$ rpki-client -vvf rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/A2A2D1B6573411F09F6B9016C4F9AE02.roa File: A2A2D1B6573411F09F6B9016C4F9AE02.roa (raw, json) Hash identifier: Y2OnWMjoTFm2dR06cOeGVj5ENWmNfgjGgnyMm9eVZJ0= Subject key identifier: FA:4C:08:9C:F1:37:32:23:A8:7A:55:19:19:53:93:F1:B3:65:CE:D0 Certificate issuer: /CN=A917B9CB/serialNumber=33A7AEAFA5526DCDC56CF0876BBD41133E3D2479 Certificate serial: 3551 Authority key identifier: 33:A7:AE:AF:A5:52:6D:CD:C5:6C:F0:87:6B:BD:41:13:3E:3D:24:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6eur6VSbc3FbPCHa71BEz49JHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/A2A2D1B6573411F09F6B9016C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:15:53 +0000 ROA not before: Wed 02 Jul 2025 11:13:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136973 IP address blocks: 203.105.203.0/24 maxlen: 24 203.105.204.0/24 maxlen: 24 203.105.210.0/24 maxlen: 24 203.105.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/M6eur6VSbc3FbPCHa71BEz49JHk.crl rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/M6eur6VSbc3FbPCHa71BEz49JHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6eur6VSbc3FbPCHa71BEz49JHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13649 (0x3551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B9CB, serialNumber=33A7AEAFA5526DCDC56CF0876BBD41133E3D2479 Validity Not Before: Jul 2 11:13:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a51d09-c4e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:00:60:3c:4f:8b:37:be:75:26:9e:db:32: c1:c7:de:ff:ca:ba:ce:0a:84:c8:28:70:88:d0:46: 13:4e:ab:55:f5:25:87:c0:7b:b5:99:3c:93:58:96: 45:6a:12:94:72:13:0c:ad:e9:99:27:d0:48:50:98: 37:2e:35:13:0b:a5:46:41:7e:ff:83:50:77:ee:38: a7:8a:28:8f:22:c1:b0:1d:57:a9:47:04:4c:13:5e: 7b:22:92:d5:e1:3c:52:3e:60:c2:5c:47:11:8f:da: 37:50:a4:79:b8:8c:99:73:3c:2c:01:ed:d8:e0:42: c1:f9:68:db:f6:46:c9:1d:c2:ea:5b:48:a8:63:53: b1:ca:eb:ed:c2:0c:a3:8c:f5:f2:f0:18:dc:93:31: c1:e3:28:89:21:ce:b9:6d:3d:9c:96:c6:9a:ab:2d: 94:2e:cd:18:ee:b6:00:c1:b5:21:b2:8b:68:ee:6e: ac:28:b5:fb:16:35:37:b9:53:77:72:16:ef:ac:ec: 5a:31:e0:06:04:05:2f:b8:18:b3:a5:18:ad:fe:78: a0:ce:7f:3d:19:fc:67:29:89:3c:73:d5:f4:0f:cd: 7a:2e:2b:c9:4f:51:a5:2e:00:a0:7d:77:ec:83:b8: 32:d3:91:80:c9:de:54:02:67:d9:74:ff:a4:04:74: 5a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:4C:08:9C:F1:37:32:23:A8:7A:55:19:19:53:93:F1:B3:65:CE:D0 X509v3 Authority Key Identifier: keyid:33:A7:AE:AF:A5:52:6D:CD:C5:6C:F0:87:6B:BD:41:13:3E:3D:24:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/M6eur6VSbc3FbPCHa71BEz49JHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6eur6VSbc3FbPCHa71BEz49JHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/A2A2D1B6573411F09F6B9016C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.105.203.0-203.105.204.255 