$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/75E6DD481BDA11EAB3F45D44C4F9AE02.roa File: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (raw, json) Hash identifier: n9Crm/X8BIyWrbtx9XSuVfzuzzUyJa39Yk0aZo9vy/0= Subject key identifier: 3B:8F:45:75:05:BD:F2:44:0B:BA:70:38:2B:4C:56:3E:3E:4A:96:C0 Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C65 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/75E6DD481BDA11EAB3F45D44C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:19:08 +0000 ROA not before: Sat 26 Jul 2025 18:57:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135600 IP address blocks: 66.228.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Jul 26 18:57:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42ebc-6914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0f:df:a3:93:bd:60:91:7a:d3:9d:ff:9f:96: 50:24:76:32:e6:44:13:0e:d7:3a:cd:ed:99:50:7e: cf:17:e7:41:6a:a3:7d:01:c6:bb:b1:c2:58:33:dd: 5b:48:8d:f2:f2:5e:50:85:85:2a:11:05:88:42:e7: 20:46:14:e2:db:98:e6:32:92:74:a3:25:4a:63:cc: a8:fb:35:d6:14:db:a1:3b:fb:62:a4:1f:df:ac:f3: 4a:c8:d4:26:51:ff:d8:1e:f9:7c:7b:d2:d3:85:94: aa:22:df:48:23:e4:b4:f0:d9:22:aa:72:9a:6f:29: 26:03:5e:82:fd:02:27:58:be:41:6b:f7:3f:68:39: f2:b9:30:b9:3b:10:28:f5:75:89:d6:d6:6d:93:2b: dc:ec:a2:2b:c0:d5:ca:6b:1f:94:e6:a9:c3:93:26: c7:45:4c:df:96:5e:cf:52:22:42:90:42:4f:bf:f5: 98:d4:46:c6:7a:34:7a:43:19:ba:46:0f:21:2a:b9: 5c:96:47:4a:62:92:0d:ea:32:a2:7b:ea:13:d5:01: 67:33:40:af:ec:42:97:af:bd:65:e9:00:b1:6b:90: be:e6:3e:a0:ac:fa:6d:98:81:a4:80:55:f9:0b:79: 7d:76:74:34:3d:9e:10:a2:08:ba:36:b9:c5:80:e8: a0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8F:45:75:05:BD:F2:44:0B:BA:70:38:2B:4C:56:3E:3E:4A:96:C0 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/75E6DD481BDA11EAB3F45D44C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 66.228.0.0/20 Signature Algorithm: sha256WithRSAEncryption 2a:4a:23:15:27:84:e5:4c:c4:7c:4c:d7:1e:75:01:24:05:b6: f7:77:e2:ad:4d:43:1e:3b:34:e9:b2:a4:b6:b6:69:ca:07:2e: bd:b9:bf:10:25:8a:6f:c2:5c:7a:87:d6:f8:c0:4b:f7:02:bb: 0c:99:e0:77:8a:dd:90:2e:21:9f:2a:20:c9:da:9a:6f:28:c8: 09:ff:ee:53:24:12:49:3e:68:c1:3a:27:41:0d:21:97:ee:e3: 2c:f1:7b:5b:88:49:83:f4:ee:5b:61:84:17:82:b1:83:c0:45: cc:63:f5:ad:fa:bc:e3:57:b2:c9:91:f8:db:5b:6f:c4:d5:73: 55:70:e7:63:f5:ea:b0:f7:ce:dc:d1:7f:72:5d:d0:34:cb:ae: de:7e:3c:93:5a:50:b8:b3:ad:71:54:29:eb:63:2f:6e:5c:fc: 95:56:e2:4c:c6:45:c0:87:29:ba:7f:6e:34:3d:51:21:40:14: d6:3d:db:bb:60:9b:fd:9c:29:d7:38:7d:c5:65:b5:28:4d:0a: 5e:59:96:66:66:43:71:fd:da:fa:e5:51:ea:34:1a:ae:89:b1: 2a:9b:1d:96:c3:c5:d4:f7:07:c4:5a:75:bd:2f:35:6e:6d:c1: e9:e1:04:1e:a5:7c:85:67:bc:cf:d9:6b:ec:ae:c3:29:5a:6a: ff:de:23:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjUwNzI2MTg1NzM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmViYy02OTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqw/fo5O9YJF6053/n5ZQJHYy5kQTDtc6ze2ZUH7PF+dBaqN9Aca7scJYM91b SI3y8l5QhYUqEQWIQucgRhTi25jmMpJ0oyVKY8yo+zXWFNuhO/tipB/frPNKyNQm Uf/YHvl8e9LThZSqIt9II+S08NkiqnKabykmA16C/QInWL5Ba/c/aDnyuTC5OxAo 9XWJ1tZtkyvc7KIrwNXKax+U5qnDkybHRUzfll7PUiJCkEJPv/WY1EbGejR6Qxm6 Rg8hKrlclkdKYpIN6jKie+oT1QFnM0Cv7EKXr71l6QCxa5C+5j6grPptmIGkgFX5 C3l9dnQ0PZ4Qogi6NrnFgOigfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDuPRXUF vfJEC7pwOCtMVj4+SpbAMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhERTkvRDAwNDlGODYxQkQ1MTFFQTgwQ0JDRjM2QzRGOUFFMDIvNzVFNkRENDgx QkRBMTFFQUIzRjQ1RDQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEQuQAMA0GCSqGSIb3DQEBCwUAA4IBAQAqSiMVJ4TlTMR8TNcedQEk Bbb3d+KtTUMeOzTpsqS2tmnKBy69ub8QJYpvwlx6h9b4wEv3ArsMmeB3it2QLiGf KiDJ2ppvKMgJ/+5TJBJJPmjBOidBDSGX7uMs8XtbiEmD9O5bYYQXgrGDwEXMY/Wt +rzjV7LJkfjbW2/E1XNVcOdj9eqw987c0X9yXdA0y67efjyTWlC4s61xVCnrYy9u XPyVVuJMxkXAhym6f240PVEhQBTWPdu7YJv9nCnXOH3FZbUoTQpeWZZmZkNx/dr6 5VHqNBquibEqmx2Ww8XU9wfEWnW9LzVubcHp4QQepXyFZ7zP2WvsrsMpWmr/3iMj -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:17 2026 by rpki-client