$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/E8E194B8A5CC11EC85A86A1FC4F9AE02.roa File: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (raw, json) Hash identifier: fOVVIFjJvtGXdWvi8prpmgPz6YpqGlf3motP4AlsEzU= Subject key identifier: CC:01:81:7A:F7:97:6F:43:57:33:5D:F0:E9:0F:D9:2E:99:CA:97:E6 Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 041E Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/E8E194B8A5CC11EC85A86A1FC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:11:07 +0000 ROA not before: Wed 09 Apr 2025 01:07:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142005 IP address blocks: 85.113.86.0/23 maxlen: 24 193.149.158.0/23 maxlen: 24 193.149.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 00:06:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Apr 9 01:07:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5a88b-f6ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cd:57:89:08:96:c2:e6:2f:4a:c2:0e:a2:67: 1a:76:e7:e7:4e:e3:e6:61:a7:35:49:de:60:1b:b8: 95:cf:77:92:9f:a9:62:ef:3b:e0:3d:26:27:01:a5: d2:65:5b:75:6e:4e:02:04:3f:da:83:0f:0f:9c:ab: 66:f1:e7:1e:7f:5f:c4:e3:99:01:c2:fd:dc:f8:25: a0:f7:ec:2d:ae:b4:9b:af:db:55:7a:c8:a2:73:2f: cd:3e:af:c5:51:03:ff:a0:de:20:80:73:8a:65:1c: aa:1b:3b:7e:19:2f:0a:72:ff:cc:19:8a:9a:93:4e: 56:f7:d7:80:31:dd:ec:ee:d1:3d:3b:1e:dd:2e:4a: 1b:1c:fd:d8:b2:eb:d6:fd:c7:a2:0f:b9:ed:3b:01: f3:3a:1e:f6:2d:30:3f:11:4c:d7:91:04:4d:57:0e: dd:aa:33:ed:a0:b9:b2:d5:ae:00:e4:64:05:86:9d: 09:d2:e5:9f:dd:39:81:1f:bd:ca:7f:7b:f0:34:c1: 66:72:e1:d8:3b:cc:b0:10:07:4c:b8:01:dd:a3:47: fb:5a:1d:0e:9f:c7:2d:9a:dc:15:9b:04:93:bf:8d: da:d3:d1:b7:bd:bc:99:68:73:d9:f2:4d:b0:50:a9: c2:c9:fc:84:9f:04:b9:c0:5b:3a:39:82:c0:36:82: ad:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:01:81:7A:F7:97:6F:43:57:33:5D:F0:E9:0F:D9:2E:99:CA:97:E6 X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/E8E194B8A5CC11EC85A86A1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 85.113.86.0/23 193.149.158.0/23 193.149.166.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:64:d9:75:81:f5:25:1d:ec:05:78:fd:ce:ef:13:3f:05:93: a2:cf:f3:aa:90:74:b0:59:a8:fd:3f:68:ff:2e:aa:0d:88:c0: cb:84:c6:52:12:94:77:85:96:6a:ad:ed:6c:7b:41:93:8a:12: 9b:96:f6:80:7a:fd:09:86:61:a1:91:86:70:05:c5:f0:95:46: 6a:c2:23:c7:b5:40:16:8a:90:e5:e4:02:2e:ff:93:8d:20:03: fb:69:ac:d9:e6:28:f4:ac:2f:42:48:da:28:c6:19:7a:02:26: 9f:7c:a8:21:0f:1f:74:6b:88:49:f8:01:d9:e7:33:45:b3:9e: ba:3f:83:68:cc:6d:3a:60:6e:33:dd:c8:13:03:97:8d:d0:fc: cc:c5:46:61:9d:c7:bf:fe:4b:e8:a4:f3:78:9d:ad:c3:96:36: da:40:de:f4:9c:fb:88:3c:cb:6c:46:b8:84:db:f5:45:85:38: 77:31:38:9a:31:fa:52:43:b0:c2:6f:f8:63:09:f6:66:45:c6: 52:36:88:4b:89:ea:35:1f:cb:37:3f:20:b5:65:76:90:35:37: 2d:50:91:1a:4a:0a:ba:24:19:f8:08:12:e0:58:61:8c:a3:c4: a1:c7:0c:8e:c8:13:ef:c7:a7:0c:0b:ef:93:9b:b5:46:12:63: f5:4c:d5:f1 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNDA5MDEwNzI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTg4Yi1mNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArs1XiQiWwuYvSsIOomcadufnTuPmYac1Sd5gG7iVz3eSn6li7zvgPSYnAaXS ZVt1bk4CBD/agw8PnKtm8ecef1/E45kBwv3c+CWg9+wtrrSbr9tVesiicy/NPq/F UQP/oN4ggHOKZRyqGzt+GS8Kcv/MGYqak05W99eAMd3s7tE9Ox7dLkobHP3YsuvW /ceiD7ntOwHzOh72LTA/EUzXkQRNVw7dqjPtoLmy1a4A5GQFhp0J0uWf3TmBH73K f3vwNMFmcuHYO8ywEAdMuAHdo0f7Wh0On8ctmtwVmwSTv43a09G3vbyZaHPZ8k2w UKnCyfyEnwS5wFs6OYLANoKt6QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMwBgXr3 l29DVzNd8OkP2S6ZypfmMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQyQzUvMTY2MzdDMkVBNEU5MTFFQ0FGM0ZCMTUyQzRGOUFFMDIvRThFMTk0QjhB NUNDMTFFQzg1QTg2QTFGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBVXFWAwQBwZWeAwQBwZWmMA0GCSqGSIb3DQEBCwUAA4IBAQBcZNl1 gfUlHewFeP3O7xM/BZOiz/OqkHSwWaj9P2j/LqoNiMDLhMZSEpR3hZZqre1se0GT ihKblvaAev0JhmGhkYZwBcXwlUZqwiPHtUAWipDl5AIu/5ONIAP7aazZ5ij0rC9C SNooxhl6AiaffKghDx90a4hJ+AHZ5zNFs566P4NozG06YG4z3cgTA5eN0PzMxUZh nce//kvopPN4na3DljbaQN70nPuIPMtsRriE2/VFhTh3MTiaMfpSQ7DCb/hjCfZm RcZSNohLieo1H8s3PyC1ZXaQNTctUJEaSgq6JBn4CBLgWGGMo8ShxwyOyBPvx6cM C++Tm7VGEmP1TNXx -----END CERTIFICATE-----Generated at Sat Mar 7 16:16:22 2026 by rpki-client