$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/1517BF2ED77711EF8E6D7517C4F9AE02.roa File: 1517BF2ED77711EF8E6D7517C4F9AE02.roa (raw, json) Hash identifier: Ux1l+IgfbwyG+tZBBceLnM6t2MUyOqaW+9GorRGnVbc= Subject key identifier: D4:6D:92:0A:25:11:F6:39:05:B0:94:60:09:C0:A9:F1:D4:80:86:13 Certificate issuer: /CN=A91AB6EB/serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A Certificate serial: 0B6B Authority key identifier: FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/1517BF2ED77711EF8E6D7517C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:45:23 +0000 ROA not before: Sat 28 Feb 2026 20:17:18 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 55714 IP address blocks: 103.17.200.0/24 maxlen: 24 110.34.33.0/24 maxlen: 24 110.34.34.0/24 maxlen: 24 110.34.35.0/24 maxlen: 24 110.34.36.0/24 maxlen: 24 110.34.39.0/24 maxlen: 24 192.135.90.0/24 maxlen: 24 192.135.91.0/24 maxlen: 24 2406:f500::/32 maxlen: 32 2406:f500::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.crl rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB6EB, serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A Validity Not Before: Feb 28 20:17:18 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a46d23-c7e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c3:49:cc:ce:19:84:35:9f:73:68:51:2e:8f: a0:1e:fc:c9:90:1d:5f:d2:cc:7e:52:ec:31:10:1b: 62:2b:3f:d7:86:0f:09:43:de:07:4e:e9:5e:d5:72: be:ca:05:76:09:ac:8b:fd:f7:82:47:e4:b9:84:38: 43:a3:99:0e:ac:30:f5:49:2c:a7:0c:37:0a:40:e2: cc:6f:f3:56:d0:5e:8a:09:75:7f:b6:fe:fb:44:e3: 70:ad:f3:3c:eb:cc:ff:e8:c1:1f:5e:37:9d:87:03: 61:e0:4c:88:be:9d:62:d2:4c:54:e7:27:b4:51:ae: 46:37:e9:39:f7:2e:e2:b4:57:8b:ad:5c:c2:31:17: 61:c7:5c:aa:d2:fe:5c:fe:bf:8e:c3:43:fb:f0:72: 41:a6:46:ad:c5:d4:73:f8:b3:20:99:69:ca:aa:58: eb:1f:88:78:28:98:8b:9e:85:7a:e9:d2:49:8a:f3: d2:3d:dc:64:c1:8d:98:c4:28:c5:4c:0c:f8:ef:73: 8c:e9:08:92:f7:4d:47:e7:70:d2:54:e2:91:20:b1: 7e:80:d0:17:78:08:7f:09:fb:d9:c3:fb:ea:fb:8b: 5a:6d:5b:0d:ec:cf:50:28:e8:d4:48:34:f8:df:33: 94:5a:f7:cc:27:1f:2f:9a:76:b8:b5:6d:42:62:26: e7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6D:92:0A:25:11:F6:39:05:B0:94:60:09:C0:A9:F1:D4:80:86:13 X509v3 Authority Key Identifier: keyid:FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/1517BF2ED77711EF8E6D7517C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.200.0/24 110.34.33.0-110.34.36.255 110.34.39.0/24 192.135.90.0/23 IPv6: 2406:f500::/32 Signature Algorithm: