$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/25D2B94CDECD11EFA79E4065C4F9AE02.roa File: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (raw, json) Hash identifier: akLA24IwRVeRV87VrcCP9mJOdJA7ntWRSTCaXT2ZWc8= Subject key identifier: 09:C2:FE:2B:C9:59:26:A3:E5:44:CA:84:DC:69:BE:97:C2:04:9A:5F Certificate issuer: /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Certificate serial: E8 Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/25D2B94CDECD11EFA79E4065C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:48:59 +0000 ROA not before: Sun 14 Dec 2025 17:34:58 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59339 IP address blocks: 160.250.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Validity Not Before: Dec 14 17:34:58 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a443cb-8385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:0a:d4:81:fe:6a:84:8b:ac:bd:d5:63:0e:91: 12:f9:d4:d0:86:60:4c:77:99:1c:46:e0:79:bb:c9: 46:b0:bd:a3:4c:28:5c:a2:77:c4:3c:47:d7:c9:19: c8:7c:46:ce:d1:a9:9c:2f:f3:47:fb:1b:fd:6c:55: 16:f6:d4:57:dd:aa:fe:33:8e:a6:3d:e0:4f:73:c7: 64:eb:6d:69:60:e2:fa:e1:8a:a5:90:47:4f:b2:e8: 17:e1:dc:18:6f:0d:35:01:03:4a:43:7f:22:f2:d3: 36:db:31:9e:e1:a0:22:20:88:b4:bd:16:9b:48:f7: 03:da:b5:f7:a8:8e:b5:50:54:4f:bf:9e:bb:0b:ae: 23:42:96:54:75:b7:11:08:a0:c0:f3:a4:23:4e:43: 51:56:5d:33:9b:f7:c0:16:0f:f5:de:a6:f6:ba:7e: fd:a8:4b:fd:77:b4:66:d9:43:ed:fb:37:06:9b:fe: 8b:45:27:42:73:b8:1f:65:a7:c5:0a:4f:13:65:78: 73:c4:3f:8f:78:00:fa:81:67:6a:0d:41:2d:eb:91: 79:a4:12:d4:1a:a9:ad:6f:71:e7:e1:98:32:b1:80: f7:9f:26:76:45:18:f1:d6:c1:a1:83:e4:ba:07:96: 44:7a:6c:5f:0d:2e:b2:b2:62:96:d4:0a:30:cb:fb: 87:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C2:FE:2B:C9:59:26:A3:E5:44:CA:84:DC:69:BE:97:C2:04:9A:5F X509v3 Authority Key Identifier: keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/25D2B94CDECD11EFA79E4065C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.244.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:cd:e2:d3:47:83:ad:28:56:0c:73:90:6c:10:e9:a6:a8:ea: ea:d8:c8:04:c8:47:ad:76:c4:11:e4:19:05:2d:ad:d5:55:02: 94:cd:90:d4:08:33:ed:db:b9:01:17:06:2b:e1:a8:85:40:25: d0:62:bb:2e:f0:11:16:4f:18:54:0d:22:da:db:08:93:c4:8c: 3f:9a:3a:3f:fc:c6:08:e5:1f:bc:0d:61:70:5b:00:75:a2:06: dc:e6:c3:28:6e:ec:76:16:d2:43:de:b3:e1:9d:d8:d5:42:4b: d6:45:24:f7:d5:c7:33:90:95:73:2a:97:16:ff:87:3a:51:e1: 62:cd:be:a1:b7:f3:3a:f3:71:8f:36:3d:df:36:59:ed:81:ca: c2:ef:7b:00:0b:2f:40:8d:74:6f:3e:0e:33:b5:d5:00:e1:13: 0a:da:45:2b:20:97:8f:f9:df:6d:ca:35:9d:bb:eb:aa:59:19: 69:fb:c6:5e:18:de:e7:9d:c7:62:50:fa:26:6a:f6:1e:0d:70: 82:39:1d:a0:d4:8a:aa:4a:64:c6:79:e5:68:f4:51:09:56:ee: ca:90:80:41:6e:8f:b0:80:c3:7b:5b:f7:b3:39:b7:92:92:1c: f8:9d:e6:5e:69:24:86:0e:0e:ee:23:e7:c5:0f:bf:3c:5c:a6: 7a:48:0c:99 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKDIyQzdFQzNDRDlFRDRDNTBFODk0QTExQkNENzBEMDMx MENENUY4NTkwHhcNMjUxMjE0MTczNDU4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDNjYi04Mzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjQrUgf5qhIusvdVjDpES+dTQhmBMd5kcRuB5u8lGsL2jTChconfEPEfXyRnI fEbO0amcL/NH+xv9bFUW9tRX3ar+M46mPeBPc8dk621pYOL64YqlkEdPsugX4dwY bw01AQNKQ38i8tM22zGe4aAiIIi0vRabSPcD2rX3qI61UFRPv567C64jQpZUdbcR CKDA86QjTkNRVl0zm/fAFg/13qb2un79qEv9d7Rm2UPt+zcGm/6LRSdCc7gfZafF Ck8TZXhzxD+PeAD6gWdqDUEt65F5pBLUGqmtb3Hn4ZgysYD3nyZ2RRjx1sGhg+S6 B5ZEemxfDS6ysmKW1Aowy/uHwQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAnC/ivJ WSaj5UTKhNxpvpfCBJpfMB8GA1UdIwQYMBaAFCLH7DzZ7UxQ6JShG81w0DEM1fhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS9DOTQ0N0ZGMEJF RjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRGRG9sS0VielhEUU1RelYt RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMyMjUvQzk0NDdGRjBCRUY5MTFFRkJDRjY4OTQ0QzRGOUFFMDIvMjVEMkI5NENE RUNEMTFFRkE3OUU0MDY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoPr0MA0GCSqGSIb3DQEBCwUAA4IBAQB+zeLTR4OtKFYMc5BsEOmm qOrq2MgEyEetdsQR5BkFLa3VVQKUzZDUCDPt27kBFwYr4aiFQCXQYrsu8BEWTxhU DSLa2wiTxIw/mjo//MYI5R+8DWFwWwB1ogbc5sMobux2FtJD3rPhndjVQkvWRST3 1cczkJVzKpcW/4c6UeFizb6ht/M683GPNj3fNlntgcrC73sACy9AjXRvPg4ztdUA 4RMK2kUrIJeP+d9tyjWdu+uqWRlp+8ZeGN7nncdiUPomavYeDXCCOR2g1IqqSmTG eeVo9FEJVu7KkIBBbo+wgMN7W/ezObeSkhz4neZeaSSGDg7uI+fFD788XKZ6SAyZ -----END CERTIFICATE-----Generated at Mon Mar 2 10:37:47 2026 by rpki-client