$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa File: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (raw, json) Hash identifier: GxPDZkNh8z2WUss9dJUvSPDera09jYCHZ5i3DQqj99E= Subject key identifier: 28:42:D0:1C:65:F3:12:52:D2:CC:0B:C1:96:5E:0E:BF:6E:E6:A4:B6 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 012A Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa Signing time: Tue 31 Mar 2026 05:39:52 +0000 ROA not before: Tue 31 Mar 2026 05:39:52 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 7545 IP address blocks: 61.68.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Mar 31 05:39:52 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cb5e28-850a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5e:a9:0f:2f:37:69:ee:de:1c:ec:0c:2a:e1: 84:74:50:0b:ad:8b:fc:31:65:0c:fd:58:82:59:d9: 24:23:07:b5:65:2a:50:31:91:e1:7f:46:14:2f:91: 7d:24:2a:f6:a9:58:55:58:a4:d9:28:ab:3e:a6:ee: 14:fa:9d:d7:3b:77:1d:71:f2:a8:9b:7d:06:c8:f8: 20:a8:e8:c7:01:9e:45:b3:68:3a:3f:e4:8e:c4:71: a3:fe:82:3b:c7:67:47:b6:3e:05:f6:69:3d:27:8d: 2e:f5:8e:83:4f:a8:8f:22:ad:a7:6e:e1:4b:5a:2e: 4d:30:46:bd:49:5f:97:bc:e3:a4:b7:bc:46:9f:be: 74:f6:5c:f8:a5:a2:b6:39:40:e4:df:3f:f0:d1:ef: 20:96:83:47:ce:df:8d:a0:bd:aa:62:1a:01:23:af: 2b:9d:50:7a:d5:1c:0d:ad:c9:4f:63:aa:b5:eb:09: 8a:de:eb:98:9e:6a:23:86:4e:35:bd:ee:d0:45:10: 02:68:1d:c3:2b:f2:6c:33:38:8b:f0:49:2f:29:4b: fd:15:1c:cf:9e:b0:a1:09:11:50:90:7e:46:97:76: f7:cb:e4:2b:44:66:be:d8:9f:16:42:19:e6:48:76: a3:66:fe:04:b6:cc:60:9a:e9:7f:a6:af:2a:8e:13: d9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:42:D0:1C:65:F3:12:52:D2:CC:0B:C1:96:5E:0E:BF:6E:E6:A4:B6 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.68.16.0/21 Signature Algorithm: sha256WithRSAEncryption 07:8b:50:54:52:15:a0:36:5a:66:8a:9f:71:f3:47:ae:f9:7e: cd:1f:6b:41:fb:b0:69:71:24:c6:36:da:64:18:cb:84:da:75: 1f:7d:6a:94:bb:bc:62:00:42:12:e1:ac:18:10:59:29:a2:b8: 86:c7:1e:8f:62:88:d8:e9:54:8f:94:14:05:1a:50:c0:50:93: fc:e8:36:c7:2f:38:3c:4d:9c:db:cc:aa:00:87:a0:a4:04:09: 26:26:50:ea:fa:3d:36:70:e3:c0:3a:63:b7:70:3b:2b:8d:88: 15:00:81:79:31:d8:6b:ba:7f:1e:83:b0:c5:97:a9:6d:65:0a: f4:6a:95:e9:1c:04:7b:4e:cf:43:6f:ef:95:9c:cf:0d:f1:02: b8:d0:b6:67:71:c9:39:55:32:9e:3f:f4:4d:59:e9:ff:75:11: 39:e9:32:34:56:69:f4:94:29:92:19:4f:d3:90:a5:3f:e0:12: e3:f7:e0:ee:80:1e:53:9c:de:c7:2d:5f:3f:1e:08:7f:df:80: 31:91:42:5e:79:3f:07:01:6e:44:69:8a:68:d8:f9:41:15:72: 5b:d9:67:5e:10:fd:0c:20:ec:30:37:41:3f:9b:32:f0:59:87: 58:54:c6:3f:27:eb:3a:f7:f6:19:3d:61:13:99:4f:1c:12:79: 02:92:d2:7c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjYwMzMxMDUzOTUyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiNWUyOC04NTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5l6pDy83ae7eHOwMKuGEdFALrYv8MWUM/ViCWdkkIwe1ZSpQMZHhf0YUL5F9 JCr2qVhVWKTZKKs+pu4U+p3XO3cdcfKom30GyPggqOjHAZ5Fs2g6P+SOxHGj/oI7 x2dHtj4F9mk9J40u9Y6DT6iPIq2nbuFLWi5NMEa9SV+XvOOkt7xGn7509lz4paK2 OUDk3z/w0e8gloNHzt+NoL2qYhoBI68rnVB61RwNrclPY6q16wmK3uuYnmojhk41 ve7QRRACaB3DK/JsMziL8EkvKUv9FRzPnrChCRFQkH5Gl3b3y+QrRGa+2J8WQhnm SHajZv4Etsxgmul/pq8qjhPZ8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFChC0Bxl 8xJS0swLwZZeDr9u5qS2MB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI1MDYvQjA0OTA4Q0U2RURFMTFFRkFBQzJDQjVEQzRGOUFFMDIvREQ3NUM5QkM2 RURGMTFFRjkwQzQ5QTVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDPUQQMA0GCSqGSIb3DQEBCwUAA4IBAQAHi1BUUhWgNlpmip9x80eu +X7NH2tB+7BpcSTGNtpkGMuE2nUffWqUu7xiAEIS4awYEFkporiGxx6PYojY6VSP lBQFGlDAUJP86DbHLzg8TZzbzKoAh6CkBAkmJlDq+j02cOPAOmO3cDsrjYgVAIF5 Mdhrun8eg7DFl6ltZQr0apXpHAR7Ts9Db++VnM8N8QK40LZncck5VTKeP/RNWen/ dRE56TI0Vmn0lCmSGU/TkKU/4BLj9+DugB5TnN7HLV8/Hgh/34AxkUJeeT8HAW5E aYpo2PlBFXJb2WdeEP0MIOwwN0E/mzLwWYdYVMY/J+s69/YZPWETmU8cEnkCktJ8 -----END CERTIFICATE-----Generated at Fri Apr 17 09:38:44 2026 by rpki-client