$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa File: 85DF1F2852C911EA93D1814FC4F9AE02.roa (raw, json) Hash identifier: X3cvslhEf2snsAu13PJRazIeKrTpjMcs5nlQX1RRMX0= Subject key identifier: 82:D9:84:7D:2C:9B:0B:98:C8:6C:CD:44:D6:8F:4E:E7:F7:D2:1E:F8 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3B48 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:28:22 +0000 ROA not before: Mon 14 Jul 2025 14:50:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 21734 IP address blocks: 61.90.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15176 (0x3b48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a49356-41f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7e:5f:b8:d7:1c:91:fe:7e:04:e3:c7:67:5a: 00:b6:7e:b3:de:da:0b:3c:31:89:0a:93:0b:53:0a: 82:fb:f7:69:36:8e:67:20:6b:48:e0:c7:7d:45:61: 78:47:d5:ef:67:14:03:59:6a:58:75:5c:bf:c8:38: fb:7f:df:74:47:ee:b8:11:31:5f:9e:f4:87:42:cb: b2:e4:06:1c:b8:02:31:f1:3b:59:c8:d3:01:c7:69: 79:0b:f9:66:01:7c:41:ff:c1:f5:6e:fd:12:44:a6: b2:11:3f:23:0a:7f:af:ff:32:34:98:b4:91:90:bb: 25:dc:85:cb:c2:d0:12:c3:7a:00:8a:b6:04:6d:94: 42:85:db:81:0e:95:d6:13:58:fe:b1:ad:5c:d4:e0: 8e:a5:fb:45:b4:0f:1c:fc:80:9c:f3:c7:72:ce:19: 99:48:03:58:59:82:4c:4b:36:35:3c:e5:5c:a7:47: 0d:0a:64:b6:7b:bf:82:87:3a:11:d0:20:2a:72:2f: b9:d9:25:4a:12:59:82:a4:cf:39:bf:ad:e4:ae:3e: 83:3f:be:4d:b0:43:2a:61:0d:13:db:ed:91:d5:7f: 05:76:40:a9:14:a0:14:67:61:21:4c:a0:d4:d6:08: fb:d9:08:6a:20:ab:75:2f:25:fe:bd:a3:b6:54:0d: d4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D9:84:7D:2C:9B:0B:98:C8:6C:CD:44:D6:8F:4E:E7:F7:D2:1E:F8 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.90.251.0/24 Signature Algorithm: sha256WithRSAEncryption b8:a5:fa:10:36:1b:d3:ac:93:9a:8e:3f:03:67:d5:d8:ec:cf: 76:2f:79:fc:49:6e:f3:c9:66:28:35:90:17:8a:8a:24:28:15: c9:ec:a5:d6:29:d4:4d:20:06:a2:be:4c:0a:2b:01:8c:57:f5: d1:f3:3b:4e:22:43:dd:b0:24:88:ac:23:b0:ca:55:e4:9a:2a: 57:a3:1e:d6:eb:01:c8:64:bd:5c:b3:55:cf:a9:3a:cf:48:8c: a0:aa:a9:3f:86:8f:2d:51:0e:ce:0b:7c:16:07:fc:0e:07:c8: 40:4f:84:67:a8:32:33:42:14:0e:cb:88:09:f0:c7:db:1e:41: 5f:79:33:de:61:9e:d8:bb:2d:10:28:fc:32:56:e0:c8:9b:37: d2:70:ca:ab:70:18:62:ee:12:3a:32:18:10:bd:d1:3c:57:03: 14:9a:13:3c:7c:74:cc:3b:2b:08:d1:9d:2f:3e:a0:fc:70:95: df:89:eb:f1:f4:5a:a2:16:af:91:5b:76:98:5e:d4:54:09:8c: fb:09:12:ae:bc:20:33:9d:d4:0e:64:63:31:18:87:e2:bd:dd: ab:b2:9f:be:80:b2:41:27:45:5e:b4:16:36:12:a4:3f:05:f0: a3:cc:b4:5b:9c:d4:2a:0c:fb:f3:5e:76:65:88:19:df:53:e9: 91:77:e8:ce -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICO0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTM1Ni00MWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4n5fuNcckf5+BOPHZ1oAtn6z3toLPDGJCpMLUwqC+/dpNo5nIGtI4Md9RWF4 R9XvZxQDWWpYdVy/yDj7f990R+64ETFfnvSHQsuy5AYcuAIx8TtZyNMBx2l5C/lm AXxB/8H1bv0SRKayET8jCn+v/zI0mLSRkLsl3IXLwtASw3oAirYEbZRChduBDpXW E1j+sa1c1OCOpftFtA8c/ICc88dyzhmZSANYWYJMSzY1POVcp0cNCmS2e7+ChzoR 0CAqci+52SVKElmCpM85v63krj6DP75NsEMqYQ0T2+2R1X8FdkCpFKAUZ2EhTKDU 1gj72QhqIKt1LyX+vaO2VA3UrQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFILZhH0s mwuYyGzNRNaPTuf30h74MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvODVERjFGMjg1 MkM5MTFFQTkzRDE4MTRGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAPVr7MA0GCSqGSIb3DQEBCwUAA4IBAQC4pfoQNhvTrJOajj8DZ9XY 7M92L3n8SW7zyWYoNZAXiookKBXJ7KXWKdRNIAaivkwKKwGMV/XR8ztOIkPdsCSI rCOwylXkmipXox7W6wHIZL1cs1XPqTrPSIygqqk/ho8tUQ7OC3wWB/wOB8hAT4Rn qDIzQhQOy4gJ8MfbHkFfeTPeYZ7Yuy0QKPwyVuDImzfScMqrcBhi7hI6MhgQvdE8 VwMUmhM8fHTMOysI0Z0vPqD8cJXfievx9FqiFq+RW3aYXtRUCYz7CRKuvCAzndQO ZGMxGIfivd2rsp++gLJBJ0VetBY2EqQ/BfCjzLRbnNQqDPvzXnZliBnfU+mRd+jO -----END CERTIFICATE-----Generated at Mon Mar 2 09:07:32 2026 by rpki-client