$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4DE6E99024F411F0A4E9DF2DC4F9AE02.roa File: 4DE6E99024F411F0A4E9DF2DC4F9AE02.roa (raw, json) Hash identifier: HJw/DdogaKUK7fezLRp4q1TucG93z0RV3xNR9loGEM8= Subject key identifier: 5B:BE:AE:7E:70:63:1E:B0:C8:BB:8A:1C:6C:17:AA:8C:86:93:57:FF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DC24 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4DE6E99024F411F0A4E9DF2DC4F9AE02.roa Signing time: Fri 13 Mar 2026 08:12:41 +0000 ROA not before: Fri 13 Mar 2026 08:12:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149617 IP address blocks: 45.248.188.0/24 maxlen: 24 103.160.28.0/23 maxlen: 24 103.160.132.0/23 maxlen: 24 103.185.242.0/23 maxlen: 24 2001:df1:1640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 05:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56356 (0xdc24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 13 08:12:41 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69b3c6f9-c053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:1b:a2:f8:86:8b:7b:02:49:3f:cf:62:87:e5: e0:6b:2e:55:67:e9:d4:93:00:6b:e2:ff:54:1d:fa: cc:b5:ec:e2:bc:5a:51:c5:e5:c9:f1:8b:e9:a0:ee: e6:ef:c8:3d:68:31:bc:20:4d:d4:e6:1c:14:f6:b0: 01:82:92:f0:3d:30:7a:79:30:4e:e0:4c:d0:a8:b7: 2b:02:8c:e9:15:0c:5f:03:f8:1c:e2:ed:e0:5d:69: fe:82:4d:2c:c3:88:40:20:8c:f4:41:01:c3:75:15: 39:b3:2c:60:fa:ef:1a:3b:49:08:bf:05:22:31:88: 9e:e2:e4:0f:31:66:2d:64:e6:84:e4:83:ed:ff:86: 74:b8:ec:f7:57:7a:b2:15:31:b5:07:f1:c8:7e:ee: 09:71:62:9e:59:fa:2f:19:4c:12:2b:06:70:e0:b3: 02:2f:bc:bb:a4:d8:de:a4:17:2b:7a:d4:a1:8d:17: 38:8a:d3:d0:85:12:13:be:ed:c4:70:d4:6e:ed:34: 92:5b:68:86:07:20:a5:f2:37:8c:c7:1c:a4:57:77: 1e:2a:11:23:b0:cc:9a:4a:9b:9f:5e:cc:28:01:bd: 35:6b:88:4b:3e:31:3a:36:b1:c4:7b:32:d6:66:48: 62:90:2a:6b:15:c9:c0:4e:e5:61:7b:68:81:a5:f4: e3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BE:AE:7E:70:63:1E:B0:C8:BB:8A:1C:6C:17:AA:8C:86:93:57:FF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4DE6E99024F411F0A4E9DF2DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.248.188.0/24 103.160.28.0/23 103.160.132.0/23 103.185.242.0/23 IPv6: 2001:df1:1640::/48 Signature Algorithm: sha256WithRSAEncryption 8c:b5:0f:cb:3c:84:03:cd:a9:99:6e:e9:6b:66:aa:3c:1d:a7: 02:c4:06:16:da:c7:ef:ed:bb:fa:67:18:b9:49:36:e0:26:50: 83:a5:e7:22:e1:dd:dc:dc:d3:db:28:5c:17:f3:64:f8:b8:45: a3:3c:cf:93:c6:9a:72:43:06:99:bb:83:97:e7:5f:61:82:ae: 3d:a0:52:d2:d9:30:5d:ee:27:71:07:be:47:7f:30:ec:27:0f: 83:86:a4:40:f8:3a:63:7a:4d:55:60:19:e3:0c:36:24:7b:fd: be:b0:d9:97:83:06:44:4e:63:19:aa:54:3e:65:72:e0:26:58: 74:75:9f:e9:28:c6:ec:84:80:78:ad:39:74:ed:12:bc:07:81: f4:bf:ac:cf:ae:6c:2f:b2:a8:80:a7:e3:4b:36:4d:cf:11:7c: c7:20:93:6b:e7:62:6f:8b:7f:69:36:95:d0:8d:3f:dc:86:a6: 23:33:eb:57:db:63:ee:19:a8:92:d0:64:33:f3:fa:85:dc:13: ea:6c:ea:11:ba:f5:ff:80:61:2f:a2:78:c6:85:bb:15:4a:6a: ed:65:94:df:a9:ee:41:ba:d6:d5:2c:b3:b3:62:94:a0:f7:75: bc:1a:f6:ff:5f:dd:77:23:00:34:9a:ad:3b:09:8d:0a:fb:2b: 28:5d:59:37 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIDANwkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDMxMzA4MTI0MVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjliM2M2ZjktYzA1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIQboviGi3sCST/PYofl4GsuVWfp1JMAa+L/VB36zLXs4rxaUcXlyfGL6aDu 5u/IPWgxvCBN1OYcFPawAYKS8D0wenkwTuBM0Ki3KwKM6RUMXwP4HOLt4F1p/oJN LMOIQCCM9EEBw3UVObMsYPrvGjtJCL8FIjGInuLkDzFmLWTmhOSD7f+GdLjs91d6 shUxtQfxyH7uCXFinln6LxlMEisGcOCzAi+8u6TY3qQXK3rUoY0XOIrT0IUSE77t xHDUbu00kltohgcgpfI3jMccpFd3HioRI7DMmkqbn17MKAG9NWuISz4xOjaxxHsy 1mZIYpAqaxXJwE7lYXtogaX049kCAwEAAaOCAoMwggJ/MB0GA1UdDgQWBBRbvq5+ cGMesMi7ihxsF6qMhpNX/zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRERTZFOTkw MjRGNDExRjBBNEU5REYyREM0RjlBRTAyLnJvYTBCBggrBgEFBQcBBwEB/wQzMDEw HgQCAAEwGAMEAC34vAMEAWegHAMEAWeghAMEAWe58jAPBAIAAjAJAwcAIAEN8RZA MA0GCSqGSIb3DQEBCwUAA4IBAQCMtQ/LPIQDzamZbulrZqo8HacCxAYW2sfv7bv6 Zxi5STbgJlCDpeci4d3c3NPbKFwX82T4uEWjPM+TxppyQwaZu4OX519hgq49oFLS 2TBd7idxB75HfzDsJw+DhqRA+Dpjek1VYBnjDDYke/2+sNmXgwZETmMZqlQ+ZXLg Jlh0dZ/pKMbshIB4rTl07RK8B4H0v6zPrmwvsqiAp+NLNk3PEXzHIJNr52Jvi39p NpXQjT/chqYjM+tX22PuGaiS0GQz8/qF3BPqbOoRuvX/gGEvonjGhbsVSmrtZZTf qe5ButbVLLOzYpSg93W8Gvb/X913IwA0mq07CY0K+ysoXVk3 -----END CERTIFICATE-----Generated at Thu Mar 26 14:13:44 2026 by rpki-client