$ rpki-client -vvf rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/AA71F05C60EF11EF8D645D72C4F9AE02.roa File: AA71F05C60EF11EF8D645D72C4F9AE02.roa (raw, json) Hash identifier: swmukQ/6inpZ4FJ1TMTK1/37WsZOejfr5bfE8ReGGHI= Subject key identifier: D7:29:34:C1:68:C4:92:CC:52:24:10:0B:87:75:03:41:15:18:2C:E8 Certificate issuer: /CN=A917452D/serialNumber=E4AE80372A867987BB2A0ABBE110AB804370D5E3 Certificate serial: 03A9 Authority key identifier: E4:AE:80:37:2A:86:79:87:BB:2A:0A:BB:E1:10:AB:80:43:70:D5:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5K6ANyqGeYe7Kgq74RCrgENw1eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/AA71F05C60EF11EF8D645D72C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:14:40 +0000 ROA not before: Wed 19 Nov 2025 00:17:21 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 19905 IP address blocks: 202.166.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/5K6ANyqGeYe7Kgq74RCrgENw1eM.crl rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/5K6ANyqGeYe7Kgq74RCrgENw1eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5K6ANyqGeYe7Kgq74RCrgENw1eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917452D, serialNumber=E4AE80372A867987BB2A0ABBE110AB804370D5E3 Validity Not Before: Nov 19 00:17:21 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47400-532c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:87:a0:ef:a4:e1:bf:36:cd:a7:b8:ef:a7:19: 04:18:b3:b7:5f:46:78:1b:18:a1:dd:d7:50:0e:53: 3b:7e:ee:b4:f8:35:79:46:47:51:01:3f:36:1b:94: 92:28:db:99:bf:16:16:c4:17:6d:72:07:a7:7b:2b: d1:c7:65:6a:e1:3e:24:4d:ae:6f:41:d6:a2:22:47: cd:41:88:28:1a:5d:e2:8b:d0:9c:a1:66:6c:43:b4: 0c:85:34:cf:8b:df:44:35:f1:80:0e:72:64:87:1d: 8b:9a:b0:1d:73:96:29:1b:ea:58:e2:52:66:38:15: 7f:6b:9f:4d:d8:66:2e:2a:60:cf:0e:b2:b3:b8:b5: 4a:78:d2:af:96:f4:66:8f:cb:dc:0b:28:2b:17:a7: 5c:a8:5c:51:af:82:06:cc:bb:11:30:59:64:5d:93: ed:de:da:c3:aa:7d:55:66:d0:da:b0:6f:6d:79:21: a5:ab:2c:57:f3:0f:90:6f:fa:c0:7b:4a:8f:99:f8: 9f:96:5e:70:bf:4b:d2:90:94:31:4a:51:7a:a9:e9: 6a:48:a6:85:21:40:e7:f0:9b:c9:77:93:df:ba:3e: 3b:3f:63:31:50:69:f1:ea:9b:bc:6d:b2:97:b8:31: 26:cd:57:43:81:83:3b:19:3e:2f:47:38:c2:a5:1e: 9c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:29:34:C1:68:C4:92:CC:52:24:10:0B:87:75:03:41:15:18:2C:E8 X509v3 Authority Key Identifier: keyid:E4:AE:80:37:2A:86:79:87:BB:2A:0A:BB:E1:10:AB:80:43:70:D5:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/5K6ANyqGeYe7Kgq74RCrgENw1eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5K6ANyqGeYe7Kgq74RCrgENw1eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917452D/AA42171E276811ED9A221730C4F9AE02/AA71F05C60EF11EF8D645D72C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.166.0.0/17 