$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa File: DC11ACCE182F11EE82A0FC48C4F9AE02.roa (raw, json) Hash identifier: Sgjdzj5tp9q9wEyuOqsZn8n2Wldu0wGWUaDri0fULh8= Subject key identifier: 22:A5:C5:1F:21:D9:7A:32:D3:B2:C8:39:CC:B9:DB:B4:B2:DC:8F:98 Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 020D Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:16:45 +0000 ROA not before: Tue 17 Jun 2025 02:07:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132481 IP address blocks: 168.168.128.0/20 maxlen: 20 168.168.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: Jun 17 02:07:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3f5ec-7ef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:eb:2e:96:fa:bb:c6:95:08:57:c4:15:55:63: 5f:1d:11:cf:b5:6c:16:19:5d:3e:42:cf:1c:89:12: ed:db:5c:f6:f4:4a:31:09:55:03:c3:75:a3:a8:21: 42:38:35:05:6d:b5:c0:e9:df:72:5e:3b:1f:d3:ff: 13:17:06:04:0b:f8:18:fa:e1:da:52:22:06:91:c4: c4:e1:1d:64:00:bb:25:1d:94:c4:c9:58:2d:f2:31: 8c:74:36:35:3d:54:c1:9a:85:5f:e8:a5:ef:f2:e2: 02:66:41:25:37:74:c7:a5:38:d5:b8:22:53:7d:26: 0e:7a:bc:a6:d6:49:7a:78:59:b4:15:bb:33:d7:cf: 07:84:50:a9:f9:da:94:d1:42:8f:cc:20:95:dc:c6: 05:bf:48:76:2c:05:4c:36:50:8f:30:0d:94:93:fe: c0:11:38:0b:43:e3:e4:06:68:08:3d:db:64:a3:33: da:fb:3f:92:e5:f0:39:10:2d:a3:7f:91:c6:2d:f3: 6d:e2:2b:bd:5a:45:f3:de:cf:b2:31:23:32:de:f8: 63:06:78:a6:75:8b:ce:46:5e:c6:f2:e1:98:48:24: 11:01:d8:15:59:5d:5c:28:93:82:9a:1a:c8:6f:f1: fe:e0:4c:fc:19:d8:56:58:74:e4:b1:69:4b:70:90: be:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A5:C5:1F:21:D9:7A:32:D3:B2:C8:39:CC:B9:DB:B4:B2:DC:8F:98 X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.168.128.0/20 168.168.248.0/23 Signature Algorithm: sha256WithRSAEncryption b0:8c:94:c0:65:64:56:a4:84:c7:d8:65:5b:31:7e:6c:9f:e0: 60:dc:6a:0d:34:34:e9:12:2e:e7:a1:48:95:ab:00:20:76:64: 52:14:ff:16:ea:2f:2b:3b:9d:9d:28:8e:7f:3a:67:e9:5a:96: 9e:f9:b7:a3:91:c8:f2:97:97:a1:0c:2a:c4:09:51:57:df:8e: e1:73:b9:b8:74:5f:eb:92:a8:85:32:63:ab:21:86:d7:c7:2d: c7:19:f3:79:24:1c:ed:ff:79:a1:8a:2b:38:9e:47:8b:3b:4f: 11:0b:40:54:e3:d8:93:69:51:5b:e5:aa:67:74:a8:ad:9a:c1: dc:26:9b:f2:f7:96:d1:ec:bd:1a:f4:54:38:68:f1:97:a4:55: 23:11:74:ca:3c:a6:7d:69:f2:a3:56:79:60:88:d5:c5:1d:a2: 73:8a:88:96:f9:03:98:1c:6d:c2:55:4d:b7:e8:50:a0:a3:4e: 90:62:c7:f4:e0:4f:e0:48:a3:c9:df:28:d3:22:88:1c:a9:83: 21:f7:bb:27:af:43:86:2c:89:7c:fa:e9:1d:46:fd:ef:58:de: 8b:ac:61:6c:0c:ea:f0:89:c7:79:3c:78:f6:f5:a2:9c:90:5d: ab:98:b3:15:12:30:89:a3:bc:e3:cc:27:ff:e6:d8:7d:52:56: f3:b7:2f:4b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjUwNjE3MDIwNzA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjVlYy03ZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAousulvq7xpUIV8QVVWNfHRHPtWwWGV0+Qs8ciRLt21z29EoxCVUDw3WjqCFC ODUFbbXA6d9yXjsf0/8TFwYEC/gY+uHaUiIGkcTE4R1kALslHZTEyVgt8jGMdDY1 PVTBmoVf6KXv8uICZkElN3THpTjVuCJTfSYOerym1kl6eFm0Fbsz188HhFCp+dqU 0UKPzCCV3MYFv0h2LAVMNlCPMA2Uk/7AETgLQ+PkBmgIPdtkozPa+z+S5fA5EC2j f5HGLfNt4iu9WkXz3s+yMSMy3vhjBnimdYvORl7G8uGYSCQRAdgVWV1cKJOCmhrI b/H+4Ez8GdhWWHTksWlLcJC+rQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCKlxR8h 2Xoy07LIOcy527Sy3I+YMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvREMxMUFDQ0Ux ODJGMTFFRTgyQTBGQzQ4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQEqKiAAwQBqKj4MA0GCSqGSIb3DQEBCwUAA4IBAQCwjJTAZWRWpITH 2GVbMX5sn+Bg3GoNNDTpEi7noUiVqwAgdmRSFP8W6i8rO52dKI5/OmfpWpae+bej kcjyl5ehDCrECVFX347hc7m4dF/rkqiFMmOrIYbXxy3HGfN5JBzt/3mhiis4nkeL O08RC0BU49iTaVFb5apndKitmsHcJpvy95bR7L0a9FQ4aPGXpFUjEXTKPKZ9afKj VnlgiNXFHaJzioiW+QOYHG3CVU236FCgo06QYsf04E/gSKPJ3yjTIogcqYMh97sn r0OGLIl8+ukdRv3vWN6LrGFsDOrwicd5PHj29aKckF2rmLMVEjCJo7zjzCf/5th9 Ulbzty9L -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:41 2026 by rpki-client