$ rpki-client -vvf rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa File: EFC0CAB2F81111EEB4681B75C4F9AE02.roa (raw, json) Hash identifier: BTeoFCLWLpJ86fj7WEbev+ObD3ksVZlkHRSpsEYdtlo= Subject key identifier: 7B:B7:F0:E8:81:03:DD:55:22:47:A8:CA:F7:7A:9C:1A:B1:0D:FA:65 Certificate issuer: /CN=A9123072/serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4 Certificate serial: 0842 Authority key identifier: B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:52:13 +0000 ROA not before: Wed 10 Dec 2025 20:14:01 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55720 IP address blocks: 185.189.240.0/24 maxlen: 24 185.189.241.0/24 maxlen: 24 185.189.242.0/24 maxlen: 24 185.189.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 20:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2114 (0x842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123072, serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4 Validity Not Before: Dec 10 20:14:01 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4529d-ed22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a1:44:95:8e:a1:30:6c:5d:92:7c:da:28:df: c8:38:8e:98:eb:cb:39:84:9a:8d:24:2c:10:10:28: 68:11:b1:54:e2:82:44:42:35:bf:d3:d0:2b:22:f3: 89:39:68:8b:64:82:03:ba:23:df:00:fc:00:1d:b0: 12:51:57:b4:a4:a5:c4:9c:5b:dc:e5:c5:e6:d3:1c: 7c:9c:42:e8:8a:b2:87:1f:a7:44:ce:29:e4:9d:74: 0a:15:a1:54:7b:d5:ca:a7:fa:66:e9:31:c1:51:20: 04:42:6b:4d:db:54:c6:48:72:77:2d:dd:a8:21:cb: c2:97:60:a8:26:44:fe:a9:45:60:32:9b:35:01:23: 3c:25:0b:41:c6:2c:ad:ac:14:55:5f:3d:ff:d6:48: 50:d2:4e:d7:96:04:5e:ba:e1:cb:91:ce:0a:0f:e6: ab:67:ee:dc:c7:fa:37:2c:14:a6:0a:40:cc:0a:eb: 7d:73:ed:a0:b1:64:04:61:e5:af:36:06:d3:8f:e1: 4b:31:09:62:df:89:97:1a:07:9c:91:85:63:4c:18: 00:e0:e5:f2:57:35:f4:a4:54:94:3e:b5:8a:37:69: ee:fe:1e:3f:81:7f:d1:a8:ba:66:c8:60:13:4a:86: 4d:70:35:de:22:bf:01:f1:92:8a:d6:d6:d6:26:d8: 9f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B7:F0:E8:81:03:DD:55:22:47:A8:CA:F7:7A:9C:1A:B1:0D:FA:65 X509v3 Authority Key Identifier: keyid:B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 185.189.240.0/22 Signature Algorithm: sha256WithRSAEncryption 58:74:3c:af:dc:b6:6f:d3:ba:51:45:10:46:be:46:91:28:6a: dc:ca:a0:68:f6:d9:70:c2:48:6d:7e:5f:ce:79:33:c9:97:5f: 90:08:32:f1:50:bc:0d:58:9c:fa:a8:dc:b2:0d:e8:dc:28:26: 41:e6:19:bc:94:31:89:3d:ec:0f:0a:e1:73:ca:2f:34:98:75: a4:d8:3c:0f:e5:82:66:79:cd:67:1d:87:6a:cd:1d:b4:a4:60: cc:39:bc:93:51:82:04:1a:35:39:74:91:82:0d:e5:9e:92:3e: 46:a8:89:c9:68:a1:d3:7e:85:e2:d9:be:b2:bb:f0:72:4f:97: 76:e0:99:31:c9:04:80:01:3a:c2:58:b3:2d:74:c0:57:25:ab: 42:01:bc:e5:76:73:86:d7:57:65:1e:4c:d8:ad:78:21:ed:78: da:e7:c3:b5:7d:90:ca:91:d3:58:3a:18:55:ae:97:29:89:8b: 20:84:a5:e1:13:58:f2:90:ce:5d:4e:73:f9:1f:a8:63:42:44: f8:45:1f:80:71:a9:79:55:76:c7:7a:52:bb:9e:4d:22:ee:e5: a0:0b:da:37:c9:4d:0e:60:11:9f:fd:46:31:3e:f2:70:11:0f: c8:32:a3:e0:6b:f2:15:a9:6c:6f:de:5d:09:63:28:5b:33:a0: f1:39:6f:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwNzIxMTAvBgNVBAUTKEI2NThFRjZCMjc5MjlDN0I3RjVGQjI2Q0I5RUU2QTQx MkNFODVERDQwHhcNMjUxMjEwMjAxNDAxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTI5ZC1lZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6FElY6hMGxdknzaKN/IOI6Y68s5hJqNJCwQEChoEbFU4oJEQjW/09ArIvOJ OWiLZIIDuiPfAPwAHbASUVe0pKXEnFvc5cXm0xx8nELoirKHH6dEzinknXQKFaFU e9XKp/pm6THBUSAEQmtN21TGSHJ3Ld2oIcvCl2CoJkT+qUVgMps1ASM8JQtBxiyt rBRVXz3/1khQ0k7XlgReuuHLkc4KD+arZ+7cx/o3LBSmCkDMCut9c+2gsWQEYeWv NgbTj+FLMQli34mXGgeckYVjTBgA4OXyVzX0pFSUPrWKN2nu/h4/gX/RqLpmyGAT SoZNcDXeIr8B8ZKK1tbWJtifGwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHu38OiB A91VIkeoyvd6nBqxDfplMB8GA1UdIwQYMBaAFLZY72snkpx7f1+ybLnuakEs6F3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzA3Mi8wNjlBMDZFNjBC NUMxMUVCOTlBMTc1NjJDNEY5QUUwMi90bGp2YXllU25IdF9YN0pzdWU1cVFTem9Y ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RsanZheWVTbkh0X1g3SnN1ZTVxUVN6b1hkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMwNzIvMDY5QTA2RTYwQjVDMTFFQjk5QTE3NTYyQzRGOUFFMDIvRUZDMENBQjJG ODExMTFFRUI0NjgxQjc1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCub3wMA0GCSqGSIb3DQEBCwUAA4IBAQBYdDyv3LZv07pRRRBGvkaR KGrcyqBo9tlwwkhtfl/OeTPJl1+QCDLxULwNWJz6qNyyDejcKCZB5hm8lDGJPewP CuFzyi80mHWk2DwP5YJmec1nHYdqzR20pGDMObyTUYIEGjU5dJGCDeWekj5GqInJ aKHTfoXi2b6yu/ByT5d24JkxyQSAATrCWLMtdMBXJatCAbzldnOG11dlHkzYrXgh 7Xja58O1fZDKkdNYOhhVrpcpiYsghKXhE1jykM5dTnP5H6hjQkT4RR+Acal5VXbH elK7nk0i7uWgC9o3yU0OYBGf/UYxPvJwEQ/IMqPga/IVqWxv3l0JYyhbM6DxOW+k -----END CERTIFICATE-----Generated at Wed Mar 4 13:14:45 2026 by rpki-client