$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/A716CA94954611EC9B320352C4F9AE02.roa File: A716CA94954611EC9B320352C4F9AE02.roa (raw, json) Hash identifier: 4qA+RtnSmzARZEuLDJudhmGjLkvfSOuyPyzBMrZx6XQ= Subject key identifier: EE:1E:5A:90:A4:F8:56:32:47:08:42:67:83:BF:02:B7:C0:86:D4:C3 Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 07D6 Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/A716CA94954611EC9B320352C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:09:44 +0000 ROA not before: Mon 22 Dec 2025 17:10:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17762 IP address blocks: 14.96.1.0/24 maxlen: 24 14.96.2.0/23 maxlen: 24 14.96.70.0/23 maxlen: 24 14.96.192.0/21 maxlen: 24 14.96.200.0/22 maxlen: 24 14.96.204.0/22 maxlen: 24 14.96.208.0/22 maxlen: 24 14.96.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4, serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: Dec 22 17:10:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a480e8-2cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:10:40:fb:73:6a:c9:a4:e5:a7:41:66:55:85: cc:bf:76:44:6b:c4:71:a9:77:11:a0:8a:2a:19:db: ef:7f:87:76:7e:61:7b:ca:2f:75:88:d6:9e:98:ab: ea:4f:42:1e:5f:4d:71:ed:fc:41:e6:80:5e:40:f8: bd:0c:2f:97:1a:3d:7c:7e:33:50:de:d1:90:79:96: 76:89:77:f2:da:f9:03:d2:fb:f8:b4:86:b5:23:bd: 3e:ec:d9:4a:60:b7:36:a5:f1:3b:fc:02:64:1a:2f: 30:f6:3c:ef:c2:64:c9:95:f0:ab:34:23:5d:7e:61: 16:d3:f5:1c:4f:97:08:6e:30:3f:c2:3c:d3:5c:8c: a8:0b:fa:89:85:7b:53:bf:6b:01:d1:c6:17:58:79: 25:a7:3f:c8:20:9f:a2:02:06:0e:82:85:aa:f4:55: 8f:c5:f3:95:07:df:1e:ea:e9:de:e2:2d:9f:7f:7b: 6a:76:54:f4:ce:ef:8e:8b:c2:b7:18:3b:aa:19:b2: 78:8d:fc:42:d0:f1:6b:b1:1a:2b:cd:d0:53:bd:dc: 0a:3d:43:d9:b3:90:30:09:10:f5:24:90:d2:8a:90: f5:2d:e7:5e:7c:86:85:d5:57:ee:b9:8e:e1:d4:e1: 01:34:47:bc:2b:d3:04:53:38:8b:78:f1:6c:b2:c6: 71:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1E:5A:90:A4:F8:56:32:47:08:42:67:83:BF:02:B7:C0:86:D4:C3 X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/A716CA94954611EC9B320352C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.96.1.0-14.96.3.255 14.96.70.0/23 14.96.192.0-14.96.215.255 Signature Algorithm: sha256WithRSAEncryption 27:ab:d3:ae:9c:ee:8e:18:b0:7b:dc:0f:1b:c5:5b:41:b1:63: 00:7e:13:0e:24:63:a6:62:e4:d3:f4:46:d7:36:4f:c6:64:80: 07:bd:a8:41:4f:de:ed:44:b3:73:a6:63:83:77:d5:0c:e4:e6: 89:0d:6f:b6:63:9f:2d:0a:0e:1f:51:9f:f3:8b:21:53:56:0c: 2e:8c:6b:7f:ca:99:64:29:eb:65:20:30:3f:bf:6c:3d:88:30: cc:bd:87:aa:52:c3:92:21:26:3d:d7:46:35:fe:dd:db:7b:b2: 9f:58:d6:3f:b8:64:eb:41:1f:89:64:24:75:e1:12:85:49:6e: f4:7f:6c:12:91:ff:ed:eb:a0:da:e4:d1:13:da:3c:18:af:c2: 52:18:63:2b:b0:42:03:ad:3e:af:37:f4:ec:eb:c1:b1:4c:46: 0f:64:e2:2a:4d:01:cb:db:4c:a0:5c:70:c3:25:f4:68:56:99: 49:a3:0a:4f:09:3f:0f:06:5b:08:10:c3:be:22:80:b6:bf:3a: d5:c6:91:e8:c6:1d:09:7b:e7:90:38:49:a3:dd:66:29:d9:77: 98:cb:5f:13:f2:19:a2:7c:b8:18:77:fd:38:d9:61:ef:1b:92: 36:cf:d9:86:13:e2:11:7e:5f:ca:55:b9:58:b4:50:9f:14:29: bf:2b:84:48 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjUxMjIyMTcxMDIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODBlOC0yY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhBA+3NqyaTlp0FmVYXMv3ZEa8RxqXcRoIoqGdvvf4d2fmF7yi91iNaemKvq T0IeX01x7fxB5oBeQPi9DC+XGj18fjNQ3tGQeZZ2iXfy2vkD0vv4tIa1I70+7NlK YLc2pfE7/AJkGi8w9jzvwmTJlfCrNCNdfmEW0/UcT5cIbjA/wjzTXIyoC/qJhXtT v2sB0cYXWHklpz/IIJ+iAgYOgoWq9FWPxfOVB98e6une4i2ff3tqdlT0zu+Oi8K3 GDuqGbJ4jfxC0PFrsRorzdBTvdwKPUPZs5AwCRD1JJDSipD1LedefIaF1VfuuY7h 1OEBNEe8K9MEUziLePFsssZxqQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFO4eWpCk +FYyRwhCZ4O/ArfAhtTDMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvQTcxNkNBOTQ5 NTQ2MTFFQzlCMzIwMzUyQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAo BAIAATAiMAwDBAAOYAEDBAIOYAADBAEOYEYwDAMEBg5gwAMEAw5g0DANBgkqhkiG 9w0BAQsFAAOCAQEAJ6vTrpzujhiwe9wPG8VbQbFjAH4TDiRjpmLk0/RG1zZPxmSA B72oQU/e7USzc6Zjg3fVDOTmiQ1vtmOfLQoOH1Gf84shU1YMLoxrf8qZZCnrZSAw P79sPYgwzL2HqlLDkiEmPddGNf7d23uyn1jWP7hk60EfiWQkdeEShUlu9H9sEpH/ 7eug2uTRE9o8GK/CUhhjK7BCA60+rzf07OvBsUxGD2TiKk0By9tMoFxwwyX0aFaZ SaMKTwk/DwZbCBDDviKAtr861caR6MYdCXvnkDhJo91mKdl3mMtfE/IZony4GHf9 ONlh7xuSNs/ZhhPiEX5fylW5WLRQnxQpvyuESA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:41:58 2026 by rpki-client