$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8982D54056511EC886D271DC4F9AE02.roa File: D8982D54056511EC886D271DC4F9AE02.roa (raw, json) Hash identifier: Qay1omgnw6ytQ2PYJSsYhlfCPeqarabMmupmqry6SJg= Subject key identifier: 08:B2:CD:4C:A0:B3:2A:F0:2A:AE:33:4D:FE:B3:D0:D7:97:6F:36:6C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E7B7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8982D54056511EC886D271DC4F9AE02.roa Signing time: Sun 31 May 2026 17:21:09 +0000 ROA not before: Sun 31 May 2026 17:21:09 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 142501 IP address blocks: 43.246.105.0/24 maxlen: 24 103.65.32.0/22 maxlen: 24 103.66.137.0/24 maxlen: 24 103.66.145.0/24 maxlen: 24 103.218.116.0/22 maxlen: 24 103.218.232.0/22 maxlen: 24 103.220.228.0/22 maxlen: 24 103.220.236.0/22 maxlen: 24 121.46.96.0/20 maxlen: 24 160.202.192.0/20 maxlen: 24 2407:ca40:137::/48 maxlen: 48 2407:e040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59319 (0xe7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 17:21:09 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6e05-fc38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9c:91:cb:3b:b7:ec:8e:e1:3b:36:1f:f6:23: ad:9c:8a:28:65:57:bb:d3:8a:02:e7:ff:22:b7:86: 63:1c:73:81:ba:12:79:51:3f:b2:2b:35:cf:47:22: a7:30:01:1a:3f:58:a9:67:35:d9:de:e7:0c:ad:d8: 4d:f3:f7:9c:4a:8d:d0:f1:3d:ce:64:9f:d8:22:a8: ef:d6:6c:cb:bb:f1:27:a8:be:f7:cb:56:20:94:41: e6:dc:3d:6a:5f:ae:05:45:5f:b7:f8:34:e5:11:fc: f9:03:6c:c7:cf:26:33:35:aa:49:b8:f9:2a:15:bd: e1:c1:c4:24:8b:00:ac:08:7b:a0:67:77:d6:53:8d: cc:c5:8a:ae:79:21:8c:9c:a6:84:54:c4:e9:ba:2c: 5b:38:04:d7:da:be:4b:75:86:b1:20:3d:00:0d:32: c2:23:63:d5:77:67:de:77:ec:e4:3c:00:3f:4d:40: 8b:80:25:d2:e0:19:df:5e:8e:91:62:4d:5a:29:99: ac:ea:eb:40:79:20:44:0b:50:07:61:89:42:07:70: 5d:22:d5:62:a8:bf:a0:24:b6:3e:fa:08:12:df:be: b5:16:9b:e1:8e:43:fc:55:b6:db:da:df:2c:68:6e: be:99:e0:4a:69:27:73:f6:ff:a9:2a:0d:fc:1f:4f: e5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B2:CD:4C:A0:B3:2A:F0:2A:AE:33:4D:FE:B3:D0:D7:97:6F:36:6C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8982D54056511EC886D271DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.105.0/24 103.65.32.0/22 103.66.137.0/24 103.66.145.0/24 103.218.116.0/22 103.218.232.0/22 103.220.228.0/22 103.220.236.0/22 121.46.96.0/20 160.202.192.0/20 IPv6: 2407:ca40:137::/48 2407:e040::/32 Signature Algorithm: sha256WithRSAEncryption 97:cd:23:10:c8:23:e0:a5:6a:44:4e:f8:ec:51:f9:48:ab:a9: ba:e6:aa:ad:46:e5:cf:d0:7b:cf:c0:74:0f:b5:ed:53:ad:6a: 50:e3:ed:d8:7a:3b:9c:da:5c:86:b8:e2:92:94:f0:24:8b:15: 23:10:e0:42:df:33:7d:15:c8:13:a8:32:ab:a7:79:76:0f:26: 47:f8:91:ab:1d:56:6a:50:e8:b7:6a:69:75:64:25:9b:5f:ea: 90:1b:cf:25:42:e5:ef:70:a5:95:7b:30:9f:d1:7b:28:56:c0: d6:da:91:08:8d:48:65:59:5e:8e:ae:20:2e:bf:05:68:e8:3d: d1:6e:9a:93:b5:18:1f:b8:a9:56:b7:c0:a9:ab:c2:6f:d9:5e: 20:5c:3b:71:8c:fe:3f:4a:f7:13:fd:9e:5d:e7:8a:31:ed:48: 2c:92:1b:fb:f0:4c:49:5e:4f:bd:ad:ae:b5:f7:ee:99:ba:28: a1:99:8d:83:93:13:48:3a:e6:55:ea:f8:59:43:6f:81:88:de: c2:58:ce:9c:60:6a:18:2d:71:26:19:0f:6a:8d:de:8a:f1:75: 65:09:a1:88:c0:da:0b:be:54:2e:e8:37:bf:e6:ed:6b:a3:bd: e2:27:42:2b:4b:65:45:f2:bb:77:25:30:de:20:36:ba:16:b8: bd:14:54:fe -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIDAOe3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE3MjEwOVoXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzZlMDUtZmMzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKuckcs7t+yO4Ts2H/YjrZyKKGVXu9OKAuf/IreGYxxzgboSeVE/sis1z0ci pzABGj9YqWc12d7nDK3YTfP3nEqN0PE9zmSf2CKo79Zsy7vxJ6i+98tWIJRB5tw9 al+uBUVft/g05RH8+QNsx88mMzWqSbj5KhW94cHEJIsArAh7oGd31lONzMWKrnkh jJymhFTE6bosWzgE19q+S3WGsSA9AA0ywiNj1Xdn3nfs5DwAP01Ai4Al0uAZ316O kWJNWimZrOrrQHkgRAtQB2GJQgdwXSLVYqi/oCS2PvoIEt++tRab4Y5D/FW229rf LGhuvpngSmknc/b/qSoN/B9P5YUCAwEAAaOCAq4wggKqMB0GA1UdDgQWBBQIss1M oLMq8CquM03+s9DXl282bDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q4OTgyRDU0 MDU2NTExRUM4ODZEMjcxREM0RjlBRTAyLnJvYTBtBggrBgEFBQcBBwEB/wReMFww QgQCAAEwPAMEACv2aQMEAmdBIAMEAGdCiQMEAGdCkQMEAmfadAMEAmfa6AMEAmfc 5AMEAmfc7AMEBHkuYAMEBKDKwDAWBAIAAjAQAwcAJAfKQAE3AwUAJAfgQDANBgkq hkiG9w0BAQsFAAOCAQEAl80jEMgj4KVqRE747FH5SKupuuaqrUblz9B7z8B0D7Xt U61qUOPt2Ho7nNpchrjikpTwJIsVIxDgQt8zfRXIE6gyq6d5dg8mR/iRqx1WalDo t2ppdWQlm1/qkBvPJULl73CllXswn9F7KFbA1tqRCI1IZVlejq4gLr8FaOg90W6a k7UYH7ipVrfAqavCb9leIFw7cYz+P0r3E/2eXeeKMe1ILJIb+/BMSV5Pva2utffu mboooZmNg5MTSDrmVer4WUNvgYjewljOnGBqGC1xJhkPao3eivF1ZQmhiMDaC75U Lug3v+bta6O94idCK0tlRfK7dyUw3iA2uha4vRRU/g== -----END CERTIFICATE-----Generated at Sat Jun 13 16:35:20 2026 by rpki-client