$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C585A87A3AAC11EFB29D2473C4F9AE02.roa File: C585A87A3AAC11EFB29D2473C4F9AE02.roa (raw, json) Hash identifier: DeXYb63esj571K+u4n8mwKBaB0x3pgeLIjs3ANgRKA0= Subject key identifier: F5:15:A1:BC:B2:0E:28:FA:18:24:4B:2E:89:A1:28:C5:E2:DC:B1:04 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2BE3 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C585A87A3AAC11EFB29D2473C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:44:19 +0000 ROA not before: Thu 08 May 2025 15:53:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150588 IP address blocks: 160.25.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11235 (0x2be3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 8 15:53:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c143-6673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:39:c1:5b:8b:a5:28:2b:b7:08:be:5d:34:ad: 42:bd:0e:96:c9:a4:f4:9c:87:91:d9:16:46:f6:e9: 15:c1:9b:c9:7a:8a:c1:7f:8a:85:a3:53:94:4c:17: 8a:31:e4:6a:84:e5:6c:f6:b7:d7:7c:d5:65:c4:ca: e1:e9:fb:2c:89:1a:2b:bd:bc:d7:ba:a0:18:7b:93: 02:ff:af:fc:3a:c1:a3:3c:7a:6c:a8:30:45:36:0a: 81:66:65:f8:e6:a2:d2:d1:96:1d:8e:57:dd:d0:b2: 27:8b:aa:53:43:93:e4:2a:72:40:13:b1:ee:bf:b9: 56:98:f6:ea:b3:f7:9b:7e:ce:c9:fd:62:ca:b1:26: 9a:a0:09:8c:31:f4:4d:19:48:f9:71:65:5e:b3:25: b8:dd:39:51:44:a3:ee:45:64:5e:16:86:59:fb:18: 17:fb:41:31:a6:36:f9:16:00:55:48:39:79:d1:6b: f0:79:ce:10:69:31:09:ef:cf:8b:10:6f:99:e3:73: 57:23:2a:2d:62:ac:ce:60:37:7d:e0:84:11:ca:51: b0:73:43:ad:05:d4:3f:d8:6a:a8:ce:31:6f:f0:3c: 18:c6:84:e5:7a:b0:15:7f:a3:4c:91:da:05:9e:dd: d7:26:87:96:83:b7:42:b6:01:ab:d1:40:9d:14:21: 44:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:15:A1:BC:B2:0E:28:FA:18:24:4B:2E:89:A1:28:C5:E2:DC:B1:04 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C585A87A3AAC11EFB29D2473C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.63.0/24 Signature Algorithm: sha256WithRSAEncryption cc:32:5e:20:ee:85:50:20:7c:26:8d:2f:22:03:f1:1c:28:c4: 30:63:a4:05:18:5a:c3:15:61:ce:c8:24:04:d6:07:71:4a:d5: 80:da:d5:e4:49:3e:04:57:91:50:ec:bb:e2:ef:c4:92:79:f6: 6c:4b:67:c5:68:87:51:0c:bd:5c:f7:57:05:56:cc:f5:fe:0f: b2:83:27:f7:4b:7f:0d:ec:98:4a:dd:d1:19:98:3a:d6:be:33: 7e:a4:24:8f:2a:d7:4b:50:53:1a:41:f5:3e:4d:47:39:5e:b0: ec:95:68:cd:9c:c1:89:73:8e:22:23:ef:6b:48:33:e6:88:7b: 54:67:26:fc:5d:99:ac:b9:2b:59:ea:75:d3:3e:42:a1:48:56: 90:a7:8b:67:32:54:de:ab:92:e2:6b:fd:92:10:75:94:70:8e: e0:bc:fa:72:c1:fc:72:80:e1:3a:81:45:b8:86:5e:a4:3a:34: d9:d2:43:a3:bf:c4:db:9c:1f:40:d0:2b:8d:2c:13:43:fe:b2: f3:98:f7:02:42:a4:c5:42:32:f9:31:3d:79:0c:7d:7a:01:d7: 9b:f1:71:f4:15:47:59:fb:f2:4e:ce:5e:64:b3:40:fc:a2:74: 6d:4c:48:05:a6:99:89:bc:05:0f:51:37:98:49:a8:70:08:dd: 90:29:41:56 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICK+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTA4MTU1MzI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzE0My02NjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTnBW4ulKCu3CL5dNK1CvQ6WyaT0nIeR2RZG9ukVwZvJeorBf4qFo1OUTBeK MeRqhOVs9rfXfNVlxMrh6fssiRorvbzXuqAYe5MC/6/8OsGjPHpsqDBFNgqBZmX4 5qLS0ZYdjlfd0LIni6pTQ5PkKnJAE7Huv7lWmPbqs/ebfs7J/WLKsSaaoAmMMfRN GUj5cWVesyW43TlRRKPuRWReFoZZ+xgX+0Expjb5FgBVSDl50Wvwec4QaTEJ78+L EG+Z43NXIyotYqzOYDd94IQRylGwc0OtBdQ/2GqozjFv8DwYxoTlerAVf6NMkdoF nt3XJoeWg7dCtgGr0UCdFCFEBwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPUVobyy Dij6GCRLLomhKMXi3LEEMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzU4NUE4N0Ez QUFDMTFFRkIyOUQyNDczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBk/MA0GCSqGSIb3DQEBCwUAA4IBAQDMMl4g7oVQIHwmjS8iA/Ec KMQwY6QFGFrDFWHOyCQE1gdxStWA2tXkST4EV5FQ7Lvi78SSefZsS2fFaIdRDL1c 91cFVsz1/g+ygyf3S38N7JhK3dEZmDrWvjN+pCSPKtdLUFMaQfU+TUc5XrDslWjN nMGJc44iI+9rSDPmiHtUZyb8XZmsuStZ6nXTPkKhSFaQp4tnMlTeq5Lia/2SEHWU cI7gvPpywfxygOE6gUW4hl6kOjTZ0kOjv8TbnB9A0CuNLBND/rLzmPcCQqTFQjL5 MT15DH16Adeb8XH0FUdZ+/JOzl5ks0D8onRtTEgFppmJvAUPUTeYSahwCN2QKUFW -----END CERTIFICATE-----Generated at Mon Mar 2 17:08:09 2026 by rpki-client