$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E2D0C84438E11F1A0558133CA833773.roa File: 1E2D0C84438E11F1A0558133CA833773.roa (raw, json) Hash identifier: yz4QbclwlIJDIcv/ATLfextkKfO1tdtW7fM1ocUPq1Q= Subject key identifier: 9B:5B:47:B5:78:ED:29:55:DF:F4:2D:B1:F2:A8:DF:C3:F5:17:28:DD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: E082 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E2D0C84438E11F1A0558133CA833773.roa Signing time: Wed 13 May 2026 11:22:00 +0000 ROA not before: Wed 13 May 2026 11:22:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131210 IP address blocks: 103.2.232.0/22 maxlen: 24 103.21.232.0/22 maxlen: 24 118.151.208.0/22 maxlen: 24 150.129.60.0/22 maxlen: 24 150.129.88.0/22 maxlen: 24 163.128.174.0/24 maxlen: 24 163.128.175.0/24 maxlen: 24 2400:18e0:1::/48 maxlen: 48 2400:18e0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 11:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57474 (0xe082) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 13 11:22:00 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6a045ed8-0188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:45:cd:b2:40:09:76:89:a7:bc:26:90:8e:aa: 1c:c3:11:32:2b:a0:63:91:b9:b4:aa:4d:c6:a2:3d: 29:c6:5a:dc:7b:3a:30:81:99:91:d2:c3:aa:88:38: 18:4a:4d:87:69:71:e0:5a:4e:df:f3:b6:83:0e:08: 08:ef:56:86:87:a3:99:a9:b5:7b:b2:96:7d:52:d9: ab:16:ba:ff:35:a9:fd:fe:db:13:79:82:4c:38:45: ca:1d:f9:65:8a:8f:b5:b1:bb:43:d4:84:82:a1:e7: 1b:26:84:7d:cc:21:bd:61:45:39:69:03:d5:77:84: 4d:58:44:b3:fd:ee:25:34:33:9a:f6:96:2e:1c:ac: af:5d:eb:ec:4a:f2:3e:af:cb:81:d5:24:82:61:7c: fa:92:bb:30:bf:3d:45:a2:d3:ad:be:51:1b:ab:a3: 7d:01:6a:3e:4e:4c:70:94:01:a3:5d:9f:ff:8c:dd: 55:2a:0c:9f:77:e5:23:7d:31:c5:85:38:64:33:a8: 6c:dc:85:39:1d:ab:e8:fa:d0:f2:8d:21:d2:d3:44: ad:64:de:20:3a:c1:0d:0f:7e:1c:9d:49:cb:fd:da: 34:9d:de:af:96:35:09:b1:d6:cb:aa:b3:5b:f1:83: e2:b0:2f:85:ba:2b:02:57:d2:b5:c3:03:a7:6d:c0: 10:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5B:47:B5:78:ED:29:55:DF:F4:2D:B1:F2:A8:DF:C3:F5:17:28:DD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1E2D0C84438E11F1A0558133CA833773.roa sbgp-ipAddrBlock: critical IPv4: 103.2.232.0/22 103.21.232.0/22 118.151.208.0/22 150.129.60.0/22 150.129.88.0/22 163.128.174.0/23 IPv6: 2400:18e0:1::-2400:18e0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 68:47:4e:0e:0b:78:16:21:4f:0c:1d:98:89:c3:86:9a:54:ad: 79:2f:85:51:c6:a4:f9:9c:fa:a8:36:a7:9a:8a:06:6b:05:46: 5e:f3:ef:3b:74:9e:67:30:18:91:26:f0:8f:dc:bd:a4:52:3c: 54:6c:26:1b:9e:74:b6:0a:78:fa:f4:44:89:75:ef:43:47:04: 08:6a:59:7f:49:34:8f:a3:f8:43:7a:cc:35:dd:64:b4:44:c2: b9:34:a6:c8:68:0e:01:0e:22:5d:f8:b3:35:15:03:fe:d9:98: a9:5f:fc:bf:42:b6:f2:f2:5c:52:76:72:2d:b5:35:1d:ca:bb: 12:ff:5f:b3:4a:f3:47:f6:1c:88:bc:5d:71:d1:08:e5:82:63: aa:8b:4e:ac:0d:e2:ca:8a:71:c2:b8:bf:86:bf:ed:c8:86:b6: 0c:29:5c:2b:0d:04:44:21:5a:70:5e:05:5e:66:6a:e7:60:30: 41:8d:02:d6:60:19:1b:44:1c:9e:aa:0a:bd:dc:46:75:bc:3d: 14:0f:b0:00:38:98:6e:42:7b:63:20:77:ee:eb:93:e9:11:42: 0a:8a:da:3d:00:d0:3a:e2:1b:3a:3a:9d:94:bd:70:f0:27:67: 62:f0:9d:e6:87:86:73:6e:c0:41:c4:1a:68:61:ea:57:2a:66: 9f:d1:64:0f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIDAOCCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDUxMzExMjIwMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNmEwNDVlZDgtMDE4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRFzbJACXaJp7wmkI6qHMMRMiugY5G5tKpNxqI9KcZa3Hs6MIGZkdLDqog4 GEpNh2lx4FpO3/O2gw4ICO9Whoejmam1e7KWfVLZqxa6/zWp/f7bE3mCTDhFyh35 ZYqPtbG7Q9SEgqHnGyaEfcwhvWFFOWkD1XeETVhEs/3uJTQzmvaWLhysr13r7Ery Pq/LgdUkgmF8+pK7ML89RaLTrb5RG6ujfQFqPk5McJQBo12f/4zdVSoMn3flI30x xYU4ZDOobNyFOR2r6PrQ8o0h0tNErWTeIDrBDQ9+HJ1Jy/3aNJ3er5Y1CbHWy6qz W/GD4rAvhborAlfStcMDp23AECECAwEAAaOCApowggKWMB0GA1UdDgQWBBSbW0e1 eO0pVd/0LbHyqN/D9Rco3TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFFMkQwQzg0 NDM4RTExRjFBMDU1ODEzM0NBODMzNzczLnJvYTBZBggrBgEFBQcBBwEB/wRKMEgw KgQCAAEwJAMEAmcC6AMEAmcV6AMEAnaX0AMEApaBPAMEApaBWAMEAaOArjAaBAIA AjAUMBIDBwAkABjgAAEDBwAkABjgAAIwDQYJKoZIhvcNAQELBQADggEBAGhHTg4L eBYhTwwdmInDhppUrXkvhVHGpPmc+qg2p5qKBmsFRl7z7zt0nmcwGJEm8I/cvaRS PFRsJhuedLYKePr0RIl170NHBAhqWX9JNI+j+EN6zDXdZLREwrk0pshoDgEOIl34 szUVA/7ZmKlf/L9CtvLyXFJ2ci21NR3KuxL/X7NK80f2HIi8XXHRCOWCY6qLTqwN 4sqKccK4v4a/7ciGtgwpXCsNBEQhWnBeBV5maudgMEGNAtZgGRtEHJ6qCr3cRnW8 PRQPsAA4mG5Ce2Mgd+7rk+kRQgqK2j0A0DriGzo6nZS9cPAnZ2LwneaHhnNuwEHE Gmhh6lcqZp/RZA8= -----END CERTIFICATE-----Generated at Wed May 13 14:59:38 2026 by rpki-client