$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2B17862A82EE11EAB170FD4BC4F9AE02.roa File: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (raw, json) Hash identifier: 2tWM8vEG9F+dRzyZM43QfG2NHqOSxdnWZ0mFUqy61lM= Subject key identifier: 00:02:59:97:96:BB:B1:2C:D2:3A:AE:FA:7A:38:4A:66:EB:DB:62:08 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DC4 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2B17862A82EE11EAB170FD4BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:34:11 +0000 ROA not before: Tue 08 Jul 2025 18:27:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18197 IP address blocks: 116.68.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3524 (0xdc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jul 8 18:27:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a45c73-b68f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:2c:f6:0d:ca:56:d8:e9:40:4d:8d:9f:8e: f2:75:44:30:38:43:80:06:50:00:53:c9:f7:7b:33: 11:f2:1f:74:4e:c6:69:dd:e6:80:65:50:3a:82:0d: 5d:cb:27:65:a6:1a:a9:1c:85:c6:01:30:99:46:34: 53:7d:49:9c:ee:b9:4f:00:85:15:06:45:9a:45:3c: 44:11:2f:d7:ef:c0:64:f8:d0:95:58:94:9b:93:96: b6:fc:4d:6a:22:c4:6b:b8:44:c5:f6:0a:3e:40:fe: 66:8f:03:b3:78:b2:8e:ab:00:ba:80:4f:47:69:ed: 99:66:13:5d:d7:83:c2:25:5a:78:15:26:28:b2:59: ec:5f:e0:c5:58:bb:e8:33:13:22:9e:f2:1c:3c:89: 3b:4c:b0:2c:74:d5:e6:6a:60:08:bf:1b:09:2e:00: 1b:f8:9f:b6:03:19:3c:cb:ca:36:64:20:6a:c0:db: 68:4a:d3:a6:c1:dc:ce:81:9c:19:a8:3a:51:7a:c6: c7:0c:33:72:72:6d:40:6a:54:ab:9b:42:fb:7c:9f: a4:61:d0:71:36:01:2e:6e:cf:1c:52:e4:ea:e7:84: b8:5b:88:14:31:b2:30:d3:67:22:bb:f3:19:c9:63: 03:31:46:57:f7:56:64:d7:ce:0d:08:6e:76:d0:c4: bf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:02:59:97:96:BB:B1:2C:D2:3A:AE:FA:7A:38:4A:66:EB:DB:62:08 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2B17862A82EE11EAB170FD4BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.68.159.0/24 Signature Algorithm: sha256WithRSAEncryption 41:58:08:9b:7c:8d:ae:89:58:87:b2:d1:0d:68:19:36:20:54: 3a:68:43:92:58:cf:18:97:88:cd:a2:c7:7c:04:8f:91:18:a2: 30:c9:b9:07:51:e4:f9:3f:24:f8:a8:61:74:87:4a:2c:06:5a: c7:32:eb:b5:13:8c:25:b2:eb:f8:6d:68:0a:e4:8d:d5:7b:64: 54:ea:ad:be:61:01:45:28:1e:9c:f9:ab:0e:af:9a:2a:3f:5a: 8c:ac:24:37:74:5c:65:4d:db:ea:b7:a8:dd:64:ea:c8:51:3a: 8b:20:28:76:7a:98:95:bd:ed:2b:b2:fa:70:a8:a3:7e:57:f2: 0e:67:e7:b9:e7:1d:27:a1:fc:b3:de:5e:ab:98:40:0b:37:be: 86:f5:ed:94:43:5f:e1:e2:42:c8:d5:a3:25:fa:fd:05:cb:b4: 84:d1:eb:36:af:d3:6c:3f:64:7a:64:6a:15:3e:f3:91:df:df: 54:e4:9c:ad:ae:15:67:14:1f:cd:e4:72:eb:8e:05:3e:b0:29: 00:5c:cc:a3:36:99:f4:50:cb:d0:ef:d1:20:63:97:b7:62:6b: b3:ea:4c:5a:7e:39:97:66:94:d0:77:bd:9c:04:c1:b4:8c:4e: ad:b1:2e:24:88:7b:8e:e7:3a:58:a0:02:61:67:ab:a5:81:3b: a7:1d:27:6d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwNzA4MTgyNzQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWM3My1iNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGks9g3KVtjpQE2Nn47ydUQwOEOABlAAU8n3ezMR8h90TsZp3eaAZVA6gg1d yydlphqpHIXGATCZRjRTfUmc7rlPAIUVBkWaRTxEES/X78Bk+NCVWJSbk5a2/E1q IsRruETF9go+QP5mjwOzeLKOqwC6gE9Hae2ZZhNd14PCJVp4FSYoslnsX+DFWLvo MxMinvIcPIk7TLAsdNXmamAIvxsJLgAb+J+2Axk8y8o2ZCBqwNtoStOmwdzOgZwZ qDpResbHDDNycm1AalSrm0L7fJ+kYdBxNgEubs8cUuTq54S4W4gUMbIw02ciu/MZ yWMDMUZX91Zk184NCG520MS/fwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAACWZeW u7Es0jqu+no4Smbr22IIMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMkIxNzg2MkE4 MkVFMTFFQUIxNzBGRDRCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAdESfMA0GCSqGSIb3DQEBCwUAA4IBAQBBWAibfI2uiViHstENaBk2 IFQ6aEOSWM8Yl4jNosd8BI+RGKIwybkHUeT5PyT4qGF0h0osBlrHMuu1E4wlsuv4 bWgK5I3Ve2RU6q2+YQFFKB6c+asOr5oqP1qMrCQ3dFxlTdvqt6jdZOrIUTqLICh2 epiVve0rsvpwqKN+V/IOZ+e55x0nofyz3l6rmEALN76G9e2UQ1/h4kLI1aMl+v0F y7SE0es2r9NsP2R6ZGoVPvOR399U5JytrhVnFB/N5HLrjgU+sCkAXMyjNpn0UMvQ 79EgY5e3Ymuz6kxafjmXZpTQd72cBMG0jE6tsS4kiHuO5zpYoAJhZ6ulgTunHSdt -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:30 2026 by rpki-client