$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/895CBF103C9811F180AF97B6A2833773.roa File: 895CBF103C9811F180AF97B6A2833773.roa (raw, json) Hash identifier: KGbrCVGPbK3l5+FVMsoRR1dEsDr01MjUthojlCAAE98= Subject key identifier: 2F:43:5C:C0:D2:75:EF:39:93:46:E1:6B:22:F9:5A:4E:CF:73:E3:94 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DEC9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/895CBF103C9811F180AF97B6A2833773.roa Signing time: Mon 20 Apr 2026 09:16:57 +0000 ROA not before: Mon 20 Apr 2026 09:16:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134334 IP address blocks: 103.200.56.0/22 maxlen: 24 203.191.60.0/22 maxlen: 24 2403:8780::/41 maxlen: 48 2403:8780:100::/40 maxlen: 40 2403:8780:200::/40 maxlen: 40 2403:8780:300::/40 maxlen: 40 2403:8780:400::/40 maxlen: 40 2403:8780:500::/40 maxlen: 40 2403:8780:600::/40 maxlen: 40 2403:8780:700::/40 maxlen: 40 2403:8780:800::/40 maxlen: 40 2403:8780:900::/40 maxlen: 40 2403:8780:a00::/40 maxlen: 40 2403:8780:b00::/40 maxlen: 40 2403:8780:c00::/40 maxlen: 40 2403:8780:d00::/40 maxlen: 40 2403:8780:e00::/40 maxlen: 40 2403:8780:f00::/40 maxlen: 40 2403:8780:1000::/40 maxlen: 40 2403:8780:1100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57033 (0xdec9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 20 09:16:56 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69e5ef08-2239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9e:bf:2f:e5:2f:b3:80:83:2b:01:7a:d6:c7: df:45:d5:85:aa:75:50:51:8b:80:3e:c1:8c:6b:86: f2:2c:d9:0c:ac:2b:82:d2:ff:6f:25:14:7b:31:f4: c7:8a:50:6f:37:48:55:1f:76:89:39:d6:f2:1b:79: 2a:70:2e:b1:68:bc:39:9b:ea:02:9b:6e:18:07:5e: 9f:bf:f5:5b:e0:17:4c:f7:4c:a5:65:cb:be:c0:59: 0b:01:6d:54:32:98:45:01:c5:af:c6:54:da:3c:f7: 9f:df:72:25:08:b6:9f:78:26:4a:e8:9a:8e:94:d6: 3b:d6:37:94:4f:36:54:23:db:8b:bc:b8:2d:e6:ed: 52:03:90:d2:d2:d3:07:8c:0c:13:1c:39:d1:44:0f: 7a:85:55:6a:3d:4d:b0:92:3b:1d:99:ab:65:f7:54: 2a:3f:06:0e:43:69:d1:19:79:a2:1f:ca:35:ef:ab: 32:e4:d1:30:f4:0d:55:f2:b2:cf:48:63:b7:da:d1: 15:0f:82:76:8d:26:02:2b:9c:67:eb:c9:55:ae:b6: d7:a5:4a:ac:84:42:5d:57:84:d0:0c:af:4c:36:ab: be:f0:d8:0a:0f:8a:27:0a:15:0f:89:f2:17:d3:9d: 4d:03:dc:29:bd:35:d1:e4:8d:5b:91:3d:58:25:2b: a9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:43:5C:C0:D2:75:EF:39:93:46:E1:6B:22:F9:5A:4E:CF:73:E3:94 