$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/2A5E8B02DC9311F0B4518961A2EE528E/8C622D46DF0811F0A8BEBB315D6F56BC.roa File: 8C622D46DF0811F0A8BEBB315D6F56BC.roa (raw, json) Hash identifier: KedrC2RldVkXMiiFmDrr/0MwleKVLiPU0WWeEWVqrHo= Subject key identifier: 27:62:15:42:65:1A:2D:AB:75:F9:60:4F:E8:55:56:DD:DB:79:41:D8 Certificate issuer: /CN=A9151932/serialNumber=3638DFA3B9856A15AD9D54306B5BF70630F63646 Certificate serial: 2C Authority key identifier: 36:38:DF:A3:B9:85:6A:15:AD:9D:54:30:6B:5B:F7:06:30:F6:36:46 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Njjfo7mFahWtnVQwa1v3BjD2NkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/2A5E8B02DC9311F0B4518961A2EE528E/8C622D46DF0811F0A8BEBB315D6F56BC.roa Signing time: Sun 01 Mar 2026 05:53:17 +0000 ROA not before: Mon 22 Dec 2025 07:37:05 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153325 IP address blocks: 85.155.108.0/24 maxlen: 24 85.155.109.0/24 maxlen: 24 85.155.110.0/24 maxlen: 24 85.155.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/2A5E8B02DC9311F0B4518961A2EE528E/Njjfo7mFahWtnVQwa1v3BjD2NkY.crl rsync://rpki.apnic.net/member_repository/A9151932/2A5E8B02DC9311F0B4518961A2EE528E/Njjfo7mFahWtnVQwa1v3BjD2NkY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Njjfo7mFahWtnVQwa1v3BjD2NkY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:56:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=3638DFA3B9856A15AD9D54306B5BF70630F63646 Validity Not Before: Dec 22 07:37:05 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d44d-40a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:54:9b:54:eb:ab:72:d4:2d:e2:f6:35:9e:46: 5a:dc:82:99:f3:62:70:54:11:40:b0:26:65:be:75: 1f:e4:77:ec:4b:51:2b:00:72:bb:55:36:31:83:72: db:3c:a0:7f:77:3c:e1:d3:b7:9b:65:f7:18:79:e2: 5c:1e:f4:da:f5:ae:61:cc:68:6c:45:b4:99:30:b3: 1d:b2:ba:97:6a:73:0c:24:68:9f:e7:d1:e5:28:1e: 4b:cf:bf:3d:29:49:c7:7c:88:16:0c:54:68:93:b5: 38:ce:a5:67:af:60:a7:66:3b:52:87:51:f3:87:d7: c0:11:de:12:f4:f0:ba:77:b1:20:1d:59:cb:aa:de: e7:33:39:9e:46:19:f3:a1:a9:e4:a9:17:f8:a7:92: fd:39:e6:57:1d:76:8b:6a:11:86:01:93:44:4e:d2: bf:ec:8b:e6:b5:77:ce:99:fc:2c:45:69:6c:67:47: c9:0f:43:28:b0:2b:cc:ac:78:d4:fb:61:f3:45:64: fc:1c:e5:3c:ae:58:9f:6d:0b:5e:0c:1d:4f:fb:14: 3d:c1:c4:4f:29:03:72:c9:d6:c7:ff:db:52:00:a4: 22:af:39:1c:e8:ae:29:4d:e3:a8:10:6a:c9:51:c0: 1e:2f:a4:eb:92:56:ab:39:f5:c3:71:75:1e:b2:1f: 77:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:62:15:42:65:1A:2D:AB:75:F9:60:4F:E8:55:56:DD:DB:79:41:D8 X509v3 Authority Key Identifier: