$ rpki-client -vvf rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/D4F3A2B4DBCD11EE9B6F4669C4F9AE02.roa File: D4F3A2B4DBCD11EE9B6F4669C4F9AE02.roa (raw, json) Hash identifier: 0/3h8qrF1hoUC7tmh4rWpKK0V8YfkgxImbH6h+ZlRSo= Subject key identifier: 66:15:42:D2:DD:99:15:4D:D0:19:81:23:BC:9C:17:43:6B:60:7A:89 Certificate issuer: /CN=A918D3A9/serialNumber=1968423ED6D2495880A56A6DB02BC67298C5E686 Certificate serial: 1130 Authority key identifier: 19:68:42:3E:D6:D2:49:58:80:A5:6A:6D:B0:2B:C6:72:98:C5:E6:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GWhCPtbSSViApWptsCvGcpjF5oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/D4F3A2B4DBCD11EE9B6F4669C4F9AE02.roa Signing time: Sat 02 May 2026 17:20:54 +0000 ROA not before: Sat 02 May 2026 17:20:54 +0000 ROA not after: Wed 02 Sep 2026 00:00:00 +0000 asID: 137955 IP address blocks: 103.103.194.0/24 maxlen: 24 103.116.192.0/24 maxlen: 24 2405:1340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/GWhCPtbSSViApWptsCvGcpjF5oY.crl rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/GWhCPtbSSViApWptsCvGcpjF5oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GWhCPtbSSViApWptsCvGcpjF5oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4400 (0x1130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D3A9, serialNumber=1968423ED6D2495880A56A6DB02BC67298C5E686 Validity Not Before: May 2 17:20:54 2026 GMT Not After : Sep 2 00:00:00 2026 GMT Subject: CN=69f63276-6641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:37:e4:0a:ee:27:e3:36:19:75:cb:84:09:2a: 16:8c:f9:55:b1:5b:fc:42:a0:c8:06:83:00:bc:1d: 97:cc:af:ab:2f:1b:57:86:bf:bd:18:3c:ac:ef:4e: 0a:47:8d:0f:da:8f:9b:48:87:fc:c5:c5:2c:6d:a8: ea:9a:20:f3:c0:4d:32:83:b7:83:5e:ac:d7:3d:c3: 0a:4c:7d:8e:48:e6:39:da:53:63:92:8c:45:f1:e1: 7f:b6:46:d3:d3:3b:6a:e1:b2:f2:a8:73:24:ac:de: 50:9c:37:ce:62:c6:77:2d:82:7e:54:fc:30:ee:68: ab:25:ac:2c:3e:8c:16:23:8b:20:8c:24:65:bf:90: 1f:20:84:86:ad:13:7c:87:f2:32:13:3b:91:5a:e8: 85:0f:af:3f:85:f7:3e:e5:14:5a:f2:bd:0c:ef:28: d3:42:34:89:5b:4f:9f:b3:e9:7f:be:8d:6c:97:03: 5e:a2:dc:50:14:fa:6f:18:e9:7b:38:52:e6:13:8d: 69:77:b4:c2:6e:90:80:16:87:05:4b:e3:24:9a:72: 3a:91:64:3f:d6:39:81:c2:44:22:30:4a:90:b8:ee: 85:24:26:69:65:8f:7f:06:f5:a2:2d:c2:54:c3:20: 12:70:5d:29:f4:a1:5d:1b:1a:5e:79:45:41:f2:67: df:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:15:42:D2:DD:99:15:4D:D0:19:81:23:BC:9C:17:43:6B:60:7A:89 X509v3 Authority Key Identifier: keyid:19:68:42:3E:D6:D2:49:58:80:A5:6A:6D:B0:2B:C6:72:98:C5:E6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/GWhCPtbSSViApWptsCvGcpjF5oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GWhCPtbSSViApWptsCvGcpjF5oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/D4F3A2B4DBCD11EE9B6F4669C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.103.194.0/24 