$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa File: 6DB6146E0E2F11EDB4659653C4F9AE02.roa (raw, json) Hash identifier: vIuv3POpfEdipkL2ONRwboWymyT3aX29iYyZmzlOAN0= Subject key identifier: 36:C7:DD:6A:F7:DD:7B:DA:A3:17:19:0A:51:F9:49:42:B1:F5:13:F3 Certificate issuer: /CN=A917D4C4/serialNumber=57CF39F39AB61B538EEA7CB2D56A34BE57B89AFB Certificate serial: 06E8 Authority key identifier: 57:CF:39:F3:9A:B6:1B:53:8E:EA:7C:B2:D5:6A:34:BE:57:B8:9A:FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:10:49 +0000 ROA not before: Wed 02 Apr 2025 15:10:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7573 IP address blocks: 131.217.0.0/17 maxlen: 17 131.217.128.0/19 maxlen: 19 131.217.160.0/19 maxlen: 19 131.217.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.crl rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1768 (0x6e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4, serialNumber=57CF39F39AB61B538EEA7CB2D56A34BE57B89AFB Validity Not Before: Apr 2 15:10:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40299-e9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f5:4f:12:2a:57:16:17:f6:3f:f1:14:c7:26: d4:06:ec:ff:e9:5b:31:a2:02:30:7a:76:80:48:ab: 01:32:53:9d:4a:8e:31:52:30:53:58:45:0d:a1:56: ce:37:ce:2a:8e:67:7b:03:f4:c7:4f:6f:7b:51:be: 83:e0:68:be:08:8e:ac:b3:e0:34:fa:76:45:18:33: d2:8b:4f:b0:71:c8:c1:1c:45:a3:d8:fa:0e:43:04: 8b:e7:d2:de:e0:23:d5:7c:47:89:73:d7:79:3a:6b: 23:fe:cb:58:f9:0d:c7:2c:c8:73:fb:6f:56:28:35: e3:76:23:2a:82:18:4c:8f:55:b7:30:ee:e8:f7:5a: 23:da:e6:38:99:9b:3f:9c:88:bf:5c:d0:6e:c3:46: 02:1d:c1:21:a8:28:8c:23:ae:66:42:b0:e8:e8:c7: d6:55:37:5c:53:56:a5:92:d8:21:72:e0:8e:60:2b: 94:10:d1:9c:65:b8:29:b3:1c:f2:37:82:3d:5c:e8: 89:2f:a5:8e:96:b9:d4:4d:f3:07:5d:5d:07:1e:79: a8:6e:a2:41:83:e6:09:e3:ce:fa:1b:fb:b3:cd:0b: a2:3e:9d:f0:c3:82:dd:8e:22:8f:11:d9:69:0c:a9: fa:43:fb:12:9a:e7:f8:97:ea:13:80:05:12:42:50: d5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C7:DD:6A:F7:DD:7B:DA:A3:17:19:0A:51:F9:49:42:B1:F5:13:F3 X509v3 Authority Key Identifier: keyid:57:CF:39:F3:9A:B6:1B:53:8E:EA:7C:B2:D5:6A:34:BE:57:B8:9A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/V88585q2G1OO6nyy1Wo0vle4mvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V88585q2G1OO6nyy1Wo0vle4mvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/3A07E0BA8D7B11EB8D8BD60BC4F9AE02/6DB6146E0E2F11EDB4659653C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 131.