$ rpki-client -vvf rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/659B37E4958E11EFAFF1870AC4F9AE02.roa File: 659B37E4958E11EFAFF1870AC4F9AE02.roa (raw, json) Hash identifier: nhvswsvcHLgOS6ioO6sFGPKfZkM+ms9sdi1nqkmRphw= Subject key identifier: DE:D8:24:B8:B9:C3:83:21:A3:23:94:BE:75:2B:F9:31:93:53:C8:49 Certificate issuer: /CN=A911F2DF/serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Certificate serial: 0163 Authority key identifier: B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/659B37E4958E11EFAFF1870AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:44:35 +0000 ROA not before: Tue 03 Jun 2025 06:05:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 160.187.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:48:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F2DF, serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Validity Not Before: Jun 3 06:05:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a59443-126c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:b6:dc:72:b2:e9:8d:13:dd:9d:c9:11:bd: c7:8c:08:b5:d1:a5:a8:c9:34:d2:be:55:38:44:7a: 64:84:bc:39:4a:87:8c:ba:74:ee:c8:ae:0b:e7:c9: 3e:be:b7:f6:b8:fc:ef:ce:41:18:dc:fe:91:44:0e: 78:fd:a2:40:dc:64:b7:ff:e0:50:11:ab:73:3b:eb: b3:f5:e0:64:f7:31:76:2c:7c:ca:bd:9d:8a:0d:c0: e6:3c:84:a1:cc:01:0f:85:d0:17:b9:2c:96:c2:fc: c2:a2:db:a1:c3:c6:a9:72:4a:f4:34:8c:30:cc:eb: 6b:ef:39:6d:bc:2d:2d:a9:98:2d:d7:8d:58:35:ac: 22:50:f0:76:fe:06:91:ab:18:b8:bb:de:00:2b:db: f5:12:9c:65:4e:09:16:45:48:93:89:ed:f8:e7:c8: 23:0a:60:cf:9d:27:3b:2a:d9:c9:ae:84:05:ed:54: e4:09:83:e7:63:cf:34:c0:0e:1e:22:36:3f:fd:24: 99:0a:2d:cd:ff:66:2a:29:c5:11:bc:00:e1:64:f1: 67:eb:ed:51:47:4a:20:b9:51:a7:01:ce:c5:9a:48: b6:80:b3:d7:70:eb:6b:ed:20:89:08:5d:4a:09:4d: f0:4c:e3:ed:ac:66:d2:78:c3:0e:94:ec:d8:80:28: 61:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D8:24:B8:B9:C3:83:21:A3:23:94:BE:75:2B:F9:31:93:53:C8:49 X509v3 Authority Key Identifier: keyid:B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/659B37E4958E11EFAFF1870AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.187.8.0/24 Signature Algorithm: sha256WithRSAEncryption 30:8e:62:58:ee:36:65:7e:93:2a:5a:a4:5a:3c:26:e7:ac:8a: 1f:d1:8a:02:02:d6:ae:d2:42:e2:e0:aa:d5:84:e6:c4:15:29: ad:7a:dd:ce:70:26:27:ea:9f:7f:a8:c0:a9:b1:10:e7:0f:ee: 7c:54:29:58:4a:d7:fb:6e:5a:dd:55:a8:db:28:b0:99:70:d9: e2:56:74:de:b0:96:bb:21:74:5d:c0:00:83:fd:2f:fd:a5:20: c4:4d:6f:6e:f8:fd:c8:b5:9e:6a:ec:cc:25:0b:9b:0d:a8:09: 95:83:4d:af:e2:5b:f4:ea:ce:ad:b4:fc:96:47:e1:9b:7f:86: f7:bd:87:22:85:28:54:79:9d:90:39:a5:a8:a8:0b:f5:c5:6e: d9:9e:9f:e7:db:26:ec:e1:f2:0f:49:d0:51:ea:c8:d9:2f:00: 59:53:de:4b:87:79:6c:30:2c:7a:6a:fa:21:28:14:69:f0:e6: cf:1d:7e:a0:fe:4d:2d:8c:57:45:97:17:27:ff:54:c7:4b:a0: 91:ce:1c:5c:78:d3:d2:20:f8:de:dd:ce:6a:10:39:1a:99:14: c4:67:1c:d2:19:ee:59:8c:56:47:39:98:5a:89:82:08:e7:b6: 00:a8:0d:ef:c7:eb:17:63:6e:15:e8:7c:78:61:97:f2:2d:92: 98:76:3f:b5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYyREYxMTAvBgNVBAUTKEI4NEMyMzk2OUVENzlDMEUzMUMxM0MxNDUwMDEyRTIy NDZEM0Y5NEQwHhcNMjUwNjAzMDYwNTQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTQ0My0xMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5S23HKy6Y0T3Z3JEb3HjAi10aWoyTTSvlU4RHpkhLw5SoeMunTuyK4L58k+ vrf2uPzvzkEY3P6RRA54/aJA3GS3/+BQEatzO+uz9eBk9zF2LHzKvZ2KDcDmPISh zAEPhdAXuSyWwvzCotuhw8apckr0NIwwzOtr7zltvC0tqZgt141YNawiUPB2/gaR qxi4u94AK9v1EpxlTgkWRUiTie3458gjCmDPnSc7KtnJroQF7VTkCYPnY880wA4e IjY//SSZCi3N/2YqKcURvADhZPFn6+1RR0oguVGnAc7Fmki2gLPXcOtr7SCJCF1K CU3wTOPtrGbSeMMOlOzYgChh6QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN7YJLi5 w4MhoyOUvnUr+TGTU8hJMB8GA1UdIwQYMBaAFLhMI5ae15wOMcE8FFABLiJG0/lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjJERi8wMDUwMUZEMjIz QUUxMUVGOTQ5M0Y0NUNDNEY5QUUwMi91RXdqbHA3WG5BNHh3VHdVVUFFdUlrYlQt VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VFd2pscDdYbkE0eHdUd1VVQUV1SWtiVC1VMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUYyREYvMDA1MDFGRDIyM0FFMTFFRjk0OTNGNDVDQzRGOUFFMDIvNjU5QjM3RTQ5 NThFMTFFRkFGRjE4NzBBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoLsIMA0GCSqGSIb3DQEBCwUAA4IBAQAwjmJY7jZlfpMqWqRaPCbn rIof0YoCAtau0kLi4KrVhObEFSmtet3OcCYn6p9/qMCpsRDnD+58VClYStf7blrd VajbKLCZcNniVnTesJa7IXRdwACD/S/9pSDETW9u+P3ItZ5q7MwlC5sNqAmVg02v 4lv06s6ttPyWR+Gbf4b3vYcihShUeZ2QOaWoqAv1xW7Znp/n2ybs4fIPSdBR6sjZ LwBZU95Lh3lsMCx6avohKBRp8ObPHX6g/k0tjFdFlxcn/1THS6CRzhxceNPSIPje 3c5qEDkamRTEZxzSGe5ZjFZHOZhaiYII57YAqA3vx+sXY24V6Hx4YZfyLZKYdj+1 -----END CERTIFICATE-----Generated at Wed Mar 4 09:46:30 2026 by rpki-client