$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa File: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (raw, json) Hash identifier: jX0r26D7eTQAmi/KLRW0k/yca+QffQLV4qa7gOF/TdI= Subject key identifier: 39:97:B9:73:EB:6A:8A:ED:1C:51:62:AF:58:89:88:A1:4B:2F:F3:93 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 06D5 Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:57:03 +0000 ROA not before: Wed 30 Jul 2025 23:34:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38296 IP address blocks: 203.185.129.0/24 maxlen: 24 203.185.130.0/23 maxlen: 23 203.185.130.0/24 maxlen: 24 203.185.131.0/24 maxlen: 24 203.185.132.0/22 maxlen: 22 203.185.132.0/23 maxlen: 23 203.185.132.0/24 maxlen: 24 203.185.133.0/24 maxlen: 24 203.185.134.0/23 maxlen: 23 203.185.134.0/24 maxlen: 24 203.185.135.0/24 maxlen: 24 203.185.136.0/24 maxlen: 24 203.185.137.0/24 maxlen: 24 203.185.138.0/24 maxlen: 24 203.185.139.0/24 maxlen: 24 203.185.140.0/24 maxlen: 24 203.185.141.0/24 maxlen: 24 203.185.142.0/24 maxlen: 24 203.185.143.0/24 maxlen: 24 203.185.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Jul 30 23:34:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a453bf-de33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:38:e0:47:3f:dc:0b:e0:29:ef:c0:8c:7c: 6e:7c:e4:c1:a5:b7:b7:13:ce:e9:95:47:6b:16:f6: cf:2a:29:78:bb:5b:b5:31:c0:99:07:ba:16:58:cc: b6:5f:ba:13:aa:58:6d:dc:c8:5f:4b:01:e3:3a:62: 85:03:b1:18:34:71:6a:d4:ba:80:87:88:35:e9:07: 78:3e:e2:2d:de:ea:5d:6d:aa:22:00:ef:ba:35:8d: 83:cd:cc:d4:05:2a:01:2d:f1:f4:06:66:f3:ce:8f: b4:bb:c1:cf:a3:cd:f4:41:80:5e:ca:15:2f:69:37: 49:ad:bb:7a:8c:95:2b:8b:ec:96:81:a6:9c:68:13: 36:a7:9d:e4:05:45:a3:16:f1:34:8d:e0:c4:a1:ea: f2:55:c4:f3:1e:1a:0c:52:8e:18:b7:a8:f2:92:5d: d6:91:22:11:5e:20:6b:fa:d1:e9:99:88:aa:dd:da: 7f:2b:3a:5e:4d:9d:0f:9e:b9:15:24:bd:e0:52:97: 2f:31:2d:68:34:4f:7c:ba:c3:20:de:54:39:1a:ca: 54:a0:fc:56:d6:e6:c0:c2:fc:00:8c:3b:3e:00:12: f1:64:45:67:64:80:e5:34:aa:8b:b5:05:a3:d0:8f: c9:01:ae:ef:93:e8:87:ac:12:69:7d:ed:de:69:27: db:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:97:B9:73:EB:6A:8A:ED:1C:51:62:AF:58:89:88:A1:4B:2F:F3:93 X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.185.129.0-203.185.145.255 Signature Algorithm: sha256WithRSAEncryption 39:b0:81:ff:b1:09:36:40:4b:4a:87:dd:4c:02:a4:58:8c:65: ad:03:7b:f7:02:8a:9a:bd:d6:6c:26:26:14:f8:e1:0e:74:01: 55:53:7d:a1:70:84:db:02:c8:90:3c:46:d5:f4:ce:b8:53:d4: eb:01:18:93:25:51:93:3b:ea:94:7b:ff:dd:09:3e:53:a9:c2: 21:2f:90:ed:80:f5:d6:6b:62:f1:e1:77:67:81:53:05:a4:53: 03:8c:e0:ad:9d:c7:f0:4a:67:33:9e:9e:2c:05:93:b3:32:d8: f2:21:5c:1c:61:49:d1:22:a5:e1:07:71:d4:94:21:e2:fe:59: 8c:69:b9:14:dc:a2:67:6b:02:2c:93:6f:20:e4:48:a3:84:3b: 42:30:02:01:99:c6:1b:60:83:f3:bc:e5:a8:36:72:a6:f0:ac: 78:68:8d:aa:c0:a1:4c:6b:f4:ee:37:2b:fd:d0:01:02:d6:61: 18:ce:11:eb:ed:ad:33:71:28:ac:25:80:33:03:ba:69:6d:e3: 23:b2:06:cb:8f:22:83:4c:f8:d7:33:64:9f:72:22:2e:8b:4d: fc:15:07:44:8c:fd:0b:a9:81:69:b3:7a:e7:c7:41:24:ae:65: 76:60:68:f7:e0:e1:62:b4:db:5d:68:9f:2b:6a:8c:2e:32:4e: 6e:19:a7:c0 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjUwNzMwMjMzNDQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTNiZi1kZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuA44Ec/3AvgKe/AjHxufOTBpbe3E87plUdrFvbPKil4u1u1McCZB7oWWMy2 X7oTqlht3MhfSwHjOmKFA7EYNHFq1LqAh4g16Qd4PuIt3updbaoiAO+6NY2DzczU BSoBLfH0Bmbzzo+0u8HPo830QYBeyhUvaTdJrbt6jJUri+yWgaacaBM2p53kBUWj FvE0jeDEoeryVcTzHhoMUo4Yt6jykl3WkSIRXiBr+tHpmYiq3dp/KzpeTZ0PnrkV JL3gUpcvMS1oNE98usMg3lQ5GspUoPxW1ubAwvwAjDs+ABLxZEVnZIDlNKqLtQWj 0I/JAa7vk+iHrBJpfe3eaSfbZwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFDmXuXPr aortHFFir1iJiKFLL/OTMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwQTgvNzBDMkVCN0FBMTk2MTFFQjgyMDBDRjA5QzRGOUFFMDIvREQ3Q0E1OEVB MjNGMTFFREJDREI2RDczQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBADLuYEDBAHLuZAwDQYJKoZIhvcNAQELBQADggEBADmwgf+xCTZA S0qH3UwCpFiMZa0De/cCipq91mwmJhT44Q50AVVTfaFwhNsCyJA8RtX0zrhT1OsB GJMlUZM76pR7/90JPlOpwiEvkO2A9dZrYvHhd2eBUwWkUwOM4K2dx/BKZzOeniwF k7My2PIhXBxhSdEipeEHcdSUIeL+WYxpuRTcomdrAiyTbyDkSKOEO0IwAgGZxhtg g/O85ag2cqbwrHhojarAoUxr9O43K/3QAQLWYRjOEevtrTNxKKwlgDMDumlt4yOy BsuPIoNM+NczZJ9yIi6LTfwVB0SM/QupgWmzeufHQSSuZXZgaPfg4WK0211onytq jC4yTm4Zp8A= -----END CERTIFICATE-----Generated at Mon Mar 2 03:57:46 2026 by rpki-client