$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/06CAA9C230C211ECBB5A4116C4F9AE02.roa File: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (raw, json) Hash identifier: mMzlkdBS5l7zH1NqOtcSGsyrLWVpyJgkzBlaJ0LOo5U= Subject key identifier: B0:E5:75:45:D9:8F:59:D8:52:97:CF:AE:72:22:81:B7:6E:34:E0:07 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 054B Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/06CAA9C230C211ECBB5A4116C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:47:27 +0000 ROA not before: Thu 05 Feb 2026 09:23:50 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 9744 IP address blocks: 203.33.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Feb 5 09:23:50 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a45f8f-ed96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:53:e5:67:c6:fa:cc:68:97:fb:1d:73:26:20: 8c:f6:ae:7f:35:ce:e4:4f:4c:a4:44:6b:34:57:ca: 1f:5b:40:86:75:d1:62:ec:87:b5:0e:ae:ce:c6:a4: 14:3e:70:98:01:6d:b2:f1:ae:d4:4e:95:f0:21:b4: a1:b9:c0:78:8d:b5:4f:9c:60:93:d6:89:9e:37:58: 9d:4e:92:10:cf:fa:ad:aa:63:10:0d:5d:d7:f4:50: 53:7a:4c:bd:e3:53:46:27:8a:d3:d6:a8:e2:36:3b: 6c:fe:a9:03:a3:90:89:74:21:89:18:bd:01:ef:8d: 35:20:72:d5:73:f7:25:6f:3c:ad:e8:b0:b4:a4:43: 51:9c:9b:7f:73:d6:fb:ac:de:e1:aa:92:19:e8:83: 05:67:7f:52:9f:ee:5c:de:df:c9:80:f7:76:d9:85: 36:f2:74:b3:b4:cf:d3:a3:84:42:99:4b:41:3e:86: 97:41:ca:7c:61:57:98:40:63:44:a3:50:28:b7:5d: eb:46:13:61:80:39:76:7e:21:9e:91:a6:1a:72:85: c6:5e:55:ab:2b:83:fa:cc:7a:13:b3:d2:1c:3e:d8: 9b:31:ee:33:93:ba:44:90:5f:07:3c:35:c5:3d:68: 20:0c:3e:4c:cd:e8:38:fe:42:f2:a6:1b:0f:48:98: 17:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E5:75:45:D9:8F:59:D8:52:97:CF:AE:72:22:81:B7:6E:34:E0:07 X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/06CAA9C230C211ECBB5A4116C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.33.189.0/24 Signature Algorithm: sha256WithRSAEncryption 27:f6:bc:c1:73:b6:35:08:cc:46:3e:d0:70:29:fd:11:f4:72: 76:64:f3:28:bd:77:ec:81:65:5f:06:34:09:3b:a5:a1:8d:11: bd:98:e0:43:cd:98:2e:27:2e:40:30:04:b8:08:97:8e:33:64: 88:d5:2f:af:c9:52:96:2d:44:de:02:e8:d8:04:f9:c6:78:7c: 14:8e:8a:b1:47:d6:dc:8c:e7:15:a0:24:2d:aa:bf:e6:1b:d3: 3f:98:33:45:0a:b3:5d:29:c2:af:26:ae:32:61:0c:62:49:a4: 2c:70:6a:cf:eb:15:26:8c:86:f7:cb:e1:14:2e:d3:a6:f0:64: 8e:6b:e1:f2:f6:97:65:fc:37:3e:b6:c9:62:02:8a:1c:85:37: 6a:8e:2a:63:dd:4e:28:67:28:93:25:5b:bf:69:16:f3:21:a7: dc:47:93:99:ef:e3:89:d4:ec:d5:bc:b0:bf:16:b1:cc:ca:46: d6:f8:ee:17:d7:dd:7e:90:30:7e:9b:14:a3:03:bd:56:a9:ad: df:27:32:be:9a:b0:76:58:91:6e:8c:0f:b7:e0:41:99:34:b7: 71:90:d5:29:d9:15:e2:82:d8:fa:b8:60:32:28:51:84:93:1b: 2d:79:63:18:fa:eb:a8:4f:e3:6c:5e:08:0b:aa:33:b3:9f:3d: 52:8c:d1:e6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjYwMjA1MDkyMzUwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWY4Zi1lZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVPlZ8b6zGiX+x1zJiCM9q5/Nc7kT0ykRGs0V8ofW0CGddFi7Ie1Dq7OxqQU PnCYAW2y8a7UTpXwIbShucB4jbVPnGCT1omeN1idTpIQz/qtqmMQDV3X9FBTeky9 41NGJ4rT1qjiNjts/qkDo5CJdCGJGL0B7401IHLVc/clbzyt6LC0pENRnJt/c9b7 rN7hqpIZ6IMFZ39Sn+5c3t/JgPd22YU28nSztM/To4RCmUtBPoaXQcp8YVeYQGNE o1Aot13rRhNhgDl2fiGekaYacoXGXlWrK4P6zHoTs9IcPtibMe4zk7pEkF8HPDXF PWggDD5Mzeg4/kLyphsPSJgXMwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLDldUXZ j1nYUpfPrnIigbduNOAHMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBCQkYvRTQ5MTEyM0EzMEJGMTFFQ0E4NUM0NDE0QzRGOUFFMDIvMDZDQUE5QzIz MEMyMTFFQ0JCNUE0MTE2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyyG9MA0GCSqGSIb3DQEBCwUAA4IBAQAn9rzBc7Y1CMxGPtBwKf0R 9HJ2ZPMovXfsgWVfBjQJO6WhjRG9mOBDzZguJy5AMAS4CJeOM2SI1S+vyVKWLUTe AujYBPnGeHwUjoqxR9bcjOcVoCQtqr/mG9M/mDNFCrNdKcKvJq4yYQxiSaQscGrP 6xUmjIb3y+EULtOm8GSOa+Hy9pdl/Dc+tsliAoochTdqjipj3U4oZyiTJVu/aRbz IafcR5OZ7+OJ1OzVvLC/FrHMykbW+O4X191+kDB+mxSjA71Wqa3fJzK+mrB2WJFu jA+34EGZNLdxkNUp2RXigtj6uGAyKFGEkxsteWMY+uuoT+NsXggLqjOznz1SjNHm -----END CERTIFICATE-----Generated at Mon Mar 2 09:21:51 2026 by rpki-client