$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa File: DD0B20D0C0DE11EEB0643379C4F9AE02.roa (raw, json) Hash identifier: X7mPbUEAXdVcms3CU1NaUUPh+4vI8ZuPWOyX08FPmMU= Subject key identifier: DC:9A:F1:82:B2:68:22:B2:8B:7C:B1:2C:D7:D3:92:4A:85:A6:52:39 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F24 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa Signing time: Sun 31 May 2026 16:23:40 +0000 ROA not before: Sun 31 May 2026 16:23:40 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 151731 IP address blocks: 157.15.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12068 (0x2f24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:23:40 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c608b-70d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:37:57:2f:8d:63:de:2a:36:ba:dd:25:1c:72: 60:36:df:2f:69:5f:69:d7:49:9a:27:05:ed:a3:82: 41:7e:55:07:fc:36:a5:ac:d0:ec:fd:a8:88:4c:78: 7c:a0:ab:06:b3:50:83:64:3a:cf:89:39:a1:45:39: f8:c2:29:cb:3f:ef:52:f6:3c:6e:14:75:20:0a:f0: 58:e1:40:6c:b9:c8:e1:73:58:37:a1:29:aa:79:ca: d9:ab:51:bd:d4:89:a7:da:32:79:8b:eb:d6:c5:b9: 4a:b8:b9:29:96:3f:f0:d2:1d:71:b9:1d:9f:60:8e: 76:54:de:49:9c:b1:26:eb:02:17:7f:b4:a6:8e:9f: 01:b9:a1:49:bd:90:a9:0e:c3:af:3a:c2:91:ec:01: 70:a5:b2:db:f3:51:5f:71:77:fa:60:e0:06:74:3b: 2a:00:11:98:65:79:2f:2d:42:3a:f4:3c:46:b8:da: f9:27:57:b4:cc:fb:f0:93:73:b4:6e:a3:1c:43:9d: 0b:b7:95:55:eb:2f:96:33:e8:2d:ed:1a:51:42:3a: ad:69:ce:4e:4c:01:37:5a:d7:42:1a:5f:44:6e:36: 99:ba:b0:99:1e:3f:45:05:18:b7:03:af:43:52:08: 05:ef:61:31:9b:e4:a5:7e:49:05:55:c7:d2:02:e6: 37:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:9A:F1:82:B2:68:22:B2:8B:7C:B1:2C:D7:D3:92:4A:85:A6:52:39 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/DD0B20D0C0DE11EEB0643379C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 157.15.90.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:c9:27:96:4d:a6:64:7e:35:48:a5:d1:6a:15:0a:87:1a:52: ad:5f:5d:a5:bb:52:41:0e:97:b1:73:22:ab:e1:33:19:f3:52: 18:07:40:13:8e:fe:45:5d:2e:aa:5c:a3:27:06:c1:b8:5f:35: 8b:f0:2e:d9:9a:dc:07:fc:8d:38:c8:d9:c4:89:d3:59:2c:02: bc:54:4f:fa:eb:f0:41:52:92:7c:e5:75:91:51:36:2a:af:3c: 72:45:68:8d:6c:83:b5:1f:8d:0f:98:e2:39:da:ed:2e:f5:91: 82:34:84:56:05:75:19:fe:09:35:48:d0:b5:70:e2:77:80:91: fd:c1:24:8f:bd:03:ac:99:ab:df:53:31:57:a0:d2:cc:d1:9f: 35:24:57:61:6f:b4:cd:a4:4f:40:b6:3b:9d:e8:d5:20:27:a8: 85:30:64:10:85:b0:87:9a:71:c4:a8:f8:59:46:1e:01:2a:cd: ff:4b:53:52:04:27:6e:28:08:5c:5f:22:69:3d:29:e2:40:5b: b2:b0:28:37:7d:f4:ee:f4:df:3f:3b:26:04:bc:45:4d:c7:09: f3:f3:e9:22:10:fb:1d:7b:a3:1e:d6:ff:d7:7a:6a:0c:ab:4c: db:30:18:c4:23:07:4a:2b:d9:b9:54:52:e0:c6:9c:c3:f4:82: 69:cf:72:a1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyMzQwWhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjA4Yi03MGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDdXL41j3io2ut0lHHJgNt8vaV9p10maJwXto4JBflUH/DalrNDs/aiITHh8 oKsGs1CDZDrPiTmhRTn4winLP+9S9jxuFHUgCvBY4UBsucjhc1g3oSmqecrZq1G9 1Imn2jJ5i+vWxblKuLkplj/w0h1xuR2fYI52VN5JnLEm6wIXf7Smjp8BuaFJvZCp DsOvOsKR7AFwpbLb81FfcXf6YOAGdDsqABGYZXkvLUI69DxGuNr5J1e0zPvwk3O0 bqMcQ50Lt5VV6y+WM+gt7RpRQjqtac5OTAE3WtdCGl9EbjaZurCZHj9FBRi3A69D UggF72Exm+SlfkkFVcfSAuY3FwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNya8YKy aCKyi3yxLNfTkkqFplI5MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvREQwQjIwRDBD MERFMTFFRUIwNjQzMzc5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBnQ9aMA0GCSqGSIb3DQEBCwUAA4IBAQAqySeWTaZkfjVIpdFqFQqH GlKtX12lu1JBDpexcyKr4TMZ81IYB0ATjv5FXS6qXKMnBsG4XzWL8C7ZmtwH/I04 yNnEidNZLAK8VE/66/BBUpJ85XWRUTYqrzxyRWiNbIO1H40PmOI52u0u9ZGCNIRW BXUZ/gk1SNC1cOJ3gJH9wSSPvQOsmavfUzFXoNLM0Z81JFdhb7TNpE9Atjud6NUg J6iFMGQQhbCHmnHEqPhZRh4BKs3/S1NSBCduKAhcXyJpPSniQFuysCg3ffTu9N8/ OyYEvEVNxwnz8+kiEPsde6Me1v/XemoMq0zbMBjEIwdKK9m5VFLgxpzD9IJpz3Kh -----END CERTIFICATE-----Generated at Sat Jun 6 10:52:04 2026 by rpki-client