$ rpki-client -vvf rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa File: 1D88BC36F8C711E6B6C42C6CC4F9AE02.roa (raw, json) Hash identifier: k4TlMYilN23yIOsOzxylamYG8qpDaep1a1zgx1W7uB0= Subject key identifier: 0B:5B:50:5C:A3:17:38:96:7C:58:1B:8B:87:B1:A7:F7:BF:A7:2A:BE Certificate issuer: /CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Certificate serial: 1C64 Authority key identifier: 8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:29:37 +0000 ROA not before: Tue 02 Sep 2025 16:34:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131999 IP address blocks: 103.29.168.0/23 maxlen: 23 103.229.187.0/24 maxlen: 24 2401:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7268 (0x1c64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FDBF, serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Validity Not Before: Sep 2 16:34:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42321-0d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a1:77:83:d3:81:af:f5:57:09:9a:35:44:30: b1:62:c4:e9:6d:eb:0b:63:7e:48:25:3e:dc:65:0d: 0f:51:5c:d6:fd:20:f3:c0:29:63:66:b8:c7:c9:b5: 2a:4c:35:bf:45:6a:90:a9:23:d9:be:1d:bd:40:6e: 03:9f:a4:35:8a:77:9a:43:eb:61:88:8d:4e:33:34: d1:7e:41:a6:77:99:1d:f5:df:05:c0:00:39:d0:60: 6f:e7:c1:25:61:c5:93:69:53:40:ae:cf:34:50:43: b6:67:48:bf:a7:49:8e:6c:31:08:93:2f:2a:e0:9f: 31:9a:04:54:3d:07:ce:b2:df:de:a2:b6:35:27:c6: 7b:f1:a9:81:a7:24:87:48:95:fe:1e:65:73:2b:55: d6:87:d5:c0:01:82:10:10:98:59:e2:1c:89:2d:4a: 9c:32:eb:40:e8:ea:06:9e:19:bc:1a:46:e6:64:f8: bf:34:d9:b5:0c:30:7a:2a:07:ab:37:7f:2e:c4:ac: 72:d1:89:c1:71:52:57:7d:0f:38:83:bb:62:07:bb: 2f:6b:c9:04:96:50:c1:fd:42:d3:de:d7:b7:7b:03: 03:7b:6b:6a:10:2a:66:27:be:fa:98:fe:73:28:c7: 69:56:75:03:7c:0d:dd:38:5a:6e:33:dc:b3:28:19: 10:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5B:50:5C:A3:17:38:96:7C:58:1B:8B:87:B1:A7:F7:BF:A7:2A:BE X509v3 Authority Key Identifier: keyid:8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.29.168.0/23 103.229.187.0/24 IPv6: 2401:b300::/32 Signature Algorithm: sha256WithRSAEncryption a3:ab:05:6f:22:71:3e:fc:b7:ff:7a:8c:8f:7b:4a:a2:14:b0: 95:e0:7d:1c:5f:af:8c:02:91:63:b9:18:84:ea:d0:65:a5:de: 59:88:f8:aa:9b:71:18:83:f8:4e:f0:5c:b0:86:91:7a:56:32: 54:90:33:84:43:9f:d9:72:e6:e1:7a:6a:57:27:f8:67:be:84: 2b:0d:4d:ae:b8:63:62:a7:49:8f:5a:59:ff:0a:90:06:61:dd: 96:09:07:02:26:88:61:e9:7f:bb:da:9a:52:e6:9b:f2:6f:0b: a6:6e:05:75:90:96:50:92:8b:b7:3b:e8:17:21:31:cc:45:4e: 19:84:73:2b:32:d2:63:2a:03:ea:d7:8d:46:bb:6a:13:7c:8e: a2:06:4a:0a:68:08:60:29:72:be:7e:d8:61:37:d3:ba:a8:5c: 41:1f:61:fd:11:cf:3e:0d:69:11:53:a9:bd:b4:82:e0:76:b7: e5:bd:ab:7f:0f:a7:f0:bb:4e:bf:56:d3:6c:af:c4:7a:81:eb: 6b:f9:8b:43:41:21:bb:56:72:44:c9:3f:ce:7a:38:1d:1c:3d: 9a:8c:83:5d:07:b2:18:2e:ba:e6:10:b0:69:89:85:c5:f2:be: 48:02:47:64:b6:b4:3e:73:08:35:87:95:25:82:65:a4:c4:12: 18:37:86:0c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICHGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEQkYxMTAvBgNVBAUTKDhEOUEyMjhDQzUyRjgwMEVFNUE0MzIzMDdCMzQzMkM2 M0Q4QTlEODcwHhcNMjUwOTAyMTYzNDMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjMyMS0wZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKF3g9OBr/VXCZo1RDCxYsTpbesLY35IJT7cZQ0PUVzW/SDzwCljZrjHybUq TDW/RWqQqSPZvh29QG4Dn6Q1ineaQ+thiI1OMzTRfkGmd5kd9d8FwAA50GBv58El YcWTaVNArs80UEO2Z0i/p0mObDEIky8q4J8xmgRUPQfOst/eorY1J8Z78amBpySH SJX+HmVzK1XWh9XAAYIQEJhZ4hyJLUqcMutA6OoGnhm8GkbmZPi/NNm1DDB6Kger N38uxKxy0YnBcVJXfQ84g7tiB7sva8kEllDB/ULT3te3ewMDe2tqECpmJ776mP5z KMdpVnUDfA3dOFpuM9yzKBkQpwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFAtbUFyj FziWfFgbi4exp/e/pyq+MB8GA1UdIwQYMBaAFI2aIozFL4AO5aQyMHs0MsY9ip2H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkRCRi85OUEzMEFGOEY4 QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdBN2xwREl3ZXpReXhqMktu WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pab2lqTVV2Z0E3bHBESXdlelF5eGoyS25ZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZEQkYvOTlBMzBBRjhGOEM1MTFFNjlFQkM1NTZBQzRGOUFFMDIvMUQ4OEJDMzZG OEM3MTFFNkI2QzQyQzZDQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZx2oAwQAZ+W7MA0EAgACMAcDBQAkAbMAMA0GCSqGSIb3DQEBCwUA A4IBAQCjqwVvInE+/Lf/eoyPe0qiFLCV4H0cX6+MApFjuRiE6tBlpd5ZiPiqm3EY g/hO8FywhpF6VjJUkDOEQ5/ZcubhempXJ/hnvoQrDU2uuGNip0mPWln/CpAGYd2W CQcCJohh6X+72ppS5pvybwumbgV1kJZQkou3O+gXITHMRU4ZhHMrMtJjKgPq141G u2oTfI6iBkoKaAhgKXK+fthhN9O6qFxBH2H9Ec8+DWkRU6m9tILgdrflvat/D6fw u06/VtNsr8R6getr+YtDQSG7VnJEyT/OejgdHD2ajINdB7IYLrrmELBpiYXF8r5I AkdktrQ+cwg1h5UlgmWkxBIYN4YM -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:01 2026 by rpki-client