$ rpki-client -vvf rpki.apnic.net/member_repository/A911DB66/77B6199CE09A11EFB63A8130C4F9AE02/DA673610F51D11EFAD3D042EC4F9AE02.roa File: DA673610F51D11EFAD3D042EC4F9AE02.roa (raw, json) Hash identifier: 06Hho+RJykAUvzboSlu1tF6rcNxA0i0LVsGzl68LWWI= Subject key identifier: C0:36:0A:A0:9F:DE:63:2A:CB:04:8F:CE:8F:17:12:C7:D7:E6:E5:0A Certificate issuer: /CN=A911DB66/serialNumber=BC8C79F78491A1D5AA45DBE4133C0C10F69364AD Certificate serial: D5 Authority key identifier: BC:8C:79:F7:84:91:A1:D5:AA:45:DB:E4:13:3C:0C:10:F6:93:64:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vIx594SRodWqRdvkEzwMEPaTZK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DB66/77B6199CE09A11EFB63A8130C4F9AE02/DA673610F51D11EFAD3D042EC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:31:34 +0000 ROA not before: Thu 19 Feb 2026 05:32:12 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 149179 IP address blocks: 161.248.204.0/23 maxlen: 23 161.248.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DB66/77B6199CE09A11EFB63A8130C4F9AE02/vIx594SRodWqRdvkEzwMEPaTZK0.crl rsync://rpki.apnic.net/member_repository/A911DB66/77B6199CE09A11EFB63A8130C4F9AE02/vIx594SRodWqRdvkEzwMEPaTZK0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vIx594SRodWqRdvkEzwMEPaTZK0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DB66, serialNumber=BC8C79F78491A1D5AA45DBE4133C0C10F69364AD Validity Not Before: Feb 19 05:32:12 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a43fb6-13ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d9:8e:c7:f1:ad:2b:40:39:d7:ac:a8:f7:6f: cc:a9:4b:ea:a7:12:9b:9c:59:13:f5:f8:f0:24:ec: dd:aa:3a:ac:89:43:f0:33:f1:50:ff:e9:b0:74:7c: 16:f7:b8:16:f6:18:6a:12:9b:b3:2b:26:b7:3d:cf: d1:37:7e:51:07:3e:72:7f:ce:6c:ce:7b:6c:64:61: de:94:ed:2e:14:0f:f0:1c:40:e0:ff:e6:24:ae:5f: b6:80:01:9b:1a:27:bd:85:02:a9:da:73:82:66:53: 44:3d:c1:0d:a9:d5:e2:44:36:65:b2:a2:0a:59:c7: aa:b3:5e:88:2e:c3:be:72:0c:33:b4:f6:d4:ce:15: 4d:79:a0:e1:4b:02:4d:f3:53:67:e9:92:46:19:d7: 5e:78:a4:72:13:3d:dc:34:11:df:28:a6:00:68:c2: 4e:f3:a1:f3:59:84:33:3b:a6:5b:61:38:b7:6f:c0: b9:9f:0e:af:2b:75:a0:29:6c:da:9b:6d:a3:d9:72: e6:dd:3a:b6:ee:c8:51:91:08:ed:d6:bc:75:8a:66: bd:f8:e2:19:c6:e5:c1:79:2b:57:de:cc:49:3c:b7: 81:82:64:95:e0:da:f0:65:02:75:2c:5d:56:6b:01: 86:01:f5:b9:4e:87:63:6d:11:2e:66:55:b4:50:de: 02:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:36:0A:A0:9F:DE:63:2A:CB:04:8F:CE:8F:17:12:C7:D7:E6:E5:0A X509v3 Authority Key Identifier: