$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/DD76C09AB16711EFBD483568C4F9AE02.roa File: DD76C09AB16711EFBD483568C4F9AE02.roa (raw, json) Hash identifier: OJIwdILNcKxj0xX6Uj1lld3dWONiR8ZjcGc33mTU5vk= Subject key identifier: 11:56:3D:EA:2C:CD:8E:57:6C:6A:C1:EE:E0:BA:05:AD:8B:FE:94:3C Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 0137 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/DD76C09AB16711EFBD483568C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:08:08 +0000 ROA not before: Tue 13 Jan 2026 04:23:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134715 IP address blocks: 157.10.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Jan 13 04:23:55 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41e18-ab2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:32:20:0a:33:a8:05:a1:f0:ef:88:e7:8f:5c: e9:76:bb:34:c1:81:d7:64:b5:48:1d:8f:07:45:77: 38:6c:4e:ce:17:c6:43:4a:dd:9f:69:58:7e:be:2e: 98:38:c8:31:d2:37:05:30:2a:9d:df:c6:8c:45:33: 50:31:53:5e:55:fd:c9:24:b1:72:57:b7:3a:2f:d4: 65:eb:b8:36:a0:d7:f8:44:90:19:98:31:f7:ef:c0: 06:ee:d0:30:2e:73:2d:d1:c8:72:79:ec:d1:15:17: f6:2f:3b:6f:03:5f:14:3d:f7:07:2e:17:35:96:c2: be:a8:ab:05:07:88:2c:24:08:06:35:74:c4:64:f8: b3:14:02:81:16:f6:7f:7f:b1:b3:52:9f:ef:d9:38: 12:50:53:42:87:e8:aa:f4:9c:1c:73:01:61:45:15: 50:d8:92:26:69:cb:a5:d8:a6:7f:52:2f:1b:d5:b1: 6e:5b:d0:bd:2d:10:c7:3a:2d:8a:e9:33:7b:fd:cf: c9:76:81:8e:55:25:6a:c3:c4:a8:fc:7b:a7:04:23: 82:65:aa:96:34:a2:da:11:0c:be:a6:d3:e7:ba:e6: 73:27:4a:08:35:8c:03:15:f0:d0:c4:b7:77:fe:84: 61:09:50:c4:93:f0:bb:fe:be:1b:4c:56:d3:93:23: fe:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:56:3D:EA:2C:CD:8E:57:6C:6A:C1:EE:E0:BA:05:AD:8B:FE:94:3C X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/DD76C09AB16711EFBD483568C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.10.124.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:5d:16:c8:26:0d:73:fb:3b:fe:f7:1f:bd:6f:f4:b4:c4:e0: e7:74:97:e4:06:fb:6e:1a:92:d1:9c:4b:14:79:46:32:3b:27: f2:ec:c2:54:6b:e4:e9:61:c2:6e:bd:a8:00:8a:e4:1a:3f:ea: 1f:8c:6a:dd:8b:55:78:37:cc:be:14:a6:d7:66:b4:7e:08:37: 36:e0:3c:cb:c5:71:7a:96:8a:1b:cc:9b:a3:15:f7:a2:88:dc: 18:7d:aa:55:42:57:cd:66:44:01:1e:4c:6f:c1:e2:0f:72:37: b0:a6:b5:d1:2c:93:65:3f:06:36:ca:b6:09:ca:f8:89:43:82: 79:99:4d:44:dd:cf:41:0e:18:ec:8b:a5:28:fa:55:89:02:04: df:4e:b6:98:65:19:13:61:ee:44:6c:87:40:ee:7d:2b:a5:a4: 21:43:ae:30:59:ce:66:bb:47:de:13:65:d0:82:e8:e8:d4:c4: 33:7a:9e:af:97:9c:24:6a:5e:83:ea:1e:74:83:30:bf:3f:d7: c9:5a:48:9f:c5:22:87:23:1f:2a:50:06:c0:03:22:3f:6b:bb: 72:cb:e5:c7:8c:69:4e:3a:ce:69:12:47:87:02:38:af:d4:f2: 21:0d:0e:f8:3a:d9:b3:4c:25:58:fa:4e:37:dc:d0:07:2c:00: 16:9d:a6:91 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjYwMTEzMDQyMzU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWUxOC1hYjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTIgCjOoBaHw74jnj1zpdrs0wYHXZLVIHY8HRXc4bE7OF8ZDSt2faVh+vi6Y OMgx0jcFMCqd38aMRTNQMVNeVf3JJLFyV7c6L9Rl67g2oNf4RJAZmDH378AG7tAw LnMt0chyeezRFRf2LztvA18UPfcHLhc1lsK+qKsFB4gsJAgGNXTEZPizFAKBFvZ/ f7GzUp/v2TgSUFNCh+iq9JwccwFhRRVQ2JImacul2KZ/Ui8b1bFuW9C9LRDHOi2K 6TN7/c/JdoGOVSVqw8So/HunBCOCZaqWNKLaEQy+ptPnuuZzJ0oINYwDFfDQxLd3 /oRhCVDEk/C7/r4bTFbTkyP+/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBFWPeos zY5XbGrB7uC6Ba2L/pQ8MB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFFOEIvNjI5MTc2NDQ0NUI2MTFFRjhBQjMwQTMxQzRGOUFFMDIvREQ3NkMwOUFC MTY3MTFFRkJENDgzNTY4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQp8MA0GCSqGSIb3DQEBCwUAA4IBAQAaXRbIJg1z+zv+9x+9b/S0 xODndJfkBvtuGpLRnEsUeUYyOyfy7MJUa+TpYcJuvagAiuQaP+ofjGrdi1V4N8y+ FKbXZrR+CDc24DzLxXF6loobzJujFfeiiNwYfapVQlfNZkQBHkxvweIPcjewprXR LJNlPwY2yrYJyviJQ4J5mU1E3c9BDhjsi6Uo+lWJAgTfTraYZRkTYe5EbIdA7n0r paQhQ64wWc5mu0feE2XQgujo1MQzep6vl5wkal6D6h50gzC/P9fJWkifxSKHIx8q UAbAAyI/a7tyy+XHjGlOOs5pEkeHAjiv1PIhDQ74OtmzTCVY+k433NAHLAAWnaaR -----END CERTIFICATE-----Generated at Mon Mar 2 23:25:13 2026 by rpki-client