$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/DDFD7F92A36311F0BCF40B3CC4F9AE02.roa File: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (raw, json) Hash identifier: +itwix5tg1TL0xARCgIhfb+QDUeml9Ar+ujsgMhe8AM= Subject key identifier: 02:27:07:8F:F7:F0:29:84:D9:A6:3F:F0:8C:79:44:41:E2:05:FC:42 Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 019D Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/DDFD7F92A36311F0BCF40B3CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:09:50 +0000 ROA not before: Sun 15 Feb 2026 04:24:57 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 150180 IP address blocks: 157.10.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Feb 15 04:24:57 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a456be-d4c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:38:9d:78:21:99:bf:59:2c:77:b0:14:6b: 41:8e:b6:bc:ae:96:04:95:5c:c8:38:a0:48:89:c6: 5a:c1:f1:c8:91:f2:48:2f:25:64:50:cc:36:2b:95: 05:42:38:9d:22:d3:74:9b:c7:66:09:50:64:b0:d9: 13:b2:e5:3d:47:1a:0c:f2:c3:61:b3:3b:cd:cf:29: 61:79:97:f5:d7:e4:82:68:a0:fa:96:2a:15:a6:71: b4:88:4a:f6:aa:52:6d:13:d7:5c:12:2b:38:55:59: 5b:4b:5c:29:0c:32:c7:35:61:72:68:76:78:94:c5: 58:ee:6c:6b:df:e8:5e:02:b6:85:c7:e1:3a:65:11: 48:db:a4:88:29:ed:26:98:0d:d3:f9:2a:41:71:53: df:92:1c:36:17:a9:9c:b1:ce:bd:59:98:a4:11:15: 77:b1:cb:66:f5:d7:ed:dd:ad:81:fa:0e:d4:a7:21: 41:79:27:09:7b:3d:29:eb:89:5d:ab:ee:b7:37:7d: 80:dc:94:cb:db:01:5d:27:15:4f:cb:25:78:1a:23: c2:62:da:61:08:1f:b6:c5:7f:5e:49:fc:e3:7b:e8: f3:e0:7e:67:32:8a:04:55:7e:c9:d2:4d:13:b7:ec: 89:78:a0:dd:f2:f6:e4:02:02:a4:b5:16:85:4c:60: 90:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:27:07:8F:F7:F0:29:84:D9:A6:3F:F0:8C:79:44:41:E2:05:FC:42 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/DDFD7F92A36311F0BCF40B3CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.174.0/23 Signature Algorithm: sha256WithRSAEncryption 77:d5:5b:73:d4:f7:8a:a9:0b:15:e4:1c:a3:68:d1:85:73:d4: 3b:80:a3:29:29:de:2a:85:72:1c:bb:ce:4b:73:2c:53:36:11: 1d:fc:48:10:ed:09:53:3a:ec:d9:89:13:00:a1:92:34:5c:c5: 8a:34:49:d8:71:41:67:6a:74:c5:64:7e:b6:15:71:89:18:9c: b0:4f:9f:f5:96:0e:4a:65:38:d6:d4:9b:4b:7e:76:9e:4b:6d: 23:44:f2:09:9a:8a:00:ec:77:82:4a:59:b5:93:50:88:fe:71: 65:d4:3b:a7:58:15:58:44:9a:b9:2f:60:b2:d3:27:35:c0:7c: 2d:85:ac:8f:d5:95:29:78:56:2c:5b:74:50:28:cd:a9:29:90: 85:75:2e:6d:4d:9d:d9:33:bd:82:36:d3:9a:71:d2:31:ec:72: 50:a9:aa:89:c2:ca:a6:e6:6d:b9:6f:76:fc:49:f9:7c:e2:ea: 89:f3:fe:79:a8:2f:47:1b:43:0b:2a:ba:bf:07:a1:e5:70:57: d3:46:cf:1c:d2:98:8f:98:ea:73:44:ec:55:cb:a1:18:34:34: 54:ad:7d:69:db:cb:1d:74:2c:c0:2d:70:9f:2d:da:c8:32:f3: 57:96:a3:0b:f9:6d:91:4a:d8:ee:3f:58:00:68:71:f9:c1:db: 1d:79:c6:3e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjYwMjE1MDQyNDU3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTZiZS1kNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGQ4nXghmb9ZLHewFGtBjra8rpYElVzIOKBIicZawfHIkfJILyVkUMw2K5UF QjidItN0m8dmCVBksNkTsuU9RxoM8sNhszvNzylheZf11+SCaKD6lioVpnG0iEr2 qlJtE9dcEis4VVlbS1wpDDLHNWFyaHZ4lMVY7mxr3+heAraFx+E6ZRFI26SIKe0m mA3T+SpBcVPfkhw2F6mcsc69WZikERV3sctm9dft3a2B+g7UpyFBeScJez0p64ld q+63N32A3JTL2wFdJxVPyyV4GiPCYtphCB+2xX9eSfzje+jz4H5nMooEVX7J0k0T t+yJeKDd8vbkAgKktRaFTGCQowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAInB4/3 8CmE2aY/8Ix5REHiBfxCMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdDQkQvMzU3MERGMkVCMTE0MTFFRTk1RTc0MzY1QzRGOUFFMDIvRERGRDdGOTJB MzYzMTFGMEJDRjQwQjNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQquMA0GCSqGSIb3DQEBCwUAA4IBAQB31Vtz1PeKqQsV5ByjaNGF c9Q7gKMpKd4qhXIcu85LcyxTNhEd/EgQ7QlTOuzZiRMAoZI0XMWKNEnYcUFnanTF ZH62FXGJGJywT5/1lg5KZTjW1JtLfnaeS20jRPIJmooA7HeCSlm1k1CI/nFl1Dun WBVYRJq5L2Cy0yc1wHwthayP1ZUpeFYsW3RQKM2pKZCFdS5tTZ3ZM72CNtOacdIx 7HJQqaqJwsqm5m25b3b8Sfl84uqJ8/55qC9HG0MLKrq/B6HlcFfTRs8c0piPmOpz ROxVy6EYNDRUrX1p28sddCzALXCfLdrIMvNXlqML+W2RStjuP1gAaHH5wdsdecY+ -----END CERTIFICATE-----Generated at Mon Mar 2 05:36:04 2026 by rpki-client