$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/C17E1DDCBC7111EBB1423E5FC4F9AE02.roa File: C17E1DDCBC7111EBB1423E5FC4F9AE02.roa (raw, json) Hash identifier: y/Z27vWa+YdbKdTa4SvdGhrr8xeEuHl0bs5oHTVC4x0= Subject key identifier: C1:6E:01:57:C6:7D:D8:83:28:15:BE:13:B6:76:89:75:D4:4E:9C:38 Certificate issuer: /CN=A91A6F2D/serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Certificate serial: 0665 Authority key identifier: AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/C17E1DDCBC7111EBB1423E5FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:50:00 +0000 ROA not before: Wed 04 Jun 2025 23:03:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142285 IP address blocks: 103.167.116.0/24 maxlen: 24 2001:df6:b080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Validity Not Before: Jun 4 23:03:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40bc8-76cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:13:8b:ed:19:59:96:a9:05:4d:0a:72:d6:ff: 2f:22:c6:31:d4:ad:64:64:c8:5e:d0:8a:ef:bf:d3: f9:cd:0c:92:69:45:2a:24:1f:11:05:0a:e7:9c:8d: b2:84:db:67:b9:06:61:8f:c7:3c:98:18:74:99:54: 3d:81:2e:27:1b:ca:4b:51:61:46:c1:b4:c0:25:8b: d6:86:af:dc:e7:fe:80:f2:7a:2c:c8:b3:10:aa:30: f2:be:8e:a6:64:01:ac:cf:62:c7:8b:6e:b1:aa:1f: 51:6d:ef:90:e4:01:05:20:48:e8:e7:ab:61:6a:24: 4b:57:94:06:97:c2:56:bf:91:d7:9a:99:f6:bd:cf: 4a:ed:08:99:b8:96:fe:2a:c7:d1:e7:a7:fb:10:87: ce:39:65:6f:ee:02:15:c5:2d:e6:fd:e9:0a:01:69: ba:5a:62:ca:11:8e:fc:34:b4:ef:de:e3:13:0e:0e: 78:ee:f9:d1:ad:f1:6a:5d:aa:88:1d:92:f7:f5:6f: 5f:82:6b:ac:51:30:ea:32:22:55:db:7c:6f:7d:82: 0e:e5:53:60:91:07:97:24:7a:d7:58:7c:b1:90:29: da:48:52:a1:f4:5c:64:1e:47:cb:be:e1:a7:b2:fb: 21:2a:27:05:73:41:9a:7e:5b:ff:7c:06:d0:35:15: 58:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6E:01:57:C6:7D:D8:83:28:15:BE:13:B6:76:89:75:D4:4E:9C:38 X509v3 Authority Key Identifier: keyid:AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/C17E1DDCBC7111EBB1423E5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.116.0/24 IPv6: 2001:df6:b080::/48 Signature Algorithm: sha256WithRSAEncryption 58:a7:83:61:a7:98:c7:47:92:ed:3b:fa:93:53:8a:41:ff:1b: 2b:14:f8:6f:d4:52:76:40:e5:75:81:f9:d1:a1:fd:51:fa:5b: d1:d0:8d:be:c5:76:b2:8c:5e:a4:a1:e4:d0:0e:85:74:6a:4c: c4:57:cc:cf:46:79:f9:e5:ca:6d:8a:ee:d2:cd:22:90:76:cd: 8a:74:9b:e1:87:72:a9:e6:7e:08:e5:5a:83:78:c9:e6:25:32: 24:23:6e:7c:57:1d:36:01:19:a5:d1:92:36:55:2a:c0:33:ba: 5f:62:97:b8:13:97:91:a9:df:5c:99:30:b8:3f:76:d6:25:81: 37:86:da:09:f0:83:21:ee:5e:29:be:3e:fe:38:98:3a:07:14: 52:c9:24:26:15:15:da:60:ac:72:76:ec:01:3b:be:cf:78:95: 2e:33:27:65:d2:c2:e8:2d:99:86:f3:84:b6:ec:dc:34:05:d6: 01:ce:29:7b:05:79:b4:e0:f9:20:6e:e6:84:9f:2b:4f:ab:e7: 11:6b:1b:5d:75:bb:5f:d9:7e:cb:16:c7:a1:64:0c:2e:e4:76: da:9f:82:b9:34:1e:36:70:5f:79:66:14:fa:a9:2c:60:a3:73: db:67:fc:6b:01:d6:c5:78:2c:13:cb:e2:29:a4:60:e5:47:01: df:87:45:7f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGRUVGN0EyRjgzMUE5NzU1QjEzQjM3RUI2RTlCOTFE ODFFOEE5RTgwHhcNMjUwNjA0MjMwMzEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGJjOC03NmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohOL7RlZlqkFTQpy1v8vIsYx1K1kZMhe0Irvv9P5zQySaUUqJB8RBQrnnI2y hNtnuQZhj8c8mBh0mVQ9gS4nG8pLUWFGwbTAJYvWhq/c5/6A8nosyLMQqjDyvo6m ZAGsz2LHi26xqh9Rbe+Q5AEFIEjo56thaiRLV5QGl8JWv5HXmpn2vc9K7QiZuJb+ KsfR56f7EIfOOWVv7gIVxS3m/ekKAWm6WmLKEY78NLTv3uMTDg547vnRrfFqXaqI HZL39W9fgmusUTDqMiJV23xvfYIO5VNgkQeXJHrXWHyxkCnaSFKh9FxkHkfLvuGn svshKicFc0Gaflv/fAbQNRVYiwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMFuAVfG fdiDKBW+E7Z2iXXUTpw4MB8GA1UdIwQYMBaAFK/u96L4Mal1WxOzfrbpuR2B6Kno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC9GRDg2MEY2OEJD NkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFYVmJFN04tdHVtNUhZSG9x ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItNzNvdmd4cVhWYkU3Ti10dW01SFlIb3FlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZGMkQvRkQ4NjBGNjhCQzZFMTFFQkI4QzY0ODU0QzRGOUFFMDIvQzE3RTFERENC QzcxMTFFQkIxNDIzRTVGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ6d0MA8EAgACMAkDBwAgAQ32sIAwDQYJKoZIhvcNAQELBQADggEB AFing2GnmMdHku07+pNTikH/GysU+G/UUnZA5XWB+dGh/VH6W9HQjb7FdrKMXqSh 5NAOhXRqTMRXzM9Gefnlym2K7tLNIpB2zYp0m+GHcqnmfgjlWoN4yeYlMiQjbnxX HTYBGaXRkjZVKsAzul9il7gTl5Gp31yZMLg/dtYlgTeG2gnwgyHuXim+Pv44mDoH FFLJJCYVFdpgrHJ27AE7vs94lS4zJ2XSwugtmYbzhLbs3DQF1gHOKXsFebTg+SBu 5oSfK0+r5xFrG111u1/ZfssWx6FkDC7kdtqfgrk0HjZwX3lmFPqpLGCjc9tn/GsB 1sV4LBPL4imkYOVHAd+HRX8= -----END CERTIFICATE-----Generated at Mon Mar 2 16:08:58 2026 by rpki-client