$ rpki-client -vvf rpki.apnic.net/member_repository/A912B600/C0B57422097511EB9D461B30C4F9AE02/5DE12890180311EBA311E181C4F9AE02.roa File: 5DE12890180311EBA311E181C4F9AE02.roa (raw, json) Hash identifier: UDT/sxEbJJ4LLH0Gq0n3HSWFZpUlaRKaU2gtkgxvimw= Subject key identifier: 3B:3D:4C:EE:64:BB:19:72:95:2A:F9:90:01:DA:D6:49:C9:9E:FF:47 Certificate issuer: /CN=A912B600/serialNumber=11940BB58344AA2C79C49539D6DF915196EFE826 Certificate serial: 0841 Authority key identifier: 11:94:0B:B5:83:44:AA:2C:79:C4:95:39:D6:DF:91:51:96:EF:E8:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EZQLtYNEqix5xJU51t-RUZbv6CY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B600/C0B57422097511EB9D461B30C4F9AE02/5DE12890180311EBA311E181C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:35:08 +0000 ROA not before: Wed 24 Sep 2025 15:01:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38466 IP address blocks: 66.23.160.0/19 maxlen: 19 66.23.160.0/24 maxlen: 24 66.23.161.0/24 maxlen: 24 66.23.162.0/24 maxlen: 24 66.23.163.0/24 maxlen: 24 66.23.164.0/24 maxlen: 24 66.23.165.0/24 maxlen: 24 66.23.166.0/24 maxlen: 24 66.23.167.0/24 maxlen: 24 66.23.168.0/24 maxlen: 24 66.23.169.0/24 maxlen: 24 66.23.170.0/24 maxlen: 24 66.23.171.0/24 maxlen: 24 66.23.172.0/24 maxlen: 24 66.23.173.0/24 maxlen: 24 66.23.174.0/24 maxlen: 24 66.23.175.0/24 maxlen: 24 66.23.176.0/24 maxlen: 24 66.23.177.0/24 maxlen: 24 66.23.178.0/24 maxlen: 24 66.23.179.0/24 maxlen: 24 66.23.180.0/24 maxlen: 24 66.23.181.0/24 maxlen: 24 66.23.182.0/24 maxlen: 24 66.23.183.0/24 maxlen: 24 66.23.184.0/24 maxlen: 24 66.23.185.0/24 maxlen: 24 66.23.186.0/24 maxlen: 24 66.23.187.0/24 maxlen: 24 66.23.188.0/24 maxlen: 24 66.23.189.0/24 maxlen: 24 66.23.190.0/24 maxlen: 24 66.23.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B600/C0B57422097511EB9D461B30C4F9AE02/EZQLtYNEqix5xJU51t-RUZbv6CY.crl rsync://rpki.apnic.net/member_repository/A912B600/C0B57422097511EB9D461B30C4F9AE02/EZQLtYNEqix5xJU51t-RUZbv6CY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EZQLtYNEqix5xJU51t-RUZbv6CY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B600, serialNumber=11940BB58344AA2C79C49539D6DF915196EFE826 Validity Not Before: Sep 24 15:01:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4408c-0305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5d:3e:65:78:71:e7:f8:92:01:66:1a:b7:f0: 3b:30:2f:d2:c0:1e:e5:ca:19:32:e5:fe:5d:bb:8f: c5:8f:80:18:93:08:f9:fb:6b:34:1f:45:af:e4:dc: 6e:0b:e8:ee:02:8e:8d:bf:ae:0d:a7:d8:26:a8:c3: d1:94:8e:f2:e8:8a:1c:cf:ca:da:80:18:d2:57:ae: 4a:6d:43:fa:81:6e:6b:82:1b:c7:79:46:4e:ec:91: a0:9f:e6:83:38:df:ca:94:3a:9d:95:df:41:42:cf: 3e:58:dc:b8:ff:d1:35:d9:cf:96:24:00:2d:2f:43: 57:ca:26:fe:15:26:f0:42:62:41:f2:58:94:45:61: 2f:c0:95:db:9c:24:f0:e9:b8:dd:e9:2a:63:ea:b6: 4f:c2:8f:d3:cd:36:b9:7f:79:d8:e1:52:8e:81:00: c5:20:a6:11:ec:71:2e:a1:bf:e0:ef:3d:c7:7d:00: c0:e3:f6:10:96:fe:40:b7:a9:22:44:96:b3:8f:75: 54:18:44:c2:08:8e:65:37:49:09:48:04:c9:bd:9f: aa:91:e7:e7:c0:d2:a9:e5:e0:93:56:29:ec:af:ff: 17:cf:a4:3c:47:70:9a:11:35:1b:aa:cf:70:3c:24: 