$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/44DD2C9ABD2811EE9E6BD047C4F9AE02.roa File: 44DD2C9ABD2811EE9E6BD047C4F9AE02.roa (raw, json) Hash identifier: su1llYedwPnLSUZ71VKszo5WnnMLP9v6r72WwKMqsNs= Subject key identifier: E3:D9:72:D7:11:18:1A:55:A0:D4:45:AF:DB:49:DB:6C:44:91:F4:A3 Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 0227 Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/44DD2C9ABD2811EE9E6BD047C4F9AE02.roa Signing time: Thu 09 Apr 2026 03:35:35 +0000 ROA not before: Thu 09 Apr 2026 03:35:35 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 19905 IP address blocks: 168.168.128.0/20 maxlen: 20 168.168.150.0/24 maxlen: 24 168.168.200.0/24 maxlen: 24 168.168.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: Apr 9 03:35:35 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d71e87-84bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:11:8d:78:c4:dd:8e:85:70:6a:ac:89:66:1f: 6a:09:8e:4a:ee:e8:31:24:a7:45:fe:7d:d6:ea:3e: b0:86:19:1e:37:10:e8:cf:6b:57:2f:2e:95:6f:14: 24:96:32:6f:eb:8f:b6:34:ea:cb:95:f4:02:92:40: 85:0f:b4:48:05:13:81:af:aa:ba:53:1a:a0:70:bd: 38:1a:25:e1:1d:fe:90:1f:16:0f:34:05:f5:4c:87: 4a:78:27:f7:12:1e:be:a5:a2:7b:da:f7:81:60:36: ff:d9:5f:0d:aa:53:da:fc:05:01:9b:39:69:ba:c0: 71:e5:a3:9e:2e:6b:31:51:4e:13:52:0c:4a:80:14: f1:4e:07:1e:62:1a:15:3a:ff:0a:ea:a1:d9:2e:f4: fc:a1:b6:30:b6:48:2d:02:c3:f5:3c:11:6f:f8:14: aa:8a:16:42:b3:37:63:9a:19:26:bd:fc:be:43:87: eb:ef:6f:28:aa:07:73:a8:8f:f8:7d:4c:1a:7d:54: 52:60:27:52:f2:87:ff:e4:9e:e9:3a:9e:c2:75:3f: eb:0c:a6:a4:05:f8:c1:9b:c6:e9:e1:fb:ea:d8:39: b2:4d:e9:18:43:1a:0f:89:a1:e3:fd:c4:d5:33:19: 6c:e3:7c:3c:c8:6b:47:c2:cf:c8:01:a3:6d:de:da: 24:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D9:72:D7:11:18:1A:55:A0:D4:45:AF:DB:49:DB:6C:44:91:F4:A3 X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/44DD2C9ABD2811EE9E6BD047C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.168.128.0/20 168.168.150.0/24 168.168.200.0/24 168.168.254.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:e2:69:92:23:e0:55:c5:af:1d:9a:f5:36:a8:c4:aa:26:da: c9:75:2b:3a:09:07:f5:0e:76:b7:01:fc:82:c7:14:93:2b:d9: 70:dd:ce:60:98:d6:41:7e:14:a4:bc:92:a4:bf:04:45:23:d0: 88:ba:b3:07:2e:b7:a4:70:ef:73:2f:20:5d:3e:84:e7:7c:f6: 6c:ab:75:fe:4a:81:8d:da:d4:52:db:68:f5:b2:10:0d:28:fd: 46:1c:0d:31:0f:b6:3c:0e:e2:d9:29:8a:da:c2:f2:c0:80:a1: 27:f8:0c:8a:5b:9a:98:ab:e3:30:a9:66:a7:e5:12:a7:60:52: f7:67:2e:ce:be:2d:b2:8a:de:c6:4d:37:fe:94:c6:e4:62:dd: 27:20:87:d7:ed:c2:7e:30:88:88:09:de:35:41:81:90:b5:92: 19:c3:7a:d1:73:4d:d8:2e:4e:8b:99:d3:25:00:50:ff:35:22: 90:bc:22:4a:4a:02:36:4f:d2:a8:ec:42:d1:59:81:fd:c5:97: 6e:2c:f4:cb:0b:2d:43:d5:fa:b9:3b:a4:ce:e7:44:74:b6:da: ea:7e:2b:36:b9:fd:a2:4d:e6:1c:2d:25:4a:e0:b2:01:a9:9d: b0:ba:aa:66:7b:8d:c9:91:6f:87:3c:8d:74:06:cd:c1:b3:fb: 8b:3f:62:10 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjYwNDA5MDMzNTM1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3MWU4Ny04NGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxGNeMTdjoVwaqyJZh9qCY5K7ugxJKdF/n3W6j6whhkeNxDoz2tXLy6VbxQk ljJv64+2NOrLlfQCkkCFD7RIBROBr6q6UxqgcL04GiXhHf6QHxYPNAX1TIdKeCf3 Eh6+paJ72veBYDb/2V8NqlPa/AUBmzlpusBx5aOeLmsxUU4TUgxKgBTxTgceYhoV Ov8K6qHZLvT8obYwtkgtAsP1PBFv+BSqihZCszdjmhkmvfy+Q4fr728oqgdzqI/4 fUwafVRSYCdS8of/5J7pOp7CdT/rDKakBfjBm8bp4fvq2DmyTekYQxoPiaHj/cTV Mxls43w8yGtHws/IAaNt3tok+QIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFOPZctcR GBpVoNRFr9tJ22xEkfSjMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvNDRERDJDOUFC RDI4MTFFRTlFNkJEMDQ3QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQEqKiAAwQAqKiWAwQAqKjIAwQBqKj+MA0GCSqGSIb3DQEBCwUAA4IB AQCe4mmSI+BVxa8dmvU2qMSqJtrJdSs6CQf1Dna3AfyCxxSTK9lw3c5gmNZBfhSk vJKkvwRFI9CIurMHLrekcO9zLyBdPoTnfPZsq3X+SoGN2tRS22j1shANKP1GHA0x D7Y8DuLZKYrawvLAgKEn+AyKW5qYq+MwqWan5RKnYFL3Zy7Ovi2yit7GTTf+lMbk Yt0nIIfX7cJ+MIiICd41QYGQtZIZw3rRc03YLk6LmdMlAFD/NSKQvCJKSgI2T9Ko 7ELRWYH9xZduLPTLCy1D1fq5O6TO50R0ttrqfis2uf2iTeYcLSVK4LIBqZ2wuqpm e43JkW+HPI10Bs3Bs/uLP2IQ -----END CERTIFICATE-----Generated at Fri Apr 17 10:02:44 2026 by rpki-client