$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/E098BB864FA311F0B96FBA3DC4F9AE02.roa File: E098BB864FA311F0B96FBA3DC4F9AE02.roa (raw, json) Hash identifier: OPdh+VvdJ8rvY5Hnhte8AjyqGibUOoE1fm+ikF6YCWY= Subject key identifier: 7B:8F:18:EC:96:D8:38:84:57:79:F1:40:70:3A:71:21:12:B8:CC:A9 Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: 0137 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/E098BB864FA311F0B96FBA3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:27:32 +0000 ROA not before: Tue 02 Dec 2025 20:53:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141413 IP address blocks: 160.25.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Dec 2 20:53:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a430b4-b7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:73:ff:9f:5e:e3:7e:90:b4:2d:b1:4e:2b:b6: 9e:cd:df:ea:c0:b8:d6:d8:f1:50:7b:a0:7f:7e:10: 50:4d:d6:af:4c:31:4f:21:ce:97:f1:1a:13:b5:c6: d4:df:f8:8d:1c:15:65:b3:83:ef:d5:c4:fb:9c:dc: 2c:61:6c:88:24:06:f1:01:2b:51:f7:de:d1:ee:a0: bb:2a:00:68:8a:ff:a2:04:be:82:91:12:85:ba:bb: e9:10:49:9a:90:1a:31:44:02:ec:56:36:fa:e3:c1: 15:d8:e2:7c:02:9c:be:52:40:49:4c:e3:65:0b:f0: 79:34:38:2e:b4:dd:85:0c:a9:fc:b7:e3:ba:21:ee: 0e:ba:fa:09:d1:19:23:d5:f1:71:12:77:b0:5c:1a: 5a:13:73:4f:ea:97:6e:fa:69:0d:fb:60:ad:f9:a7: 90:f7:5c:12:86:cf:62:3d:f0:04:bc:c9:7d:17:b6: 6c:57:1a:10:4f:e0:24:63:99:61:87:0e:97:78:9f: 85:cb:cf:6f:2c:ce:9d:d0:95:6f:48:d4:eb:76:76: 10:3f:af:20:84:57:5b:3c:fa:bb:e4:b0:60:c0:f5: 88:b3:8a:79:13:40:40:0b:a8:d5:29:a3:fc:21:bf: 79:f9:29:9e:e0:67:d4:f6:89:cf:20:d8:41:33:d9: 1e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8F:18:EC:96:D8:38:84:57:79:F1:40:70:3A:71:21:12:B8:CC:A9 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/E098BB864FA311F0B96FBA3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.228.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:37:a1:d6:a1:2b:ea:4e:89:31:9b:b8:d2:ce:e5:4e:71:92: 88:c9:b0:cb:e4:15:45:5d:a0:fd:66:6d:68:82:3c:3f:ca:c8: 9e:7f:97:07:57:a6:f6:d4:0c:af:f3:9f:46:94:54:58:c4:c0: ea:6a:2b:1b:17:74:ed:05:93:ee:de:c8:c8:83:4e:80:13:9a: c1:c2:47:a4:6b:fc:f3:ca:a2:5f:34:58:bf:a8:3d:7a:ae:0d: 18:02:10:24:0d:be:d9:d7:5d:e3:4f:5d:2c:75:0e:af:bc:ae: 17:e2:ec:e4:17:e2:25:47:c8:89:fe:0f:30:dc:56:6f:67:91: 38:6e:e2:b9:dc:79:b1:a4:4b:3b:ab:f5:d6:82:46:23:26:5d: ab:96:63:4e:a0:34:45:14:59:4c:cb:d5:38:e9:6f:61:05:97: 3a:89:fd:b1:d0:11:ff:dc:8c:d3:e8:07:d1:9a:8d:be:10:80: cc:e8:8a:03:e1:53:59:ce:cd:ae:b1:c1:00:3a:42:48:20:aa: d4:c4:66:29:69:1d:2f:c4:d0:df:1f:90:f2:1e:df:d7:0f:5f: b2:c3:69:1a:74:59:b3:c1:d9:aa:81:b5:ba:72:73:e8:5d:18: 63:9a:71:73:8c:d3:3c:7d:7e:3f:a5:ef:0a:59:1b:0d:af:84: 76:3d:8d:7c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2 Mzc1NDFFNUQwHhcNMjUxMjAyMjA1MzUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzBiNC1iN2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunP/n17jfpC0LbFOK7aezd/qwLjW2PFQe6B/fhBQTdavTDFPIc6X8RoTtcbU 3/iNHBVls4Pv1cT7nNwsYWyIJAbxAStR997R7qC7KgBoiv+iBL6CkRKFurvpEEma kBoxRALsVjb648EV2OJ8Apy+UkBJTONlC/B5NDgutN2FDKn8t+O6Ie4OuvoJ0Rkj 1fFxEnewXBpaE3NP6pdu+mkN+2Ct+aeQ91wShs9iPfAEvMl9F7ZsVxoQT+AkY5lh hw6XeJ+Fy89vLM6d0JVvSNTrdnYQP68ghFdbPPq75LBgwPWIs4p5E0BAC6jVKaP8 Ib95+Sme4GfU9onPINhBM9keMQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHuPGOyW 2DiEV3nxQHA6cSESuMypMB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0 OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUEwNTMvODcyMDMwNUU0NDk5MTFFRkJBQzY3MTUzQzRGOUFFMDIvRTA5OEJCODY0 RkEzMTFGMEI5NkZCQTNEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBnkMA0GCSqGSIb3DQEBCwUAA4IBAQAvN6HWoSvqTokxm7jSzuVO cZKIybDL5BVFXaD9Zm1ogjw/ysief5cHV6b21Ayv859GlFRYxMDqaisbF3TtBZPu 3sjIg06AE5rBwkeka/zzyqJfNFi/qD16rg0YAhAkDb7Z113jT10sdQ6vvK4X4uzk F+IlR8iJ/g8w3FZvZ5E4buK53HmxpEs7q/XWgkYjJl2rlmNOoDRFFFlMy9U46W9h BZc6if2x0BH/3IzT6AfRmo2+EIDM6IoD4VNZzs2uscEAOkJIIKrUxGYpaR0vxNDf H5DyHt/XD1+yw2kadFmzwdmqgbW6cnPoXRhjmnFzjNM8fX4/pe8KWRsNr4R2PY18 -----END CERTIFICATE-----Generated at Mon Mar 2 15:00:39 2026 by rpki-client