$ rpki-client -vvf rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/21D32B1EC54211EFBA442C85C4F9AE02.roa File: 21D32B1EC54211EFBA442C85C4F9AE02.roa (raw, json) Hash identifier: PK2V6pJkKs1cUfHH+NplffRcxO64GLqymLJjQgGE2VI= Subject key identifier: 35:39:35:74:91:CB:AE:75:61:43:5B:31:B7:81:E8:A6:6D:28:A4:3E Certificate issuer: /CN=A9122B85/serialNumber=C5564DEC101663BF43D3F2E340394C00766A63E3 Certificate serial: 0106 Authority key identifier: C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/21D32B1EC54211EFBA442C85C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:23:17 +0000 ROA not before: Wed 31 Dec 2025 03:22:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 151786 IP address blocks: 160.191.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.crl rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 03:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122B85, serialNumber=C5564DEC101663BF43D3F2E340394C00766A63E3 Validity Not Before: Dec 31 03:22:19 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43dc4-ade6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:11:05:d8:26:02:86:a1:0f:c2:f7:e0:ad:5a: 62:09:8c:26:b2:21:26:f5:0c:14:dd:e6:0e:05:c0: b0:65:da:5e:e5:2a:c5:d4:bf:e3:24:c6:d2:a6:73: ff:2a:3a:96:94:d1:22:e9:38:81:b2:6f:69:8a:07: 2b:2d:89:65:2d:73:21:71:65:36:f2:37:49:65:dd: dc:d8:b9:14:fb:24:a1:e1:9f:ef:45:d5:db:2d:cc: a1:52:d8:9a:84:3a:23:5e:60:15:50:7a:b2:71:b8: f4:59:7f:5b:21:74:c1:2c:be:32:e3:c2:a0:10:54: ae:2c:8f:05:b3:63:1a:23:23:0d:e6:a7:40:5f:70: 42:82:52:fa:27:73:fe:aa:69:ae:19:4c:01:e6:8a: 1e:b8:31:7d:14:bd:d0:38:57:4f:94:c5:cf:da:aa: 55:8a:3d:4e:e1:b2:07:2b:3d:5f:da:b5:29:9f:99: a7:8b:ad:d4:1b:84:d9:1a:a8:fc:fb:fb:d5:4e:20: 21:3f:4d:30:40:19:81:e5:47:6f:36:c3:dc:ad:7f: f6:5f:b6:d8:4d:69:42:68:c4:09:5e:74:73:20:97: 47:e6:7d:24:e8:d5:af:64:4e:cd:ad:80:2e:34:92: d3:e4:3a:27:b1:61:a8:95:b6:17:c3:ee:e6:71:b1: e9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:39:35:74:91:CB:AE:75:61:43:5B:31:B7:81:E8:A6:6D:28:A4:3E X509v3 Authority Key Identifier: keyid:C5:56:4D:EC:10:16:63:BF:43:D3:F2:E3:40:39:4C:00:76:6A:63:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/xVZN7BAWY79D0_LjQDlMAHZqY-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xVZN7BAWY79D0_LjQDlMAHZqY-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122B85/CCBBABEA9F6411EFA931473CC4F9AE02/21D32B1EC54211EFBA442C85C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.191.212.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:bb:13:83:57:53:f9:ce:1e:58:47:92:e6:5a:b2:d1:45:69: 17:68:4e:16:c1:47:c7:88:60:89:9c:1f:23:1b:6a:95:29:f1: d1:dd:b1:5f:c8:d6:26:df:4d:3d:31:2c:c5:4e:76:cf:a9:f1: ce:56:4c:2a:f4:9e:43:d6:20:a2:e6:fe:fb:c9:eb:98:95:4c: bd:64:63:19:7e:2e:e8:6b:c9:5a:aa:8b:df:7f:6d:f2:c8:97: fe:99:f6:ee:b5:8c:c9:3d:89:3a:01:3c:9b:57:0f:4b:35:a1: 33:5c:57:80:9b:70:ed:4a:e5:10:aa:05:63:39:8a:74:12:4f: 41:d0:4b:f0:f1:19:f6:c0:f6:50:e8:8b:61:71:56:37:70:1c: db:da:43:77:fb:77:52:e9:43:fa:7e:ac:2b:24:40:12:43:5c: d7:75:5d:ff:6a:f2:88:73:70:97:de:b2:ac:13:10:c6:ff:a6: 7d:8a:16:72:ec:2f:78:79:ed:77:9c:6b:fd:b7:6e:42:64:e5: 6a:13:24:79:16:ae:85:de:59:75:c0:b9:51:0b:40:9a:1d:bd: 13:63:b3:d3:cb:9c:02:9e:8b:6e:ae:a8:bb:94:89:be:10:ad: d8:2b:c2:ef:79:9e:0d:14:ef:ad:e2:c3:89:c3:a9:82:45:ce: 02:de:7a:6a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJCODUxMTAvBgNVBAUTKEM1NTY0REVDMTAxNjYzQkY0M0QzRjJFMzQwMzk0QzAw NzY2QTYzRTMwHhcNMjUxMjMxMDMyMjE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2RjNC1hZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBEF2CYChqEPwvfgrVpiCYwmsiEm9QwU3eYOBcCwZdpe5SrF1L/jJMbSpnP/ KjqWlNEi6TiBsm9pigcrLYllLXMhcWU28jdJZd3c2LkU+ySh4Z/vRdXbLcyhUtia hDojXmAVUHqycbj0WX9bIXTBLL4y48KgEFSuLI8Fs2MaIyMN5qdAX3BCglL6J3P+ qmmuGUwB5ooeuDF9FL3QOFdPlMXP2qpVij1O4bIHKz1f2rUpn5mni63UG4TZGqj8 +/vVTiAhP00wQBmB5UdvNsPcrX/2X7bYTWlCaMQJXnRzIJdH5n0k6NWvZE7NrYAu NJLT5DonsWGolbYXw+7mcbHpKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDU5NXSR y651YUNbMbeB6KZtKKQ+MB8GA1UdIwQYMBaAFMVWTewQFmO/Q9Py40A5TAB2amPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkI4NS9DQ0JCQUJFQTlG NjQxMUVGQTkzMTQ3M0NDNEY5QUUwMi94VlpON0JBV1k3OUQwX0xqUURsTUFIWnFZ LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hWWk43QkFXWTc5RDBfTGpRRGxNQUhacVktTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJCODUvQ0NCQkFCRUE5RjY0MTFFRkE5MzE0NzNDQzRGOUFFMDIvMjFEMzJCMUVD NTQyMTFFRkJBNDQyQzg1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoL/UMA0GCSqGSIb3DQEBCwUAA4IBAQB6uxODV1P5zh5YR5LmWrLR RWkXaE4WwUfHiGCJnB8jG2qVKfHR3bFfyNYm3009MSzFTnbPqfHOVkwq9J5D1iCi 5v77yeuYlUy9ZGMZfi7oa8laqovff23yyJf+mfbutYzJPYk6ATybVw9LNaEzXFeA m3DtSuUQqgVjOYp0Ek9B0Evw8Rn2wPZQ6IthcVY3cBzb2kN3+3dS6UP6fqwrJEAS Q1zXdV3/avKIc3CX3rKsExDG/6Z9ihZy7C94ee13nGv9t25CZOVqEyR5Fq6F3ll1 wLlRC0CaHb0TY7PTy5wCnoturqi7lIm+EK3YK8LveZ4NFO+t4sOJw6mCRc4C3npq -----END CERTIFICATE-----Generated at Fri Mar 13 19:34:57 2026 by rpki-client