$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DD84920268FA11EFB2CB6E60C4F9AE02.roa File: DD84920268FA11EFB2CB6E60C4F9AE02.roa (raw, json) Hash identifier: 4S3t2dvowIG/EeUUH9BW/CIG4gP34ZZohoWk2j8rwOk= Subject key identifier: 22:44:E1:D4:EF:39:34:F8:BD:52:78:78:64:D6:AD:DD:6F:02:34:6B Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 0434 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DD84920268FA11EFB2CB6E60C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:49:39 +0000 ROA not before: Tue 02 Dec 2025 23:58:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134100 IP address blocks: 43.251.205.0/24 maxlen: 24 223.27.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Dec 2 23:58:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48a43-4836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:cf:d3:42:b5:e0:b6:53:ef:61:ea:d6:d0: a8:48:b9:e7:f4:27:22:e3:a2:e6:46:a4:f7:66:32: bd:90:0e:20:b1:8b:58:81:fd:38:05:87:90:2f:d0: 56:f3:68:fe:39:73:f5:bc:f4:2e:bf:80:74:aa:af: 09:75:69:94:8b:c4:c7:de:a1:89:07:03:7f:ef:3f: f0:ec:53:23:8c:1f:ea:66:a0:f7:69:e8:ae:ed:a3: ae:58:c8:ec:2f:9b:c4:3c:99:bb:73:0b:02:47:1c: db:8e:91:ff:64:a8:35:ba:50:6a:80:50:8e:ba:bd: a7:9b:e1:ae:46:4a:8f:d9:c3:42:0d:35:17:4c:5f: 13:d1:b5:fd:d9:57:80:6c:98:f5:b7:bf:9c:d4:4b: 5a:1f:3a:50:e8:88:be:f9:85:b2:1a:53:e0:d9:88: 38:d1:10:f1:bb:ab:8a:de:31:21:dd:10:0d:af:b5: d3:2b:a7:0c:b1:f2:06:e6:bf:a0:02:33:0d:e1:99: e8:b3:ea:f6:67:9a:65:8f:2d:b2:4d:6d:9e:3e:a9: 8b:c3:91:b3:34:e7:78:20:66:a6:16:52:b7:a6:84: 46:79:5f:ea:c2:63:8b:30:61:5b:56:04:54:fd:cb: ab:2e:a8:0e:3f:63:32:ec:94:40:8f:52:03:55:89: 5b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:44:E1:D4:EF:39:34:F8:BD:52:78:78:64:D6:AD:DD:6F:02:34:6B X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DD84920268FA11EFB2CB6E60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.251.205.0/24 223.27.224.0/24 Signature Algorithm: sha256WithRSAEncryption 09:4e:ea:13:f1:38:8d:ab:bd:48:1b:f8:9d:06:09:79:a4:4d: d3:39:c0:c2:8a:ee:1f:73:7d:bb:cc:d7:03:0d:d8:00:81:bf: 0a:cc:26:c7:30:5a:9e:13:75:0d:21:11:94:00:1b:82:75:aa: 68:36:94:c8:2d:ad:5e:5e:3b:b3:a6:3d:9d:d8:e8:a3:b1:1a: af:32:1b:ef:53:30:99:68:52:3a:a8:5d:33:81:a0:81:6c:5f: 03:97:0d:ea:01:16:97:3f:a2:f3:76:19:d5:ba:2b:d0:d7:2d: 5c:d4:d8:5d:84:f2:7c:fd:e4:64:f9:69:60:01:0f:d4:83:ba: da:28:e5:6c:00:98:af:47:51:15:6b:7b:c1:8a:8a:b3:0a:94: 03:0b:86:14:9e:72:f6:f9:e7:be:dd:fc:62:93:75:05:d5:11: 6b:77:49:8d:61:ae:5d:eb:6e:85:a5:9a:f1:e1:86:e3:30:28: e6:88:62:14:cc:b6:b2:61:53:d6:f3:f0:ea:38:de:34:fa:56: 94:51:99:2f:ef:dc:ae:03:30:9d:f6:8e:7a:ae:11:b1:49:be: 5e:c8:2f:f9:b4:38:d4:57:1c:ab:4b:a0:82:2a:ad:ec:4f:4d: a3:d3:cc:df:7c:df:f7:38:b4:1e:bc:0b:25:dc:87:0c:c4:a5: 26:b0:e3:e9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjUxMjAyMjM1ODU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE0My00ODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNTP00K14LZT72Hq1tCoSLnn9Cci46LmRqT3ZjK9kA4gsYtYgf04BYeQL9BW 82j+OXP1vPQuv4B0qq8JdWmUi8TH3qGJBwN/7z/w7FMjjB/qZqD3aeiu7aOuWMjs L5vEPJm7cwsCRxzbjpH/ZKg1ulBqgFCOur2nm+GuRkqP2cNCDTUXTF8T0bX92VeA bJj1t7+c1EtaHzpQ6Ii++YWyGlPg2Yg40RDxu6uK3jEh3RANr7XTK6cMsfIG5r+g AjMN4Znos+r2Z5pljy2yTW2ePqmLw5GzNOd4IGamFlK3poRGeV/qwmOLMGFbVgRU /curLqgOP2My7JRAj1IDVYlbFwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCJE4dTv OTT4vVJ4eGTWrd1vAjRrMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvREQ4NDkyMDI2 OEZBMTFFRkIyQ0I2RTYwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK/vNAwQA3xvgMA0GCSqGSIb3DQEBCwUAA4IBAQAJTuoT8TiNq71I G/idBgl5pE3TOcDCiu4fc327zNcDDdgAgb8KzCbHMFqeE3UNIRGUABuCdapoNpTI La1eXjuzpj2d2OijsRqvMhvvUzCZaFI6qF0zgaCBbF8Dlw3qARaXP6LzdhnVuivQ 1y1c1NhdhPJ8/eRk+WlgAQ/Ug7raKOVsAJivR1EVa3vBioqzCpQDC4YUnnL2+ee+ 3fxik3UF1RFrd0mNYa5d626FpZrx4YbjMCjmiGIUzLayYVPW8/DqON40+laUUZkv 79yuAzCd9o56rhGxSb5eyC/5tDjUVxyrS6CCKq3sT02j08zffN/3OLQevAsl3IcM xKUmsOPp -----END CERTIFICATE-----Generated at Mon Mar 2 09:08:02 2026 by rpki-client