$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/52850542A60811EF91FB1113C4F9AE02.roa File: 52850542A60811EF91FB1113C4F9AE02.roa (raw, json) Hash identifier: UG7lzheDNHxTG7EaB2/dK8FIJzYCiMZ8x3AcwttwYrc= Subject key identifier: C0:DD:A0:B4:90:2E:85:16:42:F7:19:A6:76:CE:46:B9:66:3D:3F:BC Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3C3D Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/52850542A60811EF91FB1113C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:26:57 +0000 ROA not before: Mon 23 Feb 2026 05:46:25 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 20200 IP address blocks: 45.250.221.0/24 maxlen: 24 45.250.222.0/24 maxlen: 24 45.250.223.0/24 maxlen: 24 61.251.182.0/24 maxlen: 24 115.71.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15421 (0x3c3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Feb 23 05:46:25 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4af21-a618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9c:44:b7:4e:74:27:f1:71:01:e1:cf:67:13: ec:ce:11:2d:df:c2:c0:62:01:b7:d0:66:b6:83:00: 1f:ce:c7:80:d4:33:9e:3a:20:db:3e:a3:72:d1:ab: 13:8e:6e:7a:8b:f5:ef:54:3f:f8:ed:5e:d5:7f:7f: 6d:a2:d0:5e:d1:6e:18:aa:a5:e8:65:8e:55:1a:62: 59:2d:ee:1b:80:a5:fc:5e:a7:6e:5f:b6:55:5b:30: 91:69:0c:af:0e:85:42:79:ed:31:dc:f2:28:22:13: 1b:ac:98:1c:90:ac:df:62:bd:dc:54:e3:b4:3b:06: 37:57:be:bb:3c:e7:b0:4b:42:00:7f:cb:7d:f4:c5: 3f:71:01:5d:c3:59:10:e0:62:b1:2f:e0:03:90:29: 12:b2:dc:59:10:74:fa:6f:33:39:10:bf:3e:d4:01: 28:40:49:a9:4a:da:e7:a9:f5:f3:fb:75:89:8d:96: d0:be:a2:10:ed:d4:82:ea:0a:b4:d4:d7:4b:0e:28: 31:a5:22:f0:54:10:72:fc:53:9c:1f:b8:72:06:d1: 80:82:83:2a:67:a9:7d:4d:18:a6:26:d9:e4:64:dc: dc:39:d8:e1:9d:94:55:71:2a:4c:8b:7b:f6:14:8d: 1b:8e:91:e2:09:f1:13:6a:73:e5:2b:47:69:5d:1a: f5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DD:A0:B4:90:2E:85:16:42:F7:19:A6:76:CE:46:B9:66:3D:3F:BC X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/52850542A60811EF91FB1113C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.250.221.0-45.250.223.255 61.251.182.0/24 115.71.26.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b2:fa:1f:7d:96:48:09:dd:43:84:e4:81:d3:19:a1:cc:f4: fb:b4:68:60:66:10:cc:ce:c3:69:0e:3c:81:92:7d:76:25:64: f9:3c:63:87:e8:03:82:c6:21:e5:a5:fd:05:c1:2c:b4:d9:2c: 30:9c:78:86:45:0a:e0:e7:b7:ee:4c:7d:23:53:cb:25:fe:05: 55:aa:f3:56:99:b5:af:50:92:59:0c:ae:e8:a7:ac:4a:0d:09: a3:b6:db:7e:23:27:c2:1c:69:9e:49:0c:f0:19:06:1f:f6:aa: 84:3c:d8:b9:68:7c:3f:8c:f2:19:54:5a:ef:7b:58:f1:92:2d: 2b:cb:ef:2a:92:20:46:78:66:ec:3b:04:4e:22:38:cf:70:c3: 3e:e4:f4:76:0d:68:b8:73:cc:2f:e8:dc:1e:8a:01:67:85:d6: 77:f5:ca:fa:cf:75:0b:c7:89:00:fb:04:17:ef:42:6a:05:78: 75:65:43:b7:06:d6:3b:33:4d:50:d5:60:da:43:c1:78:39:5a: fe:d2:dd:9f:c7:31:9f:19:96:fe:f9:ac:ec:85:fc:85:28:48: 3b:da:7e:3e:16:4f:36:ee:bc:fa:32:9a:51:35:fd:1f:f2:34: c3:8c:30:2b:db:aa:0d:cd:ec:dd:a2:2c:b5:0c:8f:9c:a8:7e: 7a:f1:c9:3b -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICPD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjYwMjIzMDU0NjI1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWYyMS1hNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspxEt050J/FxAeHPZxPszhEt38LAYgG30Ga2gwAfzseA1DOeOiDbPqNy0asT jm56i/XvVD/47V7Vf39totBe0W4YqqXoZY5VGmJZLe4bgKX8XqduX7ZVWzCRaQyv DoVCee0x3PIoIhMbrJgckKzfYr3cVOO0OwY3V767POewS0IAf8t99MU/cQFdw1kQ 4GKxL+ADkCkSstxZEHT6bzM5EL8+1AEoQEmpStrnqfXz+3WJjZbQvqIQ7dSC6gq0 1NdLDigxpSLwVBBy/FOcH7hyBtGAgoMqZ6l9TRimJtnkZNzcOdjhnZRVcSpMi3v2 FI0bjpHiCfETanPlK0dpXRr1RQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFMDdoLSQ LoUWQvcZpnbORrlmPT+8MB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNTI4NTA1NDJB NjA4MTFFRjkxRkIxMTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBAAt+t0DBAUt+sADBAA9+7YDBABzRxowDQYJKoZIhvcNAQELBQAD ggEBAFGy+h99lkgJ3UOE5IHTGaHM9Pu0aGBmEMzOw2kOPIGSfXYlZPk8Y4foA4LG IeWl/QXBLLTZLDCceIZFCuDnt+5MfSNTyyX+BVWq81aZta9QklkMruinrEoNCaO2 234jJ8IcaZ5JDPAZBh/2qoQ82LlofD+M8hlUWu97WPGSLSvL7yqSIEZ4Zuw7BE4i OM9wwz7k9HYNaLhzzC/o3B6KAWeF1nf1yvrPdQvHiQD7BBfvQmoFeHVlQ7cG1jsz TVDVYNpDwXg5Wv7S3Z/HMZ8Zlv75rOyF/IUoSDvafj4WTzbuvPoymlE1/R/yNMOM MCvbqg3N7N2iLLUMj5yofnrxyTs= -----END CERTIFICATE-----Generated at Mon Mar 2 10:39:47 2026 by rpki-client