$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa File: 20A6C35C37AF11EF844EC638C4F9AE02.roa (raw, json) Hash identifier: EdoKG/rO2TUcNqvrT3rmtowwCMBDjmlbd0wrAkkItCE= Subject key identifier: B1:E4:DA:5B:DD:71:A0:19:F5:47:8C:40:CE:5B:B4:05:13:3F:BA:C5 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: 0148 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:02:31 +0000 ROA not before: Thu 31 Jul 2025 06:12:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137570 IP address blocks: 160.25.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Jul 31 06:12:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58a67-525f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:74:fb:05:38:58:bd:3c:eb:1a:50:3a:8a:e5: a1:e2:3e:28:5b:3c:70:5b:81:2f:75:de:7a:83:e2: 5b:57:f2:38:2a:b6:3f:e0:04:d4:f3:00:39:b9:2b: 64:91:3b:39:8f:3b:7c:95:2f:15:87:ca:82:18:68: 6e:f3:8d:65:5d:23:13:d0:0e:1e:ef:36:ad:43:c7: da:26:2d:ea:78:47:7b:0c:d1:38:ea:e6:24:3b:53: 17:e1:3f:3f:ef:6a:60:b9:78:85:1b:77:a0:aa:be: 76:a3:ff:ca:6b:a0:e0:68:ad:40:a9:e9:61:a6:a2: c0:d3:9d:e8:38:bd:ea:24:fa:d0:4a:b3:13:eb:17: 1b:27:91:0c:6c:e9:a3:81:f5:ae:7a:58:2e:64:00: 44:7d:20:e2:fa:97:f7:17:31:a2:c2:d9:ba:7e:6e: f4:b5:92:a5:0c:a2:c5:ba:3f:d3:b0:a2:9f:f8:37: 79:87:5e:0c:77:89:56:d7:ee:ae:2b:2c:d8:0d:be: 96:6b:3e:7d:a1:c8:9d:dc:64:76:f0:91:19:68:9b: 29:32:04:b0:6b:10:d6:00:30:02:c6:fe:13:f3:30: 2a:ec:81:a0:03:29:88:cd:6d:87:80:9c:88:b8:eb: d4:65:75:a5:2a:ec:6e:fd:df:f9:21:0a:b6:fc:c5: 8c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E4:DA:5B:DD:71:A0:19:F5:47:8C:40:CE:5B:B4:05:13:3F:BA:C5 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.42.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:2e:2c:8a:6a:a6:bd:95:ae:27:03:31:01:f1:86:37:75:f7: 52:83:77:9b:8c:9c:dc:d4:ff:07:57:de:b0:ba:3d:31:96:a0: 06:43:0a:c8:c1:f6:33:34:fe:8d:de:4a:ca:19:9e:26:9b:0b: f1:b7:2f:87:56:b1:de:65:da:5c:0e:81:94:d5:6b:c8:29:aa: ed:3b:07:70:17:22:d9:6f:b4:5b:0d:f6:ce:8e:f0:2b:31:3a: b0:04:af:7f:e3:90:7b:4e:dd:50:96:39:7c:a7:37:74:af:af: b6:c6:2b:eb:85:56:5c:c1:14:cc:8e:a6:2c:0f:d4:0b:82:59: 15:76:02:ff:74:07:a0:d6:8e:0f:e0:f9:90:43:e5:5a:09:f6: 14:90:81:35:77:54:f0:09:14:c0:d3:78:b3:e7:b4:90:ae:77: ed:be:db:31:0e:c1:d3:ff:86:27:b6:73:be:3e:0f:8a:79:02: 38:11:11:06:b7:0f:d9:16:7b:56:87:c4:e1:27:76:20:ea:24: b6:65:2c:c0:78:53:df:55:55:fd:01:6f:bf:21:ee:eb:95:ea: 39:51:93:16:dd:31:6d:92:3f:4f:67:43:75:15:d4:e0:35:3d: 69:05:3c:ca:ab:50:1d:a7:60:06:48:a9:b9:a3:b7:ca:e2:58: b7:5e:8f:50 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjUwNzMxMDYxMjA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE2Ny01MjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXT7BThYvTzrGlA6iuWh4j4oWzxwW4Evdd56g+JbV/I4KrY/4ATU8wA5uStk kTs5jzt8lS8Vh8qCGGhu841lXSMT0A4e7zatQ8faJi3qeEd7DNE46uYkO1MX4T8/ 72pguXiFG3egqr52o//Ka6DgaK1AqelhpqLA053oOL3qJPrQSrMT6xcbJ5EMbOmj gfWuelguZABEfSDi+pf3FzGiwtm6fm70tZKlDKLFuj/TsKKf+Dd5h14Md4lW1+6u KyzYDb6Waz59ocid3GR28JEZaJspMgSwaxDWADACxv4T8zAq7IGgAymIzW2HgJyI uOvUZXWlKuxu/d/5IQq2/MWMgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLHk2lvd caAZ9UeMQM5btAUTP7rFMB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI5NUEvNTEyQzcwNUUzN0FFMTFFRjhBNDU4RTM3QzRGOUFFMDIvMjBBNkMzNUMz N0FGMTFFRjg0NEVDNjM4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBkqMA0GCSqGSIb3DQEBCwUAA4IBAQA9LiyKaqa9la4nAzEB8YY3 dfdSg3ebjJzc1P8HV96wuj0xlqAGQwrIwfYzNP6N3krKGZ4mmwvxty+HVrHeZdpc DoGU1WvIKartOwdwFyLZb7RbDfbOjvArMTqwBK9/45B7Tt1Qljl8pzd0r6+2xivr hVZcwRTMjqYsD9QLglkVdgL/dAeg1o4P4PmQQ+VaCfYUkIE1d1TwCRTA03iz57SQ rnftvtsxDsHT/4YntnO+Pg+KeQI4EREGtw/ZFntWh8ThJ3Yg6iS2ZSzAeFPfVVX9 AW+/Ie7rleo5UZMW3TFtkj9PZ0N1FdTgNT1pBTzKq1Adp2AGSKm5o7fK4li3Xo9Q -----END CERTIFICATE-----Generated at Mon Mar 2 16:08:48 2026 by rpki-client