$ rpki-client -vvf rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa File: D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa (raw, json) Hash identifier: wpKQaDtk4522Xfw0+W+DXk4L4hMquP4bjYyy3bYl4xk= Subject key identifier: D2:E9:20:C1:EC:F2:0C:92:0B:00:73:73:D5:9D:00:F3:9B:92:77:98 Certificate issuer: /CN=A918F862/serialNumber=E852A58DE8719F8BC6BD64949854B47447B89CDE Certificate serial: 11C8 Authority key identifier: E8:52:A5:8D:E8:71:9F:8B:C6:BD:64:94:98:54:B4:74:47:B8:9C:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:47:06 +0000 ROA not before: Wed 10 Sep 2025 17:27:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132372 IP address blocks: 103.28.90.0/24 maxlen: 24 103.28.91.0/24 maxlen: 24 103.72.162.0/23 maxlen: 24 103.117.20.0/24 maxlen: 24 103.122.164.0/24 maxlen: 24 2403:fd40:1001::/48 maxlen: 48 2403:fd40:1002::/48 maxlen: 48 2403:fd40:1003::/48 maxlen: 48 2403:fd40:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.crl rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4552 (0x11c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F862, serialNumber=E852A58DE8719F8BC6BD64949854B47447B89CDE Validity Not Before: Sep 10 17:27:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4435a-9374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:37:62:c9:5d:57:08:3c:e9:e2:e8:30:e3: e2:ce:24:b9:0e:f7:a6:02:3d:26:1f:c5:bf:b5:ca: ec:0a:51:5a:e6:ad:af:88:49:eb:e5:81:9e:73:bc: 01:51:60:b4:2c:7c:22:05:d9:58:88:9f:2c:09:5b: d0:29:48:cb:93:bb:dd:b1:e1:a4:b0:a7:3f:f2:7c: 18:14:46:96:12:24:56:48:df:ab:06:7b:60:28:9c: 37:f4:0c:46:1c:4f:1e:ba:e1:cf:55:77:79:b4:96: f8:55:b0:78:b5:ee:6e:a5:55:75:9b:f7:61:97:49: aa:0e:e9:58:c5:f3:58:1c:c3:4e:4a:90:12:c5:60: b9:b0:9a:33:67:84:0d:30:f0:23:02:f7:05:38:84: aa:2b:34:f1:7e:9b:22:77:59:13:d2:35:a8:80:e0: 67:9f:56:f5:75:15:15:4a:c0:e5:02:df:a5:28:9d: dc:e1:1f:4d:81:6b:24:38:1f:76:dd:f9:72:70:7e: 81:8e:2c:33:71:61:83:e7:3e:a3:bc:21:10:30:8f: 55:8e:a2:ba:63:1e:91:c1:b5:e5:78:e7:ea:33:9b: 44:ab:9d:98:b6:95:af:c4:2d:25:e3:70:c2:12:dd: 4e:0a:67:90:5b:ec:26:d8:ca:1b:3f:65:20:50:67: b5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E9:20:C1:EC:F2:0C:92:0B:00:73:73:D5:9D:00:F3:9B:92:77:98 X509v3 Authority Key Identifier: keyid:E8:52:A5:8D:E8:71:9F:8B:C6:BD:64:94:98:54:B4:74:47:B8:9C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.28.90.0/23 103.72.162.0/23 103.117.20.0/24 103.122.164.0/24 IPv6: 2403:fd40:1001::-2403:fd40:1003:ffff:ffff:ffff:ffff:ffff 2403:fd40:a000::/48 Signature Algorithm: sha256WithRSAEncryption 