$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/6F723CC0830B11F0B82E836DC4F9AE02.roa File: 6F723CC0830B11F0B82E836DC4F9AE02.roa (raw, json) Hash identifier: kic2dalBDWVuSnTSKRWGlC83NcfnCjH4W7+pZUZCDAs= Subject key identifier: 34:5D:6F:40:DF:44:70:C9:62:DF:CA:67:FD:04:70:BA:A8:48:B9:B1 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 0147 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/6F723CC0830B11F0B82E836DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:25:05 +0000 ROA not before: Sun 31 Aug 2025 06:24:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154024 IP address blocks: 160.25.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Aug 31 06:24:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a43e31-9a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:89:a2:90:81:b7:1b:eb:28:ef:5e:5e:3a:ed: da:7f:ff:97:19:e5:4c:f1:ad:a3:c4:fb:25:79:e8: d6:82:0a:29:9c:b9:3a:5e:23:41:8b:f7:90:38:a6: a3:21:a8:ef:82:87:52:e1:a8:18:7d:2c:8f:b1:14: 0e:a6:2e:ea:3a:46:21:69:4a:c5:03:21:99:da:05: 48:b8:e6:6f:5e:10:60:4c:4f:4f:90:bf:2e:db:8b: e3:99:92:77:49:80:6f:4b:73:9d:bd:d8:ca:79:b1: 02:f1:bb:e6:cb:6d:5a:74:5d:1a:f3:af:5a:75:2f: 79:51:5c:11:d7:f6:f4:7e:14:9c:df:8a:19:4d:58: 36:f5:9f:0b:d2:0d:96:0d:49:dc:9f:0d:5c:84:b0: 89:e2:a2:e0:fb:d2:c7:c2:1b:b7:5c:81:08:e0:2f: cb:2b:83:a7:db:d1:8d:8d:94:42:d9:c6:6b:e2:d3: 16:44:ba:a2:a7:c7:fe:4f:b9:d5:9a:23:57:9c:2d: 81:20:2e:59:00:88:1e:7a:43:de:23:c0:d7:ad:e9: 4b:24:ac:f0:2b:7d:44:92:37:ff:4b:dd:36:8e:54: 00:41:7c:48:57:e7:de:b4:af:b3:35:a5:d0:a8:3d: 3b:21:d1:d1:47:65:34:a7:45:3d:3d:21:4c:41:fd: db:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5D:6F:40:DF:44:70:C9:62:DF:CA:67:FD:04:70:BA:A8:48:B9:B1 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/6F723CC0830B11F0B82E836DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.224.0/23 Signature Algorithm: sha256WithRSAEncryption 40:eb:d5:a4:ba:11:84:61:f8:52:2a:90:95:bd:cd:6b:41:e0: 17:f8:b3:ba:be:e7:f5:0e:13:36:07:b8:4f:f1:64:eb:69:32: 14:79:ad:69:bb:c3:05:dd:d0:ee:b1:f4:b9:ab:0d:83:a2:80: 3c:a8:10:89:f1:20:85:32:1c:3c:90:e1:19:34:da:9b:e3:03: c3:7d:0a:e7:82:7d:c4:e7:2e:66:a6:32:65:82:f3:c9:9c:38: d7:7b:45:bb:06:8d:53:f8:72:c7:ec:a9:ac:51:b4:f8:6e:fa: 03:60:ed:62:49:a6:d7:91:98:3f:cb:66:09:3b:f6:58:ed:8f: bb:24:f4:bb:28:b3:25:0f:e6:3c:ad:40:dd:cc:cf:aa:af:65: d1:87:25:c7:b3:3c:8f:b4:88:b1:ab:a9:0d:db:dc:51:a9:62: 69:27:da:01:36:ee:c1:56:ec:a4:7f:09:fc:b8:39:fc:bc:89: 19:d9:58:fd:89:67:f9:63:46:cc:44:ec:07:64:49:1a:9a:5d: 13:6d:c5:88:94:11:5b:32:4a:06:50:47:98:9d:85:12:53:09: ed:fa:26:da:8a:fe:14:3f:cd:b9:42:ba:a1:bc:6a:6d:ac:a3: b4:ee:e4:ee:e9:0d:15:bb:9b:25:68:6b:88:51:64:04:8f:0c: ec:2e:c8:fb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwODMxMDYyNDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2UzMS05YTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYmikIG3G+so715eOu3af/+XGeVM8a2jxPsleejWggopnLk6XiNBi/eQOKaj IajvgodS4agYfSyPsRQOpi7qOkYhaUrFAyGZ2gVIuOZvXhBgTE9PkL8u24vjmZJ3 SYBvS3OdvdjKebEC8bvmy21adF0a869adS95UVwR1/b0fhSc34oZTVg29Z8L0g2W DUncnw1chLCJ4qLg+9LHwhu3XIEI4C/LK4On29GNjZRC2cZr4tMWRLqip8f+T7nV miNXnC2BIC5ZAIgeekPeI8DXrelLJKzwK31Ekjf/S902jlQAQXxIV+fetK+zNaXQ qD07IdHRR2U0p0U9PSFMQf3biwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDRdb0Df RHDJYt/KZ/0EcLqoSLmxMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA4NTUvNTA0Q0ZGRTI0NDk2MTFFRjhFODRFNjNEQzRGOUFFMDIvNkY3MjNDQzA4 MzBCMTFGMEI4MkU4MzZEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBngMA0GCSqGSIb3DQEBCwUAA4IBAQBA69WkuhGEYfhSKpCVvc1r QeAX+LO6vuf1DhM2B7hP8WTraTIUea1pu8MF3dDusfS5qw2DooA8qBCJ8SCFMhw8 kOEZNNqb4wPDfQrngn3E5y5mpjJlgvPJnDjXe0W7Bo1T+HLH7KmsUbT4bvoDYO1i SabXkZg/y2YJO/ZY7Y+7JPS7KLMlD+Y8rUDdzM+qr2XRhyXHszyPtIixq6kN29xR qWJpJ9oBNu7BVuykfwn8uDn8vIkZ2Vj9iWf5Y0bMROwHZEkaml0TbcWIlBFbMkoG UEeYnYUSUwnt+ibaiv4UP825QrqhvGptrKO07uTu6Q0Vu5slaGuIUWQEjwzsLsj7 -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:11 2026 by rpki-client