$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa File: FEB89D4C0D4111EBA83D855CC4F9AE02.roa (raw, json) Hash identifier: kOHEffGEzODkoz9kp6ZcLq5re/4DhP3pXMTFltQlb0E= Subject key identifier: B1:A9:3B:D6:14:66:98:32:AC:EB:FE:12:1A:7C:BD:EA:0A:B7:59:5E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D3DF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:28:31 +0000 ROA not before: Thu 08 May 2025 16:08:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136714 IP address blocks: 103.104.44.0/22 maxlen: 24 2403:d4c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54239 (0xd3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:08:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bd8f-4f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:1d:8f:ce:83:2e:b2:aa:37:93:b2:5a:0f:89: 39:fc:59:63:61:f2:f8:5a:99:ce:fa:fd:c3:0a:5e: 05:bb:65:fa:f4:13:7b:da:0a:85:15:16:d2:66:f4: 56:58:e0:c4:4a:8a:0d:4a:db:c1:dc:ce:2f:8e:c8: f6:5b:5b:4a:8e:17:9b:a0:25:21:f2:52:98:9b:64: bf:35:71:74:a0:29:95:fc:c3:04:36:d2:73:5a:29: 66:69:c2:fc:8c:32:e2:d8:14:4a:04:92:08:18:08: 88:e8:69:27:a2:f9:e8:08:f1:3e:6f:1b:05:80:a4: 2f:bd:bd:2c:76:0d:24:1d:05:7a:b8:04:60:23:b5: 83:1f:52:93:89:7e:27:97:96:61:96:25:0c:54:ec: 90:f7:66:4e:33:a0:fc:6f:83:84:c2:4e:97:72:21: 0a:7c:83:80:05:30:fc:bf:48:8a:74:90:34:9d:2d: 59:85:69:a7:e5:dd:91:8c:c4:64:c2:33:49:e0:56: 6d:9a:e1:1e:6b:4e:4b:02:07:f4:15:ef:c9:ab:16: 1e:a6:8b:b3:3a:b3:1c:dd:3c:77:f4:5c:93:c9:aa: 88:07:f0:76:fe:d7:4d:1a:7e:a2:21:f2:5b:e9:ec: 09:58:67:85:8d:07:b8:a1:41:bc:ac:97:4c:8d:39: 42:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A9:3B:D6:14:66:98:32:AC:EB:FE:12:1A:7C:BD:EA:0A:B7:59:5E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.104.44.0/22 IPv6: 2403:d4c0::/32 Signature Algorithm: sha256WithRSAEncryption 91:55:6b:1e:f1:b0:70:6f:c0:7a:89:90:1a:12:12:f2:85:95: 88:07:87:f6:17:46:0a:58:ea:25:60:25:9b:36:86:5f:a6:d4: 32:27:ce:e6:c9:cb:c9:d7:5b:ab:5c:ac:37:36:30:50:d5:31: c5:2e:60:9d:f1:b6:97:bf:fd:20:09:3e:2f:ab:06:24:e7:b4: c9:fb:a3:cd:be:25:94:68:90:c1:45:2f:e0:71:2c:c2:9b:d4: 94:b1:82:97:d7:4c:88:2e:f7:57:c4:c0:16:b1:d2:e5:c3:ef: 8b:d7:f8:22:ef:86:6a:cd:b1:0b:f1:20:40:92:38:17:72:da: 5e:73:aa:32:8d:32:d1:e2:c4:cb:ff:93:00:99:42:38:f9:2a: 3c:0b:73:22:2a:3d:a3:a2:05:1e:8f:52:33:f1:42:88:51:d7: 7e:6c:6a:a1:51:62:b0:38:23:af:c5:3b:77:23:69:88:c2:66: 70:e2:6b:8c:40:28:90:70:bc:30:85:95:46:64:ea:b6:1f:12: ee:b6:b8:a1:1d:08:c2:e4:4f:55:a5:db:90:56:cf:8c:92:aa: 11:30:fe:f8:aa:bf:6a:57:da:65:98:ff:ba:a5:5a:5b:52:24: 19:ec:b5:71:c1:e4:b8:b9:2f:3c:89:58:92:e0:ca:29:6d:5c: e8:ea:7e:6c -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDANPfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDgyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJkOGYtNGYzYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJAdj86DLrKqN5OyWg+JOfxZY2Hy+FqZzvr9wwpeBbtl+vQTe9oKhRUW0mb0 VljgxEqKDUrbwdzOL47I9ltbSo4Xm6AlIfJSmJtkvzVxdKAplfzDBDbSc1opZmnC /Iwy4tgUSgSSCBgIiOhpJ6L56AjxPm8bBYCkL729LHYNJB0FergEYCO1gx9Sk4l+ J5eWYZYlDFTskPdmTjOg/G+DhMJOl3IhCnyDgAUw/L9IinSQNJ0tWYVpp+XdkYzE ZMIzSeBWbZrhHmtOSwIH9BXvyasWHqaLszqzHN08d/Rck8mqiAfwdv7XTRp+oiHy W+nsCVhnhY0HuKFBvKyXTI05QlkCAwEAAaOCAm8wggJrMB0GA1UdDgQWBBSxqTvW FGaYMqzr/hIafL3qCrdZXjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZFQjg5RDRD MEQ0MTExRUJBODNEODU1Q0M0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmdoLDANBAIAAjAHAwUAJAPUwDANBgkqhkiG9w0BAQsFAAOCAQEA kVVrHvGwcG/AeomQGhIS8oWViAeH9hdGCljqJWAlmzaGX6bUMifO5snLyddbq1ys NzYwUNUxxS5gnfG2l7/9IAk+L6sGJOe0yfujzb4llGiQwUUv4HEswpvUlLGCl9dM iC73V8TAFrHS5cPvi9f4Iu+Gas2xC/EgQJI4F3LaXnOqMo0y0eLEy/+TAJlCOPkq PAtzIio9o6IFHo9SM/FCiFHXfmxqoVFisDgjr8U7dyNpiMJmcOJrjEAokHC8MIWV RmTqth8S7ra4oR0IwuRPVaXbkFbPjJKqETD++Kq/alfaZZj/uqVaW1IkGey1ccHk uLkvPIlYkuDKKW1c6Op+bA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:45:04 2026 by rpki-client