$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa File: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (raw, json) Hash identifier: PGfOZ8aur6eFpfgp1qb3p6zkq3ccsWlLdh66JdofFDY= Subject key identifier: EE:74:8B:EC:31:3D:9E:0B:F5:AF:3E:7D:22:22:FB:19:35:6A:52:85 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 05E0 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:22:36 +0000 ROA not before: Fri 02 Jan 2026 23:19:17 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 216458 IP address blocks: 117.55.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1504 (0x5e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 2 23:19:17 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a483ec-46af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f0:9b:a0:f2:b2:b8:f0:01:64:e1:94:75:03: b8:a6:2f:f6:c2:15:15:a0:12:6b:ad:1b:d0:c3:ff: c5:ca:9a:d4:da:8a:47:26:d0:ab:2d:a3:e1:c9:73: c6:b0:23:2a:d3:d9:1f:be:97:20:82:27:34:f3:75: 63:f5:08:f1:33:56:09:07:f4:bd:40:21:16:b4:14: b3:3b:c1:0d:45:fe:24:ff:ad:61:af:67:2d:4f:6f: 85:78:bb:b2:74:7d:d2:fc:31:38:05:83:0e:e2:61: 33:91:7e:8e:18:97:04:e6:2b:33:66:7c:05:42:50: d9:1c:22:57:18:9f:20:8b:e9:d0:17:0b:33:77:5c: fb:93:20:b3:12:16:04:ae:94:66:38:9f:6b:47:24: 8a:20:18:3a:ac:83:5e:6d:d7:78:93:15:06:1a:a1: 83:6e:c2:7e:89:14:27:bc:f6:0c:95:d6:03:17:ac: b7:8c:31:5b:f9:be:61:cd:b1:ca:fe:8d:c9:b2:90: f3:33:fe:ae:5c:4f:bc:ad:d1:0f:4b:37:8a:2a:a9: ec:84:4b:87:14:3f:03:0c:6b:c2:94:d7:81:ab:b3: 4b:bf:77:2c:ee:1f:f0:dd:cb:d9:37:dd:fc:a1:e4: 7c:2e:2c:05:93:5d:c4:37:bb:a1:3d:50:41:da:7c: 44:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:74:8B:EC:31:3D:9E:0B:F5:AF:3E:7D:22:22:FB:19:35:6A:52:85 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 117.55.206.0/23 Signature Algorithm: sha256WithRSAEncryption 67:01:f1:29:be:cd:f8:0e:ab:a3:6f:b3:63:9c:57:93:5a:c0: 0d:57:07:5c:c6:31:e0:df:35:4e:4b:7f:2e:ad:da:ac:97:20: 22:0d:4f:f2:1d:60:cb:c5:bc:bd:f8:67:7b:a1:12:ad:49:1f: 78:1f:59:4b:ec:09:8e:c8:d2:90:91:72:97:86:52:18:90:bf: ea:2c:10:4b:5f:88:55:42:48:78:3c:40:ed:58:c2:f7:f3:0f: b1:da:a8:5b:a5:9d:79:8c:93:b8:0e:69:a2:17:23:dc:ad:56: 41:b7:29:fb:2c:7f:d1:4b:d8:ed:61:bb:5b:9c:b1:5e:7e:ce: 52:9b:ec:99:be:0c:4e:36:5e:51:c0:c6:af:a5:80:7a:68:8e: b5:9b:4c:c5:6c:67:32:3f:f4:9e:2f:78:d2:ac:20:6d:8c:ae: 36:0d:28:3b:04:23:ba:4c:0f:b1:a3:0d:cc:63:52:4d:a5:ad: 4e:21:4a:3b:b0:5c:50:6b:3f:cb:7b:f4:b7:a1:1d:a9:ac:11: 3c:86:df:b3:82:6d:76:fc:fc:9d:ab:af:dc:60:d1:4b:1b:34: 1f:22:07:91:76:2f:fa:27:05:e1:00:6c:1a:1f:47:11:98:be: ca:32:2e:c3:8c:a0:28:09:17:e8:56:86:4b:00:40:93:15:5d: 87:1a:73:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjYwMTAyMjMxOTE3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODNlYy00NmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7PCboPKyuPABZOGUdQO4pi/2whUVoBJrrRvQw//FyprU2opHJtCrLaPhyXPG sCMq09kfvpcggic083Vj9QjxM1YJB/S9QCEWtBSzO8ENRf4k/61hr2ctT2+FeLuy dH3S/DE4BYMO4mEzkX6OGJcE5iszZnwFQlDZHCJXGJ8gi+nQFwszd1z7kyCzEhYE rpRmOJ9rRySKIBg6rINebdd4kxUGGqGDbsJ+iRQnvPYMldYDF6y3jDFb+b5hzbHK /o3JspDzM/6uXE+8rdEPSzeKKqnshEuHFD8DDGvClNeBq7NLv3cs7h/w3cvZN938 oeR8LiwFk13EN7uhPVBB2nxEeQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO50i+wx PZ4L9a8+fSIi+xk1alKFMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvMUNEN0JFRkM0 RDBFMTFFRUEwOUZCRjEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBdTfOMA0GCSqGSIb3DQEBCwUAA4IBAQBnAfEpvs34Dqujb7NjnFeT WsANVwdcxjHg3zVOS38urdqslyAiDU/yHWDLxby9+Gd7oRKtSR94H1lL7AmOyNKQ kXKXhlIYkL/qLBBLX4hVQkh4PEDtWML38w+x2qhbpZ15jJO4DmmiFyPcrVZBtyn7 LH/RS9jtYbtbnLFefs5Sm+yZvgxONl5RwMavpYB6aI61m0zFbGcyP/SeL3jSrCBt jK42DSg7BCO6TA+xow3MY1JNpa1OIUo7sFxQaz/Le/S3oR2prBE8ht+zgm12/Pyd q6/cYNFLGzQfIgeRdi/6JwXhAGwaH0cRmL7KMi7DjKAoCRfoVoZLAECTFV2HGnO9 -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:09 2026 by rpki-client