$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa File: 365255DA7F1C11EB9D057A0EC4F9AE02.roa (raw, json) Hash identifier: L61O7sNBTUKdOw220D3ipAQcLgtvDTGlgztYtg7Of8w= Subject key identifier: C1:AE:F9:FE:99:10:D0:67:43:97:F1:FD:72:32:11:E6:3E:EF:B3:C8 Certificate issuer: /CN=A918F0F7/serialNumber=50D594D518F1D6C0ACB5009B570778F6F106D5DE Certificate serial: 070F Authority key identifier: 50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:31:29 +0000 ROA not before: Thu 02 Oct 2025 22:23:24 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45230 IP address blocks: 103.8.16.0/24 maxlen: 24 103.8.17.0/24 maxlen: 24 103.8.18.0/24 maxlen: 24 103.8.19.0/24 maxlen: 24 163.47.184.0/24 maxlen: 24 163.47.185.0/24 maxlen: 24 163.47.186.0/24 maxlen: 24 163.47.187.0/24 maxlen: 24 180.222.64.0/24 maxlen: 24 180.222.65.0/24 maxlen: 24 180.222.66.0/24 maxlen: 24 180.222.67.0/24 maxlen: 24 180.222.68.0/24 maxlen: 24 180.222.69.0/24 maxlen: 24 180.222.70.0/24 maxlen: 24 180.222.71.0/24 maxlen: 24 2403:d200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.crl rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1807 (0x70f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0F7, serialNumber=50D594D518F1D6C0ACB5009B570778F6F106D5DE Validity Not Before: Oct 2 22:23:24 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a431a1-a9ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6a:2f:f9:d7:b8:7e:6a:88:d6:66:06:7a:4a: d4:b7:07:91:25:bc:b8:c8:85:c9:c1:df:0d:15:80: 40:22:cf:49:3d:5d:a1:23:c4:db:17:ae:43:58:e5: 2b:62:59:e5:1b:0e:3d:2f:42:82:8f:6b:fa:03:12: f6:e6:cf:f2:6c:3f:f7:2f:3c:69:e7:de:bd:77:36: 91:0a:17:2d:40:0c:38:20:62:fe:80:0b:8b:d5:18: ed:c4:81:03:8d:76:df:ec:fd:32:d2:e0:97:52:71: 12:14:66:24:8d:fb:7c:6e:13:72:d4:2f:c3:2b:17: 6e:0b:50:86:db:5d:b4:1b:b6:c4:04:1d:54:4e:08: 91:d5:ad:82:f5:bb:5c:71:8a:b6:b3:a0:fe:da:ed: cb:c9:71:60:49:e3:16:2f:98:f4:fd:72:2c:41:6e: 55:c0:77:ac:1d:d5:3f:06:88:aa:86:03:95:f9:b7: a9:a8:6f:ef:ba:27:1e:f4:b3:11:cd:33:c1:a9:90: 06:ce:50:70:9e:7a:d6:1b:69:2b:ea:11:66:44:21: d6:45:3d:68:b0:82:01:92:b8:d2:8c:dc:d5:52:14: 5d:03:1e:59:f7:e6:2b:97:72:14:79:7e:b6:9b:e6: 46:27:ba:dc:45:ea:a1:b3:e3:30:3c:6d:01:9e:d2: 6b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AE:F9:FE:99:10:D0:67:43:97:F1:FD:72:32:11:E6:3E:EF:B3:C8 X509v3 Authority Key Identifier: keyid:50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.8.16.0/22 163.47.184.0/22 180.222.64.0/21 IPv6: 2403:d200::/32 Signature Algorithm: