$ rpki-client -vvf rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/D1AEBE18070A11EB90C85C2BC4F9AE02.roa File: D1AEBE18070A11EB90C85C2BC4F9AE02.roa (raw, json) Hash identifier: VwR7ciSw9K0cAPZ0/q0g7mvGXQVhOuUIe5YkFLUBvNM= Subject key identifier: 8F:F8:BA:55:8E:CC:0D:BA:88:A3:BC:89:8A:D2:5E:F3:1F:5B:0F:46 Certificate issuer: /CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Certificate serial: 3314 Authority key identifier: 49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/D1AEBE18070A11EB90C85C2BC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:10:51 +0000 ROA not before: Wed 30 Apr 2025 15:52:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 26685 IP address blocks: 59.160.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13076 (0x3314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CE75, serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Validity Not Before: Apr 30 15:52:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48f3b-3e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9d:13:2c:3d:b3:cb:d8:84:be:88:e0:fd:29: 15:59:31:e3:bd:9d:3f:58:30:25:0c:0a:7f:7a:77: 6b:7b:33:57:e6:d0:d4:3c:47:5b:d0:05:27:99:f6: 93:85:bc:8d:9f:26:cc:6a:35:f1:ed:f4:8c:34:10: ca:ab:07:15:38:5b:c7:66:39:af:6f:18:5b:b2:f5: ac:b0:e0:8e:49:56:b1:c5:1c:ca:48:3e:0a:c6:a6: 48:cb:d7:ca:4f:8c:10:84:76:c7:03:7b:08:94:27: 04:07:54:dd:62:2b:3b:31:9e:60:d8:fe:32:99:11: 55:42:6e:a9:6e:ce:2e:35:68:24:65:14:53:96:24: 19:39:36:83:8d:33:b2:2b:62:e8:68:9d:1b:ab:63: cf:71:fe:94:41:53:1b:ab:c3:39:59:7e:ae:43:ca: 5f:9c:c7:67:c8:6c:8d:cf:ed:de:b6:48:1a:bc:f3: 06:76:dd:fa:a4:32:83:c4:fc:30:5c:27:21:4a:57: a8:4e:00:48:a1:97:26:8f:80:a1:a0:9b:55:27:9b: 7a:2f:46:c0:fb:f1:ee:14:49:78:66:41:dd:c3:5d: 4e:6e:eb:74:19:9b:b3:53:b1:c4:91:ee:47:73:f3: 56:e7:c5:7d:9f:d7:34:df:d3:ab:18:c1:25:81:67: 02:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F8:BA:55:8E:CC:0D:BA:88:A3:BC:89:8A:D2:5E:F3:1F:5B:0F:46 X509v3 Authority Key Identifier: keyid:49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/D1AEBE18070A11EB90C85C2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.160.59.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:ed:82:fd:f6:fb:58:b1:23:56:fa:05:3e:69:0f:87:ce:82: 44:9d:e8:49:53:d9:e9:aa:27:70:2f:a3:dd:af:1a:79:1a:a8: c3:d5:23:11:c1:95:99:44:66:0e:c3:28:01:86:03:c8:d3:b0: 76:83:6c:29:a7:e8:82:63:77:95:02:0c:e4:95:64:07:3e:75: 04:df:2d:fd:09:77:7d:49:58:e8:c6:65:46:30:6b:f1:3f:49: 76:51:85:40:cb:19:10:09:83:af:35:01:75:ba:66:cf:1d:cd: 5c:7b:8a:ce:f8:17:c6:be:db:79:1f:ad:28:98:57:1f:6c:46: e8:a9:9e:be:c2:5a:fe:33:5f:c9:e2:00:1d:35:aa:a3:e2:b9: fe:03:a6:c5:94:ec:ec:ea:64:94:a5:23:1f:e2:13:ce:2d:ac: 2c:21:5c:d7:ef:98:42:e1:2e:78:67:7c:6c:20:d7:a0:7e:67: fe:00:f2:e2:43:1e:1a:fc:75:ac:3a:8c:f6:4b:d3:25:03:4e: ca:ab:84:1c:db:2a:7d:0f:1c:f9:d0:47:c1:de:e0:d6:fd:e0: 9e:fc:6e:73:40:f4:c8:f5:1a:47:58:90:53:54:b3:ff:86:82: 03:1d:89:24:99:0b:47:70:6e:43:f1:15:c6:a5:42:9f:95:51: 1f:99:97:bb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICMxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENFNzUxMTAvBgNVBAUTKDQ5ODkyNTM3RDhCMkMwMzI1QjdCRTA4MUZEOTI4NkM3 OUJFQTZBODUwHhcNMjUwNDMwMTU1MjIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGYzYi0zZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZ0TLD2zy9iEvojg/SkVWTHjvZ0/WDAlDAp/endrezNX5tDUPEdb0AUnmfaT hbyNnybMajXx7fSMNBDKqwcVOFvHZjmvbxhbsvWssOCOSVaxxRzKSD4KxqZIy9fK T4wQhHbHA3sIlCcEB1TdYis7MZ5g2P4ymRFVQm6pbs4uNWgkZRRTliQZOTaDjTOy K2LoaJ0bq2PPcf6UQVMbq8M5WX6uQ8pfnMdnyGyNz+3etkgavPMGdt36pDKDxPww XCchSleoTgBIoZcmj4ChoJtVJ5t6L0bA+/HuFEl4ZkHdw11Obut0GZuzU7HEke5H c/NW58V9n9c039OrGMElgWcCiwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI/4ulWO zA26iKO8iYrSXvMfWw9GMB8GA1UdIwQYMBaAFEmJJTfYssAyW3vggf2Shseb6mqF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0U3NS9EMjJFRjNENkZG NEIxMUUyODFCRTA2NjI1OTExRUEzMi9TWWtsTjlpeXdESmJlLUNCX1pLR3g1dnFh b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NZa2xOOWl5d0RKYmUtQ0JfWktHeDV2cWFvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENFNzUvRDIyRUYzRDZGRjRCMTFFMjgxQkUwNjYyNTkxMUVBMzIvRDFBRUJFMTgw NzBBMTFFQjkwQzg1QzJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAO6A7MA0GCSqGSIb3DQEBCwUAA4IBAQB/7YL99vtYsSNW+gU+aQ+H zoJEnehJU9npqidwL6Pdrxp5GqjD1SMRwZWZRGYOwygBhgPI07B2g2wpp+iCY3eV AgzklWQHPnUE3y39CXd9SVjoxmVGMGvxP0l2UYVAyxkQCYOvNQF1umbPHc1ce4rO +BfGvtt5H60omFcfbEboqZ6+wlr+M1/J4gAdNaqj4rn+A6bFlOzs6mSUpSMf4hPO LawsIVzX75hC4S54Z3xsINegfmf+APLiQx4a/HWsOoz2S9MlA07Kq4Qc2yp9Dxz5 0EfB3uDW/eCe/G5zQPTI9RpHWJBTVLP/hoIDHYkkmQtHcG5D8RXGpUKflVEfmZe7 -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:26 2026 by rpki-client