$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/21F94DCC3A9011EFBD977F28C4F9AE02.roa File: 21F94DCC3A9011EFBD977F28C4F9AE02.roa (raw, json) Hash identifier: xMi2pqTB1PEoJrjX/j0VW4xHWFBNUHWzGa2QPc/HSm0= Subject key identifier: 98:FC:C2:67:6D:4A:67:9E:93:86:C9:B1:88:DC:68:20:8B:14:68:74 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2BE6 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/21F94DCC3A9011EFBD977F28C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:44:23 +0000 ROA not before: Thu 08 May 2025 15:53:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151101 IP address blocks: 160.25.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11238 (0x2be6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:53:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c147-2d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:75:dd:12:85:3b:f0:81:47:cd:46:a6:ce:a8: fc:d5:4a:a1:42:b8:da:57:88:30:e3:ec:d6:60:1e: 84:d3:ec:10:e8:c3:69:45:32:6a:71:03:79:88:bf: 57:5e:7d:19:08:08:c6:8c:b1:74:24:34:cc:0e:0c: 57:6e:65:74:34:5a:b9:50:fd:b6:6f:b5:ce:4e:0b: 29:c0:a2:03:2a:ec:f6:1f:ba:0d:ab:f1:4d:c7:62: b4:fd:ae:21:01:33:0e:f5:7d:5b:88:7b:d4:88:a6: e9:69:c2:ee:44:60:6b:74:b2:52:d5:34:d1:b9:c6: 59:23:02:4c:1e:14:53:04:ed:7c:f4:d5:53:35:77: 9a:22:6b:8a:c5:86:9f:15:0f:bc:48:2d:ec:16:1f: cd:6f:b8:6f:a3:70:4e:ef:7c:42:ed:94:bb:3e:1c: 46:e6:af:8f:75:43:2e:72:e2:a2:b3:54:07:e0:2e: 14:6e:46:3d:c1:8f:4f:b1:f2:ef:55:5f:20:08:42: 51:9b:8b:61:56:7a:37:73:46:f6:f7:8e:52:58:46: 81:ec:14:c7:fe:77:82:ce:82:6c:b6:20:b6:c3:dc: 7d:fc:49:77:b1:e5:7f:ef:f3:ca:49:83:46:df:a3: e0:4e:f2:39:50:8f:eb:ea:5e:e5:70:a5:23:d8:44: 66:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FC:C2:67:6D:4A:67:9E:93:86:C9:B1:88:DC:68:20:8B:14:68:74 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/21F94DCC3A9011EFBD977F28C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.63.0/24 Signature Algorithm: sha256WithRSAEncryption cf:04:f8:1e:5b:79:89:b2:0f:1c:f1:7d:92:cb:e2:e5:f8:4f: 09:87:61:42:84:d7:e9:c0:92:db:84:4e:0c:c9:d9:20:ba:a1: d1:8c:f1:7f:71:54:57:21:7a:8c:f7:bd:70:7b:95:b6:39:a9: 9d:e3:26:8a:31:1e:c3:1e:68:5f:6a:92:1a:fc:3f:df:1a:71: 28:b6:d8:63:43:85:25:99:ec:73:68:9d:d7:a6:ef:fd:24:fe: b6:b8:2e:98:d7:3d:88:9a:fc:56:53:27:5d:35:c3:b4:56:44: fb:f7:dd:7e:85:20:f7:66:1c:be:91:47:7e:de:81:3e:6d:43: 36:ab:a6:59:90:4d:b8:c0:57:c9:a4:15:ae:37:20:79:b4:28: 4d:76:78:5f:eb:a3:43:30:55:4d:9d:b6:35:cd:f3:5e:2f:a7: 0e:64:09:4a:af:93:f0:e6:64:d7:36:d3:8b:eb:81:3a:38:c0: 6b:3a:fd:c7:52:06:93:0a:0f:0c:39:f3:99:60:3d:c2:44:77: 95:f2:68:5c:f7:40:df:a5:0d:43:f0:49:5f:8c:ef:95:39:88: 22:cc:87:0b:a6:bf:cb:66:3a:81:46:d4:83:14:d3:83:a5:4a: ac:5a:90:2c:2d:62:ba:1c:83:b3:2d:e1:9e:e8:b1:97:38:24: 81:2c:66:c2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICK+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MzI4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzE0Ny0yZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HXdEoU78IFHzUamzqj81UqhQrjaV4gw4+zWYB6E0+wQ6MNpRTJqcQN5iL9X Xn0ZCAjGjLF0JDTMDgxXbmV0NFq5UP22b7XOTgspwKIDKuz2H7oNq/FNx2K0/a4h ATMO9X1biHvUiKbpacLuRGBrdLJS1TTRucZZIwJMHhRTBO189NVTNXeaImuKxYaf FQ+8SC3sFh/Nb7hvo3BO73xC7ZS7PhxG5q+PdUMucuKis1QH4C4UbkY9wY9PsfLv VV8gCEJRm4thVno3c0b2945SWEaB7BTH/neCzoJstiC2w9x9/El3seV/7/PKSYNG 36PgTvI5UI/r6l7lcKUj2ERmQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJj8wmdt Smeek4bJsYjcaCCLFGh0MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjFGOTREQ0Mz QTkwMTFFRkJEOTc3RjI4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBk/MA0GCSqGSIb3DQEBCwUAA4IBAQDPBPgeW3mJsg8c8X2Sy+Ll +E8Jh2FChNfpwJLbhE4MydkguqHRjPF/cVRXIXqM971we5W2Oamd4yaKMR7DHmhf apIa/D/fGnEotthjQ4UlmexzaJ3Xpu/9JP62uC6Y1z2ImvxWUyddNcO0VkT7991+ hSD3Zhy+kUd+3oE+bUM2q6ZZkE24wFfJpBWuNyB5tChNdnhf66NDMFVNnbY1zfNe L6cOZAlKr5Pw5mTXNtOL64E6OMBrOv3HUgaTCg8MOfOZYD3CRHeV8mhc90DfpQ1D 8ElfjO+VOYgizIcLpr/LZjqBRtSDFNODpUqsWpAsLWK6HIOzLeGe6LGXOCSBLGbC -----END CERTIFICATE-----Generated at Mon Mar 2 15:09:41 2026 by rpki-client