$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa File: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (raw, json) Hash identifier: /8pZ9hmnX1KrX5+xHUTJd205PrwYJNS6PnS3wtcG9wI= Subject key identifier: 19:CB:05:40:35:97:BD:3B:43:13:FA:8E:F0:6B:0E:CE:F8:96:91:71 Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 187C Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:19:43 +0000 ROA not before: Thu 08 May 2025 17:17:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9444 IP address blocks: 1.65.190.0/23 maxlen: 24 116.48.208.0/21 maxlen: 21 116.48.213.0/24 maxlen: 24 116.48.214.0/23 maxlen: 23 116.48.215.0/24 maxlen: 24 116.48.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6268 (0x187c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: May 8 17:17:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4752f-1e0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:c2:e7:1d:f4:fc:6b:77:27:99:63:9c:6a: af:8d:5b:11:2b:37:3e:b4:4e:e7:8e:00:1e:d4:16: 93:c4:85:94:b6:b5:e1:41:0f:2b:21:f8:16:5c:3e: c8:14:d3:80:19:c0:42:c8:39:24:de:3b:ee:d2:88: 9f:05:9c:13:45:c5:ee:05:fb:da:e0:24:46:eb:17: 1c:3c:7e:ae:23:b7:97:ff:d6:82:00:c3:75:0c:29: 71:78:8f:26:ca:eb:af:33:3b:2c:6b:6c:d4:d9:35: b7:ed:8f:66:7b:8a:e2:a6:23:dd:b8:d5:c9:22:19: 16:77:5c:7b:b0:bc:4f:b0:f4:1c:87:06:50:d0:6c: 8e:0d:70:6f:af:d7:fe:7a:6f:d6:b3:8b:14:b9:0d: f4:eb:e0:8c:e7:1c:ba:d7:49:87:1d:b9:01:e3:1d: a4:d9:16:70:d4:5a:5f:e5:ca:73:cf:18:9e:73:73: 06:62:63:3e:69:23:1d:20:bf:02:01:17:19:bb:7d: c8:11:c7:2d:29:fe:c4:6d:22:ef:8e:31:e7:e9:cd: e7:d7:31:e8:67:60:da:11:d4:cc:90:db:28:c7:7d: 4b:61:bc:ab:a0:a6:5d:2a:d5:57:87:41:50:26:c8: bf:ad:20:c1:6a:0d:a7:2b:2d:de:f3:7a:41:3a:b4: a4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CB:05:40:35:97:BD:3B:43:13:FA:8E:F0:6B:0E:CE:F8:96:91:71 X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/DD145D6E023A11EBBDF8B35FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 1.65.190.0/23 116.48.208.0/21 116.48.224.0/22 Signature Algorithm: sha256WithRSAEncryption 06:44:ac:62:01:7e:3d:3b:68:2a:4a:39:34:a0:12:c6:1c:4f: 4d:88:4b:48:bf:51:af:96:5f:7a:34:c1:86:57:ff:6d:68:1b: c1:d7:2f:f5:64:9d:7d:8a:1e:93:f0:1f:c2:37:66:1d:16:9d: 89:b3:e8:fa:6c:2c:c5:c3:3f:a8:59:24:cb:c1:99:70:df:c1: 85:5a:ad:e1:ac:27:0e:7f:81:23:34:22:36:2b:1c:2e:b7:90: e5:86:98:a0:da:7b:ca:66:f3:61:9f:35:b1:57:2e:0a:87:30: 6c:05:b9:b7:28:92:81:b7:8a:a5:f3:e1:75:fc:8e:00:d1:c8: e7:8a:1c:bd:80:90:fa:31:8b:10:6b:7e:e0:3b:e7:d1:c7:1c: 0e:1a:95:68:df:31:08:d5:c8:e7:55:a3:8b:42:94:3c:ce:28: 96:10:37:e0:60:69:45:65:38:1a:d7:93:8e:ea:0a:64:e4:04: 61:87:9e:5f:d9:1f:e6:c5:d5:58:1e:e1:53:68:5d:a7:11:5a: 17:1d:69:1d:df:f1:5c:4a:fe:7f:80:6a:f1:47:a2:ee:d0:c9: db:68:bb:11:61:2d:cd:6b:69:69:a1:e9:32:5a:78:be:20:3a: 52:68:d7:98:48:4d:7c:16:10:5c:c5:cc:ef:f0:e4:46:e6:83: b8:c3:ab:f3 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUwNTA4MTcxNzUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzUyZi0xZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJbC5x30/Gt3J5ljnGqvjVsRKzc+tE7njgAe1BaTxIWUtrXhQQ8rIfgWXD7I FNOAGcBCyDkk3jvu0oifBZwTRcXuBfva4CRG6xccPH6uI7eX/9aCAMN1DClxeI8m yuuvMzssa2zU2TW37Y9me4ripiPduNXJIhkWd1x7sLxPsPQchwZQ0GyODXBvr9f+ em/Ws4sUuQ306+CM5xy610mHHbkB4x2k2RZw1Fpf5cpzzxiec3MGYmM+aSMdIL8C ARcZu33IEcctKf7EbSLvjjHn6c3n1zHoZ2DaEdTMkNsox31LYbyroKZdKtVXh0FQ Jsi/rSDBag2nKy3e83pBOrSklwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBnLBUA1 l707QxP6jvBrDs74lpFxMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvREQxNDVENkUw MjNBMTFFQkJERjhCMzVGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBAUG+AwQDdDDQAwQCdDDgMA0GCSqGSIb3DQEBCwUAA4IBAQAGRKxi AX49O2gqSjk0oBLGHE9NiEtIv1Gvll96NMGGV/9taBvB1y/1ZJ19ih6T8B/CN2Yd Fp2Js+j6bCzFwz+oWSTLwZlw38GFWq3hrCcOf4EjNCI2Kxwut5Dlhpig2nvKZvNh nzWxVy4KhzBsBbm3KJKBt4ql8+F1/I4A0cjnihy9gJD6MYsQa37gO+fRxxwOGpVo 3zEI1cjnVaOLQpQ8ziiWEDfgYGlFZTga15OO6gpk5ARhh55f2R/mxdVYHuFTaF2n EVoXHWkd3/FcSv5/gGrxR6Lu0MnbaLsRYS3Na2lpoekyWni+IDpSaNeYSE18FhBc xczv8ORG5oO4w6vz -----END CERTIFICATE-----Generated at Mon Mar 2 06:21:22 2026 by rpki-client