$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa File: 518ED8E0B10511EAA4771B5BC4F9AE02.roa (raw, json) Hash identifier: bFh6f+hopLL+YwaSLtKwYNO7z5+ApxojW5mkNgpHqNY= Subject key identifier: 43:11:05:E6:97:CC:EC:79:F8:63:AA:18:80:27:94:AE:BE:02:06:0D Certificate issuer: /CN=A912A3C4/serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Certificate serial: 0987 Authority key identifier: 95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa Signing time: Tue 17 Mar 2026 08:51:15 +0000 ROA not before: Tue 17 Mar 2026 08:51:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38887 IP address blocks: 103.5.89.0/24 maxlen: 24 103.60.216.0/24 maxlen: 24 103.150.248.0/23 maxlen: 24 103.240.222.0/23 maxlen: 24 2406:fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2439 (0x987) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3C4, serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Validity Not Before: Mar 17 08:51:15 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69b91603-3ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:33:c1:18:fd:05:46:1b:82:81:c9:40:3a:19: 6e:e0:5d:7c:7e:d9:31:47:db:d3:dd:f3:fe:f2:5d: a8:26:c3:b3:9c:8b:25:38:3c:d8:69:71:52:a6:26: 66:64:3b:73:9d:84:6b:c1:86:5c:bb:a4:67:98:da: 4e:03:91:24:8c:96:ef:2a:df:77:44:89:d0:10:e2: 9c:e8:70:4e:6b:19:73:f4:aa:02:a8:2b:b3:f8:da: 7e:c5:a6:e3:d0:80:4b:16:a8:d2:89:5b:75:3c:da: 4a:1b:39:a8:7d:de:4d:f4:23:0b:82:57:7b:6d:db: bc:95:9c:cf:e9:22:c0:38:25:66:14:fa:f8:92:d4: 09:79:e7:64:53:a3:be:31:58:8f:99:ad:5a:12:9f: 43:26:eb:15:1a:84:b2:42:50:e1:79:18:93:fe:65: 8d:d1:64:10:f8:f4:5e:2f:93:e8:c8:88:91:80:32: 6e:16:8d:3e:c8:bc:65:9b:5f:16:cd:13:f8:2c:9e: 75:f1:31:19:e4:23:25:cd:84:13:1c:b6:94:4c:52: b6:e1:a7:25:ea:3d:9b:89:e1:06:09:1e:97:77:1d: 15:52:92:08:06:09:b0:ca:39:69:a6:14:36:0f:17: fc:d1:33:fe:51:0f:b2:7e:a1:5d:14:e1:30:7c:a4: 07:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:11:05:E6:97:CC:EC:79:F8:63:AA:18:80:27:94:AE:BE:02:06:0D X509v3 Authority Key Identifier: keyid:95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.89.0/24 103.60.216.0/24 103.150.248.0/23 103.240.222.0/23 IPv6: 2406:fc0::/32 Signature Algorithm: sha256WithRSAEncryption 64:43:19:00:2d:de:34:78:f9:05:55:6a:1b:4b:07:d0:2b:3e: 96:0c:07:20:6c:b2:03:8b:c9:b0:60:bf:27:87:7a:d9:1d:35: 1b:cd:8d:f9:fe:6f:7f:7d:43:5d:03:70:69:99:24:b3:38:82: b1:22:a1:c3:fa:e3:d3:35:1e:b6:bb:d2:37:c2:b0:b2:4b:ed: f8:63:e6:f1:e7:a1:8d:26:62:b7:bb:1c:e7:43:64:f9:1e:7b: 18:b3:98:23:28:36:d1:0a:c0:31:af:8f:8f:42:29:23:2d:79: ce:7a:77:a9:41:46:63:94:ae:42:cb:ff:42:1b:aa:17:b5:0e: a7:90:da:fe:b7:4c:29:ca:31:b5:bf:5e:8d:50:f5:85:b2:88: 85:d7:e6:2d:ef:4b:77:87:5c:69:35:b1:ad:8a:6c:99:18:98: e6:01:2e:65:5e:c1:b5:49:9a:04:50:15:68:89:50:7b:a0:80: c4:15:9a:9b:6d:29:5c:19:c5:06:72:c0:f1:67:eb:0d:ce:d5: bf:14:43:8a:e6:54:2e:43:dd:ea:4a:76:7b:eb:31:17:49:df: 05:f2:3e:49:2e:4e:5c:db:ce:f5:34:39:83:18:ec:b1:cb:21: 5f:ca:87:8f:fe:fd:56:d7:58:66:71:41:6c:db:a1:8e:64:46: 59:31:e4:3f -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICCYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzQzQxMTAvBgNVBAUTKDk1MjNBRDI1RUNBRDVDQzUyNUVDNDJFOUVDMURBRTRG REZEODYwNTcwHhcNMjYwMzE3MDg1MTE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI5MTYwMy0zZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TPBGP0FRhuCgclAOhlu4F18ftkxR9vT3fP+8l2oJsOznIslODzYaXFSpiZm ZDtznYRrwYZcu6RnmNpOA5EkjJbvKt93RInQEOKc6HBOaxlz9KoCqCuz+Np+xabj 0IBLFqjSiVt1PNpKGzmofd5N9CMLgld7bdu8lZzP6SLAOCVmFPr4ktQJeedkU6O+ MViPma1aEp9DJusVGoSyQlDheRiT/mWN0WQQ+PReL5PoyIiRgDJuFo0+yLxlm18W zRP4LJ518TEZ5CMlzYQTHLaUTFK24acl6j2bieEGCR6Xdx0VUpIIBgmwyjlpphQ2 Dxf80TP+UQ+yfqFdFOEwfKQHCwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFEMRBeaX zOx5+GOqGIAnlK6+AgYNMB8GA1UdIwQYMBaAFJUjrSXsrVzFJexC6ewdrk/f2GBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNDNC8zRUU2NEMxQUIx MDQxMUVBQTM4NDE2NUFDNEY5QUUwMi9sU090SmV5dFhNVWw3RUxwN0IydVQ5X1lZ RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTT3RKZXl0WE1VbDdFTHA3QjJ1VDlfWVlGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzQzQvM0VFNjRDMUFCMTA0MTFFQUEzODQxNjVBQzRGOUFFMDIvNTE4RUQ4RTBC MTA1MTFFQUE0NzcxQjVCQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQAZwVZAwQAZzzYAwQBZ5b4AwQBZ/DeMA0EAgACMAcDBQAkBg/AMA0G CSqGSIb3DQEBCwUAA4IBAQBkQxkALd40ePkFVWobSwfQKz6WDAcgbLIDi8mwYL8n h3rZHTUbzY35/m9/fUNdA3BpmSSzOIKxIqHD+uPTNR62u9I3wrCyS+34Y+bx56GN JmK3uxznQ2T5HnsYs5gjKDbRCsAxr4+PQikjLXnOenepQUZjlK5Cy/9CG6oXtQ6n kNr+t0wpyjG1v16NUPWFsoiF1+Yt70t3h1xpNbGtimyZGJjmAS5lXsG1SZoEUBVo iVB7oIDEFZqbbSlcGcUGcsDxZ+sNztW/FEOK5lQuQ93qSnZ76zEXSd8F8j5JLk5c 2871NDmDGOyxyyFfyoeP/v1W11hmcUFs26GOZEZZMeQ/ -----END CERTIFICATE-----Generated at Thu Mar 26 14:42:26 2026 by rpki-client