$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/2117AE6E37AF11EF844EC638C4F9AE02.roa File: 2117AE6E37AF11EF844EC638C4F9AE02.roa (raw, json) Hash identifier: fXNyTYwGL5hwQV4+C/rGk2vU+rMPw5B8cRLeFXzc6ZM= Subject key identifier: B6:EF:1D:33:96:4D:0F:D1:60:CE:E2:E5:DE:A8:5C:2A:F5:81:01:11 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: 0149 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/2117AE6E37AF11EF844EC638C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:02:32 +0000 ROA not before: Thu 31 Jul 2025 06:12:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153047 IP address blocks: 160.25.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Jul 31 06:12:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58a68-7d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d8:ff:f5:f5:3d:a4:26:29:f9:90:f3:e0:f9: fb:f3:e5:41:62:0e:7c:9f:bf:92:cc:e4:22:e1:8e: 13:b5:9f:c9:0b:ea:05:12:ca:47:bb:48:28:ea:b1: 2f:ac:fc:15:bf:d0:75:73:34:e7:8a:73:37:04:47: 0c:35:dc:04:60:31:64:65:7c:fe:8c:13:64:be:7c: 58:c5:4f:aa:63:c5:55:ef:86:b4:08:c7:14:86:95: 62:72:f3:4b:18:90:cf:a8:1a:19:7a:e7:92:ed:61: f6:ce:3e:d6:03:a1:d0:90:58:5b:e2:77:31:f1:fe: eb:d0:60:33:c2:b4:49:11:d7:06:4e:76:9c:14:10: 7b:b4:c3:1c:65:4f:97:53:5d:63:10:e6:ba:a0:63: cf:1a:ba:7a:0e:bd:b5:dd:af:5e:55:c3:aa:f5:25: a9:e9:eb:c6:de:af:20:76:1c:25:24:b9:63:a9:12: 74:f5:ac:38:15:16:5d:2e:b6:b7:6b:3d:25:75:02: ab:15:36:39:65:37:e6:b0:60:3d:4f:e6:49:ee:3b: f1:9a:5c:fe:b8:ff:00:21:ac:84:14:5e:93:1d:f2: 01:1a:bc:56:40:dd:77:15:5e:18:fb:a3:fc:67:7f: d5:a4:8c:3c:3e:1d:da:a8:0c:8b:23:cb:f0:47:75: 4d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:EF:1D:33:96:4D:0F:D1:60:CE:E2:E5:DE:A8:5C:2A:F5:81:01:11 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/2117AE6E37AF11EF844EC638C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.43.0/24 Signature Algorithm: sha256WithRSAEncryption 41:5d:09:45:d0:a4:02:ec:83:c1:b5:93:3f:ae:fb:2f:c4:b0: db:c5:ef:86:2d:6b:fc:5f:65:97:77:1f:51:a7:ed:a4:f8:ea: 11:c9:fa:7d:69:46:13:08:ab:43:39:e4:65:64:00:62:0c:53: a4:cb:d9:23:3f:e9:53:7d:24:ff:20:4b:8b:4e:be:03:0e:12: 9a:de:07:10:c0:bf:b1:68:1d:22:5c:cf:6a:21:61:27:cd:dc: 07:80:db:f5:86:99:31:7b:6e:5c:83:b1:ec:35:ec:23:8e:8d: d2:56:f7:14:59:c5:54:4c:d7:53:cb:7a:82:cd:bf:f9:a3:7b: 99:79:67:24:32:c5:30:7e:6c:13:ac:e0:16:92:ee:10:0f:b4: 5a:22:94:a4:79:75:1e:91:1e:c0:03:18:17:21:57:b5:ab:ed: d2:fa:90:74:45:71:b2:0e:ea:d3:bf:8a:60:19:99:4e:61:cf: 2a:3d:06:5b:bf:c9:60:64:ea:87:4e:d6:4a:8f:cb:b5:4b:6a: 0b:38:9b:06:b3:59:da:f3:35:ee:cd:7f:5a:66:de:34:45:11: 56:5c:d9:79:73:67:15:5f:e1:d3:0d:89:f2:94:b5:a3:38:1c: d5:56:d3:89:3c:13:f1:fe:82:5c:a6:e8:35:38:1c:b9:85:44: f7:bd:b0:c5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjUwNzMxMDYxMjEwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE2OC03ZDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutj/9fU9pCYp+ZDz4Pn78+VBYg58n7+SzOQi4Y4TtZ/JC+oFEspHu0go6rEv rPwVv9B1czTninM3BEcMNdwEYDFkZXz+jBNkvnxYxU+qY8VV74a0CMcUhpVicvNL GJDPqBoZeueS7WH2zj7WA6HQkFhb4ncx8f7r0GAzwrRJEdcGTnacFBB7tMMcZU+X U11jEOa6oGPPGrp6Dr213a9eVcOq9SWp6evG3q8gdhwlJLljqRJ09aw4FRZdLra3 az0ldQKrFTY5ZTfmsGA9T+ZJ7jvxmlz+uP8AIayEFF6THfIBGrxWQN13FV4Y+6P8 Z3/VpIw8Ph3aqAyLI8vwR3VNxQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLbvHTOW TQ/RYM7i5d6oXCr1gQERMB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI5NUEvNTEyQzcwNUUzN0FFMTFFRjhBNDU4RTM3QzRGOUFFMDIvMjExN0FFNkUz N0FGMTFFRjg0NEVDNjM4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBkrMA0GCSqGSIb3DQEBCwUAA4IBAQBBXQlF0KQC7IPBtZM/rvsv xLDbxe+GLWv8X2WXdx9Rp+2k+OoRyfp9aUYTCKtDOeRlZABiDFOky9kjP+lTfST/ IEuLTr4DDhKa3gcQwL+xaB0iXM9qIWEnzdwHgNv1hpkxe25cg7HsNewjjo3SVvcU WcVUTNdTy3qCzb/5o3uZeWckMsUwfmwTrOAWku4QD7RaIpSkeXUekR7AAxgXIVe1 q+3S+pB0RXGyDurTv4pgGZlOYc8qPQZbv8lgZOqHTtZKj8u1S2oLOJsGs1na8zXu zX9aZt40RRFWXNl5c2cVX+HTDYnylLWjOBzVVtOJPBPx/oJcpug1OBy5hUT3vbDF -----END CERTIFICATE-----Generated at Mon Mar 2 16:08:48 2026 by rpki-client