$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ED4375E23C4D11F0BF747077C4F9AE02.roa File: ED4375E23C4D11F0BF747077C4F9AE02.roa (raw, json) Hash identifier: jpJSAVcVhhVbPFMgSsMwzp99pgLBw77hNrnHTHangUM= Subject key identifier: 3D:C2:74:49:C3:56:F9:71:5B:06:E3:74:B5:2D:43:D0:E0:AA:9C:B8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D908 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ED4375E23C4D11F0BF747077C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:57:26 +0000 ROA not before: Thu 29 May 2025 05:29:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45235 IP address blocks: 43.227.244.0/22 maxlen: 24 43.231.52.0/22 maxlen: 24 45.250.212.0/22 maxlen: 24 103.8.40.0/22 maxlen: 24 103.48.64.0/22 maxlen: 24 103.50.144.0/22 maxlen: 24 103.98.38.0/23 maxlen: 24 103.199.124.0/22 maxlen: 24 103.219.132.0/22 maxlen: 24 103.230.20.0/22 maxlen: 24 119.42.152.0/21 maxlen: 24 2400:8460::/32 maxlen: 32 2402:d500::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55560 (0xd908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 29 05:29:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c456-b00b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9d:50:dd:b7:99:e1:65:f4:4e:e2:f9:1e:d1: 97:21:05:4c:d3:f6:35:e2:d2:56:3c:c4:39:c1:08: 7c:27:a5:1f:04:07:e3:ab:cb:5f:be:92:44:d3:38: 34:1b:55:11:8c:35:f6:94:9b:2d:54:22:10:19:2a: 11:9f:4e:cc:1a:38:35:80:1d:e9:cf:99:cd:2f:75: d7:04:3e:55:69:d5:79:77:8e:9f:6b:5e:fc:3f:ca: 88:17:c7:13:a7:08:e0:8c:b7:76:21:3d:b4:4e:5c: eb:8a:12:49:55:85:8c:7d:d2:3e:d6:ea:51:a4:ac: 95:3f:26:d7:93:a9:ba:e8:6a:57:8f:f4:4e:72:4a: c1:ce:9e:cc:58:e4:e8:30:47:af:39:4f:be:bf:29: 7b:d1:df:a8:a1:03:35:61:5e:b1:79:cb:7f:22:0a: 8d:97:1e:af:6e:23:03:2c:62:1a:4b:c8:2a:95:f1: d9:44:ab:94:7c:b5:b9:68:ef:ae:4f:be:da:d0:b3: 3a:d7:ee:ce:7b:9b:3e:86:16:c6:6d:32:59:45:fe: 4f:b9:3e:74:1e:99:e5:21:1b:f4:b7:c7:79:0a:e1: 74:12:49:4e:a0:ea:7a:da:75:33:c2:0e:4b:e5:b6: 77:f4:24:c2:72:66:66:fa:71:fa:41:e5:f9:6d:ce: e8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C2:74:49:C3:56:F9:71:5B:06:E3:74:B5:2D:43:D0:E0:AA:9C:B8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ED4375E23C4D11F0BF747077C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.227.244.0/22 43.231.52.0/22 45.250.212.0/22 103.8.40.0/22 103.48.64.0/22 103.50.144.0/22 103.98.38.0/23 103.199.124.0/22 103.219.132.0/22 103.230.20.0/22 119.42.152.0/21 IPv6: 2400:8460::/32 2402:d500::/32 Signature Algorithm: sha256WithRSAEncryption 00:10:4b:fc:cd:03:a1:f8:78:c0:5c:e5:e9:e4:cc:fd:9b:58: e6:04:9c:71:d2:43:31:e0:05:ba:70:1c:b7:c7:41:30:44:e9: 1f:01:5b:a0:0c:88:46:4e:1d:36:38:a8:d2:91:e1:0f:85:3e: 7a:b2:24:c0:41:ed:59:42:5c:80:d3:93:8b:4d:6c:08:ec:fc: f4:dc:1d:b9:b1:c3:de:ee:28:e6:dd:76:66:21:10:99:41:2b: 83:73:e7:63:51:7f:2f:05:ee:5a:18:9f:65:58:cf:ab:a9:81: 41:fa:3c:8e:57:0a:6d:35:b8:8e:b9:61:1e:78:9f:d8:8d:b5: 43:f2:c8:52:3b:bc:06:bc:ff:c3:67:28:a3:df:fd:d8:a6:c5: 7a:a1:a5:96:5b:05:bd:e0:d8:e1:50:89:6e:9f:07:f1:cc:93: 84:1b:e4:c2:b0:21:da:8b:d6:f6:85:78:1e:49:00:22:f4:4e: 4d:78:42:39:89:27:88:6e:af:96:a7:a1:4d:e3:c0:0d:cb:53: d8:3e:79:3f:38:57:f0:73:b1:d4:1b:fc:51:63:43:c7:69:ef: f8:7c:a8:de:62:86:05:2d:2f:0c:ea:07:a4:41:43:19:58:f8: 07:bf:47:f9:d2:2e:df:c3:e9:d5:71:78:ae:fc:01:ef:ae:2b: 73:16:80:1b -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDANkIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUyOTA1Mjk0NFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM0NTYtYjAwYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKadUN23meFl9E7i+R7RlyEFTNP2NeLSVjzEOcEIfCelHwQH46vLX76SRNM4 NBtVEYw19pSbLVQiEBkqEZ9OzBo4NYAd6c+ZzS911wQ+VWnVeXeOn2te/D/KiBfH E6cI4Iy3diE9tE5c64oSSVWFjH3SPtbqUaSslT8m15OpuuhqV4/0TnJKwc6ezFjk 6DBHrzlPvr8pe9HfqKEDNWFesXnLfyIKjZcer24jAyxiGkvIKpXx2USrlHy1uWjv rk++2tCzOtfuznubPoYWxm0yWUX+T7k+dB6Z5SEb9LfHeQrhdBJJTqDqetp1M8IO S+W2d/QkwnJmZvpx+kHl+W3O6K8CAwEAAaOCArIwggKuMB0GA1UdDgQWBBQ9wnRJ w1b5cVsG43S1LUPQ4KqcuDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VENDM3NUUy M0M0RDExRjBCRjc0NzA3N0M0RjlBRTAyLnJvYTBxBggrBgEFBQcBBwEB/wRiMGAw SAQCAAEwQgMEAivj9AMEAivnNAMEAi361AMEAmcIKAMEAmcwQAMEAmcykAMEAWdi JgMEAmfHfAMEAmfbhAMEAmfmFAMEA3cqmDAUBAIAAjAOAwUAJACEYAMFACQC1QAw DQYJKoZIhvcNAQELBQADggEBAAAQS/zNA6H4eMBc5enkzP2bWOYEnHHSQzHgBbpw HLfHQTBE6R8BW6AMiEZOHTY4qNKR4Q+FPnqyJMBB7VlCXIDTk4tNbAjs/PTcHbmx w97uKObddmYhEJlBK4Nz52NRfy8F7loYn2VYz6upgUH6PI5XCm01uI65YR54n9iN tUPyyFI7vAa8/8NnKKPf/dimxXqhpZZbBb3g2OFQiW6fB/HMk4Qb5MKwIdqL1vaF eB5JACL0Tk14QjmJJ4hur5anoU3jwA3LU9g+eT84V/BzsdQb/FFjQ8dp7/h8qN5i hgUtLwzqB6RBQxlY+Ae/R/nSLt/D6dVxeK78Ae+uK3MWgBs= -----END CERTIFICATE-----Generated at Mon Mar 2 15:00:22 2026 by rpki-client