$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B06FFDDE616411EB9E823579C4F9AE02.roa File: B06FFDDE616411EB9E823579C4F9AE02.roa (raw, json) Hash identifier: XAfBaqu89IW8/ArbaEb/LRKOE7Z9hEAH+Vj8bA/5fG8= Subject key identifier: ED:10:92:BE:9A:C5:9F:9A:07:7B:8D:76:7F:58:E4:C4:49:B9:4D:8C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DF61 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B06FFDDE616411EB9E823579C4F9AE02.roa Signing time: Wed 29 Apr 2026 04:51:52 +0000 ROA not before: Wed 29 Apr 2026 04:51:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141322 IP address blocks: 103.133.228.0/22 maxlen: 24 103.152.173.0/24 maxlen: 24 103.174.31.0/24 maxlen: 24 2402:59a0::/32 maxlen: 32 2406:d840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 10:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57185 (0xdf61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 29 04:51:52 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69f18e68-0d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9f:60:39:7f:a2:14:f1:9a:a3:25:aa:0c:7d: ef:e3:c8:aa:83:42:c4:d9:17:3a:a5:e1:3d:f4:c3: 22:55:97:f2:a3:d7:25:49:52:34:77:84:18:7a:36: 63:7a:c8:ee:99:1f:25:b6:05:6f:cb:7b:c2:f7:f1: 01:ba:80:df:fc:ba:e9:25:7b:fa:b7:6b:9f:1a:8e: 60:f9:17:b6:8a:fb:ad:47:e6:f3:02:20:4f:03:76: 07:5c:d0:0d:23:d4:04:e9:ff:ac:13:b6:9c:1b:ed: ee:40:04:6c:ad:44:d9:16:32:e5:79:4d:61:86:e8: 9c:00:f5:7d:0c:e3:5a:08:7e:28:3c:e6:44:13:56: 6d:86:f8:0b:72:79:ce:9e:22:2c:4d:7e:04:22:30: 8e:26:c8:5c:5e:7c:ff:62:bc:8b:b9:b9:7c:7f:b2: 19:47:2d:1d:10:ee:b6:b9:c8:c0:4e:6b:b3:68:09: e0:10:4f:ce:b2:bb:88:c6:b3:18:f3:c0:49:d8:47: aa:a5:f7:07:0d:25:f0:5c:ed:80:08:00:3a:89:01: 61:11:e6:2c:38:ab:7f:d5:75:10:d8:45:f3:f4:b2: 1c:08:58:9b:b2:ee:6e:9a:32:30:4e:1e:11:d9:b1: 6f:c6:6f:42:e2:fd:6e:38:1f:ed:bc:4a:d3:a6:38: 3a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:10:92:BE:9A:C5:9F:9A:07:7B:8D:76:7F:58:E4:C4:49:B9:4D:8C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B06FFDDE616411EB9E823579C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.133.228.0/22 103.152.173.0/24 103.174.31.0/24 IPv6: 2402:59a0::/32 2406:d840::/32 Signature Algorithm: sha256WithRSAEncryption 5f:eb:57:61:08:1b:fe:d4:1e:94:e5:d3:41:0a:0c:78:5a:5a: 74:63:c4:61:79:7e:2a:97:93:d5:3b:22:65:85:19:f4:26:50: a0:c8:06:9c:c7:ed:0d:d2:c2:27:83:7d:60:db:fd:9b:47:be: 1f:ab:c1:0d:8e:92:85:f3:76:61:40:5b:23:0b:73:a8:9d:6c: b7:3e:20:1d:5f:4a:0b:1b:94:1b:17:76:2c:7a:90:e3:aa:8e: d8:3b:b5:40:30:52:3a:65:99:d5:65:b8:b8:15:85:30:6c:00: c2:31:54:51:7d:3b:73:42:3e:d4:49:0e:16:44:ee:aa:56:8c: b0:d8:68:00:9d:c5:6d:5f:ad:17:80:ae:eb:97:99:62:45:6c: 89:31:75:56:9c:d6:7e:d5:67:d5:43:ab:c3:83:df:ff:b3:ab: dc:56:eb:cc:e4:e3:2d:3c:f0:b2:f1:f7:74:2f:ca:39:42:ff: 9b:c3:36:01:cf:87:77:64:c5:26:72:df:ba:dc:47:7c:3f:ac: 65:18:52:5f:00:d2:91:5e:c2:bc:fc:41:ee:cb:7a:51:83:5c: 10:04:33:17:e8:78:ca:de:60:c2:3a:02:ac:9e:8d:e6:0d:8d: bd:a6:14:cb:a6:ce:9d:ec:f8:85:4a:31:8b:68:f6:bd:20:a3: a0:54:10:53 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIDAN9hMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDQyOTA0NTE1MloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlmMThlNjgtMGQ4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2fYDl/ohTxmqMlqgx97+PIqoNCxNkXOqXhPfTDIlWX8qPXJUlSNHeEGHo2 Y3rI7pkfJbYFb8t7wvfxAbqA3/y66SV7+rdrnxqOYPkXtor7rUfm8wIgTwN2B1zQ DSPUBOn/rBO2nBvt7kAEbK1E2RYy5XlNYYbonAD1fQzjWgh+KDzmRBNWbYb4C3J5 zp4iLE1+BCIwjibIXF58/2K8i7m5fH+yGUctHRDutrnIwE5rs2gJ4BBPzrK7iMaz GPPASdhHqqX3Bw0l8FztgAgAOokBYRHmLDirf9V1ENhF8/SyHAhYm7LubpoyME4e Edmxb8ZvQuL9bjgf7bxK06Y4On8CAwEAAaOCAoIwggJ+MB0GA1UdDgQWBBTtEJK+ msWfmgd7jXZ/WOTESblNjDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IwNkZGRERF NjE2NDExRUI5RTgyMzU3OUM0RjlBRTAyLnJvYTBBBggrBgEFBQcBBwEB/wQyMDAw GAQCAAEwEgMEAmeF5AMEAGeYrQMEAGeuHzAUBAIAAjAOAwUAJAJZoAMFACQG2EAw DQYJKoZIhvcNAQELBQADggEBAF/rV2EIG/7UHpTl00EKDHhaWnRjxGF5fiqXk9U7 ImWFGfQmUKDIBpzH7Q3SwieDfWDb/ZtHvh+rwQ2OkoXzdmFAWyMLc6idbLc+IB1f SgsblBsXdix6kOOqjtg7tUAwUjplmdVluLgVhTBsAMIxVFF9O3NCPtRJDhZE7qpW jLDYaACdxW1frReAruuXmWJFbIkxdVac1n7VZ9VDq8OD3/+zq9xW68zk4y088LLx 93QvyjlC/5vDNgHPh3dkxSZy37rcR3w/rGUYUl8A0pFewrz8Qe7LelGDXBAEMxfo eMreYMI6AqyejeYNjb2mFMumzp3s+IVKMYto9r0go6BUEFM= -----END CERTIFICATE-----Generated at Wed May 13 14:18:15 2026 by rpki-client