$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa File: DB6928E4635411EF8B6D364BC4F9AE02.roa (raw, json) Hash identifier: llbPuYfZvWnanU5VkzJGalwBSydzb8W85O4AmnTtGd0= Subject key identifier: 56:69:DA:C8:4B:7B:44:3E:BD:7C:31:B8:3B:79:75:5B:3C:76:8A:AF Certificate issuer: /CN=A918E2A5/serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Certificate serial: 01C6 Authority key identifier: 8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:24:48 +0000 ROA not before: Fri 27 Jun 2025 04:22:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58528 IP address blocks: 103.57.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2A5, serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Validity Not Before: Jun 27 04:22:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a413f0-3b05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:52:4f:9a:ca:da:3b:bc:8e:e3:85:66:89:25: bc:98:74:27:47:9c:78:e7:e5:a4:f2:62:d4:40:5b: 76:92:90:48:77:40:a7:f8:61:ca:f8:7d:12:03:77: 64:f9:54:f3:fb:d4:f9:32:d8:04:73:c8:a5:c4:82: dc:e5:25:0c:ed:9a:e5:67:79:a2:a2:0a:1c:d0:9a: 2b:54:88:36:11:c0:f6:42:3e:e9:79:7f:48:a9:5b: 56:93:68:49:a0:b0:7e:fa:68:6d:c7:7f:2f:d4:55: 28:66:97:35:d9:5d:87:40:e1:c4:bf:1d:26:5c:36: f4:c7:00:81:9b:53:21:62:5e:38:2b:2d:7a:7c:7e: be:cc:48:20:0f:57:e4:b8:fe:ec:88:6c:e6:f6:e8: bc:c1:4b:a9:9e:f9:67:df:cd:79:a8:eb:2a:4e:7e: 03:ee:f5:e6:da:2d:64:96:09:3e:08:1f:52:bd:75: 24:25:cf:7f:f9:08:17:d5:a6:da:58:a4:2e:af:6f: 1a:79:db:f6:5e:b9:a7:17:18:1d:cd:9c:61:1c:57: be:10:8d:a1:c5:36:ce:26:47:3f:2b:86:c6:ea:9c: 23:09:cc:9e:d8:5e:36:fa:3e:7c:02:3c:6e:c1:5d: 2d:0e:26:75:54:38:67:25:c1:c1:65:bc:4a:42:21: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:69:DA:C8:4B:7B:44:3E:BD:7C:31:B8:3B:79:75:5B:3C:76:8A:AF X509v3 Authority Key Identifier: keyid:8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.57.89.0/24 Signature Algorithm: sha256WithRSAEncryption 67:24:06:b8:49:7b:cd:f2:72:17:43:dd:3f:ed:52:7b:8b:66: 0e:23:bf:c8:d2:8d:2d:89:da:ad:f3:8c:db:ba:9f:10:4d:ef: ba:31:dc:5c:e8:1f:44:a4:38:13:11:6b:ad:b3:5d:a2:e3:e5: 37:fb:a9:8b:03:6f:08:6d:b2:ec:f3:4d:e9:ed:8d:98:8a:fb: 3f:25:f8:c8:05:33:d9:ea:c5:d0:87:ff:c0:c0:61:56:0c:c0: d3:90:16:d4:31:5e:d7:1a:09:5a:89:bb:8a:17:52:52:0a:3e: 96:d6:3c:55:65:12:84:41:cb:eb:92:f2:4a:03:81:8a:00:c8: a1:eb:0b:00:e5:33:eb:12:c8:d3:dd:46:62:c6:34:d8:8c:2d: fd:4c:60:60:bd:4d:a3:d7:d0:13:24:ab:56:84:16:df:55:9b: 5e:21:91:e5:c0:52:6a:2b:d7:dd:65:2f:90:f3:f0:dc:70:52: 3a:75:d8:a4:c1:1e:4b:47:8c:20:bc:c0:3a:5f:07:ae:91:af: ba:1f:bb:29:1c:16:39:85:55:38:8a:da:27:a3:3b:af:b5:f8: 48:ad:3e:bb:2e:4c:71:82:25:83:cd:74:01:4f:0e:a3:64:d6: 08:c4:38:6e:48:6a:de:1f:9e:7e:7f:19:6b:9d:3d:5d:b6:c0: 99:c9:2e:0c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQTUxMTAvBgNVBAUTKDhDRENFNTc4QTIzOUU1OENFN0ZFNzY4M0JCNDc2OUY5 REM1NTIyQkEwHhcNMjUwNjI3MDQyMjQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTNmMC0zYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VJPmsraO7yO44VmiSW8mHQnR5x45+Wk8mLUQFt2kpBId0Cn+GHK+H0SA3dk +VTz+9T5MtgEc8ilxILc5SUM7ZrlZ3miogoc0JorVIg2EcD2Qj7peX9IqVtWk2hJ oLB++mhtx38v1FUoZpc12V2HQOHEvx0mXDb0xwCBm1MhYl44Ky16fH6+zEggD1fk uP7siGzm9ui8wUupnvln3815qOsqTn4D7vXm2i1klgk+CB9SvXUkJc9/+QgX1aba WKQur28aedv2XrmnFxgdzZxhHFe+EI2hxTbOJkc/K4bG6pwjCcye2F42+j58Ajxu wV0tDiZ1VDhnJcHBZbxKQiHVBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFZp2shL e0Q+vXwxuDt5dVs8doqvMB8GA1UdIwQYMBaAFIzc5XiiOeWM5/52g7tHafncVSK6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBNS9BMUMwNEQwQTc2 Q0IxMUVFOTNGNTg3NDdDNEY5QUUwMi9qTnpsZUtJNTVZem5fbmFEdTBkcC1keFZJ cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOemxlS0k1NVl6bl9uYUR1MGRwLWR4Vklyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQTUvQTFDMDREMEE3NkNCMTFFRTkzRjU4NzQ3QzRGOUFFMDIvREI2OTI4RTQ2 MzU0MTFFRjhCNkQzNjRCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZzlZMA0GCSqGSIb3DQEBCwUAA4IBAQBnJAa4SXvN8nIXQ90/7VJ7 i2YOI7/I0o0tidqt84zbup8QTe+6Mdxc6B9EpDgTEWuts12i4+U3+6mLA28IbbLs 803p7Y2Yivs/JfjIBTPZ6sXQh//AwGFWDMDTkBbUMV7XGglaibuKF1JSCj6W1jxV ZRKEQcvrkvJKA4GKAMih6wsA5TPrEsjT3UZixjTYjC39TGBgvU2j19ATJKtWhBbf VZteIZHlwFJqK9fdZS+Q8/DccFI6ddikwR5LR4wgvMA6Xweuka+6H7spHBY5hVU4 itonozuvtfhIrT67LkxxgiWDzXQBTw6jZNYIxDhuSGreH55+fxlrnT1dtsCZyS4M -----END CERTIFICATE-----Generated at Thu Mar 26 07:22:59 2026 by rpki-client