$ rpki-client -vvf rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa File: D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa (raw, json) Hash identifier: Q+MByc8T2XeogXXlhjKWwZOofAxDdME7Hv2flN/h3ts= Subject key identifier: 1B:AA:7C:E1:91:E8:4F:42:E0:C4:BA:A1:79:C4:D3:58:29:25:14:0D Certificate issuer: /CN=A918F862/serialNumber=E852A58DE8719F8BC6BD64949854B47447B89CDE Certificate serial: 11F2 Authority key identifier: E8:52:A5:8D:E8:71:9F:8B:C6:BD:64:94:98:54:B4:74:47:B8:9C:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa Signing time: Fri 08 May 2026 07:09:54 +0000 ROA not before: Fri 08 May 2026 07:09:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132372 IP address blocks: 103.28.90.0/24 maxlen: 24 103.28.91.0/24 maxlen: 24 103.72.162.0/23 maxlen: 24 103.91.194.0/24 maxlen: 24 103.117.20.0/24 maxlen: 24 103.122.164.0/24 maxlen: 24 2403:fd40:1001::/48 maxlen: 48 2403:fd40:1002::/48 maxlen: 48 2403:fd40:1003::/48 maxlen: 48 2403:fd40:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.crl rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4594 (0x11f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F862, serialNumber=E852A58DE8719F8BC6BD64949854B47447B89CDE Validity Not Before: May 8 07:09:54 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69fd8c42-138c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ea:f4:d9:c8:b4:ab:6d:6d:fe:d3:f7:66:22: 4f:4a:4e:e9:9d:0b:96:04:43:28:f0:29:96:22:c0: 73:28:a5:96:a1:f9:19:28:58:6b:b0:0e:73:47:35: 2a:07:3a:d6:88:ea:6a:7f:86:22:49:47:61:b2:dc: 70:af:7a:aa:e1:6e:75:68:09:20:78:ea:e2:04:78: e5:5a:52:b8:2f:f5:16:03:3b:73:6f:b7:65:94:31: f1:d1:32:1b:b0:2f:84:72:c5:71:b8:46:c8:87:4e: 3d:0e:cd:46:bd:29:a0:47:a5:fd:f2:5f:a8:29:a4: 3e:59:b6:87:e5:a8:7d:73:b9:8b:c6:5d:1f:6d:53: df:a3:41:21:43:c2:29:0e:a7:d7:3c:aa:b3:ab:8c: cb:1e:3c:b9:f2:e8:97:17:55:cd:47:5f:6c:b4:28: 1d:ce:7b:e5:d6:7a:c5:72:2b:97:93:0d:15:68:bf: 70:ac:dc:c9:5d:47:b8:58:5b:6f:60:01:87:08:c3: 96:91:92:de:4c:34:56:c8:64:b0:72:29:ef:a5:78: 4b:c3:40:ad:88:c0:45:15:79:a3:39:82:60:1b:df: 56:1a:37:a8:3b:03:97:ba:6c:3b:74:53:e7:ec:de: e0:a5:b1:3f:de:3e:56:5c:9b:2f:93:4b:c6:bb:1f: 9f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AA:7C:E1:91:E8:4F:42:E0:C4:BA:A1:79:C4:D3:58:29:25:14:0D X509v3 Authority Key Identifier: keyid:E8:52:A5:8D:E8:71:9F:8B:C6:BD:64:94:98:54:B4:74:47:B8:9C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.28.90.0/23 103.72.162.0/23 103.91.194.0/24 103.117.20.0/24 103.122.164.0/24 IPv6: 2403:fd40:1001::-2403:fd40:1003:ffff:ffff:ffff:ffff:ffff 2403:fd40:a000::/48 Signature