$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/E5B6117E2BC611EAB1456E4CC4F9AE02.roa File: E5B6117E2BC611EAB1456E4CC4F9AE02.roa (raw, json) Hash identifier: 4wHwD6cPpHWdIAGlk+QPknVHSXJJAxVoDS9hDjhyH1o= Subject key identifier: FB:D7:AC:3C:17:B1:33:E2:02:1C:DA:D2:5F:08:A1:BB:E4:0C:BE:84 Certificate issuer: /CN=A917EB0C/serialNumber=506D780ED1797480F15251347FC28443D72E9507 Certificate serial: 0C83 Authority key identifier: 50:6D:78:0E:D1:79:74:80:F1:52:51:34:7F:C2:84:43:D7:2E:95:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/E5B6117E2BC611EAB1456E4CC4F9AE02.roa Signing time: Mon 16 Mar 2026 19:24:03 +0000 ROA not before: Mon 16 Mar 2026 19:24:03 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 137967 IP address blocks: 116.204.148.0/22 maxlen: 22 116.204.148.0/24 maxlen: 24 116.204.149.0/24 maxlen: 24 116.204.150.0/24 maxlen: 24 116.204.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.crl rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3203 (0xc83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB0C, serialNumber=506D780ED1797480F15251347FC28443D72E9507 Validity Not Before: Mar 16 19:24:03 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69b858d3-5035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:99:a3:d2:5a:7e:d8:8b:98:2c:ae:85:88:60: c2:3c:62:4f:f4:1f:c1:5e:ab:7b:0b:6b:06:0a:8e: 51:bd:69:ba:c0:81:fd:4a:fa:fd:4a:f5:d9:07:6e: 6c:c8:02:b4:ea:74:b0:2b:be:f1:02:76:e7:86:7a: 46:b1:2e:d6:86:91:fe:35:2c:21:30:bb:96:5e:f5: 20:36:43:cf:e7:49:cb:a6:2a:d9:7e:bb:04:cd:b7: ca:01:dd:8a:62:8a:ef:0f:68:19:7d:90:fb:98:e8: ae:3f:0d:d7:e9:69:07:9c:29:c4:aa:e5:12:22:da: 4f:39:a3:c4:23:51:e1:1c:0f:ab:c2:71:ac:31:4a: ca:07:0f:37:1a:43:f9:12:8c:5c:01:f4:f9:77:ea: ca:b4:a8:0f:35:d0:7e:01:02:0b:0a:1f:88:77:7f: b5:7f:ff:07:b7:92:6b:ae:99:bb:d9:24:82:e3:2f: 7e:f8:2a:da:6b:60:bb:09:0f:c7:d0:75:ba:c4:9d: 6e:dd:34:eb:c4:f0:76:bd:26:34:9c:96:47:1b:af: e6:d4:42:9a:bc:00:a1:62:ec:2d:a2:80:ae:c6:5c: 90:42:d1:3b:78:bc:74:a2:f9:e9:68:d1:dd:fe:4e: c5:63:f3:eb:14:42:4c:ee:18:ea:9b:fb:a0:9f:c6: 0c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D7:AC:3C:17:B1:33:E2:02:1C:DA:D2:5F:08:A1:BB:E4:0C:BE:84 X509v3 Authority Key Identifier: keyid:50:6D:78:0E:D1:79:74:80:F1:52:51:34:7F:C2:84:43:D7:2E:95:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/E5B6117E2BC611EAB1456E4CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.148.0/22 Signature Algorithm: