$ rpki-client -vvf rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/DD9D275A272A11F1AB1203E5AA833773.roa File: DD9D275A272A11F1AB1203E5AA833773.roa (raw, json) Hash identifier: anG8mjPCe+gcYm3kp5C5iVeJAFEjW4WqpjQcSNgoVCk= Subject key identifier: CD:F5:E5:30:30:7A:E0:C5:E5:EC:4F:09:D7:5D:29:E0:00:1D:E7:27 Certificate issuer: /CN=A916B889/serialNumber=3A1370F9295009BACEF071EF9A54FDD70FD1575A Certificate serial: 02 Authority key identifier: 3A:13:70:F9:29:50:09:BA:CE:F0:71:EF:9A:54:FD:D7:0F:D1:57:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhNw-SlQCbrO8HHvmlT91w_RV1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/DD9D275A272A11F1AB1203E5AA833773.roa Signing time: Tue 24 Mar 2026 02:40:49 +0000 ROA not before: Tue 24 Mar 2026 02:40:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137071 IP address blocks: 163.128.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.crl rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhNw-SlQCbrO8HHvmlT91w_RV1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B889, serialNumber=3A1370F9295009BACEF071EF9A54FDD70FD1575A Validity Not Before: Mar 24 02:40:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69c1f9b0-25a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f0:df:dd:f2:00:c2:93:d5:7d:71:9e:b2:31: b7:fe:f9:1e:d0:3e:e4:36:8c:9b:49:13:f9:69:99: ae:a9:fc:fd:d2:f4:a7:ee:c5:b8:00:34:88:80:20: 49:b3:d1:29:ae:23:07:bb:8e:f5:8d:84:71:7a:78: d9:76:13:e1:71:43:6d:47:23:48:82:9a:d6:75:3f: f4:0b:67:e7:f3:88:85:f6:b0:63:1d:bc:cb:9a:b0: 55:0c:a7:b7:a7:db:f2:55:87:00:71:0e:1c:be:93: a6:19:ee:ac:03:a8:89:66:8d:4a:33:91:28:9f:d7: cb:bc:5f:ae:b9:fc:b0:a7:b8:2f:c5:5f:1d:fb:0f: df:71:ca:49:c9:a9:1d:bf:fb:6c:e0:f2:e4:cb:bf: 7e:0a:c8:ca:02:51:d1:15:06:b7:41:35:06:ec:22: c5:0f:f8:c6:cc:0d:89:89:18:e8:78:b3:03:1a:96: f1:4a:46:75:62:d7:88:d8:7f:48:51:2f:9f:10:80: 7f:b1:a2:88:ed:b9:c1:d4:a9:74:8a:14:fc:f7:de: ff:51:e0:30:cd:cd:76:6e:2f:4f:75:28:34:62:bd: 66:da:4b:08:23:11:7e:7d:32:5a:8d:c7:82:bd:80: 39:4f:b9:62:d2:54:01:63:6d:17:f2:c0:08:02:a8: b8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F5:E5:30:30:7A:E0:C5:E5:EC:4F:09:D7:5D:29:E0:00:1D:E7:27 X509v3 Authority Key Identifier: keyid:3A:13:70:F9:29:50:09:BA:CE:F0:71:EF:9A:54:FD:D7:0F:D1:57:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhNw-SlQCbrO8HHvmlT91w_RV1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/DD9D275A272A11F1AB1203E5AA833773.roa sbgp-ipAddrBlock: critical IPv4: 163.128.95.0/24 