sha256WithRSAEncryption 40:7e:26:ac:98:b5:a8:85:a5:51:18:fd:56:72:1d:4b:5c:f6: 66:0e:1d:e3:1f:74:1c:a8:cd:79:0e:46:a6:50:37:81:78:6b: 9f:26:c9:13:eb:d8:6e:2b:0e:c0:1f:e0:03:01:ab:60:6e:9d: 1d:cf:3f:76:00:14:e0:5b:40:c9:88:cc:18:2f:5e:d2:b7:b4: cf:1a:44:3d:45:0c:4e:c7:88:5b:5f:a6:c8:40:3d:2f:28:37: 9c:5f:ab:67:45:17:1d:b0:c6:d4:57:09:e1:5f:b6:fb:db:75: dd:65:38:9d:d8:66:c7:a9:3d:4b:d1:f3:7e:cc:cf:69:9b:0f: 9d:d4:50:72:3a:de:39:67:10:a0:af:b7:b6:4b:53:ac:7b:5f: 7c:81:75:88:36:2c:07:aa:7a:88:85:50:47:78:47:09:4a:3c: d1:ca:e0:15:3d:bf:19:00:1f:b2:ba:38:61:45:d0:98:99:32: ff:95:9e:70:0e:78:5e:4b:9c:8f:29:95:69:30:c8:8f:53:bc: 5f:0a:cc:65:ad:7e:4f:b6:2e:57:9b:6b:5e:a0:6a:fc:72:7e: c8:b1:0d:c1:ee:ac:7c:8f:05:c0:ee:6c:61:0c:55:4b:5c:73: 45:9c:a3:00:7f:e3:cb:d5:0d:c9:ef:b9:13:ac:bb:85:32:a0: b6:c2:98:02 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICBw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwRjcxMTAvBgNVBAUTKDUwRDU5NEQ1MThGMUQ2QzBBQ0I1MDA5QjU3MDc3OEY2 RjEwNkQ1REUwHhcNMjUxMDAyMjIyMzI0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzFhMS1hOWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGov+de4fmqI1mYGekrUtweRJby4yIXJwd8NFYBAIs9JPV2hI8TbF65DWOUr YlnlGw49L0KCj2v6AxL25s/ybD/3Lzxp5969dzaRChctQAw4IGL+gAuL1RjtxIED jXbf7P0y0uCXUnESFGYkjft8bhNy1C/DKxduC1CG2120G7bEBB1UTgiR1a2C9btc cYq2s6D+2u3LyXFgSeMWL5j0/XIsQW5VwHesHdU/BoiqhgOV+bepqG/vuice9LMR zTPBqZAGzlBwnnrWG2kr6hFmRCHWRT1osIIBkrjSjNzVUhRdAx5Z9+Yrl3IUeX62 m+ZGJ7rcReqhs+MwPG0BntJrzwIDAQABo4ICezCCAncwHQYDVR0OBBYEFMGu+f6Z ENBnQ5fx/XIyEeY+77PIMB8GA1UdIwQYMBaAFFDVlNUY8dbArLUAm1cHePbxBtXe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjBGNy9DQjc4QjdDODdG MUExMUVCOTJGRTk4MERDNEY5QUUwMi9VTldVMVJqeDFzQ3N0UUNiVndkNDl2RUcx ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VOV1UxUmp4MXNDc3RRQ2JWd2Q0OXZFRzFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEYwRjcvQ0I3OEI3Qzg3RjFBMTFFQjkyRkU5ODBEQzRGOUFFMDIvMzY1MjU1REE3 RjFDMTFFQjlEMDU3QTBFQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZwgQAwQCoy+4AwQDtN5AMA0EAgACMAcDBQAkA9IAMA0GCSqGSIb3 DQEBCwUAA4IBAQBAfiasmLWohaVRGP1Wch1LXPZmDh3jH3QcqM15DkamUDeBeGuf JskT69huKw7AH+ADAatgbp0dzz92ABTgW0DJiMwYL17St7TPGkQ9RQxOx4hbX6bI QD0vKDecX6tnRRcdsMbUVwnhX7b723XdZTid2GbHqT1L0fN+zM9pmw+d1FByOt45 ZxCgr7e2S1Ose198gXWINiwHqnqIhVBHeEcJSjzRyuAVPb8ZAB+yujhhRdCYmTL/ lZ5wDnheS5yPKZVpMMiPU7xfCsxlrX5Pti5Xm2teoGr8cn7IsQ3B7qx8jwXA7mxh DFVLXHNFnKMAf+PL1Q3J77kTrLuFMqC2wpgC -----END CERTIFICATE-----Generated at Thu Mar 26 13:21:49 2026 by rpki-client