$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EC4C7B10E0B811F0A72825A54C6F56BC.roa File: EC4C7B10E0B811F0A72825A54C6F56BC.roa (raw, json) Hash identifier: fvaoG17U8ReqnYgJDZz8OXm5VShf6wLu4+O9UCet+b8= Subject key identifier: EE:62:56:10:18:D9:B7:5C:D3:A9:46:8C:97:FE:51:FD:7C:DA:6C:E1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DAB1 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EC4C7B10E0B811F0A72825A54C6F56BC.roa Signing time: Sun 01 Mar 2026 23:05:06 +0000 ROA not before: Wed 24 Dec 2025 11:14:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133681 IP address blocks: 43.229.104.0/22 maxlen: 24 103.48.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55985 (0xdab1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 24 11:14:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c621-d687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:75:44:2b:5c:4e:07:84:f9:46:ab:b6:53:85: ec:9f:14:f7:1e:b4:d8:e4:1c:55:5b:5c:bb:3e:12: e8:6f:1f:93:86:ab:43:e9:ff:3f:44:3b:f5:31:4d: 4d:bd:a7:29:a7:42:05:7c:10:5e:c8:20:ab:32:d4: 1b:0b:33:3b:d4:35:7b:3e:eb:c7:08:2d:5b:4c:07: dd:b7:e4:a4:27:46:b0:0b:56:65:6c:ce:06:62:dd: 52:2c:02:2e:29:21:7b:67:73:8d:05:de:0c:d7:c8: fa:94:67:dd:7d:cc:5a:4e:59:1b:37:b3:41:69:30: 43:7e:29:5d:2d:a8:e9:2b:26:51:9d:5a:8c:ae:39: 04:1a:f2:9f:57:dd:c3:9d:6e:84:57:45:83:37:3a: be:69:bc:d2:b8:01:f0:c3:73:2a:d5:fe:73:4d:d9: 4b:9b:f9:da:5e:2c:4a:9f:4e:24:1f:51:a4:4f:a1: 8c:64:2d:6b:6d:f7:52:8b:6e:f9:ca:7a:d7:75:d8: 6b:0e:65:1f:26:df:c2:48:15:ad:a0:2b:49:18:5c: 70:0b:b4:d9:58:f2:f3:84:51:7b:45:fc:49:a3:6b: a2:7e:6b:c9:f6:2f:52:a1:9d:ec:3d:45:5b:9c:f1: b5:c7:bc:de:7e:25:b4:9f:d5:0e:e0:32:2e:c5:a2: 97:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:62:56:10:18:D9:B7:5C:D3:A9:46:8C:97:FE:51:FD:7C:DA:6C:E1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EC4C7B10E0B811F0A72825A54C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 43.229.104.0/22 103.48.96.0/22 Signature Algorithm: sha256WithRSAEncryption b2:48:0b:a5:2e:98:82:9b:be:13:21:3c:22:84:74:b2:b4:eb: ac:6c:95:a4:c4:2f:7f:28:73:88:14:c1:0c:33:c0:1f:92:3b: ec:de:62:5e:af:38:0f:51:b2:8c:90:ea:0b:40:31:cd:0d:bd: 4a:a9:d4:c3:d0:d0:62:46:b2:2f:37:87:8f:ba:63:45:66:98: 9b:54:c0:b1:d9:fc:29:2f:b7:5a:ee:10:f2:f1:68:ae:32:4e: ff:93:cb:fb:b1:86:41:f3:a7:67:94:ed:a4:e9:e7:09:04:3a: 8d:f0:d7:8e:b7:76:9a:76:ec:34:cc:a0:e7:69:50:78:34:b5: f2:9e:5d:a5:e3:2f:d3:e4:34:3e:6c:f1:90:f2:d1:aa:62:0e: 07:8b:f5:86:40:c6:87:74:45:01:b1:e2:3f:10:e7:2c:80:13: 1a:1f:7c:79:79:e8:83:85:2a:85:44:c4:79:4c:cd:8b:c8:5e: bb:46:6d:20:58:aa:b7:47:d4:e3:1c:d5:98:2c:8f:a6:c3:0a: 42:bd:2c:cd:1e:ec:25:48:30:6e:bb:6b:cf:02:8a:bc:91:d0: 73:66:0d:17:82:17:71:48:18:96:85:87:96:35:79:1f:ab:58: 97:d7:15:0d:75:6e:20:60:12:aa:c1:e9:6c:96:a7:7d:d3:9d: ea:39:4d:7b -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIDANqxMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTIyNDExMTQwN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM2MjEtZDY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJt1RCtcTgeE+UartlOF7J8U9x602OQcVVtcuz4S6G8fk4arQ+n/P0Q79TFN Tb2nKadCBXwQXsggqzLUGwszO9Q1ez7rxwgtW0wH3bfkpCdGsAtWZWzOBmLdUiwC Likhe2dzjQXeDNfI+pRn3X3MWk5ZGzezQWkwQ34pXS2o6SsmUZ1ajK45BBryn1fd w51uhFdFgzc6vmm80rgB8MNzKtX+c03ZS5v52l4sSp9OJB9RpE+hjGQta233Uotu +cp613XYaw5lHybfwkgVraArSRhccAu02Vjy84RRe0X8SaNron5ryfYvUqGd7D1F W5zxtce83n4ltJ/VDuAyLsWil7cCAwEAAaOCAmYwggJiMB0GA1UdDgQWBBTuYlYQ GNm3XNOpRoyX/lH9fNps4TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VDNEM3QjEw RTBCODExRjBBNzI4MjVBNTRDNkY1NkJDLnJvYTAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAivlaAMEAmcwYDANBgkqhkiG9w0BAQsFAAOCAQEAskgLpS6Ygpu+ EyE8IoR0srTrrGyVpMQvfyhziBTBDDPAH5I77N5iXq84D1GyjJDqC0AxzQ29SqnU w9DQYkayLzeHj7pjRWaYm1TAsdn8KS+3Wu4Q8vForjJO/5PL+7GGQfOnZ5TtpOnn CQQ6jfDXjrd2mnbsNMyg52lQeDS18p5dpeMv0+Q0PmzxkPLRqmIOB4v1hkDGh3RF AbHiPxDnLIATGh98eXnog4UqhUTEeUzNi8heu0ZtIFiqt0fU4xzVmCyPpsMKQr0s zR7sJUgwbrtrzwKKvJHQc2YNF4IXcUgYloWHljV5H6tYl9cVDXVuIGASqsHpbJan fdOd6jlNew== -----END CERTIFICATE-----Generated at Mon Mar 2 16:39:53 2026 by rpki-client