$ rpki-client -vvf rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/85B249CA30AE11ECB675E112C4F9AE02.roa File: 85B249CA30AE11ECB675E112C4F9AE02.roa (raw, json) Hash identifier: uWKrlH46xOMUPQf0I41m9PfK6LPIgrPit2IHhoLq4XQ= Subject key identifier: 85:1D:C0:12:2B:94:FC:89:A0:16:D8:FB:F1:B8:F2:94:00:8A:8E:B6 Certificate issuer: /CN=A9145EFF/serialNumber=8E8C268F104709A66C8D6F620A5B9D93C19AF050 Certificate serial: 0551 Authority key identifier: 8E:8C:26:8F:10:47:09:A6:6C:8D:6F:62:0A:5B:9D:93:C1:9A:F0:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jowmjxBHCaZsjW9iCludk8Ga8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/85B249CA30AE11ECB675E112C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:37:45 +0000 ROA not before: Thu 08 Jan 2026 23:19:06 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9744 IP address blocks: 175.41.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/jowmjxBHCaZsjW9iCludk8Ga8FA.crl rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/jowmjxBHCaZsjW9iCludk8Ga8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jowmjxBHCaZsjW9iCludk8Ga8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145EFF, serialNumber=8E8C268F104709A66C8D6F620A5B9D93C19AF050 Validity Not Before: Jan 8 23:19:06 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46b59-f5a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:84:c1:55:21:95:d7:0a:74:c2:2f:61:3a:47: 93:a2:98:d2:81:b7:9d:93:cc:31:63:75:26:06:bf: 5b:53:0e:44:e8:da:57:8a:cd:86:9c:48:96:d9:81: bd:ac:f8:0a:20:06:29:c2:4b:5d:15:67:7a:c1:15: 37:ec:79:17:6b:5c:e2:a1:07:c6:2b:3a:c7:b1:c3: a6:fa:94:f6:68:3d:b1:7a:34:1b:06:77:7a:32:5f: 71:d6:8a:59:25:2f:b6:32:3d:e9:90:87:86:77:d5: ad:ae:71:2c:17:e4:a7:06:e0:ed:96:f0:0d:dc:2b: 69:01:b6:f3:f9:7e:5f:db:6b:02:33:6a:34:86:0e: 02:a3:a8:26:b1:54:63:e7:17:0f:d5:17:5c:2b:a6: db:19:be:7b:d7:73:b2:d0:89:e7:61:b9:f9:aa:d9: ea:1c:56:f4:e1:da:fb:17:0a:52:55:62:75:65:24: 18:7c:56:b0:02:94:ab:d2:06:fd:24:19:87:e8:95: 48:7f:87:d4:28:4a:e7:d5:32:75:f3:89:ec:bc:11: 4e:07:a6:7d:a8:4a:d7:b1:17:5d:4b:3c:00:a8:d2: e7:64:72:c3:26:37:a1:97:fa:e4:45:8b:2d:db:e2: 86:d9:59:4f:31:b2:af:21:06:ab:42:64:6d:b1:1d: f7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1D:C0:12:2B:94:FC:89:A0:16:D8:FB:F1:B8:F2:94:00:8A:8E:B6 X509v3 Authority Key Identifier: keyid:8E:8C:26:8F:10:47:09:A6:6C:8D:6F:62:0A:5B:9D:93:C1:9A:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/jowmjxBHCaZsjW9iCludk8Ga8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jowmjxBHCaZsjW9iCludk8Ga8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145EFF/4517ECE830AA11EC845DDD50C4F9AE02/85B249CA30AE11ECB675E112C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 175.41.16.