$ rpki-client -vvf rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa File: CA2855CC2F0211EFB28E0271C4F9AE02.roa (raw, json) Hash identifier: eFqoSUC3CBG2LpBUw/aigLIa86LE66amw5wsVo9Bfuc= Subject key identifier: 10:CD:73:A0:60:AE:66:3A:C9:84:DA:44:EC:DC:3E:11:60:33:51:6F Certificate issuer: /CN=A9133239/serialNumber=6C9A122115791B8E15048017A9757E587AB56F80 Certificate serial: 0140 Authority key identifier: 6C:9A:12:21:15:79:1B:8E:15:04:80:17:A9:75:7E:58:7A:B5:6F:80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:54:16 +0000 ROA not before: Sat 05 Jul 2025 06:12:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152924 IP address blocks: 160.22.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.crl rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133239, serialNumber=6C9A122115791B8E15048017A9757E587AB56F80 Validity Not Before: Jul 5 06:12:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a5a498-df92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d9:28:57:ca:e4:62:db:19:91:d2:c3:ff:ff: 6d:a0:7a:f9:77:dc:d6:8b:60:77:fc:d5:47:b8:b9: d5:55:fe:55:03:b2:c4:0e:e2:dd:b0:58:fb:d6:0a: 36:9d:67:47:be:f9:90:a4:6f:47:bb:ae:7f:31:cf: d9:64:75:90:10:96:c4:87:83:70:e1:60:d2:16:96: ad:31:ea:9d:c9:ed:61:88:3d:ee:4f:7f:e7:a6:85: 6d:ad:c0:9b:9f:b2:6e:0a:e6:40:61:01:88:27:a9: 06:54:05:6a:26:c9:ff:e9:d7:d0:17:d0:c0:4e:1e: ac:fd:5d:0b:79:1c:93:66:ab:78:4a:58:77:81:24: 4a:62:df:33:46:43:1d:85:6d:24:a0:a2:f5:71:5d: e9:ab:69:08:3d:5f:e0:bc:27:0a:85:43:73:14:93: dd:29:cb:c9:c2:63:e7:63:c2:dc:ab:96:d9:32:dd: 17:17:cf:37:3d:7c:66:c4:68:61:b8:ad:21:05:4b: f5:3f:e5:45:8c:f9:37:9c:a4:95:06:e6:af:7a:5d: 1c:05:e6:4a:6d:4d:f4:d7:b3:bb:9a:ff:34:37:61: 51:be:8f:a5:fd:35:76:ea:c2:a2:ac:71:a0:65:0e: f8:ac:2b:86:25:74:fe:dc:7a:a8:80:1c:11:86:ec: 4d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:CD:73:A0:60:AE:66:3A:C9:84:DA:44:EC:DC:3E:11:60:33:51:6F X509v3 Authority Key Identifier: keyid:6C:9A:12:21:15:79:1B:8E:15:04:80:17:A9:75:7E:58:7A:B5:6F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.22.186.0/24 Signature Algorithm: sha256WithRSAEncryption 48:75:4d:ba:ae:22:c5:b6:4b:50:6a:56:43:13:62:78:0a:13: 89:8a:39:f5:66:a0:49:f5:bc:93:8b:d9:00:12:3a:e0:b1:ca: bf:c6:4b:b3:37:e0:5f:b1:1c:f7:61:9b:70:f0:8f:20:fc:b9: 92:85:37:3d:75:bc:58:80:ff:a9:6b:d3:4b:4c:a9:22:92:6e: 78:40:8f:88:af:c9:ad:4d:f0:5c:0f:0c:75:4e:5f:6b:35:27: 96:8d:d0:33:a9:7b:bf:e3:dd:f7:3b:06:a0:34:2f:da:4d:2a: f3:da:69:41:81:2d:8e:0b:1a:be:3c:02:6b:90:ea:24:ee:8a: 2a:df:77:40:c9:54:9d:2b:61:5d:c3:cb:e8:6d:c1:4c:45:67: db:79:75:38:a3:2b:b1:29:d5:c4:3a:42:83:21:23:8d:28:81: 77:68:2f:f1:d5:d9:d2:86:2c:46:90:09:4b:44:15:1b:5c:c0: f0:eb:f9:e3:9e:e4:4f:11:c1:98:73:2e:1b:95:c6:99:a7:0f: 46:84:70:5e:fc:66:b1:fa:6e:63:2e:d4:a5:c6:f8:2a:f7:42: 34:98:bc:58:0e:1c:d0:dc:d6:f4:d3:ae:1c:28:bc:1e:50:29: 0c:38:4f:a7:8a:b2:85:99:1e:d5:b3:c4:41:39:cd:13:d8:81: f2:a4:38:7a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzMyMzkxMTAvBgNVBAUTKDZDOUExMjIxMTU3OTFCOEUxNTA0ODAxN0E5NzU3RTU4 N0FCNTZGODAwHhcNMjUwNzA1MDYxMjI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTQ5OC1kZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59koV8rkYtsZkdLD//9toHr5d9zWi2B3/NVHuLnVVf5VA7LEDuLdsFj71go2 nWdHvvmQpG9Hu65/Mc/ZZHWQEJbEh4Nw4WDSFpatMeqdye1hiD3uT3/npoVtrcCb n7JuCuZAYQGIJ6kGVAVqJsn/6dfQF9DATh6s/V0LeRyTZqt4Slh3gSRKYt8zRkMd hW0koKL1cV3pq2kIPV/gvCcKhUNzFJPdKcvJwmPnY8Lcq5bZMt0XF883PXxmxGhh uK0hBUv1P+VFjPk3nKSVBuavel0cBeZKbU3017O7mv80N2FRvo+l/TV26sKirHGg ZQ74rCuGJXT+3HqogBwRhuxNowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBDNc6Bg rmY6yYTaROzcPhFgM1FvMB8GA1UdIwQYMBaAFGyaEiEVeRuOFQSAF6l1flh6tW+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzIzOS83NDdBQTQ0QTJG MDIxMUVGOEM3QTU4NzBDNEY5QUUwMi9iSm9TSVJWNUc0NFZCSUFYcVhWLVdIcTFi NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKb1NJUlY1RzQ0VkJJQVhxWFYtV0hxMWI0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzMyMzkvNzQ3QUE0NEEyRjAyMTFFRjhDN0E1ODcwQzRGOUFFMDIvQ0EyODU1Q0My RjAyMTFFRkIyOEUwMjcxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBa6MA0GCSqGSIb3DQEBCwUAA4IBAQBIdU26riLFtktQalZDE2J4 ChOJijn1ZqBJ9byTi9kAEjrgscq/xkuzN+BfsRz3YZtw8I8g/LmShTc9dbxYgP+p a9NLTKkikm54QI+Ir8mtTfBcDwx1Tl9rNSeWjdAzqXu/4933OwagNC/aTSrz2mlB gS2OCxq+PAJrkOok7ooq33dAyVSdK2Fdw8vobcFMRWfbeXU4oyuxKdXEOkKDISON KIF3aC/x1dnShixGkAlLRBUbXMDw6/njnuRPEcGYcy4blcaZpw9GhHBe/Gax+m5j LtSlxvgq90I0mLxYDhzQ3Nb0064cKLweUCkMOE+nirKFmR7Vs8RBOc0T2IHypDh6 -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:56 2026 by rpki-client