$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa File: 2DCC0688B57211EEBB68526DC4F9AE02.roa (raw, json) Hash identifier: NmZuwfe+5iCEAPBHvUzD6sfa6o4YMsY1q8dOeYPy2vQ= Subject key identifier: C5:06:91:12:9B:F0:72:29:21:8D:86:42:75:70:95:3B:80:A1:2A:59 Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 01B7 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:15:33 +0000 ROA not before: Fri 15 Aug 2025 05:12:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 22003 IP address blocks: 216.200.189.0/24 maxlen: 24 216.200.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Aug 15 05:12:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a58d75-1635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fa:f8:18:96:43:9a:ab:4f:75:9b:7c:ca:f4: 63:7c:d5:b8:60:96:e5:59:c3:bb:77:37:93:0f:40: b3:88:ec:f6:85:d0:d4:43:c9:52:05:ce:b5:19:61: 5c:b9:7f:b0:68:09:7d:37:7f:e9:08:d9:58:ad:c9: 25:7f:11:35:d0:8a:ce:7f:49:0d:57:d3:9b:5e:b6: 21:c9:9a:06:24:0f:0c:ef:d7:a8:66:0e:7b:d9:73: 78:cb:e6:a0:a8:18:4a:b9:91:03:31:49:2f:5d:10: fe:56:e8:ba:44:18:1b:8c:c5:64:53:b4:fe:04:b2: 63:36:10:c1:d6:fc:80:03:fb:4d:41:44:59:70:a2: 32:61:53:ba:d2:0b:75:68:d9:4b:18:be:e9:41:04: 9d:6d:a6:2e:53:3a:52:fd:03:76:3d:97:b0:21:f3: 01:00:43:73:64:7d:14:30:97:86:d4:f3:7a:7c:ff: 61:da:bc:df:3e:49:b3:0c:99:f7:d3:61:27:39:a1: 26:58:bc:cb:6c:00:c2:b3:b4:0b:7c:fd:d4:f9:72: fa:df:4e:1f:fd:df:14:ed:7c:af:c5:60:31:12:34: 3e:a8:22:b7:8b:4b:a8:ef:ca:28:b2:2f:fa:e5:f6: 28:20:11:84:c8:ad:72:ce:f6:2e:7e:ec:d4:17:07: cb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:06:91:12:9B:F0:72:29:21:8D:86:42:75:70:95:3B:80:A1:2A:59 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 216.200.189.0-216.200.190.255 Signature Algorithm: sha256WithRSAEncryption 7b:7c:9a:53:53:9c:91:0e:27:c5:e7:55:ef:f6:b4:e5:c5:1a: f8:cc:22:69:55:bf:37:be:1c:03:d6:21:e4:01:bf:06:c2:2d: 5e:b2:7c:d2:39:f2:a7:04:2f:30:6a:46:26:b9:a3:0e:30:21: c9:d4:69:f6:8b:87:ba:22:3a:85:f3:1e:12:c4:49:c8:dd:33: 31:14:1f:ac:58:b1:5f:fc:46:8b:19:21:98:44:2c:bd:c8:0a: 4c:66:8f:de:84:d3:6e:5a:13:4e:24:bf:de:a8:fc:fb:5c:27: f6:3a:b5:50:d5:bc:ba:b7:7f:89:e9:29:9d:0e:58:28:75:53: a0:d4:a9:b1:1a:65:b9:df:4c:2e:a0:25:50:5e:dd:32:e5:d5: f3:ad:ee:63:6f:db:c7:03:73:ac:19:88:53:97:90:77:c2:ea: 28:f8:13:42:93:c4:d2:b2:ba:80:82:22:53:49:a7:e0:00:67: 93:ab:8b:a7:3d:cd:03:99:5a:de:4a:3f:75:2d:0b:4f:9e:fc: 92:e0:f2:fe:a2:f1:73:4a:54:56:76:11:6d:69:a6:81:a1:e3: 13:2f:62:da:56:18:51:36:c3:83:21:31:b0:c6:10:03:50:50: f6:82:91:c3:bd:eb:73:94:62:f4:73:25:e1:a0:a2:62:c8:e6: fe:d8:92:c7 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwODE1MDUxMjU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQ3NS0xNjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfr4GJZDmqtPdZt8yvRjfNW4YJblWcO7dzeTD0CziOz2hdDUQ8lSBc61GWFc uX+waAl9N3/pCNlYrcklfxE10IrOf0kNV9ObXrYhyZoGJA8M79eoZg572XN4y+ag qBhKuZEDMUkvXRD+Vui6RBgbjMVkU7T+BLJjNhDB1vyAA/tNQURZcKIyYVO60gt1 aNlLGL7pQQSdbaYuUzpS/QN2PZewIfMBAENzZH0UMJeG1PN6fP9h2rzfPkmzDJn3 02EnOaEmWLzLbADCs7QLfP3U+XL6304f/d8U7XyvxWAxEjQ+qCK3i0uo78oosi/6 5fYoIBGEyK1yzvYufuzUFwfLgwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFMUGkRKb 8HIpIY2GQnVwlTuAoSpZMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyNzcvNDNBN0U4OTRCNTYwMTFFRTkxMUM1RDRGQzRGOUFFMDIvMkRDQzA2ODhC NTcyMTFFRUJCNjg1MjZEQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBADYyL0DBADYyL4wDQYJKoZIhvcNAQELBQADggEBAHt8mlNTnJEO J8XnVe/2tOXFGvjMImlVvze+HAPWIeQBvwbCLV6yfNI58qcELzBqRia5ow4wIcnU afaLh7oiOoXzHhLEScjdMzEUH6xYsV/8RosZIZhELL3ICkxmj96E025aE04kv96o /PtcJ/Y6tVDVvLq3f4npKZ0OWCh1U6DUqbEaZbnfTC6gJVBe3TLl1fOt7mNv28cD c6wZiFOXkHfC6ij4E0KTxNKyuoCCIlNJp+AAZ5Ori6c9zQOZWt5KP3UtC0+e/JLg 8v6i8XNKVFZ2EW1ppoGh4xMvYtpWGFE2w4MhMbDGEANQUPaCkcO963OUYvRzJeGg omLI5v7Yksc= -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:59 2026 by rpki-client