$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa File: D8B11E00602B11EDA938E34DC4F9AE02.roa (raw, json) Hash identifier: eGnmw/wAoGDUrEbpzInRNTJFD5XyAVGpL6YzA2mnpvc= Subject key identifier: 2C:18:51:76:89:88:94:0B:7A:EC:DE:48:7C:1E:57:C4:A8:FF:B8:C1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D3C0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:27:50 +0000 ROA not before: Thu 08 May 2025 16:07:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136674 IP address blocks: 103.117.152.0/24 maxlen: 24 103.117.153.0/24 maxlen: 24 103.117.154.0/24 maxlen: 24 103.117.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54208 (0xd3c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:07:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bd66-2769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0e:23:76:dc:8a:48:5b:8d:65:f6:ce:32:99: 88:fe:cc:a2:ae:66:3a:03:d7:20:1a:e6:b8:fb:b7: f9:eb:dd:65:77:da:de:b1:f5:b1:78:13:44:39:13: 4b:10:b4:d5:8e:d3:68:5f:69:98:2d:43:da:7f:02: 93:51:7b:a9:bd:c3:37:37:f2:4b:7e:b1:e3:1e:ca: c5:04:78:3a:06:d6:6a:fb:f1:26:b3:1e:d2:d2:b8: 80:00:28:64:fb:e7:c7:4e:8e:d3:3f:03:25:ca:b1: a4:c5:e5:67:56:de:61:0f:35:c3:59:af:c6:58:37: ea:4d:22:a5:5a:77:c6:d6:f9:88:f2:24:12:95:be: 6c:4b:f5:c6:69:6a:07:8c:ac:b9:e0:6f:f0:b1:6e: 50:9c:00:fa:af:bf:0e:ef:10:79:35:01:ac:2b:3e: 7e:e2:ed:c1:0b:f4:e3:61:16:1a:e5:e9:69:95:ec: 68:32:18:f0:9c:c2:6f:14:7f:0d:91:db:c7:18:66: 61:06:0e:fd:29:64:80:d5:dd:3c:4f:62:72:5a:6f: 05:48:ca:88:5c:db:1f:e1:37:88:ca:c5:1f:d1:9d: 67:b9:67:8b:0e:71:c2:0f:60:db:d7:97:69:a2:4c: 91:c4:48:d5:19:7f:7f:55:b2:d4:01:a5:76:81:47: 1c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:18:51:76:89:88:94:0B:7A:EC:DE:48:7C:1E:57:C4:A8:FF:B8:C1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D8B11E00602B11EDA938E34DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.117.152.0/22 Signature Algorithm: sha256WithRSAEncryption 58:ae:25:40:e2:f3:a1:1b:4b:1c:91:53:93:2e:c0:db:cd:40: b2:48:42:e8:6e:fe:e1:0c:20:c2:bd:4f:c7:25:33:7f:20:36: 98:fe:d2:58:4e:86:47:1a:f2:50:ad:cb:dc:52:b0:d9:2a:f8: ba:4e:a1:b9:5a:91:a0:8a:30:45:69:2d:aa:ca:be:f5:65:88: 3c:b2:ee:95:f3:7c:71:1a:20:89:aa:da:63:29:e9:59:b4:6c: a4:4b:c1:59:6c:34:01:7a:6a:46:1c:b4:3f:5f:e1:e7:5e:57: 9c:84:a5:84:0d:3f:6f:eb:4a:02:59:9b:3d:29:95:9c:45:db: 3a:a4:07:db:f4:eb:a7:e9:bf:17:96:a2:f9:63:05:a5:d3:04: 08:e7:84:18:54:fd:1a:57:86:ba:f6:4a:2b:00:ee:c7:f5:77: 22:e3:09:97:3b:9c:20:eb:35:5f:b5:7b:1b:7e:d9:3f:7c:af: 63:db:df:66:71:37:da:65:7b:42:d3:df:d6:5c:81:ef:e4:0c: 81:ff:fd:b2:e7:18:4f:27:3c:3f:0e:d6:53:0e:95:5a:52:34: f2:70:f9:36:bb:9f:4d:7c:66:62:4f:ba:09:ec:64:a4:85:d0: 3c:fa:b1:1e:94:41:ef:34:e7:29:7a:1f:a7:af:62:d4:ba:08: 49:c8:06:6a -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANPAMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDc1MloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJkNjYtMjc2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAOI3bcikhbjWX2zjKZiP7Moq5mOgPXIBrmuPu3+evdZXfa3rH1sXgTRDkT SxC01Y7TaF9pmC1D2n8Ck1F7qb3DNzfyS36x4x7KxQR4OgbWavvxJrMe0tK4gAAo ZPvnx06O0z8DJcqxpMXlZ1beYQ81w1mvxlg36k0ipVp3xtb5iPIkEpW+bEv1xmlq B4ysueBv8LFuUJwA+q+/Du8QeTUBrCs+fuLtwQv042EWGuXpaZXsaDIY8JzCbxR/ DZHbxxhmYQYO/SlkgNXdPE9iclpvBUjKiFzbH+E3iMrFH9GdZ7lniw5xwg9g29eX aaJMkcRI1Rl/f1Wy1AGldoFHHHECAwEAAaOCAmAwggJcMB0GA1UdDgQWBBQsGFF2 iYiUC3rs3kh8HlfEqP+4wTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q4QjExRTAw NjAyQjExRURBOTM4RTM0REM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmd1mDANBgkqhkiG9w0BAQsFAAOCAQEAWK4lQOLzoRtLHJFTky7A 281AskhC6G7+4Qwgwr1PxyUzfyA2mP7SWE6GRxryUK3L3FKw2Sr4uk6huVqRoIow RWktqsq+9WWIPLLulfN8cRogiaraYynpWbRspEvBWWw0AXpqRhy0P1/h515XnISl hA0/b+tKAlmbPSmVnEXbOqQH2/Trp+m/F5ai+WMFpdMECOeEGFT9GleGuvZKKwDu x/V3IuMJlzucIOs1X7V7G37ZP3yvY9vfZnE32mV7QtPf1lyB7+QMgf/9sucYTyc8 Pw7WUw6VWlI08nD5NrufTXxmYk+6CexkpIXQPPqxHpRB7zTnKXofp69i1LoIScgG ag== -----END CERTIFICATE-----Generated at Mon Mar 2 13:36:05 2026 by rpki-client