$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/2E7B4D90ACD411EBA8C2F944C4F9AE02.roa File: 2E7B4D90ACD411EBA8C2F944C4F9AE02.roa (raw, json) Hash identifier: kft6BlMOb31aHjz48oubUWlNbaq99Sj+q1Bnj8DWH/c= Subject key identifier: 6E:0C:53:C2:C1:AD:1E:C2:A6:3A:8A:C2:00:9F:04:CE:F4:25:F9:D1 Certificate issuer: /CN=A917C11F/serialNumber=C05AE9534FD39D648C28443C48D511BBA9A8CAFE Certificate serial: 06A8 Authority key identifier: C0:5A:E9:53:4F:D3:9D:64:8C:28:44:3C:48:D5:11:BB:A9:A8:CA:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFrpU0_TnWSMKEQ8SNURu6moyv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/2E7B4D90ACD411EBA8C2F944C4F9AE02.roa Signing time: Sun 26 Apr 2026 22:29:06 +0000 ROA not before: Sun 26 Apr 2026 22:29:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142122 IP address blocks: 103.166.152.0/23 maxlen: 23 103.166.152.0/24 maxlen: 24 103.166.153.0/24 maxlen: 24 2001:df6:9480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/wFrpU0_TnWSMKEQ8SNURu6moyv4.crl rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/wFrpU0_TnWSMKEQ8SNURu6moyv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFrpU0_TnWSMKEQ8SNURu6moyv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:28:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11F, serialNumber=C05AE9534FD39D648C28443C48D511BBA9A8CAFE Validity Not Before: Apr 26 22:29:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69ee91b2-2010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6e:9e:b8:c9:f8:82:60:80:7f:bc:9d:6b:27: b1:fa:47:cc:9f:09:e2:68:30:73:01:0b:0d:72:1b: 2e:2b:8d:d7:97:89:22:dc:6a:f9:0c:27:0b:05:84: 22:d1:b6:f0:f8:5f:39:71:ad:6d:b9:26:80:19:da: 02:c9:d4:df:17:90:a4:d0:38:dd:6a:da:52:4c:82: 20:f3:8f:89:c5:60:2b:3a:c7:55:39:3c:9d:0a:0c: ac:20:f1:57:b6:84:e7:fd:dc:f4:7e:8b:26:9e:9c: ae:ed:ef:c5:75:0d:83:fd:6c:6c:4a:f2:2b:9d:69: 0e:ee:b0:40:7e:d2:11:75:ad:b4:1b:71:04:73:56: 01:7b:6d:25:d0:3d:2a:8a:9c:67:15:1f:6f:db:57: c4:8e:2a:50:f1:ff:05:b8:5f:36:29:e8:31:e5:99: f2:1b:de:97:41:a0:50:41:ae:eb:7b:72:ba:00:6b: 8c:93:08:70:04:3c:b9:24:0d:7b:e4:fb:55:a4:e5: f3:49:53:49:a2:bb:1d:37:8f:4b:56:9e:51:84:bd: 28:5e:23:fe:b1:c3:13:e4:62:1d:da:bd:91:a1:5a: 80:d3:4a:6e:60:15:56:dc:10:2e:e5:c4:77:54:db: 2a:52:25:ce:db:92:b8:7c:65:20:5b:43:70:b4:60: 98:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0C:53:C2:C1:AD:1E:C2:A6:3A:8A:C2:00:9F:04:CE:F4:25:F9:D1 X509v3 Authority Key Identifier: keyid:C0:5A:E9:53:4F:D3:9D:64:8C:28:44:3C:48:D5:11:BB:A9:A8:CA:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/wFrpU0_TnWSMKEQ8SNURu6moyv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFrpU0_TnWSMKEQ8SNURu6moyv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/2E7B4D90ACD411EBA8C2F944C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.152.0/23 