$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/4996A7209D9211EFAD3DCF45C4F9AE02.roa File: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (raw, json) Hash identifier: /TeFmAq6WUrTiuCuPlwLIq4bJylbmUbGhfodPgyaENY= Subject key identifier: CB:E5:B1:33:17:C2:3D:69:C7:FA:E3:FE:8A:B3:73:FE:6C:4C:FD:E6 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: FF Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/4996A7209D9211EFAD3DCF45C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:24:39 +0000 ROA not before: Sat 31 May 2025 06:58:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153167 IP address blocks: 160.25.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: May 31 06:58:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3f7c7-c90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c1:87:f1:c6:f6:59:c4:af:51:bc:26:cb:9c: 50:14:13:ae:69:4b:27:0e:b7:c0:68:9f:ad:32:c4: 68:c5:fd:a9:f1:bc:58:19:14:f3:5a:ec:9a:5f:ed: 97:c3:19:8c:d5:82:b2:d4:5d:20:00:c6:8e:a3:d8: ad:ae:4c:ea:0d:55:09:fe:6b:4d:74:ab:c6:e4:a1: af:2f:76:49:ef:70:7f:0c:25:6c:e2:bf:1f:86:3f: d3:ed:cd:09:2a:cd:9a:9f:cf:6f:e5:8d:45:ae:f7: eb:2c:04:2b:6a:f2:ca:08:69:ec:7c:a3:b0:22:1e: 18:8d:10:3d:c3:45:2d:18:45:9f:42:cc:72:08:a7: bf:81:31:12:0b:ca:97:4c:52:4f:4a:5c:ba:88:2f: 55:b4:0c:b1:0e:84:88:3a:f0:14:99:7f:b9:1d:b8: 2f:d9:21:83:2a:2f:d8:3d:e8:26:68:57:71:d5:e7: b1:c4:2a:49:01:34:26:9e:36:43:c9:21:be:3a:b2: 46:58:ea:27:72:77:71:fe:32:67:69:1e:e5:bd:36: 11:6c:be:83:a1:1c:53:db:21:bf:39:3e:ee:94:83: 8e:f2:13:06:42:93:83:56:4e:88:20:c7:98:b4:67: 26:a3:07:40:9d:89:71:e0:dd:f0:77:8c:bc:d4:81: 6f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E5:B1:33:17:C2:3D:69:C7:FA:E3:FE:8A:B3:73:FE:6C:4C:FD:E6 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/4996A7209D9211EFAD3DCF45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.210.0/23 Signature Algorithm: sha256WithRSAEncryption d1:c5:8a:73:ff:03:47:af:ff:4a:10:6d:50:8c:d1:d6:a9:fc: 74:0c:38:2e:c8:91:b6:b7:a6:33:0d:35:6a:c0:38:c8:33:40: 0e:98:33:ab:a6:01:6d:66:41:52:dc:fc:bb:b3:e7:2a:b1:2b: 2b:71:74:cc:ee:98:b9:5d:20:85:a4:3e:2a:05:56:a5:d9:04: 8e:5d:f5:1f:d3:a9:92:ab:ea:da:00:87:7c:fe:72:3f:5f:4c: 4a:7c:85:0f:48:5b:61:66:20:df:12:6a:7c:65:3e:3e:58:06: 49:75:30:53:93:7f:f5:50:e2:d7:0d:1c:47:f2:8e:dc:41:5c: 66:25:77:3e:3c:53:b6:b1:f0:cc:5d:a5:84:9e:77:aa:ef:fc: 51:aa:5c:01:cc:92:26:4b:91:6b:87:18:6e:8c:f6:c5:25:28: a5:6b:78:ca:0b:a7:5c:05:0b:99:02:16:d5:10:19:1c:1d:4b: a3:b8:24:15:6c:e9:00:89:5a:7e:9e:d5:30:38:82:3d:95:f4: 73:ed:5c:50:89:22:11:d8:bb:ca:dd:88:34:9d:48:1f:22:4d: d9:68:05:48:57:12:c2:82:19:5c:72:6a:27:9e:fb:62:31:8d: 21:af:b9:87:bd:65:f7:5e:fe:62:9c:30:c4:68:78:e5:8a:d4: 70:7b:a5:fa -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjUwNTMxMDY1ODUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjdjNy1jOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8GH8cb2WcSvUbwmy5xQFBOuaUsnDrfAaJ+tMsRoxf2p8bxYGRTzWuyaX+2X wxmM1YKy1F0gAMaOo9itrkzqDVUJ/mtNdKvG5KGvL3ZJ73B/DCVs4r8fhj/T7c0J Ks2an89v5Y1FrvfrLAQravLKCGnsfKOwIh4YjRA9w0UtGEWfQsxyCKe/gTESC8qX TFJPSly6iC9VtAyxDoSIOvAUmX+5Hbgv2SGDKi/YPegmaFdx1eexxCpJATQmnjZD ySG+OrJGWOoncndx/jJnaR7lvTYRbL6DoRxT2yG/OT7ulIOO8hMGQpODVk6IIMeY tGcmowdAnYlx4N3wd4y81IFvVQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMvlsTMX wj1px/rj/oqzc/5sTP3mMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEwMjUvOEQ3QjlCRjI5RDg0MTFFRjgxN0UxNDIwQzRGOUFFMDIvNDk5NkE3MjA5 RDkyMTFFRkFEM0RDRjQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBnSMA0GCSqGSIb3DQEBCwUAA4IBAQDRxYpz/wNHr/9KEG1QjNHW qfx0DDguyJG2t6YzDTVqwDjIM0AOmDOrpgFtZkFS3Py7s+cqsSsrcXTM7pi5XSCF pD4qBVal2QSOXfUf06mSq+raAId8/nI/X0xKfIUPSFthZiDfEmp8ZT4+WAZJdTBT k3/1UOLXDRxH8o7cQVxmJXc+PFO2sfDMXaWEnneq7/xRqlwBzJImS5FrhxhujPbF JSila3jKC6dcBQuZAhbVEBkcHUujuCQVbOkAiVp+ntUwOII9lfRz7VxQiSIR2LvK 3Yg0nUgfIk3ZaAVIVxLCghlccmonnvtiMY0hr7mHvWX3Xv5inDDEaHjlitRwe6X6 -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:19 2026 by rpki-client