$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa File: 4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: m02khT/jg2hbvP72RR7nK1qweNEQkqkW4mCPiNuzwrw= Subject key identifier: 2A:75:1C:9B:7A:E6:49:23:A4:4E:1B:D8:0D:B0:FA:F4:2B:57:0F:2C Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: 0199 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa Signing time: Tue 07 Apr 2026 04:38:01 +0000 ROA not before: Tue 07 Apr 2026 04:38:01 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152590 IP address blocks: 157.20.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: Apr 7 04:38:01 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d48a29-fcfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fb:2a:47:47:b0:5d:a9:cc:3b:d6:57:62:5b: 66:2e:d6:10:56:18:1d:c6:2c:82:76:a0:6d:3b:3b: 85:db:3d:06:21:73:2d:f1:61:15:d5:7a:87:ab:e0: 65:f2:93:4a:24:ed:7f:34:c6:56:51:93:4f:f5:f4: 57:5a:59:ca:5e:c8:68:fc:09:c1:9e:27:93:47:d9: 2a:cc:3b:65:f8:c2:f7:64:f2:de:63:52:77:28:e7: 10:7b:16:84:67:4a:9a:a5:f6:b2:ae:c8:e1:7e:ec: c8:4c:5d:c1:a7:45:ae:4c:4a:a3:b1:5f:87:e8:17: ca:82:e5:70:9d:9b:97:a6:f8:90:94:6b:ff:52:73: 5d:62:00:56:10:ef:e3:ea:f2:06:63:97:5e:ae:a2: 38:f7:79:5b:de:da:19:a4:ee:26:a7:cb:8d:85:0e: 8b:9a:7b:40:d7:9d:c4:24:bd:fb:48:fa:ce:4f:e3: 5c:39:04:e9:ce:4e:4c:cc:11:06:fa:c6:db:13:70: 95:49:51:f5:ec:df:22:a0:6b:93:2f:a8:97:5b:b3: 77:4e:35:39:ad:2f:1d:97:29:f8:98:61:a8:bd:19: 4f:80:5c:81:8c:f1:ec:2b:a4:b5:34:58:cd:d6:00: 06:fd:55:9a:8e:d0:63:73:81:4a:64:43:09:10:48: 23:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:75:1C:9B:7A:E6:49:23:A4:4E:1B:D8:0D:B0:FA:F4:2B:57:0F:2C X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.20.112.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:5e:5d:dc:5d:a3:a5:77:7a:3d:b0:04:e3:54:f6:4a:bb:de: 26:56:21:61:34:a9:f7:d0:40:e6:e0:07:92:ac:8d:8d:38:5f: 51:7a:42:d0:03:7a:df:7f:2d:f9:32:f0:90:9b:29:51:ba:53: e9:45:22:f9:b0:9e:1a:85:3c:34:d0:50:5b:ae:54:88:16:cc: 0c:24:2f:24:29:18:39:57:d6:f7:db:87:b1:e0:a2:ba:49:bd: 67:11:75:b3:49:01:b3:57:83:53:9b:ba:83:af:cf:a4:27:57: be:f5:7a:b0:1b:c4:43:c2:75:33:91:3c:7b:46:97:e2:9f:d9: c7:2e:c9:ba:20:83:f3:03:a1:b3:20:ff:22:61:a8:6c:f1:74: 63:1e:1d:65:ef:7e:aa:7a:6b:5c:47:65:45:33:71:f4:42:8e: b8:7a:92:9e:b3:20:a3:cf:8d:85:c9:e7:3e:f1:b7:60:f5:d7: b1:08:9a:7c:0b:3d:ea:e6:43:5f:f3:40:98:b4:23:5c:c1:31: 0b:82:3b:6d:85:be:d3:d4:f3:6d:13:c8:d3:7e:c3:62:39:a9: 30:fb:cb:82:5e:82:6b:64:a2:ab:df:43:59:62:34:cc:04:49: 99:d4:90:73:97:71:82:09:26:ff:9c:a1:f0:0a:10:3f:2b:51: 3c:20:1f:f5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKDhCMUE4MDY1QkU4OEFBNkMxQkEzRkVEQjU0RTA4N0U3 RDJBREI0REUwHhcNMjYwNDA3MDQzODAxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ0OGEyOS1mY2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvsqR0ewXanMO9ZXYltmLtYQVhgdxiyCdqBtOzuF2z0GIXMt8WEV1XqHq+Bl 8pNKJO1/NMZWUZNP9fRXWlnKXsho/AnBnieTR9kqzDtl+ML3ZPLeY1J3KOcQexaE Z0qapfayrsjhfuzITF3Bp0WuTEqjsV+H6BfKguVwnZuXpviQlGv/UnNdYgBWEO/j 6vIGY5derqI493lb3toZpO4mp8uNhQ6LmntA153EJL37SPrOT+NcOQTpzk5MzBEG +sbbE3CVSVH17N8ioGuTL6iXW7N3TjU5rS8dlyn4mGGovRlPgFyBjPHsK6S1NFjN 1gAG/VWajtBjc4FKZEMJEEgjVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCp1HJt6 5kkjpE4b2A2w+vQrVw8sMB8GA1UdIwQYMBaAFIsagGW+iKpsG6P+21Tgh+fSrbTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC9ENzdCOUQ2NkQ1 QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFtd2JvXzdiVk9DSDU5S3R0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwNjgvRDc3QjlENjZENUM0MTFFRTg5QzE5NzBEQzRGOUFFMDIvNEREQThBMThE NUREMTFFRUE1QjFDNzExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnRRwMA0GCSqGSIb3DQEBCwUAA4IBAQAuXl3cXaOld3o9sATjVPZK u94mViFhNKn30EDm4AeSrI2NOF9RekLQA3rffy35MvCQmylRulPpRSL5sJ4ahTw0 0FBbrlSIFswMJC8kKRg5V9b324ex4KK6Sb1nEXWzSQGzV4NTm7qDr8+kJ1e+9Xqw G8RDwnUzkTx7Rpfin9nHLsm6IIPzA6GzIP8iYahs8XRjHh1l736qemtcR2VFM3H0 Qo64epKesyCjz42Fyec+8bdg9dexCJp8Cz3q5kNf80CYtCNcwTELgjtthb7T1PNt E8jTfsNiOakw+8uCXoJrZKKr30NZYjTMBEmZ1JBzl3GCCSb/nKHwChA/K1E8IB/1 -----END CERTIFICATE-----Generated at Fri Apr 17 14:04:58 2026 by rpki-client