$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/21F94DCC3A9011EFBD977F28C4F9AE02.roa File: 21F94DCC3A9011EFBD977F28C4F9AE02.roa (raw, json) Hash identifier: dOezRL7+fUSSCDnwZt9p+IQ9VudS7RY8X24roFfN2xA= Subject key identifier: D6:F4:28:40:BC:AA:EB:96:0F:24:17:EB:5B:FE:BE:EA:91:06:72:64 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F11 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/21F94DCC3A9011EFBD977F28C4F9AE02.roa Signing time: Sun 31 May 2026 16:23:05 +0000 ROA not before: Sun 31 May 2026 16:23:05 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 151101 IP address blocks: 160.25.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12049 (0x2f11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:23:05 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c6068-8f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4e:9c:f7:35:11:19:a3:ab:83:a5:20:6e:99: 69:7e:74:37:14:81:30:22:1c:ef:ce:d4:38:26:46: 96:59:e6:a4:c6:20:ab:0f:aa:b2:c1:e0:ce:d8:c9: f5:68:6a:dc:02:4b:3d:0d:0c:1b:50:3a:5f:73:6a: 43:99:25:06:43:34:65:1a:c5:f3:78:9c:07:63:8d: 3f:d1:31:6f:4c:c4:02:3b:47:88:13:49:91:3b:0a: e8:34:47:86:f1:6d:c7:f2:2c:22:ba:e2:01:04:07: a2:c1:db:c0:c4:ae:ae:cc:88:02:06:06:c4:22:e8: 38:a6:05:e5:50:d2:41:55:5c:e4:7f:8d:f1:29:46: 2c:fe:4b:ca:9f:61:65:69:d6:e2:59:e0:3b:cc:0b: e9:b7:7b:77:c5:55:52:8b:bc:33:9a:a4:f8:54:81: 82:31:8f:5a:b4:6b:4a:5b:e6:f9:87:e1:9d:7f:f4: 88:1b:4a:40:0a:60:28:72:8e:d5:df:17:19:94:63: 44:26:06:5d:c1:e2:3a:b9:b6:7c:99:0f:00:db:1c: ef:fe:bd:0c:54:1d:d9:e5:9b:af:b8:66:b6:91:88: 5d:15:3c:6d:53:ed:68:1b:d9:f5:7f:4d:2d:fd:95: 96:59:81:9d:72:44:3d:29:a7:bc:85:aa:93:23:34: d8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F4:28:40:BC:AA:EB:96:0F:24:17:EB:5B:FE:BE:EA:91:06:72:64 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/21F94DCC3A9011EFBD977F28C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.63.0/24 Signature Algorithm: sha256WithRSAEncryption 56:1d:4a:24:05:1e:ba:97:24:46:9d:b6:97:b7:2d:a5:0a:9d: 00:ff:ce:f9:b5:91:64:d0:96:60:f5:c9:a6:13:9d:2b:06:70: b2:b6:e8:12:32:7a:46:f1:ea:9b:0d:20:53:25:e4:ca:5b:be: 7a:0d:2e:ff:11:4b:f8:b7:26:d2:b8:fe:28:26:e4:72:32:86: 33:82:8d:dc:b3:11:41:60:b4:4c:42:d1:ef:6d:fb:5e:54:8a: 0b:fe:ed:1b:fe:fd:66:32:14:59:3a:d8:51:47:b8:6d:8b:ec: 35:cc:fe:96:0a:b1:bd:23:9f:bb:bd:29:4a:6b:09:d6:5c:bf: c7:0c:a7:c7:f1:e1:06:3e:df:8c:2b:e2:3b:a1:5b:c3:38:c7: d5:2a:7e:9a:01:fc:20:bf:2a:6b:4a:4a:00:78:b1:11:b7:d1: f4:eb:03:f3:5f:81:e2:19:6b:43:ab:1f:14:fb:d3:ed:ff:89: 2f:7c:8b:8a:d4:b5:4e:a2:6d:f4:e6:eb:05:56:10:42:b0:f5: 8a:02:12:98:f1:1d:a7:01:d0:36:8e:42:ce:51:03:7a:80:64: 91:a5:99:e6:5b:68:05:c5:5c:86:7c:00:6c:03:8a:32:50:31: bf:db:22:70:a0:2e:d5:ad:3c:0c:b8:78:81:0a:9d:76:d9:35: 9f:58:9e:4c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyMzA1WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjA2OC04Zjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqE6c9zURGaOrg6UgbplpfnQ3FIEwIhzvztQ4JkaWWeakxiCrD6qyweDO2Mn1 aGrcAks9DQwbUDpfc2pDmSUGQzRlGsXzeJwHY40/0TFvTMQCO0eIE0mROwroNEeG 8W3H8iwiuuIBBAeiwdvAxK6uzIgCBgbEIug4pgXlUNJBVVzkf43xKUYs/kvKn2Fl adbiWeA7zAvpt3t3xVVSi7wzmqT4VIGCMY9atGtKW+b5h+Gdf/SIG0pACmAoco7V 3xcZlGNEJgZdweI6ubZ8mQ8A2xzv/r0MVB3Z5ZuvuGa2kYhdFTxtU+1oG9n1f00t /ZWWWYGdckQ9Kae8haqTIzTY7wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNb0KEC8 quuWDyQX61v+vuqRBnJkMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMjFGOTREQ0Mz QTkwMTFFRkJEOTc3RjI4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBk/MA0GCSqGSIb3DQEBCwUAA4IBAQBWHUokBR66lyRGnbaXty2l Cp0A/875tZFk0JZg9cmmE50rBnCytugSMnpG8eqbDSBTJeTKW756DS7/EUv4tybS uP4oJuRyMoYzgo3csxFBYLRMQtHvbfteVIoL/u0b/v1mMhRZOthRR7hti+w1zP6W CrG9I5+7vSlKawnWXL/HDKfH8eEGPt+MK+I7oVvDOMfVKn6aAfwgvyprSkoAeLER t9H06wPzX4HiGWtDqx8U+9Pt/4kvfIuK1LVOom305usFVhBCsPWKAhKY8R2nAdA2 jkLOUQN6gGSRpZnmW2gFxVyGfABsA4oyUDG/2yJwoC7VrTwMuHiBCp122TWfWJ5M -----END CERTIFICATE-----Generated at Sat Jun 6 08:23:04 2026 by rpki-client