$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa File: DC11ACCE182F11EE82A0FC48C4F9AE02.roa (raw, json) Hash identifier: TVUqImfkH05qiQ19RCKAlmLm+qu0pav08yARc+QiM3g= Subject key identifier: F8:DF:77:27:A4:F7:B1:3E:8F:AC:B3:0E:AE:A3:64:3F:23:D8:9C:C6 Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 0242 Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa Signing time: Thu 14 May 2026 02:46:41 +0000 ROA not before: Thu 14 May 2026 02:46:41 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 132481 IP address blocks: 168.168.128.0/20 maxlen: 20 168.168.244.0/22 maxlen: 22 168.168.248.0/23 maxlen: 23 168.168.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 02:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: May 14 02:46:41 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=6a053791-a105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2e:c6:c0:9f:08:e6:d7:12:1e:40:89:69:7e: b0:87:eb:9d:ae:a1:9d:08:e5:88:55:d3:c6:3b:ee: a3:37:6b:fd:2d:e9:fd:e3:0f:a5:71:4b:83:ed:34: df:2c:15:fe:e1:0e:17:3f:27:61:27:a2:8f:b9:90: 96:f5:98:a7:fa:f8:53:d9:6f:06:3b:13:2c:c4:cf: f7:16:ec:5f:a1:80:25:e7:03:b1:cf:79:b7:ee:34: ee:03:d6:5b:0c:e4:ee:2d:5e:a8:d9:c9:cd:0c:c2: 99:3b:ed:08:31:ad:94:36:aa:48:6e:7a:06:05:91: cc:76:b3:3b:ed:cf:ec:be:40:17:cc:6f:d4:76:99: a8:7b:d2:ff:8b:56:b6:c8:1b:1a:13:50:a6:89:af: 71:13:99:d8:7f:e1:ba:be:d4:47:99:df:d7:d4:c3: de:16:c7:b6:d4:36:fd:20:3d:4e:cb:74:fd:45:f8: a4:7d:97:a1:bf:f7:11:a0:a3:b5:b4:0b:55:e8:56: 23:30:bc:7e:b1:98:7e:61:e8:35:f4:37:51:d2:d6: 8e:f9:69:ac:14:bb:b8:5b:32:55:f0:d3:64:5a:3d: b3:f3:0a:a8:36:e6:db:ee:7b:53:21:8d:fd:e6:76: 9c:c9:4d:ce:d3:22:cb:38:24:08:e0:3a:26:1a:86: ea:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:DF:77:27:A4:F7:B1:3E:8F:AC:B3:0E:AE:A3:64:3F:23:D8:9C:C6 X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 168.168.128.0/20 168.168.244.0-168.168.249.255 168.168.252.0/22 Signature Algorithm: sha256WithRSAEncryption 40:cf:33:0f:38:23:58:9f:81:ce:36:be:82:ac:08:74:c3:ff: b8:9d:cb:11:5d:43:75:e9:f2:22:63:b7:e6:63:d5:41:dd:eb: eb:ce:e5:af:ec:6e:9f:02:d0:8b:a5:ba:a7:e1:01:55:ae:b3: 16:3f:b2:3c:5d:e9:20:c9:dc:71:85:43:4e:1e:4b:84:38:bb: ee:47:e4:16:51:67:1d:27:4b:03:8d:17:a5:bb:92:c7:e1:88: 1a:5c:f2:d9:93:ff:0c:09:fa:4e:0f:91:b3:9f:49:12:12:64: 37:9c:4b:13:db:26:81:1f:e5:fc:b6:0f:69:04:b7:04:d8:1d: ad:6b:56:4a:88:33:5b:66:63:e0:b9:7b:98:63:5e:fd:46:0f: b7:7b:10:01:98:e7:19:d1:c1:f0:0b:54:86:f8:a0:70:1d:44: 12:a6:4c:d1:44:fb:8a:d3:fc:3e:0f:9c:1d:fc:15:b1:28:68: 19:13:fd:04:86:a2:ea:14:d0:4b:30:a8:3e:89:8f:c7:0c:e1: 40:ce:03:95:21:9d:17:8f:f2:9e:7f:f9:09:24:b9:f5:1d:31: 5a:ae:56:55:24:81:12:7b:d3:8b:d2:cc:c3:c8:12:66:7b:1c: a5:f3:21:d6:cc:5d:b6:8e:de:c4:7b:cc:b2:90:74:f1:83:f7: 89:af:22:06 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjYwNTE0MDI0NjQxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02YTA1Mzc5MS1hMTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnS7GwJ8I5tcSHkCJaX6wh+udrqGdCOWIVdPGO+6jN2v9Len94w+lcUuD7TTf LBX+4Q4XPydhJ6KPuZCW9Zin+vhT2W8GOxMsxM/3FuxfoYAl5wOxz3m37jTuA9Zb DOTuLV6o2cnNDMKZO+0IMa2UNqpIbnoGBZHMdrM77c/svkAXzG/Udpmoe9L/i1a2 yBsaE1Cmia9xE5nYf+G6vtRHmd/X1MPeFse21Db9ID1Oy3T9RfikfZehv/cRoKO1 tAtV6FYjMLx+sZh+Yeg19DdR0taO+WmsFLu4WzJV8NNkWj2z8wqoNubb7ntTIY39 5nacyU3O0yLLOCQI4DomGobqiwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFPjfdyek 97E+j6yzDq6jZD8j2JzGMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvREMxMUFDQ0Ux ODJGMTFFRTgyQTBGQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQEqKiAMAwDBAKoqPQDBAGoqPgDBAKoqPwwDQYJKoZIhvcNAQELBQAD ggEBAEDPMw84I1ifgc42voKsCHTD/7idyxFdQ3Xp8iJjt+Zj1UHd6+vO5a/sbp8C 0IuluqfhAVWusxY/sjxd6SDJ3HGFQ04eS4Q4u+5H5BZRZx0nSwONF6W7ksfhiBpc 8tmT/wwJ+k4PkbOfSRISZDecSxPbJoEf5fy2D2kEtwTYHa1rVkqIM1tmY+C5e5hj Xv1GD7d7EAGY5xnRwfALVIb4oHAdRBKmTNFE+4rT/D4PnB38FbEoaBkT/QSGouoU 0EswqD6Jj8cM4UDOA5UhnReP8p5/+QkkufUdMVquVlUkgRJ704vSzMPIEmZ7HKXz IdbMXbaO3sR7zLKQdPGD94mvIgY= -----END CERTIFICATE-----Generated at Tue May 19 11:04:40 2026 by rpki-client