83:43:b5:9c:ee:b2:e8:de:fc:5b:cc:2f:83:e0:c3:60:fb:71: 33:eb:dc:93:a6:15:ef:30:c9:a4:17:45:61:ed:80:82:ea:0b: bd:33:22:6e:16:74:22:0d:45:ce:50:a9:b9:5e:94:ec:7d:33: 05:53:0d:e3:ab:b9:ff:0e:04:4d:a8:9d:e4:72:eb:2d:90:42: be:b2:fc:02:1e:b4:8d:69:cc:e0:5c:76:c7:67:61:28:9f:1c: 3a:a8:64:46:80:ce:44:9c:c0:12:86:69:4c:81:c1:1c:4d:6a: c4:b0:36:88:39:82:59:35:09:ab:4e:32:85:1a:e5:6d:8c:6c: 92:f5:d7:12:b0:54:22:99:48:b3:c1:a3:a0:79:e9:4b:37:ce: 77:88:74:d6:63:a0:a2:0a:b8:01:17:3c:62:b0:c2:56:b6:07: ef:dc:2b:72:e0:11:c3:09:e4:e2:68:f3:97:99:b7:43:5e:c5: 3b:72:97:c0:17:f3:a7:a9:3f:b4:7c:6c:cb:b8:89:46:d0:ac: e0:95:38:0c:e8:60:af:6e:1f:ea:a0:93:98:b2:b7:4a:ee:54: a8:e5:84:d5:e4:32:93:4f:bf:12:30:3f:1a:87:b8:b5:d8:73: 22:09:4e:bf:6b:87:d4:ec:73:0f:35:98:be:d1:ad:ab:a9:ec: 66:73:e4:6c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICEcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4NjIxMTAvBgNVBAUTKEU4NTJBNThERTg3MTlGOEJDNkJENjQ5NDk4NTRCNDc0 NDdCODlDREUwHhcNMjUwOTEwMTcyNzAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDM1YS05Mzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8E3YsldVwg86eLoMOPiziS5DvemAj0mH8W/tcrsClFa5q2viEnr5YGec7wB UWC0LHwiBdlYiJ8sCVvQKUjLk7vdseGksKc/8nwYFEaWEiRWSN+rBntgKJw39AxG HE8euuHPVXd5tJb4VbB4te5upVV1m/dhl0mqDulYxfNYHMNOSpASxWC5sJozZ4QN MPAjAvcFOISqKzTxfpsid1kT0jWogOBnn1b1dRUVSsDlAt+lKJ3c4R9NgWskOB92 3flycH6BjiwzcWGD5z6jvCEQMI9VjqK6Yx6RwbXleOfqM5tEq52YtpWvxC0l43DC Et1OCmeQW+wm2MobP2UgUGe1SwIDAQABo4IClzCCApMwHQYDVR0OBBYEFNLpIMHs 8gySCwBzc9WdAPObkneYMB8GA1UdIwQYMBaAFOhSpY3ocZ+Lxr1klJhUtHRHuJze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg2Mi8xRTZGNkMxMjBG RjkxMUU5QTBEOTJCMEZDNEY5QUUwMi82RktsamVoeG40dkd2V1NVbUZTMGRFZTRu TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZGS2xqZWh4bjR2R3ZXU1VtRlMwZEVlNG5ONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4NjIvMUU2RjZDMTIwRkY5MTFFOUEwRDkyQjBGQzRGOUFFMDIvRDFEN0Y5QUUw RkY5MTFFOUI0NUUzQjEwQzRGOUFFMDIucm9hMFYGCCsGAQUFBwEHAQH/BEcwRTAe BAIAATAYAwQBZxxaAwQBZ0iiAwQAZ3UUAwQAZ3qkMCMEAgACMB0wEgMHACQD/UAQ AQMHAiQD/UAQAAMHACQD/UCgADANBgkqhkiG9w0BAQsFAAOCAQEAg0O1nO6y6N78 W8wvg+DDYPtxM+vck6YV7zDJpBdFYe2AguoLvTMibhZ0Ig1FzlCpuV6U7H0zBVMN 46u5/w4ETaid5HLrLZBCvrL8Ah60jWnM4Fx2x2dhKJ8cOqhkRoDORJzAEoZpTIHB HE1qxLA2iDmCWTUJq04yhRrlbYxskvXXErBUIplIs8GjoHnpSzfOd4h01mOgogq4 ARc8YrDCVrYH79wrcuARwwnk4mjzl5m3Q17FO3KXwBfzp6k/tHxsy7iJRtCs4JU4 DOhgr24f6qCTmLK3Su5UqOWE1eQyk0+/EjA/Goe4tdhzIglOv2uH1OxzDzWYvtGt q6nsZnPkbA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:18:30 2026 by rpki-client