$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa File: FEB89D4C0D4111EBA83D855CC4F9AE02.roa (raw, json) Hash identifier: D+5fLxU8je8yJ95cq7waD1kzIm1xZ1zYo11bxaLzwe8= Subject key identifier: 6B:89:D8:6C:10:71:7F:85:BA:6A:05:48:12:4F:29:F5:15:1F:D9:B1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E4F5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa Signing time: Sun 31 May 2026 16:58:03 +0000 ROA not before: Sun 31 May 2026 16:58:03 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 136714 IP address blocks: 103.104.44.0/22 maxlen: 24 2403:d4c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 15:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58613 (0xe4f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 31 16:58:03 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c689b-572a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3b:97:8b:9f:c2:47:a9:0b:84:e5:d3:c2:0f: 91:e7:15:80:2b:14:14:3e:6b:10:56:ae:41:f9:12: 9c:d4:e0:3e:cf:51:0a:3e:db:7f:41:7c:6d:40:c4: bc:a3:27:d0:f2:10:1b:52:87:7c:9a:b7:56:7c:ed: f1:19:c3:b0:7b:e9:98:f5:a5:eb:73:56:49:01:67: c4:a7:34:ea:af:0e:14:44:6b:64:8d:87:a5:6b:29: e5:a7:be:c2:33:c2:f5:f7:18:12:f1:d2:b3:02:b8: 65:e1:ba:cb:c3:1b:fc:2d:cd:d0:8a:ee:1e:74:7e: 8d:89:b3:93:66:e7:47:a4:dc:95:53:38:c1:43:80: 3b:25:6d:38:ec:f5:9a:e9:e9:6c:dc:ea:e1:e4:f5: 6b:55:09:da:6a:23:59:1c:ad:14:c3:b6:b0:b2:d9: 05:63:a8:c6:be:0e:9c:28:fe:0f:7f:66:ab:67:72: 30:36:4d:9d:1f:a5:f2:3a:b7:5c:97:df:f8:2f:6e: 2f:3b:b8:63:3b:d8:ba:1f:ce:8d:08:15:c7:ae:d1: 9c:89:46:13:c4:70:f2:6e:7f:9d:c4:66:04:b7:58: c9:92:b0:70:fb:3d:2a:8a:ff:08:a3:84:73:a2:46: 15:1c:6c:94:df:4b:76:00:5f:af:63:c9:d2:fa:8f: 51:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:89:D8:6C:10:71:7F:85:BA:6A:05:48:12:4F:29:F5:15:1F:D9:B1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.104.44.0/22 IPv6: 2403:d4c0::/32 Signature Algorithm: sha256WithRSAEncryption a1:f9:83:b4:0c:5a:b6:76:66:c5:64:ea:f2:57:41:0b:c4:a9: aa:ae:06:60:6f:57:e7:a2:d8:e9:e3:98:48:72:14:6f:b7:8d: c0:1c:be:80:3f:c0:68:ac:92:bc:f0:f8:7c:e3:ec:58:da:f1: 04:2e:ea:ab:dc:b2:4c:07:d6:57:e1:fb:ff:5d:d1:51:02:6f: 21:c7:20:0c:d2:26:f4:84:30:3a:86:04:b4:25:2c:52:74:25: 97:f8:9e:0d:c0:61:ca:70:93:09:8c:72:c5:21:9f:d9:61:39: f8:f6:20:a3:c5:ee:b0:01:1a:6c:aa:cf:5d:8d:26:33:fb:53: d7:63:34:de:7c:7d:76:5d:6a:e8:55:5c:29:07:de:bd:a4:8a: b1:c9:0e:c0:d5:b3:1a:72:50:25:80:1b:83:a7:7b:08:12:4a: c0:bf:f4:72:8c:b4:a8:70:c7:91:d2:63:3b:30:62:76:22:0c: 38:a1:0c:94:29:3a:aa:f7:98:7f:6f:6b:17:94:bc:7f:5d:56: 81:25:b1:71:e3:80:75:79:f3:21:b3:d6:3e:40:9e:63:a9:fd: 1c:26:77:f9:a4:2d:ea:94:d2:15:02:34:13:ae:90:85:e9:b4: 69:c4:b2:04:e8:c2:87:42:2d:dd:bf:3b:58:48:40:d0:4f:fc: 31:a8:37:94 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIDAOT1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUzMTE2NTgwM1oXDTI2MTAwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmExYzY4OWItNTcyYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ7l4ufwkepC4Tl08IPkecVgCsUFD5rEFauQfkSnNTgPs9RCj7bf0F8bUDE vKMn0PIQG1KHfJq3Vnzt8RnDsHvpmPWl63NWSQFnxKc06q8OFERrZI2HpWsp5ae+ wjPC9fcYEvHSswK4ZeG6y8Mb/C3N0IruHnR+jYmzk2bnR6TclVM4wUOAOyVtOOz1 munpbNzq4eT1a1UJ2mojWRytFMO2sLLZBWOoxr4OnCj+D39mq2dyMDZNnR+l8jq3 XJff+C9uLzu4YzvYuh/OjQgVx67RnIlGE8Rw8m5/ncRmBLdYyZKwcPs9Kor/CKOE c6JGFRxslN9LdgBfr2PJ0vqPUb8CAwEAAaOCAm8wggJrMB0GA1UdDgQWBBRridhs EHF/hbpqBUgSTyn1FR/ZsTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZFQjg5RDRD MEQ0MTExRUJBODNEODU1Q0M0RjlBRTAyLnJvYTAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAmdoLDANBAIAAjAHAwUAJAPUwDANBgkqhkiG9w0BAQsFAAOCAQEA ofmDtAxatnZmxWTq8ldBC8Spqq4GYG9X56LY6eOYSHIUb7eNwBy+gD/AaKySvPD4 fOPsWNrxBC7qq9yyTAfWV+H7/13RUQJvIccgDNIm9IQwOoYEtCUsUnQll/ieDcBh ynCTCYxyxSGf2WE5+PYgo8XusAEabKrPXY0mM/tT12M03nx9dl1q6FVcKQfevaSK sckOwNWzGnJQJYAbg6d7CBJKwL/0coy0qHDHkdJjOzBidiIMOKEMlCk6qveYf29r F5S8f11WgSWxceOAdXnzIbPWPkCeY6n9HCZ3+aQt6pTSFQI0E66Qhem0acSyBOjC h0It3b87WEhA0E/8Mag3lA== -----END CERTIFICATE-----Generated at Sat Jun 13 16:04:25 2026 by rpki-client