$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa File: 282282B60D3011ED8DC4D26BC4F9AE02.roa (raw, json) Hash identifier: NTAu1POY/0focVHyecBa518pFNBNoc4kf83eDxIep6I= Subject key identifier: D6:EC:61:9E:D0:92:94:5E:AD:68:49:04:C5:9D:CA:3B:85:EB:3E:ED Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 0309 Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:05:11 +0000 ROA not before: Thu 03 Jul 2025 02:06:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137890 IP address blocks: 103.116.156.0/24 maxlen: 24 2001:df5:5700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Jul 3 02:06:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40147-1979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:55:da:5d:8e:ae:43:de:21:a0:cf:2f:d5:6d: 1b:77:32:de:10:98:5e:8d:b3:3f:95:18:04:62:48: 18:7b:06:7e:69:84:3a:2b:f1:8a:08:0a:81:6d:d2: b3:d9:36:35:93:2e:a2:d5:c0:d9:e2:8b:8f:6b:d7: 30:66:a9:9f:f1:eb:10:9a:bf:6f:4c:65:df:f2:6a: 33:35:27:67:34:2a:c6:6c:67:53:a3:34:be:0e:cb: 4c:ad:6b:0d:22:9e:4a:aa:8a:6c:f9:8f:aa:d9:31: 27:a0:0d:0d:e5:57:54:78:a1:c2:49:9c:73:a1:46: f3:54:9a:0a:1b:39:01:30:7a:62:65:0a:e9:66:72: 28:48:58:81:c0:e0:33:cd:7b:f3:94:c4:ba:6d:5d: de:26:3c:fe:5e:34:01:a9:f2:7c:93:05:50:5f:44: 3d:f2:7a:27:f0:00:e0:5d:e5:d9:a6:d1:b0:29:63: 9e:d2:30:8c:7e:52:92:bc:b7:5d:e8:a9:ec:55:b9: 23:9e:0c:8d:00:3c:69:5c:f0:5b:13:26:c6:d9:60: 40:b0:c0:35:82:29:5e:a3:a4:54:01:35:07:9f:ef: 22:e0:f6:2b:65:fd:f8:10:7f:0b:b9:bf:52:9a:90: ef:f9:b4:98:6e:46:85:0b:8d:bc:42:ae:4f:0e:b5: 73:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EC:61:9E:D0:92:94:5E:AD:68:49:04:C5:9D:CA:3B:85:EB:3E:ED X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.116.156.0/24 IPv6: 2001:df5:5700::/48 Signature Algorithm: sha256WithRSAEncryption 2d:a8:51:16:1b:0d:92:fe:c2:ec:1c:a0:5a:c8:ce:93:7f:89: 34:ae:6b:12:2a:c1:d9:46:c2:b3:12:f1:7f:1a:0d:31:df:62: 51:c0:db:5e:34:6d:3f:b3:ac:6d:93:c9:a8:6b:cc:be:91:66: 5d:e2:e4:43:be:c1:60:d7:be:07:40:60:32:4c:15:33:45:3d: 7b:64:b3:82:16:16:d4:c9:03:cd:8b:90:02:cd:ff:25:5a:c5: 79:07:f3:2b:42:e1:7c:63:f9:d4:14:df:f9:87:63:b7:b2:cb: e5:73:26:9f:9e:75:09:4c:0e:fc:4d:82:7e:10:fa:a3:ab:21: cf:43:da:d4:0e:e0:9c:d6:f7:72:ac:ee:52:f8:c5:8b:a3:13: 3e:9e:f5:f1:57:08:8f:1f:53:bf:c2:86:92:41:62:a6:f5:be: 34:f9:92:f2:81:c4:35:c3:0f:98:46:e5:30:38:04:ab:01:22: 47:3e:ae:6c:d3:1e:07:e6:25:21:12:b7:8f:1f:1c:4e:d3:37: 80:b0:f4:b3:49:a9:a3:90:d0:33:75:5d:fd:4d:04:1a:9a:5c: c2:1a:45:cf:34:18:2d:72:df:7c:43:ea:b5:7c:3b:93:84:59: 9d:1e:ba:a0:52:df:8e:f8:e8:3f:8a:01:b2:90:60:9a:18:a9: ea:b4:fc:09 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUwNzAzMDIwNjQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDE0Ny0xOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1XaXY6uQ94hoM8v1W0bdzLeEJhejbM/lRgEYkgYewZ+aYQ6K/GKCAqBbdKz 2TY1ky6i1cDZ4ouPa9cwZqmf8esQmr9vTGXf8mozNSdnNCrGbGdTozS+DstMrWsN Ip5Kqops+Y+q2TEnoA0N5VdUeKHCSZxzoUbzVJoKGzkBMHpiZQrpZnIoSFiBwOAz zXvzlMS6bV3eJjz+XjQBqfJ8kwVQX0Q98non8ADgXeXZptGwKWOe0jCMflKSvLdd 6KnsVbkjngyNADxpXPBbEybG2WBAsMA1gileo6RUATUHn+8i4PYrZf34EH8Lub9S mpDv+bSYbkaFC428Qq5PDrVzJwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNbsYZ7Q kpRerWhJBMWdyjuF6z7tMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FGMzcvQzhDQzVBQjQwRDJEMTFFREIyQzlCQjY5QzRGOUFFMDIvMjgyMjgyQjYw RDMwMTFFRDhEQzREMjZCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ3ScMA8EAgACMAkDBwAgAQ31VwAwDQYJKoZIhvcNAQELBQADggEB AC2oURYbDZL+wuwcoFrIzpN/iTSuaxIqwdlGwrMS8X8aDTHfYlHA2140bT+zrG2T yahrzL6RZl3i5EO+wWDXvgdAYDJMFTNFPXtks4IWFtTJA82LkALN/yVaxXkH8ytC 4Xxj+dQU3/mHY7eyy+VzJp+edQlMDvxNgn4Q+qOrIc9D2tQO4JzW93Ks7lL4xYuj Ez6e9fFXCI8fU7/ChpJBYqb1vjT5kvKBxDXDD5hG5TA4BKsBIkc+rmzTHgfmJSES t48fHE7TN4Cw9LNJqaOQ0DN1Xf1NBBqaXMIaRc80GC1y33xD6rV8O5OEWZ0euqBS 34746D+KAbKQYJoYqeq0/Ak= -----END CERTIFICATE-----Generated at Mon Mar 2 11:35:47 2026 by rpki-client