203.105.210.0/23 Signature Algorithm: sha256WithRSAEncryption c4:a9:d6:16:a0:cf:51:96:d7:0a:b0:e8:38:59:17:37:bf:4f: de:0b:51:37:21:8b:b6:e9:1b:74:ae:a3:0e:0c:fe:10:aa:ef: 4b:7a:be:7e:12:0e:f8:b2:c8:10:3d:8e:cf:2c:93:38:39:b9: 7a:56:fc:31:95:e7:41:15:b8:cf:ad:2e:1f:c6:74:cc:b2:99: fe:de:5c:d2:9b:d0:8c:0e:4c:77:4c:c2:a7:20:43:41:d5:fb: 6a:fa:8e:c3:6f:c8:e8:79:7e:58:fa:16:d5:2f:e7:69:9f:0f: 57:2d:c3:fb:a9:8d:6a:3c:20:73:d7:3e:a9:e7:36:b4:68:96: f9:fa:95:83:b8:23:41:78:ac:11:9c:4f:57:31:ac:a5:66:c0: a1:7d:da:ec:d0:34:d1:ed:c2:c1:d4:8b:0b:42:64:59:c4:1b: 15:d1:12:7c:b2:70:a2:0f:1b:6d:e0:50:66:95:72:14:55:d7: 7b:2d:83:91:59:43:d4:55:bd:fe:05:94:0c:c9:66:6a:2f:7c: 4a:20:2f:42:46:39:5c:6d:ab:e4:25:02:e7:04:15:89:ad:89: 3d:69:b8:60:43:b1:1d:8e:71:39:50:dd:19:5e:9a:ba:3a:7b: 9a:04:99:cc:8e:68:99:45:d0:23:77:78:36:72:26:75:88:7a: f9:0c:2e:ee -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICNVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I5Q0IxMTAvBgNVBAUTKDMzQTdBRUFGQTU1MjZEQ0RDNTZDRjA4NzZCQkQ0MTEz M0UzRDI0NzkwHhcNMjUwNzAyMTExMzM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWQwOS1jNGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxL4AYDxPize+dSae2zLBx97/yrrOCoTIKHCI0EYTTqtV9SWHwHu1mTyTWJZF ahKUchMMremZJ9BIUJg3LjUTC6VGQX7/g1B37jiniiiPIsGwHVepRwRME157IpLV 4TxSPmDCXEcRj9o3UKR5uIyZczwsAe3Y4ELB+Wjb9kbJHcLqW0ioY1Oxyuvtwgyj jPXy8BjckzHB4yiJIc65bT2clsaaqy2ULs0Y7rYAwbUhsoto7m6sKLX7FjU3uVN3 chbvrOxaMeAGBAUvuBizpRit/nigzn89GfxnKYk8c9X0D816LivJT1GlLgCgfXfs g7gy05GAyd5UAmfZdP+kBHRatQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFPpMCJzx NzIjqHpVGRlTk/GzZc7QMB8GA1UdIwQYMBaAFDOnrq+lUm3NxWzwh2u9QRM+PSR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjlDQi82RjZFREM2MDFE OEUxMUUyODg1Q0RGRUMwOEIwMkNEMi9NNmV1cjZWU2JjM0ZiUENIYTcxQkV6NDlK SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL002ZXVyNlZTYmMzRmJQQ0hhNzFCRXo0OUpIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I5Q0IvNkY2RURDNjAxRDhFMTFFMjg4NUNERkVDMDhCMDJDRDIvQTJBMkQxQjY1 NzM0MTFGMDlGNkI5MDE2QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBADLacsDBADLacwDBAHLadIwDQYJKoZIhvcNAQELBQADggEBAMSp 1hagz1GW1wqw6DhZFze/T94LUTchi7bpG3Suow4M/hCq70t6vn4SDviyyBA9js8s kzg5uXpW/DGV50EVuM+tLh/GdMyymf7eXNKb0IwOTHdMwqcgQ0HV+2r6jsNvyOh5 flj6FtUv52mfD1ctw/upjWo8IHPXPqnnNrRolvn6lYO4I0F4rBGcT1cxrKVmwKF9 2uzQNNHtwsHUiwtCZFnEGxXREnyycKIPG23gUGaVchRV13stg5FZQ9RVvf4FlAzJ ZmovfEogL0JGOVxtq+QlAucEFYmtiT1puGBDsR2OcTlQ3Rlemro6e5oEmcyOaJlF 0CN3eDZyJnWIevkMLu4= -----END CERTIFICATE-----Generated at Thu Mar 26 07:13:01 2026 by rpki-client