e6:e1:52:6b:fe:41:5b:c8:df:72: 1b:48:7a:3d:d5:be:5e:00:9d:79:50:62:b3:15:3b:96:7e:8d: 81:47:4c:4c:45:18:d5:fe:4c:23:c0:95:2d:57:29:e8:38:95: 12:0c:36:3d:97:d2:18:fe:f8:8c:c7:9b:88:97:14:cf:af:35: 1d:c6:07:fa:b1:b8:6b:89:47:09:be:38:38:ab:d9:e1:ff:a6: 0f:17:5b:04:5b:bc:12:41:f4:f3:00:99:10:c5:02:62:64:5e: d5:cf:71:0d:37:c0:7e:df:e8:21:6d:41:51:3d:86:b0:a6:99: 6f:06:e1:a5:a3:4c:05:2b:77:b5:9d:4a:f7:4a:eb:b2:4b:7f: 38:ca:d4:b0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIDANr4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEzMTEwMTkyMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM2NjgtZjk3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPEYcSfULhe1Nr1UUdhKaAl3JxWuNsp7IOxnetUhMTsEMIqA7T9mWCf6GkR Ij/07s1rUOJaqJ/rGnoqUexhwaEehn5DR9rxf1YDB1VnWHh0gMbhOOSY6/YM2ajQ Y5G/G2cJtrHnZF3CTZ5vsxKGM7ckqUIRMVQ1S9chQY3DCI6wPgfo57ixOvq5pAHC xoluufZkPGFxVDtDAtnGXUdtT7ZVYoMowJN4xccHNRBhfTLIgbsjO6zM1Ra7xOp7 wJ45qUwPmmqbHDCt0ZLkRNUIlsAQ5SuQKJOdi81XYnL6w1l2e09IKH3yeicpu7wk szDa6iEPGhzkw7QXylXCmilme30CAwEAAaOCAqMwggKfMB0GA1UdDgQWBBRVXjqR aty9oETdDEJNMq1dDKvKzzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q0RUZDRDI2 QUMzRDExRUQ4MEFFQ0I1RUM0RjlBRTAyLnJvYTBiBggrBgEFBQcBBwEB/wRTMFEw MAQCAAEwKgMEASvw6AMEAWc+lgMEAmdZ6AMEAWeNcAMEAWen0gMEAWe8EgMEAWe9 ODAdBAIAAjAXAwcAIAEN9fDAAwUAJAHqIAMFACQDc0AwDQYJKoZIhvcNAQELBQAD ggEBAA9C/R6iRceAuLU1+K3uQDR+/7WAqzSvOEd/fV5iI9Ui08GOtYxxiAv/6X3y TJfbz5GqT4jE1cI2fqhHuhBPuWfz1mYGYsNbnudoupmNh90TgCNVn2EHPa4azFtM GC4mMH1yJdXuFzDm35ryehH2kxJ2CnWf5uFSa/5BW8jfchtIej3Vvl4AnXlQYrMV O5Z+jYFHTExFGNX+TCPAlS1XKeg4lRIMNj2X0hj++IzHm4iXFM+vNR3GB/qxuGuJ Rwm+ODir2eH/pg8XWwRbvBJB9PMAmRDFAmJkXtXPcQ03wH7f6CFtQVE9hrCmmW8G 4aWjTAUrd7WdSvdK67JLfzjK1LA= -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:04 2026 by rpki-client