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:97:8a:c3:29:e5:59:06:69:a9:5c:c4:8b:b6:30:1b:44:86: 04:2a:20:7f:d4:b1:3d:d2:d1:94:8f:b8:ac:88:7f:8e:53:af: 4e:dc:c9:c4:7f:c5:e7:5c:dc:f6:57:d0:52:ba:ab:84:f5:2d: 04:7b:59:a8:7f:05:a2:39:17:5c:fe:8c:51:bd:3a:47:17:10: d1:d1:8d:55:72:b6:61:27:ad:54:66:c2:b1:a4:c0:57:3c:4c: 53:13:f3:05:67:51:57:33:89:ba:5c:c5:a2:59:59:2a:18:52: 8d:fe:13:e8:86:6d:4b:fb:fb:41:78:dc:9e:9b:7a:96:91:08: e4:75:34:fa:07:ea:4d:fc:da:51:4c:13:9c:f2:67:4c:b5:41: 6a:7e:10:20:f7:36:2e:77:d3:86:72:a4:3f:d9:b3:bf:ec:f3: f6:e4:4f:1f:57:64:a0:4d:ed:40:b6:17:a2:74:d5:d5:66:23: bd:f5:bb:37:c0:9d:e8:4a:e3:fc:99:42:d0:cd:04:58:f9:48: 84:5d:9e:a5:06:9c:28:3f:fc:90:94:86:7e:94:1f:9f:be:0e: 5d:08:79:ce:01:b9:08:82:8a:ee:a4:e1:a5:8f:cf:74:14:22: b1:1b:8a:85:57:6b:eb:13:24:f1:2e:cc:e1:1b:20:72:aa:0f: f5:d6:85:06 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVFRkYxMTAvBgNVBAUTKDhFOEMyNjhGMTA0NzA5QTY2QzhENkY2MjBBNUI5RDkz QzE5QUYwNTAwHhcNMjYwMTA4MjMxOTA2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmI1OS1mNWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4TBVSGV1wp0wi9hOkeTopjSgbedk8wxY3UmBr9bUw5E6NpXis2GnEiW2YG9 rPgKIAYpwktdFWd6wRU37HkXa1zioQfGKzrHscOm+pT2aD2xejQbBnd6Ml9x1opZ JS+2Mj3pkIeGd9WtrnEsF+SnBuDtlvAN3CtpAbbz+X5f22sCM2o0hg4Co6gmsVRj 5xcP1RdcK6bbGb5713Oy0InnYbn5qtnqHFb04dr7FwpSVWJ1ZSQYfFawApSr0gb9 JBmH6JVIf4fUKErn1TJ184nsvBFOB6Z9qErXsRddSzwAqNLnZHLDJjehl/rkRYst 2+KG2VlPMbKvIQarQmRtsR338QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIUdwBIr lPyJoBbY+/G48pQAio62MB8GA1UdIwQYMBaAFI6MJo8QRwmmbI1vYgpbnZPBmvBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUVGRi80NTE3RUNFODMw QUExMUVDODQ1RERENTBDNEY5QUUwMi9qb3dtanhCSENhWnNqVzlpQ2x1ZGs4R2E4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvd21qeEJIQ2Fac2pXOWlDbHVkazhHYThGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVFRkYvNDUxN0VDRTgzMEFBMTFFQzg0NURERDUwQzRGOUFFMDIvODVCMjQ5Q0Ez MEFFMTFFQ0I2NzVFMTEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErykQMA0GCSqGSIb3DQEBCwUAA4IBAQArl4rDKeVZBmmpXMSLtjAb RIYEKiB/1LE90tGUj7isiH+OU69O3MnEf8XnXNz2V9BSuquE9S0Ee1mofwWiORdc /oxRvTpHFxDR0Y1VcrZhJ61UZsKxpMBXPExTE/MFZ1FXM4m6XMWiWVkqGFKN/hPo hm1L+/tBeNyem3qWkQjkdTT6B+pN/NpRTBOc8mdMtUFqfhAg9zYud9OGcqQ/2bO/ 7PP25E8fV2SgTe1AtheidNXVZiO99bs3wJ3oSuP8mULQzQRY+UiEXZ6lBpwoP/yQ lIZ+lB+fvg5dCHnOAbkIgorupOGlj890FCKxG4qFV2vrEyTxLszhGyByqg/11oUG -----END CERTIFICATE-----Generated at Mon Mar 2 10:54:48 2026 by rpki-client