$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/44DD2C9ABD2811EE9E6BD047C4F9AE02.roa File: 44DD2C9ABD2811EE9E6BD047C4F9AE02.roa (raw, json) Hash identifier: ARjfoRR6gBhijQjc00z9F3525S4k5A3ymbqrmu60pzs= Subject key identifier: FE:65:77:B0:AE:E5:24:FA:4C:96:F1:6F:1A:A5:02:36:8D:81:09:DD Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 020C Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/44DD2C9ABD2811EE9E6BD047C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:16:43 +0000 ROA not before: Fri 06 Jun 2025 14:05:26 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 19905 IP address blocks: 168.168.128.0/20 maxlen: 20 168.168.150.0/24 maxlen: 24 168.168.200.0/24 maxlen: 24 168.168.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: Jun 6 14:05:26 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3f5eb-9ad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fc:31:c9:1f:fe:e5:8f:12:fa:55:ca:e8:ce: 48:a2:ab:00:6c:8c:e6:1d:6a:32:a4:28:62:5a:2f: b2:46:87:66:02:a1:57:6e:3a:1b:2b:3b:11:34:7e: 96:f4:53:a7:5b:f0:7c:61:1d:40:a1:06:4c:86:f3: ce:25:28:c6:97:8f:5b:48:50:f9:19:ca:7e:5e:14: a3:31:49:32:b0:51:d3:da:a3:3a:83:ae:87:c0:5b: 65:b4:b2:a5:f7:97:bd:95:13:be:d5:2e:bc:dd:94: 93:2d:4e:7f:e3:3c:5b:f7:f4:8f:3c:c3:fa:89:b9: ea:5c:9a:72:97:27:2e:91:43:91:0f:c2:51:7a:94: e1:50:65:e3:b9:58:97:3a:d9:bb:a0:11:6b:2c:e8: b3:bd:54:5d:f8:6e:88:d1:b6:9b:ba:b1:df:0d:49: a5:74:2e:cb:b0:57:f2:32:ba:31:6b:d5:6c:07:84: df:73:da:0a:fa:b2:80:5c:52:ab:af:4e:73:5d:1d: 15:ba:db:30:40:78:2c:34:ce:25:8f:3b:48:59:9c: a9:79:62:11:b4:d9:63:ae:2d:9d:7a:03:98:d5:27: 43:47:d3:ec:dd:95:c1:06:4a:9e:25:44:62:3d:e9: 67:33:ff:95:75:45:c4:00:00:97:e3:39:1a:47:79: 7e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:65:77:B0:AE:E5:24:FA:4C:96:F1:6F:1A:A5:02:36:8D:81:09:DD X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/44DD2C9ABD2811EE9E6BD047C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.168.128.0/20 168.168.150.0/24 168.168.200.0/24 168.168.254.0/23 Signature Algorithm: sha256WithRSAEncryption 50:c9:4a:d9:6d:46:55:3e:39:db:fe:a0:76:e3:58:6d:bd:4f: 53:60:81:be:a8:1d:38:ed:1e:1b:5c:82:96:a3:31:b7:77:d4: 4c:03:86:f9:6b:7a:81:cc:4a:01:d3:f9:76:29:a2:3d:b0:fc: 2d:88:c5:5f:fb:68:33:16:2c:79:64:d6:93:51:5d:d3:8e:a0: 92:6e:34:dc:ec:92:8f:13:15:b1:a4:03:8a:23:aa:d3:3e:c4: c8:2e:7e:7a:09:66:23:d3:ab:b1:ff:f4:bc:1a:e2:88:da:46: 7d:26:0c:93:32:f1:90:37:c7:03:af:90:93:fe:02:17:16:b1: c3:88:a4:66:3c:f0:06:f7:d9:fc:49:46:ea:08:fa:fe:5f:b7: 79:4d:84:39:ec:d6:28:87:c7:94:cc:66:ce:8a:ec:ae:13:57: 3e:e0:af:e9:82:d3:91:2a:f1:2d:5a:ae:40:03:ff:ce:23:aa: fb:b4:05:d6:0f:75:3b:f3:45:34:96:1d:33:24:50:80:a2:e3: f4:db:a9:d4:be:dd:9e:52:17:41:f9:5e:7d:05:6f:54:73:c0: 8b:7b:78:96:82:d6:d2:0e:1f:ed:c3:e6:96:b5:59:d6:f7:13: 9c:13:4d:1e:a4:d7:00:b7:08:19:ed:a7:db:1e:4e:2c:d4:f4: c4:f8:49:77 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjUwNjA2MTQwNTI2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjVlYi05YWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvwxyR/+5Y8S+lXK6M5IoqsAbIzmHWoypChiWi+yRodmAqFXbjobKzsRNH6W 9FOnW/B8YR1AoQZMhvPOJSjGl49bSFD5Gcp+XhSjMUkysFHT2qM6g66HwFtltLKl 95e9lRO+1S683ZSTLU5/4zxb9/SPPMP6ibnqXJpylycukUORD8JRepThUGXjuViX Otm7oBFrLOizvVRd+G6I0baburHfDUmldC7LsFfyMroxa9VsB4Tfc9oK+rKAXFKr r05zXR0VutswQHgsNM4ljztIWZypeWIRtNljri2degOY1SdDR9Ps3ZXBBkqeJURi PelnM/+VdUXEAACX4zkaR3l+0QIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFP5ld7Cu 5ST6TJbxbxqlAjaNgQndMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvNDRERDJDOUFC RDI4MTFFRTlFNkJEMDQ3QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQEqKiAAwQAqKiWAwQAqKjIAwQBqKj+MA0GCSqGSIb3DQEBCwUAA4IB AQBQyUrZbUZVPjnb/qB241htvU9TYIG+qB047R4bXIKWozG3d9RMA4b5a3qBzEoB 0/l2KaI9sPwtiMVf+2gzFix5ZNaTUV3TjqCSbjTc7JKPExWxpAOKI6rTPsTILn56 CWYj06ux//S8GuKI2kZ9JgyTMvGQN8cDr5CT/gIXFrHDiKRmPPAG99n8SUbqCPr+ X7d5TYQ57NYoh8eUzGbOiuyuE1c+4K/pgtORKvEtWq5AA//OI6r7tAXWD3U780U0 lh0zJFCAouP026nUvt2eUhdB+V59BW9Uc8CLe3iWgtbSDh/tw+aWtVnW9xOcE00e pNcAtwgZ7afbHk4s1PTE+El3 -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:36 2026 by rpki-client