103.116.192.0/24 IPv6: 2405:1340::/32 Signature Algorithm: sha256WithRSAEncryption 2d:c8:b8:40:39:d7:90:f3:f1:25:bf:fc:81:9e:90:af:18:c4: fd:c3:a4:0d:22:29:b3:cd:5c:f6:85:01:fb:ba:ef:dd:08:8a: b0:d7:6f:87:41:16:7d:04:98:eb:21:e8:e9:50:b9:d4:8c:76: 83:a0:db:da:41:e9:89:1c:12:30:37:06:5c:27:4e:b3:a1:08: b1:ad:b7:60:47:a2:6b:0d:66:57:56:f3:27:12:7f:43:04:d0: e2:e8:7f:6c:cd:0e:96:ae:17:f5:ad:dd:c3:78:8f:d9:8b:b5: ba:27:f9:08:67:82:55:ed:8f:68:2f:ad:2e:06:bb:c8:c8:f8: 13:09:9b:30:c8:c8:df:81:d4:e5:b4:04:85:14:68:55:23:72: b1:f0:e8:08:79:8b:3b:53:01:6f:e7:b4:bc:7d:cc:09:68:6e: 78:59:22:a5:26:1e:52:94:79:c6:a2:8c:3e:83:ce:43:29:4a: 99:1a:ac:4e:06:62:0f:7c:d9:2f:f3:d2:ff:6f:90:61:74:b5: fe:cb:f7:8c:7e:b9:32:c2:a1:18:d2:9d:a5:b4:37:62:68:9d: 4d:d9:18:93:96:69:e0:02:f4:44:a5:e0:cd:1a:ba:c2:32:39: e4:20:74:01:38:36:6d:7c:18:f7:6b:e1:61:9e:32:06:01:df: 5c:d4:85:c2 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICETAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzQTkxMTAvBgNVBAUTKDE5Njg0MjNFRDZEMjQ5NTg4MEE1NkE2REIwMkJDNjcy OThDNUU2ODYwHhcNMjYwNTAyMTcyMDU0WhcNMjYwOTAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2MzI3Ni02NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjfkCu4n4zYZdcuECSoWjPlVsVv8QqDIBoMAvB2XzK+rLxtXhr+9GDys704K R40P2o+bSIf8xcUsbajqmiDzwE0yg7eDXqzXPcMKTH2OSOY52lNjkoxF8eF/tkbT 0ztq4bLyqHMkrN5QnDfOYsZ3LYJ+VPww7mirJawsPowWI4sgjCRlv5AfIISGrRN8 h/IyEzuRWuiFD68/hfc+5RRa8r0M7yjTQjSJW0+fs+l/vo1slwNeotxQFPpvGOl7 OFLmE41pd7TCbpCAFocFS+MkmnI6kWQ/1jmBwkQiMEqQuO6FJCZpZY9/BvWiLcJU wyAScF0p9KFdGxpeeUVB8mffFQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGYVQtLd mRVN0BmBI7ycF0NrYHqJMB8GA1UdIwQYMBaAFBloQj7W0klYgKVqbbArxnKYxeaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDNBOS9CQjdGRkI4RTNB OTIxMUU5QjUyRENGNTNDNEY5QUUwMi9HV2hDUHRiU1NWaUFwV3B0c0N2R2NwakY1 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dXaENQdGJTU1ZpQXBXcHRzQ3ZHY3BqRjVvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQzQTkvQkI3RkZCOEUzQTkyMTFFOUI1MkRDRjUzQzRGOUFFMDIvRDRGM0EyQjRE QkNEMTFFRTlCNkY0NjY5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAZ2fCAwQAZ3TAMA0EAgACMAcDBQAkBRNAMA0GCSqGSIb3DQEBCwUA A4IBAQAtyLhAOdeQ8/Elv/yBnpCvGMT9w6QNIimzzVz2hQH7uu/dCIqw12+HQRZ9 BJjrIejpULnUjHaDoNvaQemJHBIwNwZcJ06zoQixrbdgR6JrDWZXVvMnEn9DBNDi 6H9szQ6Wrhf1rd3DeI/Zi7W6J/kIZ4JV7Y9oL60uBrvIyPgTCZswyMjfgdTltASF FGhVI3Kx8OgIeYs7UwFv57S8fcwJaG54WSKlJh5SlHnGoow+g85DKUqZGqxOBmIP fNkv89L/b5BhdLX+y/eMfrkywqEY0p2ltDdiaJ1N2RiTlmngAvREpeDNGrrCMjnk IHQBODZtfBj3a+FhnjIGAd9c1IXC -----END CERTIFICATE-----Generated at Wed May 13 05:03:13 2026 by rpki-client