$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC5E3842BEC111EB95A2611DC4F9AE02.roa File: DC5E3842BEC111EB95A2611DC4F9AE02.roa (raw, json) Hash identifier: tnA1A38sym0qm9mWgnK25dpgA6KNRdzZJ5053iTQBcI= Subject key identifier: A4:41:23:38:62:DD:D7:49:A7:27:09:E0:F6:8C:54:27:62:80:04:27 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D57A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC5E3842BEC111EB95A2611DC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:38:13 +0000 ROA not before: Thu 08 May 2025 16:16:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141497 IP address blocks: 103.135.190.0/23 maxlen: 24 103.162.132.0/23 maxlen: 24 2001:df1:6840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54650 (0xd57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:16:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bfd5-c368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6a:e5:a8:94:d6:88:6b:4f:1f:43:5b:35:a8: cd:40:85:8e:a9:0e:83:e9:7f:31:31:c2:7c:a0:c0: 9a:b8:5f:ee:82:67:c0:15:5f:18:98:3e:8f:7d:2d: 9e:8f:e9:0a:48:87:03:22:1f:0e:95:79:22:c8:e0: e5:bb:83:96:2d:b9:d0:20:6c:9f:80:be:07:7b:7e: 98:af:f6:f3:78:f1:29:c9:a4:be:05:37:99:10:f4: 5e:81:66:5f:6a:5f:d0:cb:3e:dc:a6:53:d7:e1:a6: 79:3c:45:29:83:65:c9:6e:77:0e:db:1a:c2:e6:fd: 33:b7:9b:1e:73:f4:bc:18:78:cd:e4:8a:d6:0b:d6: ec:7f:d2:0f:49:ba:55:22:90:69:aa:14:c0:85:b5: 13:2d:1f:a6:22:be:16:30:66:10:c2:25:37:7c:83: 73:c8:8d:6a:37:2c:ab:bf:7d:dd:f7:a9:fe:e5:8b: fd:8b:84:c7:c3:52:5a:01:dc:6f:86:c0:22:4a:53: 7d:95:96:38:d8:42:a1:4b:34:3a:d1:e0:00:79:a7: eb:9e:02:10:3f:67:b3:84:ab:15:8d:ec:b5:0e:4f: 02:e0:b0:84:f8:cf:2e:a7:36:d1:d4:7e:fb:d3:b8: c6:89:c6:80:0a:47:02:c1:8b:79:d7:8e:e6:8c:82: d0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:41:23:38:62:DD:D7:49:A7:27:09:E0:F6:8C:54:27:62:80:04:27 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC5E3842BEC111EB95A2611DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.190.0/23 103.162.132.0/23 IPv6: 2001:df1:6840::/48 Signature Algorithm: sha256WithRSAEncryption 9c:87:a8:e5:98:a3:97:dc:f6:f8:d5:21:ed:ff:34:24:31:75: c1:ed:e3:ef:79:e2:ab:18:86:c5:de:3a:f7:ee:14:6b:1a:70: 07:ca:c0:92:ce:2c:be:95:5b:6e:dc:59:04:a7:7b:8f:09:a8: c3:33:98:cc:b6:a6:59:38:05:ed:ed:9f:82:06:6f:5a:b6:61: e4:93:2c:69:f0:38:16:59:47:67:fb:19:0a:09:ab:00:5d:85: 24:02:d2:c4:ef:95:64:fc:29:2b:7d:82:67:67:33:2b:a1:eb: 6e:1b:d3:7b:c8:b5:3d:fc:eb:3a:c3:32:4d:a6:73:64:95:4e: a1:da:84:88:a0:4d:9c:f6:76:d6:ce:89:80:6a:34:0b:53:fa: cc:c2:af:0c:3a:d7:1f:dd:37:e0:5c:24:7e:ee:9a:82:cc:8d: 80:84:85:9a:a4:c9:5f:31:fc:cd:3a:6d:3a:f6:cc:fe:8b:1d: 1a:5f:14:0c:93:78:60:d5:7a:1b:eb:cc:21:38:ea:b4:d5:2a: 4f:23:fc:38:9e:32:0b:53:30:6f:10:84:dc:dd:65:70:d8:8b: 74:c7:1f:f1:35:51:61:76:6b:c1:17:55:60:e0:30:f0:51:9c: 0e:4c:3a:4a:04:74:46:eb:68:8f:28:43:93:89:b1:f1:78:45: b6:49:c1:c1 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDANV6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTYyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJmZDUtYzM2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJq5aiU1ohrTx9DWzWozUCFjqkOg+l/MTHCfKDAmrhf7oJnwBVfGJg+j30t no/pCkiHAyIfDpV5Isjg5buDli250CBsn4C+B3t+mK/283jxKcmkvgU3mRD0XoFm X2pf0Ms+3KZT1+GmeTxFKYNlyW53Dtsawub9M7ebHnP0vBh4zeSK1gvW7H/SD0m6 VSKQaaoUwIW1Ey0fpiK+FjBmEMIlN3yDc8iNajcsq7993fep/uWL/YuEx8NSWgHc b4bAIkpTfZWWONhCoUs0OtHgAHmn654CED9ns4SrFY3stQ5PAuCwhPjPLqc20dR+ +9O4xonGgApHAsGLedeO5oyC0PUCAwEAAaOCAncwggJzMB0GA1UdDgQWBBSkQSM4 Yt3XSacnCeD2jFQnYoAEJzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0RDNUUzODQy QkVDMTExRUI5NUEyNjExREM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAWeHvgMEAWeihDAPBAIAAjAJAwcAIAEN8WhAMA0GCSqGSIb3DQEB CwUAA4IBAQCch6jlmKOX3Pb41SHt/zQkMXXB7ePveeKrGIbF3jr37hRrGnAHysCS ziy+lVtu3FkEp3uPCajDM5jMtqZZOAXt7Z+CBm9atmHkkyxp8DgWWUdn+xkKCasA XYUkAtLE75Vk/CkrfYJnZzMroetuG9N7yLU9/Os6wzJNpnNklU6h2oSIoE2c9nbW zomAajQLU/rMwq8MOtcf3TfgXCR+7pqCzI2AhIWapMlfMfzNOm069sz+ix0aXxQM k3hg1Xob68whOOq01SpPI/w4njILUzBvEITc3WVw2It0xx/xNVFhdmvBF1Vg4DDw UZwOTDpKBHRG62iPKEOTibHxeEW2ScHB -----END CERTIFICATE-----Generated at Mon Mar 2 11:06:47 2026 by rpki-client