Signature Algorithm: sha256WithRSAEncryption 9f:76:27:22:77:5d:7c:44:c8:29:cb:dd:78:01:b7:7f:19:af: a7:b7:1b:45:da:a5:6f:d6:70:6b:f6:ec:14:f2:36:17:65:af: 62:bc:1c:1a:47:a8:a0:b6:08:31:80:7b:a8:f3:17:98:54:16: d3:4b:84:6e:b1:65:b6:80:ac:a5:5c:df:cf:df:f5:35:2d:4e: 27:46:20:c3:75:68:e0:84:24:ba:81:47:49:73:68:38:eb:b1: ed:fa:30:32:c4:73:45:f8:c9:e0:32:f6:cc:35:85:95:a5:21: 9f:88:bd:aa:6c:00:02:ab:56:5c:f8:b4:58:48:a3:06:c0:43: ce:38:81:53:f3:36:1b:9e:80:46:5d:4d:47:86:52:80:71:4c: 19:cb:4f:d9:54:77:d1:42:12:25:2b:a8:ec:a8:f2:3d:95:7a: 3a:37:03:78:06:38:c7:4a:fe:87:94:aa:10:44:e8:2d:cd:25: be:03:f0:75:6e:2e:e0:6a:1e:da:3d:6c:61:b2:c7:a5:b8:6e: c5:2d:ae:2f:43:82:48:b2:14:40:8e:65:80:9a:54:a1:8c:7f: 19:93:5c:d3:40:53:f8:cc:c0:a7:e6:6f:ee:ca:4c:4e:34:52: 64:69:0c:75:af:7f:27:d7:73:cb:07:20:b5:18:80:da:69:45: 5b:8a:c6:31 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1MkQxMTAvBgNVBAUTKEU0QUU4MDM3MkE4Njc5ODdCQjJBMEFCQkUxMTBBQjgw NDM3MEQ1RTMwHhcNMjUxMTE5MDAxNzIxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzQwMC01MzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Yeg76ThvzbNp7jvpxkEGLO3X0Z4Gxih3ddQDlM7fu60+DV5RkdRAT82G5SS KNuZvxYWxBdtcgeneyvRx2Vq4T4kTa5vQdaiIkfNQYgoGl3ii9CcoWZsQ7QMhTTP i99ENfGADnJkhx2LmrAdc5YpG+pY4lJmOBV/a59N2GYuKmDPDrKzuLVKeNKvlvRm j8vcCygrF6dcqFxRr4IGzLsRMFlkXZPt3trDqn1VZtDasG9teSGlqyxX8w+Qb/rA e0qPmfifll5wv0vSkJQxSlF6qelqSKaFIUDn8JvJd5Pfuj47P2MxUGnx6pu8bbKX uDEmzVdDgYM7GT4vRzjCpR6cnwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNcpNMFo xJLMUiQQC4d1A0EVGCzoMB8GA1UdIwQYMBaAFOSugDcqhnmHuyoKu+EQq4BDcNXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDUyRC9BQTQyMTcxRTI3 NjgxMUVEOUEyMjE3MzBDNEY5QUUwMi81SzZBTnlxR2VZZTdLZ3E3NFJDcmdFTncx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLNkFOeXFHZVllN0tncTc0UkNyZ0VOdzFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ1MkQvQUE0MjE3MUUyNzY4MTFFRDlBMjIxNzMwQzRGOUFFMDIvQUE3MUYwNUM2 MEVGMTFFRjhENjQ1RDcyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQHyqYAMA0GCSqGSIb3DQEBCwUAA4IBAQCfdicid118RMgpy914Abd/ Ga+ntxtF2qVv1nBr9uwU8jYXZa9ivBwaR6igtggxgHuo8xeYVBbTS4RusWW2gKyl XN/P3/U1LU4nRiDDdWjghCS6gUdJc2g467Ht+jAyxHNF+MngMvbMNYWVpSGfiL2q bAACq1Zc+LRYSKMGwEPOOIFT8zYbnoBGXU1HhlKAcUwZy0/ZVHfRQhIlK6jsqPI9 lXo6NwN4BjjHSv6HlKoQROgtzSW+A/B1bi7gah7aPWxhsseluG7FLa4vQ4JIshRA jmWAmlShjH8Zk1zTQFP4zMCn5m/uykxONFJkaQx1r38n13PLByC1GIDaaUVbisYx -----END CERTIFICATE-----Generated at Mon Mar 2 16:12:50 2026 by rpki-client