Algorithm: sha256WithRSAEncryption 87:b1:15:09:97:70:7d:9a:47:65:b8:63:d4:04:ee:d2:f7:7b: 46:21:97:9d:0e:8a:f1:65:4a:e0:34:7f:85:7f:4d:5b:ec:3e: cd:2d:89:a1:21:2b:b4:ed:3f:45:be:39:a1:e9:c6:10:24:fb: 9d:e0:83:97:48:91:2e:9e:bd:79:70:ca:42:00:be:0b:40:60: 2b:c1:aa:8d:2c:27:7f:ba:23:2c:9d:de:93:dc:0c:03:90:c5: 0a:4d:c5:fa:07:2e:96:ed:dd:d2:da:78:47:92:1e:6d:aa:1d: 7b:14:da:ce:99:4d:0a:69:2e:0c:81:8f:36:50:d5:f2:cd:bf: 11:11:cc:ff:c3:f8:f3:e1:07:77:7c:9e:83:d3:05:2b:1f:1e: f2:8c:e2:78:36:c4:7b:49:00:79:13:81:64:ed:39:0a:4e:ee: b7:ae:6d:ba:c1:5a:0c:60:1f:b7:40:ec:f0:f1:02:08:40:e1: f4:0c:b6:a2:13:d8:4d:1b:7d:7d:46:bc:e1:c2:c2:f8:0c:96: d1:85:6d:96:7b:24:3e:3d:5d:90:78:4a:a0:58:e6:3a:52:4b: bd:48:34:a6:7a:f2:54:03:d0:9f:d9:cf:d4:ca:9e:55:a3:f9: 9d:42:1f:70:1a:be:b7:a5:fe:0a:ed:de:da:39:37:c0:10:8f: 4b:80:67:b2 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICEfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4NjIxMTAvBgNVBAUTKEU4NTJBNThERTg3MTlGOEJDNkJENjQ5NDk4NTRCNDc0 NDdCODlDREUwHhcNMjYwNTA4MDcwOTU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZkOGM0Mi0xMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsur02ci0q21t/tP3ZiJPSk7pnQuWBEMo8CmWIsBzKKWWofkZKFhrsA5zRzUq BzrWiOpqf4YiSUdhstxwr3qq4W51aAkgeOriBHjlWlK4L/UWAztzb7dllDHx0TIb sC+EcsVxuEbIh049Ds1GvSmgR6X98l+oKaQ+WbaH5ah9c7mLxl0fbVPfo0EhQ8Ip DqfXPKqzq4zLHjy58uiXF1XNR19stCgdznvl1nrFciuXkw0VaL9wrNzJXUe4WFtv YAGHCMOWkZLeTDRWyGSwcinvpXhLw0CtiMBFFXmjOYJgG99WGjeoOwOXumw7dFPn 7N7gpbE/3j5WXJsvk0vGux+fuwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBuqfOGR 6E9C4MS6oXnE01gpJRQNMB8GA1UdIwQYMBaAFOhSpY3ocZ+Lxr1klJhUtHRHuJze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg2Mi8xRTZGNkMxMjBG RjkxMUU5QTBEOTJCMEZDNEY5QUUwMi82RktsamVoeG40dkd2V1NVbUZTMGRFZTRu TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZGS2xqZWh4bjR2R3ZXU1VtRlMwZEVlNG5ONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4NjIvMUU2RjZDMTIwRkY5MTFFOUEwRDkyQjBGQzRGOUFFMDIvRDFEN0Y5QUUw RkY5MTFFOUI0NUUzQjEwQzRGOUFFMDIucm9hMFwGCCsGAQUFBwEHAQH/BE0wSzAk BAIAATAeAwQBZxxaAwQBZ0iiAwQAZ1vCAwQAZ3UUAwQAZ3qkMCMEAgACMB0wEgMH ACQD/UAQAQMHAiQD/UAQAAMHACQD/UCgADANBgkqhkiG9w0BAQsFAAOCAQEAh7EV CZdwfZpHZbhj1ATu0vd7RiGXnQ6K8WVK4DR/hX9NW+w+zS2JoSErtO0/Rb45oenG ECT7neCDl0iRLp69eXDKQgC+C0BgK8GqjSwnf7ojLJ3ek9wMA5DFCk3F+gculu3d 0tp4R5IebaodexTazplNCmkuDIGPNlDV8s2/ERHM/8P48+EHd3yeg9MFKx8e8ozi eDbEe0kAeROBZO05Ck7ut65tusFaDGAft0Ds8PECCEDh9Ay2ohPYTRt9fUa84cLC +AyW0YVtlnskPj1dkHhKoFjmOlJLvUg0pnryVAPQn9nP1MqeVaP5nUIfcBq+t6X+ Cu3e2jk3wBCPS4Bnsg== -----END CERTIFICATE-----Generated at Wed May 13 05:16:09 2026 by rpki-client