keyid:36:38:DF:A3:B9:85:6A:15:AD:9D:54:30:6B:5B:F7:06:30:F6:36:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/2A5E8B02DC9311F0B4518961A2EE528E/Njjfo7mFahWtnVQwa1v3BjD2NkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Njjfo7mFahWtnVQwa1v3BjD2NkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/2A5E8B02DC9311F0B4518961A2EE528E/8C622D46DF0811F0A8BEBB315D6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 85.155.108.0/22 Signature Algorithm: sha256WithRSAEncryption 71:64:13:7d:a1:a3:a0:83:2e:56:37:41:e4:5b:2c:59:64:ce: 68:5c:d7:5b:79:d3:86:79:4a:72:7e:50:27:85:39:7c:e8:d5: 46:d5:8f:23:50:31:8a:4d:1c:d8:29:81:02:f8:97:ce:59:89: 29:93:4e:c9:b6:39:8a:d0:e9:00:59:97:7e:52:bf:48:15:3b: 88:ff:d1:ad:d7:fc:0d:e4:0a:d3:fe:00:fc:ec:5d:94:64:31: ef:cd:2d:cf:63:6a:33:31:2c:27:90:64:c9:fb:65:fd:7e:15: 03:d5:22:e3:59:8d:00:cd:06:62:f3:75:f6:d1:b7:66:59:33: d3:6a:7f:3e:9e:6e:d8:c5:25:1f:58:86:75:7a:bd:90:5a:5b: fe:4e:5d:6e:4f:c4:4c:7a:ed:6b:ac:4d:30:05:c3:5d:e2:77: 6b:f1:a2:f5:91:ce:ce:1d:5b:52:a9:91:0e:90:23:41:3d:97: e6:04:f7:1c:c0:4b:ad:01:12:da:33:a6:8b:7b:46:1f:8d:df: 17:4a:37:d6:1c:fc:ba:a7:49:e7:47:0b:b5:8e:77:b6:38:1e: 6e:a0:dd:52:83:9c:a1:f1:d1:34:a8:ff:2a:0a:45:69:da:46: 80:89:9d:79:1c:5f:97:1f:62:04:c4:a8:1a:88:62:f9:3e:85: 34:87:0b:46 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTkzMjExMC8GA1UEBRMoMzYzOERGQTNCOTg1NkExNUFEOUQ1NDMwNkI1QkY3MDYz MEY2MzY0NjAeFw0yNTEyMjIwNzM3MDVaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNDRkLTQwYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6VJtU66ty1C3i9jWeRlrcgpnzYnBUEUCwJmW+dR/kd+xLUSsAcrtVNjGDcts8 oH93POHTt5tl9xh54lwe9Nr1rmHMaGxFtJkwsx2yupdqcwwkaJ/n0eUoHkvPvz0p Scd8iBYMVGiTtTjOpWevYKdmO1KHUfOH18AR3hL08Lp3sSAdWcuq3uczOZ5GGfOh qeSpF/inkv055lcddotqEYYBk0RO0r/si+a1d86Z/CxFaWxnR8kPQyiwK8yseNT7 YfNFZPwc5TyuWJ9tC14MHU/7FD3BxE8pA3LJ1sf/21IApCKvORzorilN46gQaslR wB4vpOuSVqs59cNxdR6yH3dZAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUJ2IVQmUa Lat1+WBP6FVW3dt5QdgwHwYDVR0jBBgwFoAUNjjfo7mFahWtnVQwa1v3BjD2NkYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxOTMyLzJBNUU4QjAyREM5 MzExRjBCNDUxODk2MUEyRUU1MjhFL05qamZvN21GYWhXdG5WUXdhMXYzQmpEMk5r WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTmpqZm83bUZhaFd0blZRd2ExdjNCakQyTmtZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi8yQTVFOEIwMkRDOTMxMUYwQjQ1MTg5NjFBMkVFNTI4RS84QzYyMkQ0NkRG MDgxMUYwQThCRUJCMzE1RDZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJVm2wwDQYJKoZIhvcNAQELBQADggEBAHFkE32ho6CDLlY3QeRbLFlk zmhc11t504Z5SnJ+UCeFOXzo1UbVjyNQMYpNHNgpgQL4l85ZiSmTTsm2OYrQ6QBZ l35Sv0gVO4j/0a3X/A3kCtP+APzsXZRkMe/NLc9jajMxLCeQZMn7Zf1+FQPVIuNZ jQDNBmLzdfbRt2ZZM9Nqfz6ebtjFJR9YhnV6vZBaW/5OXW5PxEx67WusTTAFw13i d2vxovWRzs4dW1KpkQ6QI0E9l+YE9xzAS60BEtozpot7Rh+N3xdKN9Yc/LqnSedH C7WOd7Y4Hm6g3VKDnKHx0TSo/yoKRWnaRoCJnXkcX5cfYgTEqBqIYvk+hTSHC0Y= -----END CERTIFICATE-----Generated at Mon Mar 2 14:09:31 2026 by rpki-client