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:c3:a9:8c:1f:b0:b8:ab:0c:5f:8f:b5:09:3f:99:58:01:68: 77:f5:3b:d1:74:de:d7:ce:c4:fe:6f:35:61:d7:69:09:35:85: b7:98:bc:44:6f:2d:59:ba:57:ce:a0:6a:6f:b8:83:87:bb:db: 5a:11:9b:bd:0a:27:9e:d1:78:3e:9f:6e:9c:b7:cd:a4:ee:b0: 07:80:b5:e7:2a:95:57:e8:1e:2b:38:56:ac:b4:44:e1:ab:15: 97:f0:12:90:61:26:e0:a8:a0:01:52:d3:ac:ad:2d:88:78:e6: 51:3d:5d:1e:72:c6:ce:25:7d:ed:71:d8:b1:4f:1d:7a:01:43: 0c:45:ba:d5:9b:61:1d:54:31:db:60:87:e6:ba:74:b4:d8:57: 02:8b:41:16:28:e9:70:91:94:5c:da:51:f1:8a:12:c7:1d:c8: 0a:72:99:fb:3f:82:77:1c:e1:ab:10:e0:91:c5:17:7a:eb:0f: b3:43:a8:0c:9a:a3:a9:c4:ad:05:a6:d8:e3:46:d0:f5:9e:bf: fc:4f:61:15:7b:e5:f9:cc:0c:0f:a0:35:92:32:81:30:10:61: d8:a1:a7:73:fb:2c:c4:4d:96:a1:f3:9d:74:c5:48:13:02:ed: c7:ea:24:88:4a:e8:5c:9f:27:48:a9:06:6f:f8:75:28:63:a7: 27:88:62:d9 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICBugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKDU3Q0YzOUYzOUFCNjFCNTM4RUVBN0NCMkQ1NkEzNEJF NTdCODlBRkIwHhcNMjUwNDAyMTUxMDUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDI5OS1lOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/VPEipXFhf2P/EUxybUBuz/6VsxogIwenaASKsBMlOdSo4xUjBTWEUNoVbO N84qjmd7A/THT297Ub6D4Gi+CI6ss+A0+nZFGDPSi0+wccjBHEWj2PoOQwSL59Le 4CPVfEeJc9d5Omsj/stY+Q3HLMhz+29WKDXjdiMqghhMj1W3MO7o91oj2uY4mZs/ nIi/XNBuw0YCHcEhqCiMI65mQrDo6MfWVTdcU1alktghcuCOYCuUENGcZbgpsxzy N4I9XOiJL6WOlrnUTfMHXV0HHnmobqJBg+YJ4876G/uzzQuiPp3ww4LdjiKPEdlp DKn6Q/sSmuf4l+oTgAUSQlDVDwIDAQABo4ICXzCCAlswHQYDVR0OBBYEFDbH3Wr3 3XvaoxcZClH5SUKx9RPzMB8GA1UdIwQYMBaAFFfPOfOathtTjup8stVqNL5XuJr7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC8zQTA3RTBCQThE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9WODg1ODVxMkcxT082bnl5MVdvMHZsZTRt dnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Y4ODU4NXEyRzFPTzZueXkxV28wdmxlNG12cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q0QzQvM0EwN0UwQkE4RDdCMTFFQjhEOEJENjBCQzRGOUFFMDIvNkRCNjE0NkUw RTJGMTFFREI0NjU5NjUzQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAg9kwDQYJKoZIhvcNAQELBQADggEBAJDDqYwfsLirDF+PtQk/mVgB aHf1O9F03tfOxP5vNWHXaQk1hbeYvERvLVm6V86gam+4g4e721oRm70KJ57ReD6f bpy3zaTusAeAtecqlVfoHis4Vqy0ROGrFZfwEpBhJuCooAFS06ytLYh45lE9XR5y xs4lfe1x2LFPHXoBQwxFutWbYR1UMdtgh+a6dLTYVwKLQRYo6XCRlFzaUfGKEscd yApymfs/gncc4asQ4JHFF3rrD7NDqAyao6nErQWm2ONG0PWev/xPYRV75fnMDA+g NZIygTAQYdihp3P7LMRNlqHznXTFSBMC7cfqJIhK6FyfJ0ipBm/4dShjpyeIYtk= -----END CERTIFICATE-----Generated at Mon Mar 2 15:52:25 2026 by rpki-client