$ rpki-client -vvf rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa File: 85C3AC9A39E511EF99FD7A11C4F9AE02.roa (raw, json) Hash identifier: 6H8TGs6GoQ4vBmeljzoTgBms2GLqQP8yLJrxq9ef4fo= Subject key identifier: 14:26:10:F8:D6:98:16:EF:6A:F0:A1:DA:B1:DC:AD:F2:D1:67:2F:6D Certificate issuer: /CN=A9167003/serialNumber=A8FC0636E68186475548794DDFA4690BFFD4CCB6 Certificate serial: 0148 Authority key identifier: A8:FC:06:36:E6:81:86:47:55:48:79:4D:DF:A4:69:0B:FF:D4:CC:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:41:17 +0000 ROA not before: Thu 07 Aug 2025 06:11:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 10022 IP address blocks: 192.188.185.0/24 maxlen: 24 192.203.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.crl rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167003, serialNumber=A8FC0636E68186475548794DDFA4690BFFD4CCB6 Validity Not Before: Aug 7 06:11:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5856d-d9bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:34:cf:bc:53:54:04:61:43:e7:f6:0c:cb:44: 9b:ee:55:85:d6:0b:45:0b:fc:88:db:b5:cd:a9:3f: 19:a0:ea:eb:a6:b1:11:8f:3f:fa:f5:fd:34:6d:00: b4:55:b1:d6:3d:81:bc:3c:02:fc:20:85:49:ce:08: 8d:7c:b3:14:12:70:70:50:91:f3:20:19:ec:b0:d5: ba:63:a4:93:8a:4d:44:cb:eb:10:81:a6:67:1a:a6: 4a:87:d6:38:ac:99:c7:cb:4e:5a:0a:6c:52:d4:7b: 4c:74:24:54:a4:08:56:63:79:eb:a7:d7:a6:68:cc: f3:2a:00:29:22:df:9d:68:a2:84:14:ba:49:0b:c5: 4b:94:63:51:ee:48:42:8f:07:a5:2b:fd:37:db:47: 00:db:e4:c0:3d:40:f0:af:0e:d6:e2:1a:4e:ab:33: e6:b4:7c:8c:5b:9b:82:50:2b:bb:09:ea:fb:09:25: dd:c4:dd:1a:61:b7:3e:00:5a:86:a4:cd:b5:43:f0: 7a:83:2d:2d:bc:d7:91:64:05:8f:6b:fe:da:52:7e: b1:0f:dc:84:39:2b:db:02:5b:0c:df:52:6e:3d:b8: 5e:7f:ac:51:df:1a:b9:c4:3e:6a:6b:8f:81:7a:df: 81:12:0d:2a:3e:6c:02:27:92:60:be:4c:8d:8c:8f: 9e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:26:10:F8:D6:98:16:EF:6A:F0:A1:DA:B1:DC:AD:F2:D1:67:2F:6D X509v3 Authority Key Identifier: keyid:A8:FC:06:36:E6:81:86:47:55:48:79:4D:DF:A4:69:0B:FF:D4:CC:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.188.185.0/24 192.203.216.0/24 Signature Algorithm: sha256WithRSAEncryption 39:81:c0:ef:0d:c0:9f:5b:6a:e2:17:57:f2:2c:35:2c:d1:e1: d4:ae:cd:07:d5:bc:10:24:73:fe:0d:0a:bb:20:48:03:7e:ac: 5d:12:bd:4d:8d:46:59:ad:9f:50:ea:81:a3:e6:d0:d9:82:0a: 2a:54:a9:91:b9:af:b8:6e:e6:82:ac:55:9a:a6:0b:0d:57:2c: bb:21:da:46:7a:3b:61:c9:8c:79:a6:0e:7b:bd:54:ed:7e:80: 16:f8:8c:bd:78:5d:48:47:aa:d8:51:54:b0:42:d6:e9:34:90: cf:0d:f5:ad:32:9d:26:76:55:67:8b:f6:60:59:69:bc:e1:a6: bb:87:95:0b:d6:02:35:32:e4:90:32:ed:4e:60:10:28:f3:32: de:d9:9c:f5:bb:f8:71:e4:7f:6d:93:ef:b4:ff:36:85:6d:57: 1f:0b:11:89:95:b7:6a:72:82:04:f6:77:08:f0:5d:37:ad:30: 72:9a:f0:c7:e5:76:ce:14:3b:e7:11:07:76:5e:01:ba:88:3f: ff:4a:e8:e8:be:65:c6:3d:9d:fb:33:3e:57:dc:1a:59:ea:df: 5f:fd:63:f2:3e:2f:58:fb:42:21:7b:58:5b:1d:77:8c:80:77: 6d:ac:45:83:52:d7:7a:6e:52:0e:c6:bf:68:03:db:bb:53:98: 4c:2d:8c:08 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMDMxMTAvBgNVBAUTKEE4RkMwNjM2RTY4MTg2NDc1NTQ4Nzk0RERGQTQ2OTBC RkZENENDQjYwHhcNMjUwODA3MDYxMTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODU2ZC1kOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DTPvFNUBGFD5/YMy0Sb7lWF1gtFC/yI27XNqT8ZoOrrprERjz/69f00bQC0 VbHWPYG8PAL8IIVJzgiNfLMUEnBwUJHzIBnssNW6Y6STik1Ey+sQgaZnGqZKh9Y4 rJnHy05aCmxS1HtMdCRUpAhWY3nrp9emaMzzKgApIt+daKKEFLpJC8VLlGNR7khC jwelK/0320cA2+TAPUDwrw7W4hpOqzPmtHyMW5uCUCu7Cer7CSXdxN0aYbc+AFqG pM21Q/B6gy0tvNeRZAWPa/7aUn6xD9yEOSvbAlsM31JuPbhef6xR3xq5xD5qa4+B et+BEg0qPmwCJ5JgvkyNjI+ewQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBQmEPjW mBbvavCh2rHcrfLRZy9tMB8GA1UdIwQYMBaAFKj8BjbmgYZHVUh5Td+kaQv/1My2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAwMy8yNkE2QjA1ODMy QkIxMUVGQTgzRDYxMkZDNEY5QUUwMi9xUHdHTnVhQmhrZFZTSGxOMzZScENfX1V6 TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FQd0dOdWFCaGtkVlNIbE4zNlJwQ19fVXpMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwMDMvMjZBNkIwNTgzMkJCMTFFRkE4M0Q2MTJGQzRGOUFFMDIvODVDM0FDOUEz OUU1MTFFRjk5RkQ3QTExQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAwLy5AwQAwMvYMA0GCSqGSIb3DQEBCwUAA4IBAQA5gcDvDcCfW2ri F1fyLDUs0eHUrs0H1bwQJHP+DQq7IEgDfqxdEr1NjUZZrZ9Q6oGj5tDZggoqVKmR ua+4buaCrFWapgsNVyy7IdpGejthyYx5pg57vVTtfoAW+Iy9eF1IR6rYUVSwQtbp NJDPDfWtMp0mdlVni/ZgWWm84aa7h5UL1gI1MuSQMu1OYBAo8zLe2Zz1u/hx5H9t k++0/zaFbVcfCxGJlbdqcoIE9ncI8F03rTBymvDH5XbOFDvnEQd2XgG6iD//Sujo vmXGPZ37Mz5X3BpZ6t9f/WPyPi9Y+0Ihe1hbHXeMgHdtrEWDUtd6blIOxr9oA9u7 U5hMLYwI -----END CERTIFICATE-----Generated at Fri Mar 27 00:09:53 2026 by rpki-client