sha256WithRSAEncryption 18:3e:f6:fa:5a:ae:6b:13:72:55:f6:1f:f0:23:a6:f4:99:19: 22:6d:2b:ee:1d:6a:c8:c4:df:92:c1:89:a8:f2:55:a9:62:12: 19:51:15:11:c7:b6:fc:d1:02:6f:23:64:0c:79:27:e5:a9:4f: 96:93:27:41:06:68:0b:dc:a9:60:de:49:19:4f:b6:47:23:10: 09:f7:e1:5f:1e:b2:cc:c6:b0:e7:bc:9c:40:b9:5e:33:c7:99: 78:e9:12:b0:ff:9c:17:e7:08:22:04:e8:f5:a8:69:c6:c6:d7: 37:1d:37:32:89:9d:ac:51:63:48:b5:5b:b2:52:fe:94:33:fb: ab:c6:80:b4:40:f8:33:73:3d:f9:61:c9:0b:1e:40:e4:d7:a3: 34:ff:f7:56:d2:c0:65:10:89:d1:f4:a6:bf:a9:02:90:71:5b: 91:f9:41:77:b2:5b:7c:80:26:0c:cd:b4:cd:f7:67:65:65:7a: 90:00:5a:1e:60:62:77:27:83:0f:3f:ff:81:85:ec:25:12:7c: e4:d1:8e:c4:f9:fc:58:24:3c:5c:a4:ac:47:74:45:97:80:1d: d2:42:c8:05:77:26:a2:e8:ea:7f:96:ce:f6:cd:be:52:53:ff: f2:df:ac:6d:86:eb:39:a9:ad:91:b6:d9:f5:31:29:80:e3:17: ee:b7:8d:21 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI2RUIxMTAvBgNVBAUTKEZDOUJENDYzRDAyRTlGRDJERkMzQzM5QUU0Q0Q1QUIz MjI2NThDMkEwHhcNMjYwMjI4MjAxNzE4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQyMy1jN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sNJzM4ZhDWfc2hRLo+gHvzJkB1f0sx+UuwxEBtiKz/Xhg8JQ94HTule1XK+ ygV2CayL/feCR+S5hDhDo5kOrDD1SSynDDcKQOLMb/NW0F6KCXV/tv77RONwrfM8 68z/6MEfXjedhwNh4EyIvp1i0kxU5ye0Ua5GN+k59y7itFeLrVzCMRdhx1yq0v5c /r+Ow0P78HJBpkatxdRz+LMgmWnKqljrH4h4KJiLnoV66dJJivPSPdxkwY2YxCjF TAz473OM6QiS901H53DSVOKRILF+gNAXeAh/CfvZw/vq+4tabVsN7M9QKOjUSDT4 3zOUWvfMJx8vmna4tW1CYibnLwIDAQABo4ICiTCCAoUwHQYDVR0OBBYEFNRtkgol EfY5BbCUYAnAqfHUgIYTMB8GA1UdIwQYMBaAFPyb1GPQLp/S38PDmuTNWrMiZYwq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjZFQi8wMTM5MUIwMDhF MkIxMUVBQkY4NkRBNENDNEY5QUUwMi9fSnZVWTlBdW45TGZ3OE9hNU0xYXN5Smxq Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19KdlVZOUF1bjlMZnc4T2E1TTFhc3lKbGpDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI2RUIvMDEzOTFCMDA4RTJCMTFFQUJGODZEQTRDQzRGOUFFMDIvMTUxN0JGMkVE Nzc3MTFFRjhFNkQ3NTE3QzRGOUFFMDIucm9hMEgGCCsGAQUFBwEHAQH/BDkwNzAm BAIAATAgAwQAZxHIMAwDBABuIiEDBABuIiQDBABuIicDBAHAh1owDQQCAAIwBwMF ACQG9QAwDQYJKoZIhvcNAQELBQADggEBABg+9vparmsTclX2H/AjpvSZGSJtK+4d asjE35LBiajyValiEhlRFRHHtvzRAm8jZAx5J+WpT5aTJ0EGaAvcqWDeSRlPtkcj EAn34V8esszGsOe8nEC5XjPHmXjpErD/nBfnCCIE6PWoacbG1zcdNzKJnaxRY0i1 W7JS/pQz+6vGgLRA+DNzPflhyQseQOTXozT/91bSwGUQidH0pr+pApBxW5H5QXey W3yAJgzNtM33Z2VlepAAWh5gYncngw8//4GF7CUSfOTRjsT5/FgkPFykrEd0RZeA HdJCyAV3JqLo6n+WzvbNvlJT//LfrG2G6zmprZG22fUxKYDjF+63jSE= -----END CERTIFICATE-----Generated at Mon Mar 2 06:31:58 2026 by rpki-client