Signature Algorithm: sha256WithRSAEncryption a1:7d:3b:49:3e:55:d2:aa:97:71:77:cd:a0:26:0e:12:be:98: 9d:07:85:4f:52:77:f8:6c:c0:2d:23:01:6f:2b:0f:a7:31:63: 22:c7:e1:d5:42:be:80:1f:e8:b0:f0:1e:5a:bc:dd:f4:3c:2f: 1f:44:43:12:4b:90:95:ad:29:91:77:9a:f7:23:c0:22:1f:12: 2a:32:0b:17:15:e1:05:76:54:fd:82:4c:b3:b4:ec:e6:a7:96: 6f:cb:5f:cf:6c:fa:4d:56:94:7b:72:3f:31:ac:2f:0b:24:a3: fc:21:26:0c:2f:5b:89:3e:d3:6f:0c:f9:9a:58:ac:e5:06:e9: 75:e3:37:bf:75:d0:7e:a6:1b:00:20:c0:71:9a:54:50:10:8f: 02:a2:f4:38:46:24:14:9d:30:74:59:5c:c1:c2:d6:b9:f4:51: 8c:b9:a9:1f:4a:b3:af:75:ff:32:70:1b:de:1b:78:7d:68:26: 19:f1:39:5a:14:31:8a:c5:20:d3:07:7f:92:03:b7:6a:b6:ce: 27:67:3a:ff:57:9a:29:49:54:0b:18:bb:c8:d5:05:ee:d8:a8: ae:73:34:8d:75:b5:d8:31:bf:69:84:cb:8d:75:81:8f:b9:62: 29:59:81:1f:73:35:83:8c:1a:df:f0:a1:73:7f:04:f6:d7:66: 68:f3:29:ec -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Qjg4OTExMC8GA1UEBRMoM0ExMzcwRjkyOTUwMDlCQUNFRjA3MUVGOUE1NEZERDcw RkQxNTc1QTAeFw0yNjAzMjQwMjQwNDhaFw0yNzA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzFmOWIwLTI1YTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu8N/d8gDCk9V9cZ6yMbf++R7QPuQ2jJtJE/lpma6p/P3S9KfuxbgANIiAIEmz 0SmuIwe7jvWNhHF6eNl2E+FxQ21HI0iCmtZ1P/QLZ+fziIX2sGMdvMuasFUMp7en 2/JVhwBxDhy+k6YZ7qwDqIlmjUozkSif18u8X665/LCnuC/FXx37D99xyknJqR2/ +2zg8uTLv34KyMoCUdEVBrdBNQbsIsUP+MbMDYmJGOh4swMalvFKRnVi14jYf0hR L58QgH+xoojtucHUqXSKFPz33v9R4DDNzXZuL091KDRivWbaSwgjEX59MlqNx4K9 gDlPuWLSVAFjbRfywAgCqLilAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUzfXlMDB6 4MXl7E8J110p4AAd5ycwHwYDVR0jBBgwFoAUOhNw+SlQCbrO8HHvmlT91w/RV1ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCODg5LzlBQjA3QTNBMjcy NzExRjE5MjNCMzk3RUE4ODMzNzczL09oTnctU2xRQ2JyTzhISHZtbFQ5MXdfUlYx by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2hOdy1TbFFDYnJPOEhIdm1sVDkxd19SVjFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjg4OS85QUIwN0EzQTI3MjcxMUYxOTIzQjM5N0VBODgzMzc3My9ERDlEMjc1QTI3 MkExMUYxQUIxMjAzRTVBQTgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACjgF8wDQYJKoZIhvcNAQELBQADggEBAKF9O0k+VdKql3F3zaAmDhK+ mJ0HhU9Sd/hswC0jAW8rD6cxYyLH4dVCvoAf6LDwHlq83fQ8Lx9EQxJLkJWtKZF3 mvcjwCIfEioyCxcV4QV2VP2CTLO07Oanlm/LX89s+k1WlHtyPzGsLwsko/whJgwv W4k+028M+ZpYrOUG6XXjN7910H6mGwAgwHGaVFAQjwKi9DhGJBSdMHRZXMHC1rn0 UYy5qR9Ks691/zJwG94beH1oJhnxOVoUMYrFINMHf5IDt2q2zidnOv9XmilJVAsY u8jVBe7YqK5zNI11tdgxv2mEy411gY+5YilZgR9zNYOMGt/woXN/BPbXZmjzKew= -----END CERTIFICATE-----Generated at Thu Mar 26 20:48:30 2026 by rpki-client