$ rpki-client -vvf rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/1966C856FB9E11ED8309FC1DC4F9AE02.roa File: 1966C856FB9E11ED8309FC1DC4F9AE02.roa (raw, json) Hash identifier: gwP3PNE674NeJVzpcX/6dV+VmggMeTrL/+BFEHoqdPY= Subject key identifier: EB:F7:45:4D:C9:BC:4C:EF:17:9A:1D:07:F7:44:96:86:E9:23:7D:64 Certificate issuer: /CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Certificate serial: 0216 Authority key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/1966C856FB9E11ED8309FC1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:59:25 +0000 ROA not before: Wed 21 Jan 2026 05:48:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 56309 IP address blocks: 43.229.76.0/22 maxlen: 24 103.22.180.0/22 maxlen: 24 2403:2300::/32 maxlen: 36 2403:2300:2::/48 maxlen: 48 2403:2300:3::/48 maxlen: 48 2403:2300:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B540, serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Validity Not Before: Jan 21 05:48:25 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a41c0c-8b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:86:4a:ca:96:e6:85:c0:1a:d7:d3:42:60:5e: a6:29:41:b2:de:67:27:49:1e:4e:60:89:7f:06:1d: 92:7d:e9:48:21:fc:90:ce:63:51:f0:0a:94:6e:8c: 10:6c:60:6f:d6:df:ca:af:b6:1c:5e:7c:59:e6:83: 8e:3d:84:c5:98:59:ff:fe:17:07:24:32:2d:ef:0c: 08:25:d4:f9:a0:1d:16:ef:4c:02:f3:4f:da:5e:3e: 2b:69:81:6e:60:b8:6a:29:91:96:a3:fe:5e:ea:74: ce:f8:c9:05:83:b5:1d:c8:67:50:fc:f1:8c:e7:f6: e3:51:48:60:c7:5a:08:20:b9:e0:92:22:49:02:30: fc:75:96:af:6b:b6:d3:1f:a5:ca:be:20:a9:42:90: c1:bf:04:f2:f6:46:04:46:c9:54:18:f3:46:fe:18: e9:76:e4:70:6b:5d:59:12:d5:fc:47:e5:6a:4d:49: 63:c7:f6:7c:61:3c:4a:99:25:e3:e2:a4:d8:f6:ed: bf:4c:9a:ed:64:72:52:41:c5:a4:eb:95:c7:6e:a3: 28:00:68:83:4a:de:e9:9f:55:6f:f6:84:66:b0:72: 53:3a:3b:77:08:08:3f:08:46:44:f2:f3:7b:46:53: 70:1a:a3:24:5b:d5:e9:27:94:ba:91:94:81:95:48: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F7:45:4D:C9:BC:4C:EF:17:9A:1D:07:F7:44:96:86:E9:23:7D:64 X509v3 Authority Key Identifier: keyid:70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/1966C856FB9E11ED8309FC1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.229.76.0/22 103.22.180.0/22 IPv6: 2403:2300::/32 Signature Algorithm: sha256WithRSAEncryption 25:77:9a:93:8c:45:97:7a:23:6b:b5:44:7e:96:5d:e1:d0:e6: 51:65:8a:fe:75:d1:12:a7:f3:8d:3f:c7:dd:bd:a9:11:b8:ba: 6c:8c:2f:92:85:7b:e0:7d:46:54:f0:4d:3d:8d:64:56:38:b2: 3d:e7:7b:30:48:50:94:f1:b0:aa:67:d2:9c:e5:37:42:17:69: 36:5a:81:d6:d6:3f:15:ea:3b:d0:46:93:8c:04:b0:d6:f8:b2: ed:c9:df:38:e3:96:bd:67:57:e7:c9:9d:9a:17:3a:36:92:47: 61:c7:93:9c:dc:b6:01:54:b4:ed:b3:c3:20:4f:d2:14:c3:7a: 7e:42:fb:28:55:60:79:ba:18:77:8d:c3:73:1a:06:fa:a0:fd: 28:d9:1d:ed:ce:f6:ba:16:49:d0:8a:37:81:07:d1:06:9b:c5: 64:c2:2b:10:66:95:94:94:25:23:36:59:1b:b6:89:6e:b8:8a: 39:72:9f:03:cd:eb:bc:e4:08:8d:89:74:38:13:83:0a:21:8c: 75:ed:0c:42:08:fe:9f:85:4e:73:8c:dc:93:d5:5b:89:17:bc: df:a0:1a:9c:9f:55:8e:fb:f6:39:a1:70:d3:73:d6:80:f7:18: ae:70:59:92:36:f0:4c:e7:bc:e9:27:5f:28:b4:b1:2b:dd:2e: 9d:be:99:c5 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1NDAxMTAvBgNVBAUTKDcwMkZBMUFFOTY4MkIyQjIyRUNERDlBNTMwMTJGMEU2 RjFCQTFCOUMwHhcNMjYwMTIxMDU0ODI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWMwYy04YjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroZKypbmhcAa19NCYF6mKUGy3mcnSR5OYIl/Bh2SfelIIfyQzmNR8AqUbowQ bGBv1t/Kr7YcXnxZ5oOOPYTFmFn//hcHJDIt7wwIJdT5oB0W70wC80/aXj4raYFu YLhqKZGWo/5e6nTO+MkFg7UdyGdQ/PGM5/bjUUhgx1oIILngkiJJAjD8dZava7bT H6XKviCpQpDBvwTy9kYERslUGPNG/hjpduRwa11ZEtX8R+VqTUljx/Z8YTxKmSXj 4qTY9u2/TJrtZHJSQcWk65XHbqMoAGiDSt7pn1Vv9oRmsHJTOjt3CAg/CEZE8vN7 RlNwGqMkW9XpJ5S6kZSBlUinoQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFOv3RU3J vEzvF5odB/dElobpI31kMB8GA1UdIwQYMBaAFHAvoa6WgrKyLs3ZpTAS8Obxuhuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjU0MC9EOTdBOTVCQ0Y4 ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3NySXV6ZG1sTUJMdzV2RzZH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDLWhycGFDc3JJdXpkbWxNQkx3NXZHNkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1NDAvRDk3QTk1QkNGODgwMTFFREI5QUJGQzU2QzRGOUFFMDIvMTk2NkM4NTZG QjlFMTFFRDgzMDlGQzFEQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK+VMAwQCZxa0MA0EAgACMAcDBQAkAyMAMA0GCSqGSIb3DQEBCwUA A4IBAQAld5qTjEWXeiNrtUR+ll3h0OZRZYr+ddESp/ONP8fdvakRuLpsjC+ShXvg fUZU8E09jWRWOLI953swSFCU8bCqZ9Kc5TdCF2k2WoHW1j8V6jvQRpOMBLDW+LLt yd8445a9Z1fnyZ2aFzo2kkdhx5Oc3LYBVLTts8MgT9IUw3p+QvsoVWB5uhh3jcNz Ggb6oP0o2R3tzva6FknQijeBB9EGm8VkwisQZpWUlCUjNlkbtoluuIo5cp8Dzeu8 5AiNiXQ4E4MKIYx17QxCCP6fhU5zjNyT1VuJF7zfoBqcn1WO+/Y5oXDTc9aA9xiu cFmSNvBM57zpJ18otLEr3S6dvpnF -----END CERTIFICATE-----Generated at Mon Mar 2 03:51:28 2026 by rpki-client