$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa File: 2D08F32A110011EFBF50D06AC4F9AE02.roa (raw, json) Hash identifier: FviZT7eVrmG8IcXMEXk6+QOfDQBSb0rs+buFlpqAkiA= Subject key identifier: 9E:58:A7:9F:66:AD:D6:4B:7F:D2:96:7C:9D:3D:9A:93:82:F0:0A:1C Certificate issuer: /CN=A917E0BB/serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386 Certificate serial: 0177 Authority key identifier: 11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:38:25 +0000 ROA not before: Wed 07 Jan 2026 04:22:53 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140687 IP address blocks: 115.84.170.0/23 maxlen: 23 115.84.170.0/24 maxlen: 24 115.84.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.crl rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0BB, serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386 Validity Not Before: Jan 7 04:22:53 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a592d1-93d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:74:ea:f8:35:61:68:2c:14:a5:c5:6c:ce:de: 05:70:0f:83:92:57:1f:50:54:c5:ba:b4:b6:6b:ab: 52:f9:ff:ae:dc:19:76:53:a4:8f:a1:17:e9:94:2f: 34:9e:d5:04:cb:cb:79:43:88:e9:f3:1d:a6:6f:56: 0d:95:a5:d9:17:68:cd:77:b1:46:40:1d:5b:c2:21: 45:7c:a5:c3:6a:0c:50:bf:53:8e:f5:8c:e2:88:99: 03:bf:0d:ba:6d:77:c6:64:b6:e1:14:86:d6:fc:9a: 47:ac:62:5e:ef:7b:f7:e7:11:32:d0:76:05:3f:fa: fb:f4:09:56:22:d0:97:de:1c:eb:bb:e6:39:f2:93: 69:f1:45:a0:39:2a:57:bb:b3:d6:cb:39:1f:5c:ae: 6d:92:c8:3e:0d:81:62:7e:58:bb:83:26:7d:e5:08: 87:17:e1:60:a8:43:3b:56:2e:c2:0c:a7:79:f0:4a: c4:b7:13:31:cd:76:d5:97:15:a5:a4:50:e7:c3:01: 0c:a1:a8:a5:56:f9:e5:5e:0f:78:d1:cd:8d:06:3c: f5:94:ef:8a:8a:fb:40:5c:33:6a:62:af:ab:9b:2c: 10:2d:22:05:80:45:14:ed:ec:1f:d9:09:39:80:5f: 7f:66:a5:43:d3:96:60:27:c5:1c:e0:9f:a1:96:3e: 66:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:58:A7:9F:66:AD:D6:4B:7F:D2:96:7C:9D:3D:9A:93:82:F0:0A:1C X509v3 Authority Key Identifier: keyid:11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 115.84.170.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:aa:29:6c:65:5c:6d:f7:1e:de:05:2a:bf:9d:7d:e7:b6:4b: 87:74:5b:ee:2a:bf:2b:3c:3e:6c:fc:a7:71:ec:6c:97:c1:b6: a0:bf:26:cc:c3:a7:40:86:88:d4:fd:d4:98:f1:8d:84:34:8c: 8c:bd:d4:be:c4:c4:e2:d6:1a:7c:50:1c:54:4e:22:67:76:c7: 5c:bf:d2:4b:c9:e8:09:7d:30:42:a8:8d:c5:7f:ac:15:2e:ca: e1:f1:c2:e1:30:56:cf:6a:82:ce:da:10:84:3f:83:ad:c3:9a: cd:99:49:b9:87:07:b3:5e:02:06:e2:66:52:54:c5:60:a1:79: 4e:05:3b:62:af:b6:b3:64:f3:dc:4c:67:40:5a:eb:9b:8f:6b: a1:63:1c:e6:a8:ee:17:b1:d2:fc:8f:fe:33:01:83:27:42:9c: e8:6d:f1:fb:06:f0:c1:eb:be:ac:20:9e:b1:64:45:21:b2:b2: c9:c5:91:b5:61:fa:e3:9b:e7:48:80:da:67:01:48:07:90:69: d6:6a:14:9a:20:a0:2b:78:73:0c:76:ed:8b:a3:f6:49:77:00: 6d:a3:84:54:d8:d7:01:74:cb:18:70:c4:ed:01:f9:0b:80:59: 6c:08:92:0a:0f:70:74:a6:e9:ce:c2:8b:b5:5e:85:1f:a5:45: 3e:da:d8:cc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQkIxMTAvBgNVBAUTKDExQUIzN0RDNjU0MTUwQzQ5M0M4QUZDN0U4NkQ2NjlD MjBBRTUzODYwHhcNMjYwMTA3MDQyMjUzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTJkMS05M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHTq+DVhaCwUpcVszt4FcA+DklcfUFTFurS2a6tS+f+u3Bl2U6SPoRfplC80 ntUEy8t5Q4jp8x2mb1YNlaXZF2jNd7FGQB1bwiFFfKXDagxQv1OO9YziiJkDvw26 bXfGZLbhFIbW/JpHrGJe73v35xEy0HYFP/r79AlWItCX3hzru+Y58pNp8UWgOSpX u7PWyzkfXK5tksg+DYFifli7gyZ95QiHF+FgqEM7Vi7CDKd58ErEtxMxzXbVlxWl pFDnwwEMoailVvnlXg940c2NBjz1lO+KivtAXDNqYq+rmywQLSIFgEUU7ewf2Qk5 gF9/ZqVD05ZgJ8Uc4J+hlj5m5QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ5Yp59m rdZLf9KWfJ09mpOC8AocMB8GA1UdIwQYMBaAFBGrN9xlQVDEk8ivx+htZpwgrlOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBCQi82ODQzMUZBMkU4 RTYxMUVFOUNBQkUwNkFDNEY5QUUwMi9FYXMzM0dWQlVNU1R5S19INkcxbW5DQ3VV NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VhczMzR1ZCVU1TVHlLX0g2RzFtbkNDdVU0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQkIvNjg0MzFGQTJFOEU2MTFFRTlDQUJFMDZBQzRGOUFFMDIvMkQwOEYzMkEx MTAwMTFFRkJGNTBEMDZBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBc1SqMA0GCSqGSIb3DQEBCwUAA4IBAQBOqilsZVxt9x7eBSq/nX3n tkuHdFvuKr8rPD5s/Kdx7GyXwbagvybMw6dAhojU/dSY8Y2ENIyMvdS+xMTi1hp8 UBxUTiJndsdcv9JLyegJfTBCqI3Ff6wVLsrh8cLhMFbPaoLO2hCEP4Otw5rNmUm5 hwezXgIG4mZSVMVgoXlOBTtir7azZPPcTGdAWuubj2uhYxzmqO4XsdL8j/4zAYMn QpzobfH7BvDB676sIJ6xZEUhsrLJxZG1Yfrjm+dIgNpnAUgHkGnWahSaIKAreHMM du2Lo/ZJdwBto4RU2NcBdMsYcMTtAfkLgFlsCJIKD3B0punOwou1XoUfpUU+2tjM -----END CERTIFICATE-----Generated at Wed Mar 4 12:38:04 2026 by rpki-client