
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa
File: 282282B60D3011ED8DC4D26BC4F9AE02.roa (raw, json)
Hash identifier: GVYtfQdO2bq9KV7ijyB1vDTY1F+6N2+dVA85bXeqBtM=
Subject key identifier: 69:50:DD:95:69:BF:87:AB:DD:9C:2E:5F:38:85:09:E6:07:91:9F:40
Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707
Certificate serial: 034A
Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa
Signing time: Mon 29 Jun 2026 01:31:49 +0000
ROA not before: Mon 29 Jun 2026 01:31:49 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 137890
IP address blocks: 103.116.156.0/24 maxlen: 24
2001:df5:5700::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl
rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 01:25:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 842 (0x34a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707
Validity
Not Before: Jun 29 01:31:49 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a41cb05-ff22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:93:47:3e:d9:70:7b:61:c9:72:ca:01:3d:a7:
ce:4d:db:3a:04:af:45:3c:f7:61:6c:21:28:53:15:
95:47:4a:39:e3:a5:ab:ca:6d:44:ea:58:d5:a7:01:
25:d1:24:84:cb:68:7d:05:6a:39:d1:04:f0:fc:ed:
dd:ed:92:e1:d4:cb:c7:47:ef:c5:a5:ed:db:3e:3c:
75:45:15:1d:10:41:d5:72:f9:10:8a:9e:05:9a:77:
80:ef:d6:f9:2d:13:2f:48:e5:c7:96:1b:17:9f:23:
0a:18:aa:c3:ee:35:38:65:09:4d:9c:3d:6b:8a:32:
a4:c1:c3:ab:ba:1f:7e:58:3e:22:24:c9:d1:26:cb:
02:c6:30:f3:eb:86:db:0a:28:3b:9e:31:ab:b2:ee:
f0:a1:ee:4c:ae:ae:0f:ac:b5:7c:83:6f:25:df:76:
ad:63:3a:ee:eb:0c:3e:2f:f7:7d:90:1e:ab:f5:3d:
31:6a:08:ff:42:55:9a:84:15:b8:81:79:7a:34:71:
64:3e:c2:c8:38:04:67:71:81:10:fc:5c:36:6c:40:
7e:d0:18:f4:7d:53:bc:85:96:dd:2d:69:76:db:c0:
5a:99:b8:ec:88:e4:a7:c4:66:c2:e3:f2:7c:32:4e:
86:e1:af:f7:85:d7:3c:c6:af:c6:44:30:49:75:1c:
e1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:50:DD:95:69:BF:87:AB:DD:9C:2E:5F:38:85:09:E6:07:91:9F:40
X509v3 Authority Key Identifier:
keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.116.156.0/24
IPv6:
2001:df5:5700::/48
Signature Algorithm: sha256WithRSAEncryption
00:c3:78:70:22:77:82:6a:43:f2:40:e4:e6:9e:45:26:8d:ca:
c3:5b:d3:7c:77:53:37:e8:86:17:67:6d:b8:f4:1c:7e:75:cb:
0c:e5:c4:13:10:f1:2f:f9:ae:7b:dd:f8:4f:e6:44:14:84:ca:
c9:1b:a0:96:9d:52:2c:c4:21:1a:69:ea:22:9d:1c:70:4e:e3:
6a:ed:2b:1f:13:d5:3a:0b:d3:9d:27:a2:93:a2:db:7e:95:be:
fe:dd:8b:6f:d1:87:1c:9b:25:c3:61:0c:b7:d9:42:85:53:d4:
80:58:7d:c7:2f:3a:ae:f8:b0:eb:a6:4e:eb:4f:e4:1d:d7:69:
52:51:25:0d:af:f5:e7:9e:33:d0:10:44:57:18:96:5e:5b:b9:
19:c6:d5:fc:58:15:4b:a4:a2:7a:86:21:68:68:6a:db:2a:92:
16:58:f2:81:95:c5:31:03:bf:fa:d8:80:31:ea:43:f5:98:cb:
f7:57:87:e0:7e:4d:a8:ca:55:d8:14:68:23:dd:35:5b:53:dc:
f8:79:33:39:e0:0a:3d:d7:37:d7:5a:6c:34:66:c6:46:f9:d5:
a4:85:31:e7:c8:3d:e6:17:c3:09:28:3a:e2:d0:27:ef:fe:cb:
38:b1:36:9e:c1:db:8f:f4:5d:4d:a9:7d:72:03:28:1c:be:02:
03:ca:af:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 09:23:21 2026 by rpki-client