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/895CBF103C9811F180AF97B6A2833773.roa sbgp-ipAddrBlock: critical IPv4: 103.200.56.0/22 203.191.60.0/22 IPv6: 2403:8780::/41 2403:8780:100::-2403:8780:11ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0c:b7:e7:56:e4:72:4b:41:13:51:a9:7f:12:f1:e3:72:87:ce: e8:15:57:75:3f:8c:4f:b3:64:c0:d1:87:a2:27:e8:92:56:b4: 70:99:ce:70:55:49:cd:3a:3f:92:a2:7d:ba:43:23:cc:b4:09: 38:ee:8e:19:39:32:5a:7c:2a:fd:07:cc:8e:9b:71:ab:74:5c: 38:e2:85:44:71:f4:94:98:ab:76:fa:30:e0:5e:bf:a3:93:13: 51:55:e9:00:02:e5:4a:cc:90:a2:c6:ac:3f:a2:3a:9e:cc:53: 40:81:3c:2a:8e:6e:44:a8:12:54:08:7b:b4:52:d4:e1:82:d7: 90:4e:c7:72:05:ac:f3:f0:9b:0e:8a:80:47:f4:0b:b6:ea:6f: 2a:5e:9f:73:bf:58:9a:e3:bd:1d:11:fc:c8:f5:fa:6c:55:29: 56:af:39:ec:a8:68:2c:5f:01:f2:4b:c5:04:e5:57:1b:f2:94: f3:2e:81:02:35:45:42:be:ef:81:a8:22:55:1f:6f:f8:5c:e6: fe:0c:df:c2:a8:11:20:90:4e:cc:5b:a2:c3:1a:1f:7e:32:f2: ee:e5:f2:f2:df:3b:1c:0d:60:b4:3b:df:f7:d6:e5:73:cc:37: e4:77:fe:a6:72:1f:14:34:a6:2f:d0:66:ca:7b:1a:8b:5d:ee: 7c:53:9f:5d -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIDAN7JMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDQyMDA5MTY1NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjllNWVmMDgtMjIzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+evy/lL7OAgysBetbH30XVhap1UFGLgD7BjGuG8izZDKwrgtL/byUUezH0 x4pQbzdIVR92iTnW8ht5KnAusWi8OZvqAptuGAden7/1W+AXTPdMpWXLvsBZCwFt VDKYRQHFr8ZU2jz3n99yJQi2n3gmSuiajpTWO9Y3lE82VCPbi7y4LebtUgOQ0tLT B4wMExw50UQPeoVVaj1NsJI7HZmrZfdUKj8GDkNp0Rl5oh/KNe+rMuTRMPQNVfKy z0hjt9rRFQ+Cdo0mAiucZ+vJVa6216VKrIRCXVeE0AyvTDarvvDYCg+KJwoVD4ny F9OdTQPcKb010eSNW5E9WCUrqRsCAwEAAaOCAokwggKFMB0GA1UdDgQWBBQvQ1zA 0nXvOZNG4Wsi+VpOz3PjlDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg5NUNCRjEw M0M5ODExRjE4MEFGOTdCNkEyODMzNzczLnJvYTBIBggrBgEFBQcBBwEB/wQ5MDcw EgQCAAEwDAMEAmfIOAMEAsu/PDAhBAIAAjAbAwcHJAOHgAAAMBADBgAkA4eAAQMG ASQDh4AQMA0GCSqGSIb3DQEBCwUAA4IBAQAMt+dW5HJLQRNRqX8S8eNyh87oFVd1 P4xPs2TA0YeiJ+iSVrRwmc5wVUnNOj+Son26QyPMtAk47o4ZOTJafCr9B8yOm3Gr dFw44oVEcfSUmKt2+jDgXr+jkxNRVekAAuVKzJCixqw/ojqezFNAgTwqjm5EqBJU CHu0UtThgteQTsdyBazz8JsOioBH9Au26m8qXp9zv1ia470dEfzI9fpsVSlWrzns qGgsXwHyS8UE5Vcb8pTzLoECNUVCvu+BqCJVH2/4XOb+DN/CqBEgkE7MW6LDGh9+ MvLu5fLy3zscDWC0O9/31uVzzDfkd/6mch8UNKYv0GbKexqLXe58U59d -----END CERTIFICATE-----Generated at Wed May 13 12:40:24 2026 by rpki-client