$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa File: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (raw, json) Hash identifier: zINjF4ccyquuyzSHiME1Sbg1fPnikG9YaVLVGBtBtKw= Subject key identifier: 58:89:B5:B6:60:13:10:CD:F9:BD:4C:D3:20:4F:32:5B:F7:18:0E:A3 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 06F7 Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa Signing time: Mon 27 Apr 2026 15:01:01 +0000 ROA not before: Mon 27 Apr 2026 15:01:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38296 IP address blocks: 203.185.97.0/24 maxlen: 24 203.185.100.0/24 maxlen: 24 203.185.129.0/24 maxlen: 24 203.185.130.0/23 maxlen: 23 203.185.130.0/24 maxlen: 24 203.185.131.0/24 maxlen: 24 203.185.132.0/22 maxlen: 22 203.185.132.0/23 maxlen: 23 203.185.132.0/24 maxlen: 24 203.185.133.0/24 maxlen: 24 203.185.134.0/23 maxlen: 23 203.185.134.0/24 maxlen: 24 203.185.135.0/24 maxlen: 24 203.185.136.0/24 maxlen: 24 203.185.137.0/24 maxlen: 24 203.185.138.0/24 maxlen: 24 203.185.139.0/24 maxlen: 24 203.185.140.0/24 maxlen: 24 203.185.141.0/24 maxlen: 24 203.185.142.0/24 maxlen: 24 203.185.143.0/24 maxlen: 24 203.185.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 22:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Apr 27 15:01:01 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69ef7a2d-c4ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0f:ee:b0:51:f6:e8:df:8b:ca:22:bf:6a:5a: b3:71:de:c5:c9:db:99:a4:27:10:e1:96:b5:20:df: 47:ea:ac:58:ee:7f:fd:fc:9f:67:ab:01:22:b4:84: c9:eb:6a:9d:e3:54:fd:9a:f3:91:92:52:71:fb:fa: 44:d3:3c:61:27:84:9a:84:77:1b:2a:f9:71:bb:29: d5:da:dd:a5:83:d2:c8:b2:63:0a:ae:7f:01:50:08: cb:0f:88:4e:bd:5a:1a:8d:85:c6:f9:66:dc:ac:4f: 6a:3e:6b:4e:93:c6:f9:4f:c1:a1:b7:63:fb:6b:3e: 50:89:b3:86:66:af:4f:1c:72:17:a8:10:62:2a:d6: ce:fd:37:62:9f:94:05:cc:b2:70:b8:f7:7e:ce:02: 5f:7d:77:35:fd:87:1a:50:47:79:a8:48:4f:8d:1f: cb:a2:1c:00:20:d2:08:e5:c0:3e:af:0d:07:ce:c6: 7b:74:af:05:9d:3c:c6:8b:ee:36:f2:79:94:68:7d: d9:16:38:6a:94:d4:4d:54:4a:58:a8:7d:9f:6a:af: ba:46:75:70:1d:c2:f8:be:37:b5:fb:b0:0d:b6:b3: 33:82:7c:81:62:22:97:ed:12:16:db:5a:93:2e:14: f3:d6:db:a0:b7:c8:45:90:06:ff:68:7f:ee:d3:98: d5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:89:B5:B6:60:13:10:CD:F9:BD:4C:D3:20:4F:32:5B:F7:18:0E:A3 X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.185.97.0/24 203.185.100.0/24 203.185.129.0-203.185.145.255 Signature Algorithm: sha256WithRSAEncryption 3f:18:b9:04:7a:3e:34:17:90:52:04:51:a9:57:51:2c:a7:11: 4c:83:4e:2b:a6:c1:a9:bd:d7:f9:fb:06:d2:e3:e1:74:e6:85: b1:ca:9a:94:e2:3c:e3:c5:41:1b:c2:ef:30:40:8a:50:c2:2f: 73:e2:0b:29:73:20:96:f4:3b:45:e7:81:a8:54:0d:d9:fc:14: ac:d5:5f:62:26:a2:58:78:d8:2f:ab:7c:f5:fc:29:25:57:44: b6:3c:f8:f4:33:44:50:77:bf:48:e1:b0:bc:37:9b:5c:f5:87: 8f:c5:ac:68:9d:25:98:9f:4e:e2:c0:eb:69:60:ef:03:10:e0: 13:f5:50:c5:e1:7e:f1:89:f4:98:c0:6e:7b:59:c4:e7:5b:af: bd:25:c2:3c:76:e1:78:16:69:99:38:63:b1:66:e0:1f:77:af: 77:e0:94:7d:99:3f:3f:5f:6a:e8:05:87:fe:79:01:4c:87:f7: 66:d5:98:49:e8:92:8f:8d:be:cb:93:d3:bf:66:81:bf:c8:d9: 63:53:09:a3:72:37:be:99:f0:ad:6f:35:cb:fd:95:b6:07:03: af:5c:ec:3c:0c:3e:a1:2f:5b:8d:c0:27:e5:91:02:3a:16:db: 90:84:3d:2b:12:52:a1:9c:51:35:9f:69:c0:72:a5:2e:aa:01: 2a:b8:84:d4 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjYwNDI3MTUwMTAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWVmN2EyZC1jNGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ/usFH26N+LyiK/alqzcd7FyduZpCcQ4Za1IN9H6qxY7n/9/J9nqwEitITJ 62qd41T9mvORklJx+/pE0zxhJ4SahHcbKvlxuynV2t2lg9LIsmMKrn8BUAjLD4hO vVoajYXG+WbcrE9qPmtOk8b5T8Ght2P7az5QibOGZq9PHHIXqBBiKtbO/Tdin5QF zLJwuPd+zgJffXc1/YcaUEd5qEhPjR/LohwAINII5cA+rw0HzsZ7dK8FnTzGi+42 8nmUaH3ZFjhqlNRNVEpYqH2faq+6RnVwHcL4vje1+7ANtrMzgnyBYiKX7RIW21qT LhTz1tugt8hFkAb/aH/u05jVsQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFFiJtbZg ExDN+b1M0yBPMlv3GA6jMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwQTgvNzBDMkVCN0FBMTk2MTFFQjgyMDBDRjA5QzRGOUFFMDIvREQ3Q0E1OEVB MjNGMTFFREJDREI2RDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQAy7lhAwQAy7lkMAwDBADLuYEDBAHLuZAwDQYJKoZIhvcNAQELBQAD ggEBAD8YuQR6PjQXkFIEUalXUSynEUyDTiumwam91/n7BtLj4XTmhbHKmpTiPOPF QRvC7zBAilDCL3PiCylzIJb0O0XngahUDdn8FKzVX2Imolh42C+rfPX8KSVXRLY8 +PQzRFB3v0jhsLw3m1z1h4/FrGidJZifTuLA62lg7wMQ4BP1UMXhfvGJ9JjAbntZ xOdbr70lwjx24XgWaZk4Y7Fm4B93r3fglH2ZPz9faugFh/55AUyH92bVmEnoko+N vsuT079mgb/I2WNTCaNyN76Z8K1vNcv9lbYHA69c7DwMPqEvW43AJ+WRAjoW25CE PSsSUqGcUTWfacBypS6qASq4hNQ= -----END CERTIFICATE-----Generated at Thu Apr 30 15:37:12 2026 by rpki-client