keyid:BC:8C:79:F7:84:91:A1:D5:AA:45:DB:E4:13:3C:0C:10:F6:93:64:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DB66/77B6199CE09A11EFB63A8130C4F9AE02/vIx594SRodWqRdvkEzwMEPaTZK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vIx594SRodWqRdvkEzwMEPaTZK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DB66/77B6199CE09A11EFB63A8130C4F9AE02/DA673610F51D11EFAD3D042EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.248.204.0/23 Signature Algorithm: sha256WithRSAEncryption b3:8b:c5:94:ed:00:f6:bd:a9:8b:db:18:5a:01:b8:78:67:73: eb:c4:7d:a9:42:34:74:34:40:19:56:e3:7a:0a:dd:7b:c3:1e: 12:88:da:8c:f3:0a:ec:51:44:56:5e:cc:a9:ab:dd:b4:14:5b: 22:bc:e7:6e:54:df:95:be:7e:85:79:59:dc:45:28:c6:96:d3: cb:a7:52:9e:3e:1c:f5:7c:a9:82:ac:fa:04:2f:e6:f6:58:36: 92:c4:8d:f2:e0:f5:83:7d:df:dd:56:6d:29:e3:12:cf:34:8e: 5a:ec:ee:a0:3a:5c:10:bc:78:a6:8b:8f:d3:53:04:3e:64:d5: de:d5:7d:65:2a:8e:43:ae:7e:d0:78:0a:e4:e4:5f:b1:6e:6f: 97:46:7f:21:17:08:5c:10:f7:45:59:4d:d1:55:8f:1f:ff:37: 23:e9:f4:04:15:47:57:79:2a:69:11:50:44:d7:75:ac:42:52: ea:21:5e:57:8f:fe:7f:33:8e:ce:08:6f:a2:58:f8:e6:f5:3f: 2d:ad:5b:fc:85:31:b5:28:4f:1d:3b:e2:f5:f2:97:c7:f7:11: be:78:95:87:e3:af:e3:e5:0f:d8:48:20:7b:42:08:a6:51:42: 75:3b:8b:b5:7d:c9:51:95:0b:35:7c:d7:8f:9b:a3:68:21:ba: 4d:36:73:4b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURCNjYxMTAvBgNVBAUTKEJDOEM3OUY3ODQ5MUExRDVBQTQ1REJFNDEzM0MwQzEw RjY5MzY0QUQwHhcNMjYwMjE5MDUzMjEyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2ZiNi0xM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdmOx/GtK0A516yo92/MqUvqpxKbnFkT9fjwJOzdqjqsiUPwM/FQ/+mwdHwW 97gW9hhqEpuzKya3Pc/RN35RBz5yf85szntsZGHelO0uFA/wHEDg/+Ykrl+2gAGb Gie9hQKp2nOCZlNEPcENqdXiRDZlsqIKWceqs16ILsO+cgwztPbUzhVNeaDhSwJN 81Nn6ZJGGddeeKRyEz3cNBHfKKYAaMJO86HzWYQzO6ZbYTi3b8C5nw6vK3WgKWza m22j2XLm3Tq27shRkQjt1rx1ima9+OIZxuXBeStX3sxJPLeBgmSV4NrwZQJ1LF1W awGGAfW5TodjbREuZlW0UN4ClwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMA2CqCf 3mMqywSPzo8XEsfX5uUKMB8GA1UdIwQYMBaAFLyMefeEkaHVqkXb5BM8DBD2k2St MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREI2Ni83N0I2MTk5Q0Uw OUExMUVGQjYzQTgxMzBDNEY5QUUwMi92SXg1OTRTUm9kV3FSZHZrRXp3TUVQYVRa SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZJeDU5NFNSb2RXcVJkdmtFendNRVBhVFpLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURCNjYvNzdCNjE5OUNFMDlBMTFFRkI2M0E4MTMwQzRGOUFFMDIvREE2NzM2MTBG NTFEMTFFRkFEM0QwNDJFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofjMMA0GCSqGSIb3DQEBCwUAA4IBAQCzi8WU7QD2vamL2xhaAbh4 Z3PrxH2pQjR0NEAZVuN6Ct17wx4SiNqM8wrsUURWXsypq920FFsivOduVN+Vvn6F eVncRSjGltPLp1KePhz1fKmCrPoEL+b2WDaSxI3y4PWDfd/dVm0p4xLPNI5a7O6g OlwQvHimi4/TUwQ+ZNXe1X1lKo5Drn7QeArk5F+xbm+XRn8hFwhcEPdFWU3RVY8f /zcj6fQEFUdXeSppEVBE13WsQlLqIV5Xj/5/M47OCG+iWPjm9T8trVv8hTG1KE8d O+L18pfH9xG+eJWH46/j5Q/YSCB7QgimUUJ1O4u1fclRlQs1fNePm6NoIbpNNnNL -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:04 2026 by rpki-client