IPv6: 2001:df6:9480::/48 Signature Algorithm: sha256WithRSAEncryption 2c:c2:2f:0e:c8:03:c3:a5:bb:89:15:69:21:32:0f:44:6a:2b: 8a:9f:14:1d:d3:69:ec:74:a7:45:3e:0d:4a:1e:7d:f0:f4:57: 60:0d:07:58:5f:2b:ed:92:a1:59:70:53:b0:bb:72:04:90:e3: 33:24:88:52:42:44:f6:34:c5:ae:60:d3:12:1f:08:e6:b7:a9: 7b:85:2a:d6:73:e9:e3:a7:24:71:ce:67:a2:6b:f4:e6:2c:7c: e3:46:cf:5e:a8:7b:fe:bf:63:7b:fe:e9:2d:a2:73:09:a9:a7: ee:c6:e2:8c:9c:8d:c9:cb:e8:cb:78:06:2e:68:c9:79:57:5b: 2d:27:6b:38:c6:57:91:b7:8f:f3:b8:c0:16:c1:f4:20:a0:9c: 0c:c2:a0:78:1c:dd:dd:82:ce:87:ad:79:c2:03:91:fa:b2:43: 99:8b:f4:10:23:52:0a:84:e0:5b:72:f9:49:3c:84:c1:0c:72: 54:04:2e:df:a6:fb:a4:3e:39:4b:e7:e4:82:53:5b:af:8f:d9: ef:4a:0a:df:20:94:c7:b9:7d:0b:ca:75:79:b0:05:8a:b9:40: b5:c7:7b:d1:0c:5f:7a:0d:7c:82:d2:55:b7:80:88:f7:2d:73: 24:ff:7f:6f:72:71:0f:6a:e1:99:30:6a:57:0e:3c:24:38:c8: 6f:10:6a:c0 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUYxMTAvBgNVBAUTKEMwNUFFOTUzNEZEMzlENjQ4QzI4NDQzQzQ4RDUxMUJC QTlBOENBRkUwHhcNMjYwNDI2MjIyOTA2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWVlOTFiMi0yMDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwm6euMn4gmCAf7ydayex+kfMnwniaDBzAQsNchsuK43Xl4ki3Gr5DCcLBYQi 0bbw+F85ca1tuSaAGdoCydTfF5Ck0DjdatpSTIIg84+JxWArOsdVOTydCgysIPFX toTn/dz0fosmnpyu7e/FdQ2D/WxsSvIrnWkO7rBAftIRda20G3EEc1YBe20l0D0q ipxnFR9v21fEjipQ8f8FuF82Kegx5ZnyG96XQaBQQa7re3K6AGuMkwhwBDy5JA17 5PtVpOXzSVNJorsdN49LVp5RhL0oXiP+scMT5GId2r2RoVqA00puYBVW3BAu5cR3 VNsqUiXO25K4fGUgW0NwtGCYdwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFG4MU8LB rR7CpjqKwgCfBM70JfnRMB8GA1UdIwQYMBaAFMBa6VNP051kjChEPEjVEbupqMr+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExRi85RTg4QUUxOEFD RDIxMUVCOThGRTY5NDBDNEY5QUUwMi93RnJwVTBfVG5XU01LRVE4U05VUnU2bW95 djQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dGcnBVMF9UbldTTUtFUThTTlVSdTZtb3l2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MxMUYvOUU4OEFFMThBQ0QyMTFFQjk4RkU2OTQwQzRGOUFFMDIvMkU3QjREOTBB Q0Q0MTFFQkE4QzJGOTQ0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6aYMA8EAgACMAkDBwAgAQ32lIAwDQYJKoZIhvcNAQELBQADggEB ACzCLw7IA8Olu4kVaSEyD0RqK4qfFB3Taex0p0U+DUoeffD0V2ANB1hfK+2SoVlw U7C7cgSQ4zMkiFJCRPY0xa5g0xIfCOa3qXuFKtZz6eOnJHHOZ6Jr9OYsfONGz16o e/6/Y3v+6S2icwmpp+7G4oycjcnL6Mt4Bi5oyXlXWy0nazjGV5G3j/O4wBbB9CCg nAzCoHgc3d2CzoetecIDkfqyQ5mL9BAjUgqE4Fty+Uk8hMEMclQELt+m+6Q+OUvn 5IJTW6+P2e9KCt8glMe5fQvKdXmwBYq5QLXHe9EMX3oNfILSVbeAiPctcyT/f29y cQ9q4ZkwalcOPCQ4yG8QasA= -----END CERTIFICATE-----Generated at Wed May 13 10:49:55 2026 by rpki-client