$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa File: 4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: Dpu8dlsTyIDNQhv5lBh83lphktPhRZStmHtvg2bmS6I= Subject key identifier: 34:73:D2:36:A1:B3:3B:28:00:41:76:33:24:21:86:D4:B1:12:B6:5B Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: 0182 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:46:18 +0000 ROA not before: Mon 17 Mar 2025 04:50:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152590 IP address blocks: 157.20.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: Mar 17 04:50:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5a2ba-250e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:9b:97:06:49:d2:26:2a:97:67:59:6b:cf: 42:e8:52:a5:b1:d9:91:dd:fc:c2:69:70:a5:51:72: 9c:20:a0:d5:cc:7a:b5:85:f5:8a:b6:2e:98:ae:63: 48:be:0f:77:6f:44:26:35:40:b5:de:64:54:e7:c5: b1:98:04:9a:35:bc:6e:0a:c4:55:c2:6b:78:4a:df: e5:07:b1:b8:25:a5:c2:1a:ed:20:d5:41:d0:e7:4c: 91:f5:95:2a:7a:42:fc:6d:10:38:94:7d:2d:a0:70: 1d:d6:3e:98:06:02:5c:77:57:8a:bc:ba:5f:89:cb: 84:96:2c:9b:c8:a3:fe:e9:91:04:47:4b:eb:a6:84: d0:ff:7b:96:13:d4:49:87:18:c5:26:3c:50:4d:26: 91:d7:3f:a7:ea:d9:49:4f:41:c1:a9:4e:8e:a7:3b: 8e:37:a5:0b:2a:49:c5:49:99:50:f9:38:5c:05:96: 95:c0:75:10:8e:59:23:5d:89:fe:06:73:95:09:30: 35:54:7a:49:b9:4c:c9:b6:18:ad:1d:cf:f8:02:3b: 06:ec:3d:47:6b:68:f9:a2:46:d7:7c:c9:14:59:7f: 03:4a:1d:f6:65:aa:95:3f:28:82:f5:59:ab:cc:62: 93:c8:20:d4:66:76:a1:05:c2:ab:04:10:29:2b:6f: 81:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:73:D2:36:A1:B3:3B:28:00:41:76:33:24:21:86:D4:B1:12:B6:5B X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.112.0/23 Signature Algorithm: sha256WithRSAEncryption d3:93:e8:f4:d8:77:c4:27:86:97:23:08:38:35:56:43:d8:33: d8:1a:17:1f:13:a4:6f:ba:47:d9:22:76:da:a9:d5:16:38:80: 01:96:50:c9:f7:6d:f5:e8:06:1a:31:d7:3e:41:71:74:58:52: 62:fa:59:3a:dd:33:0d:0d:87:c2:dc:6d:ec:ba:c1:da:19:df: 13:dc:6b:c7:6c:61:0f:5d:9b:2c:3c:36:ce:00:ca:85:0f:be: 84:ef:3d:2d:4a:71:5a:04:24:7c:a3:4c:c4:b9:ca:1b:9c:5d: 4f:c0:23:53:73:c4:24:4e:77:42:8b:af:9b:98:61:12:02:69: 17:b2:72:85:85:84:24:20:b7:6c:a7:d1:1a:3d:a8:93:b6:c7: d8:cb:12:bd:2b:60:5a:70:df:2f:19:7d:3f:53:a9:a4:f4:bd: 37:bc:a2:dd:0d:25:87:59:50:7b:de:1e:6e:73:ec:a7:25:75: 5a:5e:90:c2:28:80:3e:2a:b9:b3:99:d8:b4:36:12:3b:1d:d4: 1e:76:34:2b:83:ae:56:07:1e:f8:2f:91:dc:55:41:14:71:63: d0:30:ab:87:95:dc:ff:c8:61:4c:11:34:e2:6f:89:37:41:e3: 52:47:3d:96:f0:6d:cd:a6:49:01:21:b2:f2:76:96:2e:34:6e: 99:95:ef:a3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKDhCMUE4MDY1QkU4OEFBNkMxQkEzRkVEQjU0RTA4N0U3 RDJBREI0REUwHhcNMjUwMzE3MDQ1MDU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTJiYS0yNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2b2blwZJ0iYql2dZa89C6FKlsdmR3fzCaXClUXKcIKDVzHq1hfWKti6YrmNI vg93b0QmNUC13mRU58WxmASaNbxuCsRVwmt4St/lB7G4JaXCGu0g1UHQ50yR9ZUq ekL8bRA4lH0toHAd1j6YBgJcd1eKvLpficuEliybyKP+6ZEER0vrpoTQ/3uWE9RJ hxjFJjxQTSaR1z+n6tlJT0HBqU6OpzuON6ULKknFSZlQ+ThcBZaVwHUQjlkjXYn+ BnOVCTA1VHpJuUzJthitHc/4AjsG7D1Ha2j5okbXfMkUWX8DSh32ZaqVPyiC9Vmr zGKTyCDUZnahBcKrBBApK2+BRQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDRz0jah szsoAEF2MyQhhtSxErZbMB8GA1UdIwQYMBaAFIsagGW+iKpsG6P+21Tgh+fSrbTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC9ENzdCOUQ2NkQ1 QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFtd2JvXzdiVk9DSDU5S3R0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwNjgvRDc3QjlENjZENUM0MTFFRTg5QzE5NzBEQzRGOUFFMDIvNEREQThBMThE NUREMTFFRUE1QjFDNzExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRRwMA0GCSqGSIb3DQEBCwUAA4IBAQDTk+j02HfEJ4aXIwg4NVZD 2DPYGhcfE6RvukfZInbaqdUWOIABllDJ92316AYaMdc+QXF0WFJi+lk63TMNDYfC 3G3susHaGd8T3GvHbGEPXZssPDbOAMqFD76E7z0tSnFaBCR8o0zEucobnF1PwCNT c8QkTndCi6+bmGESAmkXsnKFhYQkILdsp9EaPaiTtsfYyxK9K2BacN8vGX0/U6mk 9L03vKLdDSWHWVB73h5uc+ynJXVaXpDCKIA+Krmzmdi0NhI7HdQedjQrg65WBx74 L5HcVUEUcWPQMKuHldz/yGFMETTib4k3QeNSRz2W8G3NpkkBIbLydpYuNG6Zle+j -----END CERTIFICATE-----Generated at Thu Mar 26 20:24:17 2026 by rpki-client