$ rpki-client -vvf rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/173F9AAC8C9811F0B7F99E73C4F9AE02.roa File: 173F9AAC8C9811F0B7F99E73C4F9AE02.roa (raw, json) Hash identifier: dtOyJXL7fADe0DAPUWAD6cAvQxtHj2xT44MMlwLS1gs= Subject key identifier: B6:64:68:E4:43:25:93:1D:FB:D4:E9:CF:23:8D:58:F2:F7:AE:80:CF Certificate issuer: /CN=A917A2E5/serialNumber=27A0A2DDF35C197D4FC26290C2957D4968CF158F Certificate serial: 5B Authority key identifier: 27:A0:A2:DD:F3:5C:19:7D:4F:C2:62:90:C2:95:7D:49:68:CF:15:8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/173F9AAC8C9811F0B7F99E73C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:30:45 +0000 ROA not before: Mon 08 Sep 2025 09:42:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153954 IP address blocks: 165.99.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.crl rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A2E5, serialNumber=27A0A2DDF35C197D4FC26290C2957D4968CF158F Validity Not Before: Sep 8 09:42:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a59f15-ca30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c2:83:9c:5a:4d:e0:08:ae:ca:83:28:58:c6: cb:d5:0e:31:08:0c:48:2c:2f:34:01:46:64:1c:d2: 53:91:0c:ee:f0:49:2c:84:77:fd:a0:67:ac:50:b0: 02:47:29:ef:c1:e9:27:56:25:b0:a1:b9:ad:e0:d1: fa:ec:c4:a7:ba:1a:40:f0:b7:fc:e5:93:3c:6d:24: ca:2f:f2:87:2c:92:a3:ce:a6:79:72:63:ab:5f:0e: 91:fb:b3:ee:01:0d:25:ea:f2:68:86:07:9e:66:e1: fc:59:45:cb:98:da:ed:a4:d5:28:6a:ca:c1:22:8c: 64:4d:f0:36:ae:ad:7d:84:36:11:93:14:55:39:be: 9e:dd:44:bc:fc:f7:bf:f4:70:65:6f:2e:c7:55:8f: c6:0c:87:b0:94:d5:5e:5c:79:10:25:89:e8:8a:bd: ac:3b:b3:1b:c4:b8:7d:5c:96:a4:6d:af:76:b9:15: 27:91:1d:e9:25:8d:94:0d:ee:de:25:a4:ed:39:8a: 6e:ef:0e:9a:50:7f:10:f7:fb:0c:bc:64:72:46:d5: 29:24:b2:a1:5d:b8:4c:b2:57:87:e6:d7:68:fa:2a: f7:6f:31:54:a3:83:c5:43:b8:1c:54:66:c0:43:92: 20:14:43:2e:8e:8d:c9:42:73:6f:1b:53:93:0c:7e: f4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:64:68:E4:43:25:93:1D:FB:D4:E9:CF:23:8D:58:F2:F7:AE:80:CF X509v3 Authority Key Identifier: keyid:27:A0:A2:DD:F3:5C:19:7D:4F:C2:62:90:C2:95:7D:49:68:CF:15:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/J6Ci3fNcGX1PwmKQwpV9SWjPFY8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A2E5/A6C540F68C9711F0A009D572C4F9AE02/173F9AAC8C9811F0B7F99E73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.220.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:31:12:09:51:eb:62:b8:14:05:08:de:dd:73:7c:d5:b1:ab: 80:a8:ae:d8:bf:12:47:af:eb:a4:c2:f9:87:6b:19:84:f5:81: 43:aa:35:14:1c:d5:89:8e:97:81:46:36:dd:77:4a:e3:ad:d9: 4f:ad:de:e9:3d:b1:47:48:e7:f5:ae:11:2e:5a:48:37:29:54: 08:71:43:51:96:66:65:79:07:8b:72:23:f8:b0:4e:e7:64:6d: 35:f2:36:8a:91:0e:34:0a:96:1b:fe:46:c4:92:e9:c1:b3:93: e3:d1:a6:f5:43:18:3b:34:7b:12:d0:75:1f:25:ae:33:2f:7a: df:96:fa:ab:d0:59:eb:54:15:f0:80:82:37:26:f1:73:09:16: 05:67:e6:53:dc:c1:97:5e:80:69:6d:f4:5a:06:82:bc:0f:98: 7d:bd:15:2a:52:13:81:3f:cc:7e:21:d8:bf:c9:e0:eb:48:e7: 53:1b:56:a3:e4:f5:f5:58:fc:6b:89:e0:50:0c:c2:c6:b1:be: c6:31:8b:be:82:7a:4d:dc:cc:86:cf:22:48:79:31:40:e4:ff: 0d:1e:65:05:b4:c4:e7:0a:28:7a:b2:24:7f:98:f5:e1:48:59: 5a:38:d0:b8:87:d5:ae:8e:db:b9:53:a0:5e:cb:c7:13:fe:df: bc:ad:ce:ad -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTJFNTExMC8GA1UEBRMoMjdBMEEyRERGMzVDMTk3RDRGQzI2MjkwQzI5NTdENDk2 OENGMTU4RjAeFw0yNTA5MDgwOTQyMTBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5ZjE1LWNhMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqwoOcWk3gCK7KgyhYxsvVDjEIDEgsLzQBRmQc0lORDO7wSSyEd/2gZ6xQsAJH Ke/B6SdWJbChua3g0frsxKe6GkDwt/zlkzxtJMov8ocskqPOpnlyY6tfDpH7s+4B DSXq8miGB55m4fxZRcuY2u2k1ShqysEijGRN8DaurX2ENhGTFFU5vp7dRLz897/0 cGVvLsdVj8YMh7CU1V5ceRAlieiKvaw7sxvEuH1clqRtr3a5FSeRHekljZQN7t4l pO05im7vDppQfxD3+wy8ZHJG1SkksqFduEyyV4fm12j6KvdvMVSjg8VDuBxUZsBD kiAUQy6OjclCc28bU5MMfvTHAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUtmRo5EMl kx371OnPI41Y8veugM8wHwYDVR0jBBgwFoAUJ6Ci3fNcGX1PwmKQwpV9SWjPFY8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMkU1L0E2QzU0MEY2OEM5 NzExRjBBMDA5RDU3MkM0RjlBRTAyL0o2Q2kzZk5jR1gxUHdtS1F3cFY5U1dqUEZZ OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSjZDaTNmTmNHWDFQd21LUXdwVjlTV2pQRlk4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTJFNS9BNkM1NDBGNjhDOTcxMUYwQTAwOUQ1NzJDNEY5QUUwMi8xNzNGOUFBQzhD OTgxMUYwQjdGOTlFNzNDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGlY9wwDQYJKoZIhvcNAQELBQADggEBABwxEglR62K4FAUI3t1zfNWx q4Corti/Ekev66TC+YdrGYT1gUOqNRQc1YmOl4FGNt13SuOt2U+t3uk9sUdI5/Wu ES5aSDcpVAhxQ1GWZmV5B4tyI/iwTudkbTXyNoqRDjQKlhv+RsSS6cGzk+PRpvVD GDs0exLQdR8lrjMvet+W+qvQWetUFfCAgjcm8XMJFgVn5lPcwZdegGlt9FoGgrwP mH29FSpSE4E/zH4h2L/J4OtI51MbVqPk9fVY/GuJ4FAMwsaxvsYxi76Cek3czIbP Ikh5MUDk/w0eZQW0xOcKKHqyJH+Y9eFIWVo40LiH1a6O27lToF7LxxP+37ytzq0= -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:02 2026 by rpki-client