sha256WithRSAEncryption 01:02:75:bd:02:0c:15:de:37:7b:2b:aa:9b:8f:47:b6:d0:18: e2:96:cc:2a:8b:c0:5d:e2:f9:ba:c4:cc:c2:f6:0d:24:9d:5c: 08:14:68:33:b6:37:73:43:65:53:bb:be:f5:70:a6:7a:c2:dc: 47:d7:e4:17:24:1a:4e:06:94:fe:11:b8:cf:28:a3:79:61:18: 60:02:30:f4:0b:5c:a3:ab:e4:f6:b8:2e:f5:ee:65:80:93:b8: 54:05:a9:99:c0:a1:47:61:2e:a5:09:db:13:48:87:6e:9c:a9: c2:79:52:ab:62:60:8e:86:81:86:da:a6:17:c5:f7:dd:aa:7e: ad:94:d2:15:0b:02:fa:cd:0f:57:67:f0:95:d1:83:84:55:ff: 2f:cd:fc:54:b4:3f:f3:da:ea:a2:6b:70:e6:d0:ed:f5:f2:d0: a8:3b:3c:da:f3:05:bb:24:37:94:fe:a5:81:d6:1e:e1:cd:1f: 32:47:a8:69:26:aa:a4:7e:d9:95:3c:94:94:04:bd:bc:eb:93: 58:c8:6b:ab:81:6d:64:eb:5d:61:fe:12:b1:65:04:1e:f5:97: 6f:1e:a1:87:67:a0:e0:5a:9a:fc:73:3e:4f:c7:48:ad:fc:7f: 77:f2:85:48:b4:10:5f:ed:02:70:72:53:fb:78:82:99:b2:f9: e0:35:d7:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCMEMxMTAvBgNVBAUTKDUwNkQ3ODBFRDE3OTc0ODBGMTUyNTEzNDdGQzI4NDQz RDcyRTk1MDcwHhcNMjYwMzE2MTkyNDAzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4NThkMy01MDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pmj0lp+2IuYLK6FiGDCPGJP9B/BXqt7C2sGCo5RvWm6wIH9Svr9SvXZB25s yAK06nSwK77xAnbnhnpGsS7WhpH+NSwhMLuWXvUgNkPP50nLpirZfrsEzbfKAd2K YorvD2gZfZD7mOiuPw3X6WkHnCnEquUSItpPOaPEI1HhHA+rwnGsMUrKBw83GkP5 EoxcAfT5d+rKtKgPNdB+AQILCh+Id3+1f/8Ht5Jrrpm72SSC4y9++Craa2C7CQ/H 0HW6xJ1u3TTrxPB2vSY0nJZHG6/m1EKavAChYuwtooCuxlyQQtE7eLx0ovnpaNHd /k7FY/PrFEJM7hjqm/ugn8YMxwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPvXrDwX sTPiAhza0l8IobvkDL6EMB8GA1UdIwQYMBaAFFBteA7ReXSA8VJRNH/ChEPXLpUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUIwQy82MTM3NUI2QTIy MkExMUVBOUE4MjZENDVDNEY5QUUwMi9VRzE0RHRGNWRJRHhVbEUwZjhLRVE5Y3Vs UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VHMTREdEY1ZElEeFVsRTBmOEtFUTljdWxRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VCMEMvNjEzNzVCNkEyMjJBMTFFQTlBODI2RDQ1QzRGOUFFMDIvRTVCNjExN0Uy QkM2MTFFQUIxNDU2RTRDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdMyUMA0GCSqGSIb3DQEBCwUAA4IBAQABAnW9AgwV3jd7K6qbj0e2 0Bjilswqi8Bd4vm6xMzC9g0knVwIFGgztjdzQ2VTu771cKZ6wtxH1+QXJBpOBpT+ EbjPKKN5YRhgAjD0C1yjq+T2uC717mWAk7hUBamZwKFHYS6lCdsTSIdunKnCeVKr YmCOhoGG2qYXxffdqn6tlNIVCwL6zQ9XZ/CV0YOEVf8vzfxUtD/z2uqia3Dm0O31 8tCoOzza8wW7JDeU/qWB1h7hzR8yR6hpJqqkftmVPJSUBL2865NYyGurgW1k611h /hKxZQQe9ZdvHqGHZ6DgWpr8cz5Px0it/H938oVItBBf7QJwclP7eIKZsvngNdfD -----END CERTIFICATE-----Generated at Thu Mar 26 08:05:55 2026 by rpki-client