$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DDFED4E068FA11EFB2CB6E60C4F9AE02.roa File: DDFED4E068FA11EFB2CB6E60C4F9AE02.roa (raw, json) Hash identifier: xClDM8EpPeO91j0Mezn/P780Xmby1QeCDq53lVbawmM= Subject key identifier: 73:61:25:02:33:64:38:76:98:C2:0D:3F:5C:27:9E:5D:B5:3D:E9:1E Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 0438 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DDFED4E068FA11EFB2CB6E60C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:49:42 +0000 ROA not before: Tue 02 Dec 2025 23:58:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137489 IP address blocks: 116.193.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1080 (0x438) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Dec 2 23:58:57 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48a46-4894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1b:a0:b8:9c:63:4b:58:71:5d:03:31:ad:b8: 37:fe:b2:04:7e:05:1f:0c:22:eb:05:37:86:57:a7: 2e:60:23:74:92:8c:e3:ee:a1:f2:39:51:59:34:c4: ec:4d:9f:95:99:ad:2e:82:03:8d:c4:a1:4a:6b:f8: 59:86:22:0a:cf:c9:60:2c:af:07:12:f0:6a:d8:c1: bc:7d:2e:0b:d6:b6:68:f0:d8:2e:a3:96:dc:f4:9d: e5:b6:81:30:ed:f1:80:94:17:dc:f7:cd:71:c0:e1: fb:74:7c:9d:97:ac:6e:e3:a3:a5:5e:73:f6:4e:e6: cf:a0:c2:c5:84:a5:44:af:d4:a3:b3:3e:53:bc:eb: 31:6c:9e:8e:be:0a:0f:06:7d:54:2f:bb:8d:16:56: 77:26:3a:25:55:f4:84:31:74:a1:f2:f7:69:2c:b3: 22:43:ac:b1:e7:e0:ea:05:e8:1e:d9:10:5d:45:5f: b7:ea:e8:7a:8d:7c:8c:09:6f:ca:75:1a:da:3a:dd: ce:db:5a:02:4a:d4:93:f9:6c:56:86:98:9a:c3:fe: 5d:aa:0a:a2:1d:e1:a4:c7:b5:3f:d2:c0:43:93:b4: d5:46:80:1f:41:fc:d0:a3:e5:1d:ef:83:d0:2c:02: e4:63:06:62:56:13:79:7a:eb:36:09:a0:6f:02:98: f7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:61:25:02:33:64:38:76:98:C2:0D:3F:5C:27:9E:5D:B5:3D:E9:1E X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/DDFED4E068FA11EFB2CB6E60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.193.148.0/24 Signature Algorithm: sha256WithRSAEncryption 98:b3:3f:21:45:92:30:c6:33:fb:d7:30:3d:ca:bd:2d:dc:3b: 3a:da:b0:82:f2:ed:6b:99:08:7c:d4:06:4a:e7:82:92:fb:fc: 00:5c:ac:38:cb:cb:7c:ae:44:06:84:c1:88:4e:ef:1a:6e:9d: d5:4a:33:bb:86:72:4d:80:de:97:b0:1e:49:49:9d:da:1c:b2: 60:89:90:2d:46:40:34:b2:7f:9e:31:21:e0:30:2d:42:54:f7: 02:c6:ff:c7:97:0b:9d:2e:86:4a:e8:4e:5d:81:f6:58:9a:f2: b2:ca:3e:ca:ad:1c:ad:b0:3a:be:d3:08:af:0a:9f:b3:f7:a6: 29:87:61:04:fe:a1:b3:9a:b7:91:d2:0d:58:61:0d:2a:fe:a6: e3:22:a9:89:03:d0:ca:a5:7a:44:ce:1d:16:bf:2f:b0:8d:0f: 10:2f:dc:dd:d7:d9:93:0c:42:db:33:fc:f0:73:cf:0a:49:39: 1a:18:63:39:69:6d:77:78:a5:b3:2c:e1:22:c8:c8:4f:50:a8: c8:8a:52:c4:36:7e:55:eb:67:52:0a:64:7f:98:6e:9f:22:43: a8:40:11:37:5e:da:cb:9c:26:66:2a:53:29:df:a1:0e:cf:f1: 60:d6:f3:9a:cf:e2:ca:ab:fc:76:a1:f7:2e:d3:8e:fa:bd:a6: 07:bb:5b:d8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjUxMjAyMjM1ODU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE0Ni00ODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhuguJxjS1hxXQMxrbg3/rIEfgUfDCLrBTeGV6cuYCN0kozj7qHyOVFZNMTs TZ+Vma0uggONxKFKa/hZhiIKz8lgLK8HEvBq2MG8fS4L1rZo8Nguo5bc9J3ltoEw 7fGAlBfc981xwOH7dHydl6xu46OlXnP2TubPoMLFhKVEr9Sjsz5TvOsxbJ6OvgoP Bn1UL7uNFlZ3JjolVfSEMXSh8vdpLLMiQ6yx5+DqBege2RBdRV+36uh6jXyMCW/K dRraOt3O21oCStST+WxWhpiaw/5dqgqiHeGkx7U/0sBDk7TVRoAfQfzQo+Ud74PQ LALkYwZiVhN5eus2CaBvApj3eQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHNhJQIz ZDh2mMINP1wnnl21PekeMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvRERGRUQ0RTA2 OEZBMTFFRkIyQ0I2RTYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAdMGUMA0GCSqGSIb3DQEBCwUAA4IBAQCYsz8hRZIwxjP71zA9yr0t 3Ds62rCC8u1rmQh81AZK54KS+/wAXKw4y8t8rkQGhMGITu8abp3VSjO7hnJNgN6X sB5JSZ3aHLJgiZAtRkA0sn+eMSHgMC1CVPcCxv/HlwudLoZK6E5dgfZYmvKyyj7K rRytsDq+0wivCp+z96Yph2EE/qGzmreR0g1YYQ0q/qbjIqmJA9DKpXpEzh0Wvy+w jQ8QL9zd19mTDELbM/zwc88KSTkaGGM5aW13eKWzLOEiyMhPUKjIilLENn5V62dS CmR/mG6fIkOoQBE3XtrLnCZmKlMp36EOz/Fg1vOaz+LKq/x2ofcu0476vaYHu1vY -----END CERTIFICATE-----Generated at Mon Mar 2 03:56:13 2026 by rpki-client