$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa File: 4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: KXSh6prRPhPWK5BnqXhTsFwQImo2BvM4I7HOo4Rrn/M= Subject key identifier: 4A:66:29:68:16:A0:90:4B:BD:FA:57:1F:57:99:AB:CA:3E:7A:F2:63 Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: 0198 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa Signing time: Tue 07 Apr 2026 04:37:59 +0000 ROA not before: Tue 07 Apr 2026 04:37:59 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 134245 IP address blocks: 157.20.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: Apr 7 04:37:59 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d48a27-eb6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e6:ef:1a:87:f1:ef:74:ba:2b:ae:60:37:7b: d3:3c:a8:34:9e:51:04:48:ad:cf:30:b4:56:f2:32: 3d:47:2c:dc:13:91:6b:6d:1f:64:4f:44:f4:d4:87: 42:b9:9b:45:02:06:e5:bf:00:7f:93:f1:f2:c8:d1: 85:b5:20:94:95:6e:8b:4a:cc:82:99:72:b4:12:0f: 6c:9c:60:31:5b:9b:2e:e0:1a:56:10:0b:27:14:c6: 34:04:36:4c:30:d1:58:a6:15:e8:10:40:29:7f:53: f6:15:5b:d9:a8:29:50:b1:56:80:3a:5d:43:27:a2: 07:e4:c8:c6:ea:8c:a8:bf:5e:b2:59:73:8d:29:b3: 01:15:ac:09:ed:ae:24:a2:83:30:41:64:db:4f:3a: b6:3d:9f:b4:82:c6:32:47:57:90:9f:7a:2e:34:16: 23:63:a2:ed:3f:c0:e2:1a:01:98:c8:42:34:96:d2: f3:96:07:e7:6e:70:e1:4c:2f:1f:45:a1:aa:70:7c: 7d:8c:8d:7d:88:ce:86:54:bc:7f:43:7b:22:e1:5c: 20:c7:2b:89:cd:95:34:f9:99:12:93:29:45:95:f6: 31:df:78:aa:5b:1c:75:e8:50:08:71:34:f6:45:90: 47:49:17:26:cb:c7:34:91:b2:4f:fd:9f:72:cf:7c: eb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:66:29:68:16:A0:90:4B:BD:FA:57:1F:57:99:AB:CA:3E:7A:F2:63 X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.112.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:d6:33:5b:44:9a:73:cd:41:19:ef:3e:47:cc:66:c4:b3:55: db:cd:e2:4d:a7:78:3c:00:4a:3f:d9:e9:f3:3d:fb:a6:11:cf: 03:0e:5a:3c:25:13:a3:eb:ce:bc:27:a4:69:5b:92:0b:0c:e4: e0:56:54:6e:58:f5:99:8d:71:53:0c:6c:53:2c:cb:7e:dd:6d: 06:4e:ba:a0:ab:c4:33:04:f7:db:fc:bf:54:ef:4f:d9:16:cb: 11:b5:49:ac:0e:04:36:c0:eb:11:d4:8e:8f:b0:3d:6f:91:0a: 22:72:31:f8:cb:69:0a:ca:9c:ac:b0:95:ea:6e:ff:83:bc:ac: e1:7c:2f:6f:46:26:e7:09:08:56:d1:9c:54:9f:56:87:26:0c: 96:24:24:04:bb:41:c0:2b:b6:d0:df:dc:01:c6:55:fa:5a:ef: ee:aa:08:c1:52:82:4e:05:d9:6c:29:59:ac:e1:f9:25:e8:db: b1:a0:12:62:30:46:7a:a2:8e:f5:18:03:cb:c6:ab:2c:7a:ea: 64:ca:00:79:f6:cd:8c:ec:bb:77:a6:96:7c:08:10:7b:9a:bb: 35:28:6b:6e:20:3e:30:fb:b4:60:1d:85:c7:15:07:5c:d1:7b: 81:b1:55:16:a0:83:43:62:22:9d:ae:94:19:d6:57:ff:55:10: 7a:b7:31:97 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKDhCMUE4MDY1QkU4OEFBNkMxQkEzRkVEQjU0RTA4N0U3 RDJBREI0REUwHhcNMjYwNDA3MDQzNzU5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ0OGEyNy1lYjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ubvGofx73S6K65gN3vTPKg0nlEESK3PMLRW8jI9RyzcE5FrbR9kT0T01IdC uZtFAgblvwB/k/HyyNGFtSCUlW6LSsyCmXK0Eg9snGAxW5su4BpWEAsnFMY0BDZM MNFYphXoEEApf1P2FVvZqClQsVaAOl1DJ6IH5MjG6oyov16yWXONKbMBFawJ7a4k ooMwQWTbTzq2PZ+0gsYyR1eQn3ouNBYjY6LtP8DiGgGYyEI0ltLzlgfnbnDhTC8f RaGqcHx9jI19iM6GVLx/Q3si4VwgxyuJzZU0+ZkSkylFlfYx33iqWxx16FAIcTT2 RZBHSRcmy8c0kbJP/Z9yz3zrJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEpmKWgW oJBLvfpXH1eZq8o+evJjMB8GA1UdIwQYMBaAFIsagGW+iKpsG6P+21Tgh+fSrbTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC9ENzdCOUQ2NkQ1 QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFtd2JvXzdiVk9DSDU5S3R0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwNjgvRDc3QjlENjZENUM0MTFFRTg5QzE5NzBEQzRGOUFFMDIvNEQ2OUQyRDJE NUREMTFFRUE1QjFDNzExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRRwMA0GCSqGSIb3DQEBCwUAA4IBAQBa1jNbRJpzzUEZ7z5HzGbE s1XbzeJNp3g8AEo/2enzPfumEc8DDlo8JROj6868J6RpW5ILDOTgVlRuWPWZjXFT DGxTLMt+3W0GTrqgq8QzBPfb/L9U70/ZFssRtUmsDgQ2wOsR1I6PsD1vkQoicjH4 y2kKypyssJXqbv+DvKzhfC9vRibnCQhW0ZxUn1aHJgyWJCQEu0HAK7bQ39wBxlX6 Wu/uqgjBUoJOBdlsKVms4fkl6NuxoBJiMEZ6oo71GAPLxqsseupkygB59s2M7Lt3 ppZ8CBB7mrs1KGtuID4w+7RgHYXHFQdc0XuBsVUWoINDYiKdrpQZ1lf/VRB6tzGX -----END CERTIFICATE-----Generated at Fri Apr 17 12:54:13 2026 by rpki-client