$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa File: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (raw, json) Hash identifier: sLY3A5xo4OWXXroIPD+/NDSIP/DardXda+JcIvGvHgg= Subject key identifier: 17:49:43:34:9B:DD:11:C6:EA:4F:33:B2:20:F0:3A:81:F2:A6:49:C2 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 0117 Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:52:45 +0000 ROA not before: Thu 27 Mar 2025 06:41:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 7545 IP address blocks: 61.68.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Mar 27 06:41:11 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3e23d-9fba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f5:93:f9:74:3b:7e:06:8c:83:c7:e8:3a:16: d6:35:ac:74:11:20:91:ee:86:17:9e:eb:5e:e2:68: df:cd:28:81:72:15:29:df:b0:97:e4:96:c2:a9:57: 18:38:6a:e1:5a:4b:14:a5:6d:eb:60:81:3d:b8:59: cf:36:a7:ef:0f:af:bf:47:ea:74:04:4d:07:f8:ab: 73:e7:56:07:0d:b7:61:c2:de:63:7a:71:93:f0:e7: 0e:37:f0:2c:e3:55:27:45:c4:3b:8a:06:31:bd:47: 02:4f:14:4d:71:6b:71:6c:14:ca:da:ff:d0:57:21: 0f:fa:7d:ff:6f:e6:b3:10:64:a6:5b:88:8c:d4:e1: b2:5f:c2:2f:d5:95:bc:71:b9:6f:af:9d:e8:a1:7b: 6d:8f:ec:96:10:a5:74:6b:79:70:dc:86:c3:1b:9b: fd:ce:c2:a4:77:c2:14:6c:a8:36:87:79:ae:3f:15: a1:87:df:89:95:d0:f7:d0:3e:b8:a9:2c:e3:83:2d: 86:73:14:02:aa:f4:4e:e5:02:f3:ca:25:bf:ed:16: 5f:e4:69:0e:1f:0f:3f:35:67:69:d8:6d:8a:d8:1d: 51:89:6d:b9:74:7e:c3:b3:6e:64:b5:9b:d1:98:e9: 50:84:47:1e:19:bc:5d:e6:8d:88:1b:5d:35:32:d7: 91:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:49:43:34:9B:DD:11:C6:EA:4F:33:B2:20:F0:3A:81:F2:A6:49:C2 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.68.16.0/21 Signature Algorithm: sha256WithRSAEncryption b2:47:c6:e6:b3:f3:78:e1:4a:c4:59:ce:3b:3c:a4:bf:fe:56: 9e:72:b2:e0:1f:18:eb:4c:be:4d:95:59:b9:9f:95:19:82:ab: 85:ea:58:36:5a:c7:ed:6d:c3:34:c4:a4:ae:16:91:52:3a:64: b6:4c:13:fe:3d:23:1d:9f:4a:b2:8c:f4:73:04:2b:10:aa:42: dd:7f:f2:14:ce:af:0e:db:67:50:92:ae:f7:ff:11:14:73:35: 82:4a:9e:bd:7a:53:e4:8c:cc:a9:15:09:29:42:d6:f5:e1:44: 5e:3a:a2:28:e2:ee:df:0c:80:e7:42:ae:cc:13:52:3e:63:6d: 09:fd:0c:58:40:20:1c:cc:ee:ad:29:94:d3:2b:01:54:95:32: 9a:ea:41:ea:e4:13:ab:5e:23:ac:73:37:25:7c:9c:fa:91:fa: 7b:86:b7:33:a6:6e:f3:e6:ca:14:b7:9b:57:c6:26:cd:5b:49: 36:7c:3c:8b:6e:5f:83:ab:8e:26:52:9c:1e:1b:03:42:5b:e8: 82:76:d1:d5:08:74:5c:81:1a:dc:52:16:81:b1:a0:b8:c1:c4: e0:32:0e:ed:c9:24:98:eb:00:4b:96:31:39:bc:ef:b2:87:2c: f6:7f:ff:f6:78:de:db:e1:f8:31:f3:ec:05:76:e6:42:f6:f9: bf:ea:fd:6c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjUwMzI3MDY0MTExWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTIzZC05ZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPWT+XQ7fgaMg8foOhbWNax0ESCR7oYXnute4mjfzSiBchUp37CX5JbCqVcY OGrhWksUpW3rYIE9uFnPNqfvD6+/R+p0BE0H+Ktz51YHDbdhwt5jenGT8OcON/As 41UnRcQ7igYxvUcCTxRNcWtxbBTK2v/QVyEP+n3/b+azEGSmW4iM1OGyX8Iv1ZW8 cblvr53ooXttj+yWEKV0a3lw3IbDG5v9zsKkd8IUbKg2h3muPxWhh9+JldD30D64 qSzjgy2GcxQCqvRO5QLzyiW/7RZf5GkOHw8/NWdp2G2K2B1RiW25dH7Ds25ktZvR mOlQhEceGbxd5o2IG101MteRjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBdJQzSb 3RHG6k8zsiDwOoHypknCMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI1MDYvQjA0OTA4Q0U2RURFMTFFRkFBQzJDQjVEQzRGOUFFMDIvREQ3NUM5QkM2 RURGMTFFRjkwQzQ5QTVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDPUQQMA0GCSqGSIb3DQEBCwUAA4IBAQCyR8bms/N44UrEWc47PKS/ /laecrLgHxjrTL5NlVm5n5UZgquF6lg2WsftbcM0xKSuFpFSOmS2TBP+PSMdn0qy jPRzBCsQqkLdf/IUzq8O22dQkq73/xEUczWCSp69elPkjMypFQkpQtb14UReOqIo 4u7fDIDnQq7ME1I+Y20J/QxYQCAczO6tKZTTKwFUlTKa6kHq5BOrXiOsczclfJz6 kfp7hrczpm7z5soUt5tXxibNW0k2fDyLbl+Dq44mUpweGwNCW+iCdtHVCHRcgRrc UhaBsaC4wcTgMg7tySSY6wBLljE5vO+yhyz2f//2eN7b4fgx8+wFduZC9vm/6v1s -----END CERTIFICATE-----Generated at Mon Mar 2 05:40:46 2026 by rpki-client