$ rpki-client -vvf rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/DD8B40E41A7E11F098A37378C4F9AE02.roa File: DD8B40E41A7E11F098A37378C4F9AE02.roa (raw, json) Hash identifier: 30isTr/GuNOCmTIx0y6oY1efaXwevPjBgsqmx/FGh64= Subject key identifier: 4D:62:A1:DC:45:1F:53:26:B1:EE:0B:D8:3D:D4:B7:8B:13:14:36:A4 Certificate issuer: /CN=A91450A4/serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Certificate serial: 08B9 Authority key identifier: 3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/DD8B40E41A7E11F098A37378C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:34:35 +0000 ROA not before: Mon 02 Feb 2026 21:17:41 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 18000 IP address blocks: 118.107.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.crl rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91450A4, serialNumber=3D1D6A332AEA4EC502037A0909F4CC19D42DB198 Validity Not Before: Feb 2 21:17:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46a9b-ec78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:65:cc:cd:54:d6:cb:b7:64:cb:1c:11:72:c7: e2:c0:3a:c4:3c:5d:ba:9a:14:ee:ab:b7:28:5c:d2: 83:51:ef:4e:05:90:53:45:8f:aa:ed:03:c6:cc:18: 7e:ce:02:e0:88:7b:a8:7c:d2:bc:27:58:54:76:c6: 05:26:0c:47:de:5a:b0:77:f4:3f:28:ae:39:95:e9: 06:9f:68:76:4a:0c:82:bc:25:5a:28:5a:1b:b5:fe: 58:8a:c5:d8:af:03:7e:74:34:16:c6:cc:05:0e:b1: d5:3a:cc:35:6c:91:f8:bf:ca:8f:57:25:1e:d6:4a: 79:37:c3:52:b7:01:c8:10:1d:e8:90:84:28:d1:96: b8:4d:0b:81:71:c3:59:86:01:c9:08:34:54:bc:59: 54:fb:39:a0:f3:84:50:b9:a1:34:72:ef:eb:6f:b5: 00:03:12:c1:25:19:91:21:b1:4d:8e:5f:2c:57:4b: 6e:ac:49:63:11:d9:61:df:4c:2e:f1:f1:76:e4:12: 9f:c8:c1:a7:3f:f9:ee:65:c9:58:2e:52:bc:d0:e8: af:99:29:e4:59:71:46:c7:73:f6:56:c4:d9:06:52: 4f:e3:f1:21:b2:eb:3f:aa:a6:40:a3:3d:4a:4e:62: ad:d7:a5:17:ea:db:94:e1:09:43:d7:56:50:fd:93: bf:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:62:A1:DC:45:1F:53:26:B1:EE:0B:D8:3D:D4:B7:8B:13:14:36:A4 X509v3 Authority Key Identifier: keyid:3D:1D:6A:33:2A:EA:4E:C5:02:03:7A:09:09:F4:CC:19:D4:2D:B1:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/PR1qMyrqTsUCA3oJCfTMGdQtsZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR1qMyrqTsUCA3oJCfTMGdQtsZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91450A4/DD4736980C3611EBA4E49E21C4F9AE02/DD8B40E41A7E11F098A37378C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.107.144.0/21 Signature Algorithm: sha256WithRSAEncryption b1:83:05:96:83:81:bf:f2:a0:13:d4:c5:bd:45:41:24:7b:08: c7:c1:24:88:cc:ee:a6:9c:3a:72:d2:5b:a5:62:89:28:05:cd: bb:ab:9d:27:d7:c8:eb:6b:9d:a2:7e:2c:40:c7:ec:f1:6a:59: 39:3d:ef:97:96:76:ce:d6:f3:5b:db:eb:2c:8d:06:2c:66:4e: 99:b4:d7:32:2f:30:a8:69:82:57:08:53:ff:6e:4c:aa:3e:af: fa:db:4d:77:ef:74:96:c1:8b:37:24:27:75:2e:06:98:40:41: 0e:0c:f4:a9:d8:40:e1:c0:9d:96:51:f4:90:65:60:d1:d7:a6: 59:2a:a6:34:0e:e7:b7:3b:35:a4:b4:31:c9:08:2e:ed:81:b1: ce:ca:46:b7:44:48:09:bd:d9:0e:db:e9:a2:8d:f6:88:a8:75: 6b:72:6c:58:99:5e:7e:6d:15:c1:7a:0a:fc:be:52:4a:90:87: f1:f9:78:d6:af:d4:84:69:9e:27:cf:8b:65:90:ec:80:1d:c6: 4c:27:69:db:44:25:62:04:f3:45:54:3a:bd:72:16:30:1e:02: df:22:4d:1a:74:43:49:b1:a1:da:da:a2:0a:64:f5:d9:d6:a5: fc:84:06:a0:dd:d8:cc:a1:01:1c:da:94:a1:19:6d:65:8b:3d: 5c:d4:17:b8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUwQTQxMTAvBgNVBAUTKDNEMUQ2QTMzMkFFQTRFQzUwMjAzN0EwOTA5RjRDQzE5 RDQyREIxOTgwHhcNMjYwMjAyMjExNzQxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE5Yi1lYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkmXMzVTWy7dkyxwRcsfiwDrEPF26mhTuq7coXNKDUe9OBZBTRY+q7QPGzBh+ zgLgiHuofNK8J1hUdsYFJgxH3lqwd/Q/KK45lekGn2h2SgyCvCVaKFobtf5YisXY rwN+dDQWxswFDrHVOsw1bJH4v8qPVyUe1kp5N8NStwHIEB3okIQo0Za4TQuBccNZ hgHJCDRUvFlU+zmg84RQuaE0cu/rb7UAAxLBJRmRIbFNjl8sV0turEljEdlh30wu 8fF25BKfyMGnP/nuZclYLlK80OivmSnkWXFGx3P2VsTZBlJP4/Ehsus/qqZAoz1K TmKt16UX6tuU4QlD11ZQ/ZO/XQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE1iodxF H1Mmse4L2D3Ut4sTFDakMB8GA1UdIwQYMBaAFD0dajMq6k7FAgN6CQn0zBnULbGY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTBBNC9ERDQ3MzY5ODBD MzYxMUVCQTRFNDlFMjFDNEY5QUUwMi9QUjFxTXlycVRzVUNBM29KQ2ZUTUdkUXRz WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSMXFNeXJxVHNVQ0Ezb0pDZlRNR2RRdHNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUwQTQvREQ0NzM2OTgwQzM2MTFFQkE0RTQ5RTIxQzRGOUFFMDIvREQ4QjQwRTQx QTdFMTFGMDk4QTM3Mzc4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDdmuQMA0GCSqGSIb3DQEBCwUAA4IBAQCxgwWWg4G/8qAT1MW9RUEk ewjHwSSIzO6mnDpy0lulYokoBc27q50n18jra52ifixAx+zxalk5Pe+XlnbO1vNb 2+ssjQYsZk6ZtNcyLzCoaYJXCFP/bkyqPq/6201373SWwYs3JCd1LgaYQEEODPSp 2EDhwJ2WUfSQZWDR16ZZKqY0Due3OzWktDHJCC7tgbHOyka3REgJvdkO2+mijfaI qHVrcmxYmV5+bRXBegr8vlJKkIfx+XjWr9SEaZ4nz4tlkOyAHcZMJ2nbRCViBPNF VDq9chYwHgLfIk0adENJsaHa2qIKZPXZ1qX8hAag3djMoQEc2pShGW1liz1c1Be4 -----END CERTIFICATE-----Generated at Mon Mar 2 06:38:11 2026 by rpki-client