6e:90:46:94:c8:63:1b:55:48:01:df:ec:cf:f4:09: 0e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3D:4C:EE:64:BB:19:72:95:2A:F9:90:01:DA:D6:49:C9:9E:FF:47 X509v3 Authority Key Identifier: keyid:11:94:0B:B5:83:44:AA:2C:79:C4:95:39:D6:DF:91:51:96:EF:E8:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B600/C0B57422097511EB9D461B30C4F9AE02/EZQLtYNEqix5xJU51t-RUZbv6CY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EZQLtYNEqix5xJU51t-RUZbv6CY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B600/C0B57422097511EB9D461B30C4F9AE02/5DE12890180311EBA311E181C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 66.23.160.0/19 Signature Algorithm: sha256WithRSAEncryption 92:3f:35:6b:5e:dd:db:0e:ea:6b:d6:70:09:33:1c:40:97:47: bc:1a:5f:af:f4:a5:86:78:f7:13:d7:f6:02:84:4c:b4:5f:ee: 87:dc:96:5d:40:68:72:6d:ea:1e:01:83:2c:bf:a7:7e:30:69: d4:a5:ac:2b:78:1c:e3:b0:69:81:52:c3:61:d9:89:09:87:4d: bd:d9:7a:7c:b9:a2:8d:17:01:c5:bf:8b:fb:16:f8:31:38:c0: b9:14:99:60:c7:c0:a0:4e:79:b6:c9:cb:3c:b6:04:01:b6:cc: 18:c3:7c:64:16:f9:15:11:16:f6:bf:f2:30:20:d1:75:d0:ff: e5:b5:6b:11:d0:83:e5:dc:8c:4d:e8:8c:90:fc:75:47:ee:9a: 2a:39:19:4b:5b:e9:34:bd:04:09:81:5d:02:73:79:25:79:5c: 78:fc:bc:45:70:33:6a:45:c3:ee:39:9a:86:4b:e0:c3:1e:43: 4e:56:af:c2:d7:52:71:14:1a:aa:b7:51:40:63:f9:1e:aa:9a: 6e:f8:29:17:e5:78:dd:0e:1a:12:9b:c1:df:13:6e:90:c7:37: c8:f8:6f:3c:71:af:7e:de:4e:e3:04:71:5e:a0:14:92:9e:7f: 4d:19:13:83:b5:26:8c:8a:7d:87:f1:40:10:29:57:ae:da:83: 23:5a:d4:42 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2MDAxMTAvBgNVBAUTKDExOTQwQkI1ODM0NEFBMkM3OUM0OTUzOUQ2REY5MTUx OTZFRkU4MjYwHhcNMjUwOTI0MTUwMTAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDA4Yy0wMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt10+ZXhx5/iSAWYat/A7MC/SwB7lyhky5f5du4/Fj4AYkwj5+2s0H0Wv5Nxu C+juAo6Nv64Np9gmqMPRlI7y6Iocz8ragBjSV65KbUP6gW5rghvHeUZO7JGgn+aD ON/KlDqdld9BQs8+WNy4/9E12c+WJAAtL0NXyib+FSbwQmJB8liURWEvwJXbnCTw 6bjd6Spj6rZPwo/TzTa5f3nY4VKOgQDFIKYR7HEuob/g7z3HfQDA4/YQlv5At6ki RJazj3VUGETCCI5lN0kJSATJvZ+qkefnwNKp5eCTVinsr/8Xz6Q8R3CaETUbqs9w PCRukEaUyGMbVUgB3+zP9AkOHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDs9TO5k uxlylSr5kAHa1knJnv9HMB8GA1UdIwQYMBaAFBGUC7WDRKosecSVOdbfkVGW7+gm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjYwMC9DMEI1NzQyMjA5 NzUxMUVCOUQ0NjFCMzBDNEY5QUUwMi9FWlFMdFlORXFpeDV4SlU1MXQtUlVaYnY2 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VaUUx0WU5FcWl4NXhKVTUxdC1SVVpidjZDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI2MDAvQzBCNTc0MjIwOTc1MTFFQjlENDYxQjMwQzRGOUFFMDIvNURFMTI4OTAx ODAzMTFFQkEzMTFFMTgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFQhegMA0GCSqGSIb3DQEBCwUAA4IBAQCSPzVrXt3bDupr1nAJMxxA l0e8Gl+v9KWGePcT1/YChEy0X+6H3JZdQGhybeoeAYMsv6d+MGnUpawreBzjsGmB UsNh2YkJh0292Xp8uaKNFwHFv4v7FvgxOMC5FJlgx8CgTnm2ycs8tgQBtswYw3xk FvkVERb2v/IwINF10P/ltWsR0IPl3IxN6IyQ/HVH7poqORlLW+k0vQQJgV0Cc3kl eVx4/LxFcDNqRcPuOZqGS+DDHkNOVq/C11JxFBqqt1FAY/keqppu+CkX5XjdDhoS m8HfE26QxzfI+G88ca9+3k7jBHFeoBSSnn9NGRODtSaMin2H8UAQKVeu2oMjWtRC -----END CERTIFICATE-----Generated at Mon Mar 2 12:44:36 2026 by rpki-client