$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/1C2EA330925011EE9571EE40C4F9AE02.roa File: 1C2EA330925011EE9571EE40C4F9AE02.roa (raw, json) Hash identifier: AWpj07zDh15fklZ/07HH5rxQ/lecHbJoawDHB8JKXuo= Subject key identifier: FF:EB:08:E4:D1:94:7E:47:6B:0E:DC:E3:62:08:7B:4E:45:70:F2:78 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 01A7 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/1C2EA330925011EE9571EE40C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:40:00 +0000 ROA not before: Thu 01 May 2025 04:11:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136478 IP address blocks: 103.184.253.0/24 maxlen: 24 2001:df0:94c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: May 1 04:11:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3df40-f726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c2:5e:ec:5d:05:2b:19:f2:fc:cf:78:40:ba: 0c:58:51:e1:5f:2b:0e:39:1c:b8:02:cb:98:75:6d: e9:1a:14:b3:ad:76:b5:9a:5a:42:b3:77:40:96:96: 94:31:08:68:4f:1d:1c:9e:a3:ee:69:ce:7e:b3:5e: e3:a8:4f:7b:44:be:82:17:63:3e:de:33:94:b1:75: 92:8b:d3:bb:85:c0:0f:54:f1:93:ee:ad:67:b0:53: 22:28:58:7f:e2:36:54:b7:47:eb:fa:79:0b:f3:b2: d6:94:3b:ef:24:f5:36:e2:d1:f6:c8:d4:ae:1e:46: 46:95:c9:3e:d1:de:06:5d:60:8c:f2:ad:50:83:cf: bb:b8:80:20:3b:d9:71:4e:7b:7b:8b:69:cb:5e:9e: 7c:66:63:98:47:15:f3:e9:19:28:6e:63:b7:cb:19: 0b:30:be:6b:93:14:5f:6e:cb:5c:a8:57:3c:a3:34: c7:31:c3:7c:6f:7d:d3:f8:9f:5c:62:f3:2d:47:14: 5a:89:c6:40:7b:c3:1e:07:cf:a8:c6:37:50:6c:37: 5b:2d:84:07:5c:6a:e8:46:05:96:9f:cc:46:3c:69: e1:89:3e:be:4a:e6:73:ae:63:cf:77:76:35:89:f3: 0b:1d:88:6d:ef:c4:3c:58:aa:e9:51:7f:27:6c:ed: fb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EB:08:E4:D1:94:7E:47:6B:0E:DC:E3:62:08:7B:4E:45:70:F2:78 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/1C2EA330925011EE9571EE40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.184.253.0/24 IPv6: 2001:df0:94c0::/48 Signature Algorithm: sha256WithRSAEncryption fe:29:54:59:6c:df:1c:4d:bd:6b:72:ba:0b:ac:25:8e:39:13: ce:63:91:7e:87:ec:94:3e:20:1e:cd:ec:86:b7:5f:9d:27:7e: 02:45:13:c6:3b:f5:5f:65:a5:38:d6:1e:88:ba:35:8a:77:dc: 14:4e:c4:61:8b:2a:dc:e6:c9:40:7b:cc:6f:06:41:ce:a2:17: 51:01:80:4a:64:da:7c:70:31:92:e5:76:1f:d7:ea:6a:82:d5: ff:08:21:28:46:2c:6e:55:c2:79:b7:63:8d:04:de:59:cd:9b: 34:3d:79:fc:d7:a2:0e:3a:5e:0e:9d:06:5d:40:81:e4:59:ef: b8:a4:59:98:20:53:01:84:21:ad:f5:5f:42:4b:ef:ff:3a:68: 43:4d:7a:6d:18:9c:0f:ad:b0:2f:eb:e6:37:91:cc:bc:12:8a: 97:b0:3f:20:f6:5d:8e:bf:41:5d:a8:35:b6:5f:9f:a0:a1:cc: f8:9e:2e:ff:05:8e:92:af:12:17:e6:c5:61:23:ab:64:41:74: 1d:1b:e3:f6:54:58:5c:b0:76:c2:fe:65:32:f4:b6:97:cf:08: f9:95:b5:ae:0c:ee:e8:f0:2b:3f:3d:8e:1c:71:12:f9:c3:c8: 96:d4:18:c1:dc:f3:35:77:26:22:37:8a:1f:af:70:2b:4e:f8: ea:11:ee:79 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjUwNTAxMDQxMTA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGY0MC1mNzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycJe7F0FKxny/M94QLoMWFHhXysOORy4AsuYdW3pGhSzrXa1mlpCs3dAlpaU MQhoTx0cnqPuac5+s17jqE97RL6CF2M+3jOUsXWSi9O7hcAPVPGT7q1nsFMiKFh/ 4jZUt0fr+nkL87LWlDvvJPU24tH2yNSuHkZGlck+0d4GXWCM8q1Qg8+7uIAgO9lx Tnt7i2nLXp58ZmOYRxXz6RkobmO3yxkLML5rkxRfbstcqFc8ozTHMcN8b33T+J9c YvMtRxRaicZAe8MeB8+oxjdQbDdbLYQHXGroRgWWn8xGPGnhiT6+SuZzrmPPd3Y1 ifMLHYht78Q8WKrpUX8nbO37cwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFP/rCOTR lH5Haw7c42IIe05FcPJ4MB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FDMzMvQjBCRkFDMzQ5MjRGMTFFRUE4QzIyNDQwQzRGOUFFMDIvMUMyRUEzMzA5 MjUwMTFFRTk1NzFFRTQwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ7j9MA8EAgACMAkDBwAgAQ3wlMAwDQYJKoZIhvcNAQELBQADggEB AP4pVFls3xxNvWtyugusJY45E85jkX6H7JQ+IB7N7Ia3X50nfgJFE8Y79V9lpTjW Hoi6NYp33BROxGGLKtzmyUB7zG8GQc6iF1EBgEpk2nxwMZLldh/X6mqC1f8IIShG LG5Vwnm3Y40E3lnNmzQ9efzXog46Xg6dBl1AgeRZ77ikWZggUwGEIa31X0JL7/86 aENNem0YnA+tsC/r5jeRzLwSipewPyD2XY6/QV2oNbZfn6ChzPieLv8FjpKvEhfm xWEjq2RBdB0b4/ZUWFywdsL+ZTL0tpfPCPmVta4M7ujwKz89jhxxEvnDyJbUGMHc 8zV3JiI3ih+vcCtO+OoR7nk= -----END CERTIFICATE-----Generated at Mon Mar 2 18:07:41 2026 by rpki-client