$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/025F9668C60A11F0AB4AE483C4F9AE02.roa File: 025F9668C60A11F0AB4AE483C4F9AE02.roa (raw, json) Hash identifier: ck7EdxjimXDwSiGbbik85D8DmhKPqzjo4eBl7XbzG4k= Subject key identifier: 16:1D:8D:94:42:03:DB:7A:D1:4A:EB:E5:D9:F1:8A:1F:DE:25:26:F6 Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: 84 Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/025F9668C60A11F0AB4AE483C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:17 +0000 ROA not before: Fri 12 Dec 2025 04:40:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 202736 IP address blocks: 72.57.165.0/24 maxlen: 24 72.57.166.0/23 maxlen: 24 72.57.168.0/21 maxlen: 24 72.57.176.0/22 maxlen: 24 72.57.180.0/24 maxlen: 24 72.57.186.0/23 maxlen: 24 72.57.188.0/22 maxlen: 24 72.57.192.0/22 maxlen: 24 72.57.196.0/22 maxlen: 24 72.57.200.0/21 maxlen: 24 72.57.208.0/20 maxlen: 24 72.57.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: Dec 12 04:40:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48631-5c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:a2:2d:0c:24:da:de:70:4c:3a:ff:67:4c:59: c7:fa:d0:db:23:a5:fb:90:07:98:90:1b:6e:35:b6: a3:5f:3b:ad:55:be:ef:f6:da:ef:6d:05:04:cc:eb: ec:e6:64:7b:c5:45:0a:94:db:c5:a4:73:72:50:04: f4:5a:57:fe:85:51:dc:43:03:c9:ab:c4:3f:a4:3c: 35:2a:e8:6c:c6:2b:82:fc:9c:1b:87:8d:db:8f:ac: 9c:ca:48:29:38:95:cf:9f:56:03:bc:33:d8:b8:f6: e5:fd:28:d3:9e:04:94:81:c3:ab:7e:b4:a6:88:d8: 0c:80:7f:57:7a:51:06:5b:58:0b:13:ab:3e:90:5e: 31:98:12:59:4f:8e:b0:dc:12:0b:1d:1f:8e:58:b2: e5:1b:ae:7d:13:d3:6b:72:ac:28:d3:a6:f1:7d:0a: 6e:2d:8e:1f:ff:ae:ab:4b:7a:6d:ba:8e:c3:7b:f4: cb:70:7b:3e:7b:d3:be:94:8d:74:e6:c1:95:86:39: 6e:db:70:c5:0f:16:c3:5e:3b:b3:6f:0f:c6:d8:5d: 5c:22:a0:63:48:54:a5:a4:dd:ec:87:e5:d9:63:2b: f3:ac:55:81:1a:0c:81:0f:db:f0:14:9f:f9:22:62: 08:2f:71:bf:df:c5:a3:49:0b:20:c9:f2:e4:9d:f0: 35:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:1D:8D:94:42:03:DB:7A:D1:4A:EB:E5:D9:F1:8A:1F:DE:25:26:F6 X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/025F9668C60A11F0AB4AE483C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 72.57.165.0-72.57.180.255 72.57.186.0-72.57.227.255 Signature Algorithm: sha256WithRSAEncryption 92:46:ee:d1:75:1f:43:fb:21:bb:dd:60:74:b1:70:b6:36:bb: f7:3f:48:a5:73:25:36:aa:9e:f7:09:70:24:b1:38:1c:2d:af: a8:f3:81:e4:86:7a:81:6a:30:3b:8c:94:4d:a2:84:25:0d:3d: d9:ba:30:54:7a:22:cd:2f:9d:48:a7:c7:e6:59:97:a5:31:f4: 94:9a:c5:4c:7c:64:69:df:76:c0:cc:f0:5a:73:42:fe:72:77: 09:11:d1:c3:08:ea:0b:b1:32:1e:ee:ac:84:87:10:6f:4c:89: 77:30:fa:13:28:29:35:0a:f6:22:bc:4a:6a:e0:49:59:8e:0b: 9a:24:60:7d:52:c5:89:00:14:6b:9c:a2:1e:e9:f1:d1:4b:ae: 97:d5:6a:3e:22:ec:ee:fc:f2:84:e1:ce:bc:64:29:2b:9b:5a: ee:70:5a:33:63:84:0d:b0:72:46:6e:20:30:a4:58:af:a3:02: 7d:8e:3f:a7:8b:0e:b1:90:d3:ef:88:81:81:23:8c:f6:47:58: 15:8d:9b:0c:3a:53:68:00:2e:ff:64:17:95:b8:a9:db:8d:9d: e4:7a:72:1f:41:ce:c4:fb:3a:d5:c7:c9:f1:87:da:f8:5e:b9: 04:77:cb:5a:69:0d:8d:ee:ed:13:6a:20:1e:28:b2:67:57:d6: cb:79:44:47 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4RTcxMTAvBgNVBAUTKDNENjIxNkQ1NUNCNTRGQzlCNTcwRjlGMjVGOUFERDBG Mzc2OUI0REUwHhcNMjUxMjEyMDQ0MDUxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYzMS01YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhaItDCTa3nBMOv9nTFnH+tDbI6X7kAeYkBtuNbajXzutVb7v9trvbQUEzOvs 5mR7xUUKlNvFpHNyUAT0Wlf+hVHcQwPJq8Q/pDw1KuhsxiuC/Jwbh43bj6ycykgp OJXPn1YDvDPYuPbl/SjTngSUgcOrfrSmiNgMgH9XelEGW1gLE6s+kF4xmBJZT46w 3BILHR+OWLLlG659E9Nrcqwo06bxfQpuLY4f/66rS3ptuo7De/TLcHs+e9O+lI10 5sGVhjlu23DFDxbDXjuzbw/G2F1cIqBjSFSlpN3sh+XZYyvzrFWBGgyBD9vwFJ/5 ImIIL3G/38WjSQsgyfLknfA18QIDAQABo4ICdjCCAnIwHQYDVR0OBBYEFBYdjZRC A9t60Urr5dnxih/eJSb2MB8GA1UdIwQYMBaAFD1iFtVctU/JtXD58l+a3Q83abTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzhFNy9DNjJCMjk4Njkz NDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi9QV0lXMVZ5MVQ4bTFjUG55WDVyZER6ZHB0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4RTcvQzYyQjI5ODY5MzQyMTFGMEE5ODc3ODNCQzRGOUFFMDIvMDI1Rjk2NjhD NjBBMTFGMEFCNEFFNDgzQzRGOUFFMDIucm9hMDUGCCsGAQUFBwEHAQH/BCYwJDAi BAIAATAcMAwDBABIOaUDBABIObQwDAMEAUg5ugMEAkg54DANBgkqhkiG9w0BAQsF AAOCAQEAkkbu0XUfQ/shu91gdLFwtja79z9IpXMlNqqe9wlwJLE4HC2vqPOB5IZ6 gWowO4yUTaKEJQ092bowVHoizS+dSKfH5lmXpTH0lJrFTHxkad92wMzwWnNC/nJ3 CRHRwwjqC7EyHu6shIcQb0yJdzD6EygpNQr2IrxKauBJWY4LmiRgfVLFiQAUa5yi Hunx0Uuul9VqPiLs7vzyhOHOvGQpK5ta7nBaM2OEDbByRm4gMKRYr6MCfY4/p4sO sZDT74iBgSOM9kdYFY2bDDpTaAAu/2QXlbip242d5HpyH0HOxPs61cfJ8Yfa+F65 BHfLWmkNje7tE2ogHiiyZ1fWy3lERw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:00:10 2026 by rpki-client