$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A6523EE438F11F181F2FBBDCA833773.roa File: 4A6523EE438F11F181F2FBBDCA833773.roa (raw, json) Hash identifier: HOeEy70AhZtbVPMS6Xio3H2FFgUnUPRGLdCI8mA1WFA= Subject key identifier: A3:E6:59:A7:C1:AA:55:13:55:33:7C:4D:11:4B:B1:EF:8B:0A:72:7C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DF6C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A6523EE438F11F181F2FBBDCA833773.roa Signing time: Wed 29 Apr 2026 05:58:24 +0000 ROA not before: Wed 29 Apr 2026 05:58:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150045 IP address blocks: 103.158.212.0/24 maxlen: 24 103.158.213.0/24 maxlen: 24 103.191.112.0/24 maxlen: 24 103.191.113.0/24 maxlen: 24 163.128.66.0/24 maxlen: 24 2001:df0:ff40::/48 maxlen: 48 2001:df1:9240::/48 maxlen: 48 2001:df6:92c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57196 (0xdf6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 29 05:58:24 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69f19e00-88f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a0:28:3e:63:65:9a:b5:ba:0c:c9:19:e7:f1: d8:33:df:e4:e8:58:0b:ca:cc:99:81:e5:d0:d0:c8: 88:37:98:2d:6f:c3:31:d0:38:5f:66:54:ba:40:15: 95:60:78:d0:ef:ee:8d:21:9b:06:2b:fa:54:79:b3: 25:02:97:67:31:0e:10:6c:95:d6:8f:bf:e5:a3:81: 59:05:b5:ef:d3:c7:54:3b:fb:96:e5:ef:2c:da:42: d9:8d:9f:c2:7b:dc:35:08:cb:33:e3:44:9a:54:2f: 58:d6:f6:e4:f4:dd:d2:b8:9f:36:9f:31:1e:7d:7e: fc:4d:45:d2:ba:ce:e0:41:fa:64:2e:41:e2:ad:06: 1d:87:bc:c8:cb:42:8c:6e:8b:35:fc:b3:f3:28:06: 45:67:ce:1d:bb:e8:9f:72:6f:44:50:e8:c9:2f:f1: e6:b3:86:d5:f7:81:5c:50:43:1f:52:4a:ec:f3:64: ce:9b:cc:a1:c7:04:1a:f9:79:e5:29:6b:eb:5a:77: b0:f4:a3:c6:6b:d8:82:6b:dc:48:52:44:d6:1a:b5: a2:c4:1d:f6:20:b5:b2:34:6e:3e:38:a6:90:2e:f6: 48:9d:b2:97:4b:d0:d6:28:45:79:e3:30:2d:d0:45: 23:69:02:47:34:6f:7b:01:71:a2:a9:d1:2c:e9:5c: 0b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E6:59:A7:C1:AA:55:13:55:33:7C:4D:11:4B:B1:EF:8B:0A:72:7C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A6523EE438F11F181F2FBBDCA833773.roa sbgp-ipAddrBlock: critical IPv4: 103.158.212.0/23 103.191.112.0/23 163.128.66.0/24 IPv6: 2001:df0:ff40::/48 2001:df1:9240::/48 2001:df6:92c0::/48 Signature Algorithm: sha256WithRSAEncryption 57:08:20:ce:02:1c:7a:70:c4:fb:a1:26:78:68:3a:28:82:5e: 16:27:50:d0:aa:f0:8a:26:ba:55:f6:2f:3c:a0:06:10:17:62: cf:c2:df:6a:74:dc:5e:9b:51:b4:c5:ef:74:ac:d6:92:a8:f9: f9:2b:ee:00:ee:da:b2:92:b8:d6:67:ed:b1:89:06:80:4d:5c: 04:11:77:81:3f:2d:5b:1d:ff:8a:de:50:0c:9b:43:93:81:f8: 75:38:2c:18:d3:60:77:f0:50:8e:3c:1f:2f:d0:b2:0e:fb:4b: c5:9c:2a:e2:18:7f:95:29:1c:93:14:06:f1:8d:d9:7a:73:b3: b4:70:17:82:e4:8c:66:74:f5:76:9a:c2:58:4d:8e:f1:b6:0c: c9:97:2d:71:36:5c:11:96:5e:96:ff:e3:ec:07:98:ea:89:f0: 7a:22:06:09:1d:e5:b0:1b:af:0c:c2:d8:55:66:ac:cf:a0:50: 83:c7:1f:fb:78:33:fd:cd:7f:52:1d:f8:14:6f:ad:d7:50:d6: 09:d1:ce:66:89:c7:d6:67:8a:2b:5d:d0:f4:88:47:28:4a:80: ba:30:a8:5f:52:c3:e5:c1:37:44:3c:3a:a0:ab:ba:0d:e8:17: c6:a1:dc:d4:45:40:77:f1:ed:82:0b:fd:2e:7e:1c:6f:b9:d5: 9a:98:c2:ce -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIDAN9sMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDQyOTA1NTgyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlmMTllMDAtODhmNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKygKD5jZZq1ugzJGefx2DPf5OhYC8rMmYHl0NDIiDeYLW/DMdA4X2ZUukAV lWB40O/ujSGbBiv6VHmzJQKXZzEOEGyV1o+/5aOBWQW179PHVDv7luXvLNpC2Y2f wnvcNQjLM+NEmlQvWNb25PTd0rifNp8xHn1+/E1F0rrO4EH6ZC5B4q0GHYe8yMtC jG6LNfyz8ygGRWfOHbvon3JvRFDoyS/x5rOG1feBXFBDH1JK7PNkzpvMoccEGvl5 5Slr61p3sPSjxmvYgmvcSFJE1hq1osQd9iC1sjRuPjimkC72SJ2yl0vQ1ihFeeMw LdBFI2kCRzRvewFxoqnRLOlcC+MCAwEAAaOCAo8wggKLMB0GA1UdDgQWBBSj5lmn wapVE1UzfE0RS7HviwpyfDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRBNjUyM0VF NDM4RjExRjE4MUYyRkJCRENBODMzNzczLnJvYTBOBggrBgEFBQcBBwEB/wQ/MD0w GAQCAAEwEgMEAWee1AMEAWe/cAMEAKOAQjAhBAIAAjAbAwcAIAEN8P9AAwcAIAEN 8ZJAAwcAIAEN9pLAMA0GCSqGSIb3DQEBCwUAA4IBAQBXCCDOAhx6cMT7oSZ4aDoo gl4WJ1DQqvCKJrpV9i88oAYQF2LPwt9qdNxem1G0xe90rNaSqPn5K+4A7tqykrjW Z+2xiQaATVwEEXeBPy1bHf+K3lAMm0OTgfh1OCwY02B38FCOPB8v0LIO+0vFnCri GH+VKRyTFAbxjdl6c7O0cBeC5IxmdPV2msJYTY7xtgzJly1xNlwRll6W/+PsB5jq ifB6IgYJHeWwG68MwthVZqzPoFCDxx/7eDP9zX9SHfgUb63XUNYJ0c5micfWZ4or XdD0iEcoSoC6MKhfUsPlwTdEPDqgq7oN6BfGodzURUB38e2CC/0ufhxvudWamMLO -----END CERTIFICATE-----Generated at Wed May 13 13:00:37 2026 by rpki-client