$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa File: DC11ACCE182F11EE82A0FC48C4F9AE02.roa (raw, json) Hash identifier: Cs3ptyaemhbxseuccDeMnwLugAy1tEjNv7SnS6iKKQk= Subject key identifier: 00:70:FB:CF:F6:5B:CF:3F:A3:31:F1:98:91:49:A5:E7:80:F7:CE:63 Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 023B Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa Signing time: Wed 13 May 2026 00:28:31 +0000 ROA not before: Wed 13 May 2026 00:28:31 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 132481 IP address blocks: 168.168.128.0/20 maxlen: 20 168.168.244.0/22 maxlen: 22 168.168.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:53:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: May 13 00:28:31 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a03c5af-f5d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:91:19:9c:a8:33:02:db:3e:66:9b:43:00:d4: 4d:52:d2:11:10:88:c9:cd:71:49:1e:65:6b:9f:b7: 14:c7:7b:98:c6:23:d0:62:5a:01:e8:39:80:33:4f: 5b:9a:53:ec:13:03:01:4a:53:73:11:36:55:c3:d2: fe:83:bf:8b:99:40:a0:73:32:26:9f:a7:59:b2:54: 7e:8c:d5:01:9c:c5:e8:26:30:e4:4f:62:d2:0f:e9: 87:11:15:74:cb:74:e0:34:df:8b:fc:b5:5f:58:2a: 75:c8:93:76:a2:a3:91:6e:b3:25:a2:b8:ed:e0:18: ed:6a:78:c2:81:63:b4:92:12:04:d2:f1:e8:27:fe: 6e:38:80:78:02:a7:d4:8b:df:d3:74:cd:79:7f:44: 7d:3f:1b:d5:b8:4f:25:bc:02:62:1f:a9:ba:4d:57: 5e:70:90:be:b3:d1:9a:e6:c5:be:26:22:51:0c:0c: 9e:28:f8:a0:7b:ea:b3:b0:9b:82:b1:2e:dd:b4:c2: 0f:bf:bb:50:98:58:1a:0e:9e:7d:bc:47:7c:fb:7f: 6e:d2:9d:fa:6d:e8:f6:50:94:c0:b2:86:ab:42:ec: a0:81:5a:05:d6:32:7f:d9:96:84:55:27:62:94:e6: e4:2b:6a:81:5f:d5:1f:d6:b8:a0:4c:49:d9:67:a4: 9c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:70:FB:CF:F6:5B:CF:3F:A3:31:F1:98:91:49:A5:E7:80:F7:CE:63 X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.168.128.0/20 168.168.244.0-168.168.249.255 Signature Algorithm: sha256WithRSAEncryption 64:33:66:b5:6a:b9:b4:d1:64:36:72:86:db:1c:5a:ba:1e:dc: 60:50:bf:d7:1e:6c:ef:87:6d:c9:5f:2a:60:48:77:78:98:85: 3a:54:b1:86:41:4d:6d:73:74:70:0a:50:f9:03:f1:c2:21:df: 05:51:13:96:76:37:4a:71:1b:74:2a:e8:8c:45:1d:40:53:75: 85:12:8b:f4:dc:3e:20:79:7a:cf:42:0a:b1:ff:51:8e:dc:67: 6a:79:6e:40:f8:d7:b0:ae:ed:6a:51:54:c4:a8:0a:24:74:24: ed:72:d8:d3:1a:ed:42:6d:bd:e5:01:bf:c5:5e:fa:4f:93:62: a6:ef:3e:7b:fc:b2:39:11:81:13:c1:8e:36:32:53:c4:ee:de: 31:ca:bb:77:43:5b:dc:12:c2:d9:c7:1c:2f:2c:77:af:fc:91: e7:a3:f9:18:72:83:ac:66:33:d6:6c:75:3b:ae:e1:a5:c2:4e: ab:a4:de:2a:98:03:83:d6:64:6c:24:65:1f:97:49:27:bd:60: 1b:6a:13:96:cf:eb:f2:ee:c9:52:96:17:1a:ba:6e:e5:7f:8d: 95:a8:41:37:27:a0:79:4c:80:da:aa:97:4e:8a:46:4f:1a:d6: b8:11:d9:ea:36:48:c2:52:a8:70:f3:a6:51:93:a5:8c:3b:b1: 13:1e:fa:0d -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjYwNTEzMDAyODMxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzYzVhZi1mNWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlJEZnKgzAts+ZptDANRNUtIREIjJzXFJHmVrn7cUx3uYxiPQYloB6DmAM09b mlPsEwMBSlNzETZVw9L+g7+LmUCgczImn6dZslR+jNUBnMXoJjDkT2LSD+mHERV0 y3TgNN+L/LVfWCp1yJN2oqORbrMlorjt4BjtanjCgWO0khIE0vHoJ/5uOIB4AqfU i9/TdM15f0R9PxvVuE8lvAJiH6m6TVdecJC+s9Ga5sW+JiJRDAyeKPige+qzsJuC sS7dtMIPv7tQmFgaDp59vEd8+39u0p36bej2UJTAsoarQuyggVoF1jJ/2ZaEVSdi lObkK2qBX9Uf1rigTEnZZ6ScxQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFABw+8/2 W88/ozHxmJFJpeeA985jMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvREMxMUFDQ0Ux ODJGMTFFRTgyQTBGQzQ4QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQEqKiAMAwDBAKoqPQDBAGoqPgwDQYJKoZIhvcNAQELBQADggEBAGQz ZrVqubTRZDZyhtscWroe3GBQv9cebO+HbclfKmBId3iYhTpUsYZBTW1zdHAKUPkD 8cIh3wVRE5Z2N0pxG3Qq6IxFHUBTdYUSi/TcPiB5es9CCrH/UY7cZ2p5bkD417Cu 7WpRVMSoCiR0JO1y2NMa7UJtveUBv8Ve+k+TYqbvPnv8sjkRgRPBjjYyU8Tu3jHK u3dDW9wSwtnHHC8sd6/8keej+Rhyg6xmM9ZsdTuu4aXCTquk3iqYA4PWZGwkZR+X SSe9YBtqE5bP6/LuyVKWFxq6buV/jZWoQTcnoHlMgNqql06KRk8a1rgR2eo2SMJS qHDzplGTpYw7sRMe+g0= -----END CERTIFICATE-----Generated at Wed May 13 15:20:29 2026 by rpki-client