$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/35B7F66EAB1B11EF838F5C5BC4F9AE02.roa File: 35B7F66EAB1B11EF838F5C5BC4F9AE02.roa (raw, json) Hash identifier: hUtCpggrD0qP+zeQS4EJohf5ngmSK/ms8x3R0u9OQxM= Subject key identifier: 7B:89:CC:9E:57:82:0C:64:E6:66:69:93:B6:72:8D:BD:0E:C5:A0:BA Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2F5F Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/35B7F66EAB1B11EF838F5C5BC4F9AE02.roa Signing time: Sun 31 May 2026 16:25:34 +0000 ROA not before: Sun 31 May 2026 16:25:34 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 152541 IP address blocks: 160.25.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12127 (0x2f5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:25:34 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c60fe-e8e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:14:e9:ca:cc:9f:14:06:db:6e:fc:0b:bb:de: 19:f5:e1:b9:4f:8e:c4:ff:9d:36:8a:7e:b8:66:55: e7:bb:1f:31:3e:06:18:4d:e4:c5:f8:5a:c2:1b:9b: 83:83:4d:e5:72:76:ac:15:29:f2:29:90:ef:28:05: 46:b4:8d:79:fa:05:98:2c:11:fc:69:38:ce:f7:60: 4d:a9:30:1f:bf:47:7f:ee:29:2d:f8:2b:e2:74:93: 8c:1e:93:0d:ac:44:c4:1e:c6:89:ac:62:ee:46:ce: 14:05:9d:22:00:b8:20:2a:45:4f:22:2f:78:52:93: 12:41:d9:9d:12:bd:99:cf:bd:8e:93:17:d6:53:1f: ea:0e:2c:7d:36:65:9a:54:67:5a:8e:f3:76:c5:9c: dc:5c:b5:fd:f5:52:9f:61:57:95:f1:bd:1f:92:d2: 1b:89:4d:0a:15:90:7b:e1:c8:eb:47:f7:5f:5d:cf: fe:82:87:85:26:04:13:03:65:1b:a6:4b:6b:95:0c: ca:03:fa:1d:b9:bc:4f:ef:85:0e:eb:56:76:61:8e: dc:b7:d4:1d:6f:63:84:75:99:38:a9:ee:23:d3:e7: 1d:52:70:e9:01:80:30:ae:b7:fc:36:02:dd:c0:21: f8:51:e8:16:72:32:7f:2a:7b:e3:67:17:a4:d1:2e: 3d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:89:CC:9E:57:82:0C:64:E6:66:69:93:B6:72:8D:BD:0E:C5:A0:BA X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/35B7F66EAB1B11EF838F5C5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.28.0/23 Signature Algorithm: sha256WithRSAEncryption 78:70:b9:8a:a6:dd:50:5f:1d:bd:b0:69:d4:2d:e2:af:5f:8d: 44:f0:3c:16:b2:79:35:27:04:e5:42:77:67:e7:32:6f:42:02: da:40:93:93:c7:3a:0e:e5:c2:f3:40:ab:6b:a5:49:e6:42:87: 90:d0:b4:a6:a6:a8:ff:af:af:19:68:66:74:65:9c:40:c4:c1: 6e:24:7e:5a:43:18:11:3e:2e:57:bc:3a:82:60:b2:ea:eb:46: f5:8b:31:65:e0:6e:12:e1:d5:d4:30:a7:a7:00:98:5d:04:9b: 3a:4e:cb:ba:e5:8d:59:5c:f7:97:fa:4c:09:c6:e5:db:6f:3b: 1e:83:63:6d:4f:98:00:69:e7:24:86:d6:d7:05:23:82:95:83: ac:be:cc:8b:8a:52:f7:92:ce:a2:ef:43:66:2a:50:cd:df:e7: 8c:b1:09:b5:77:b8:77:e2:38:cc:b5:81:55:d4:04:8e:34:5f: 1f:56:56:9e:1c:be:c3:41:10:63:fd:76:51:dc:68:bd:26:2d: ad:36:d6:ee:ce:03:78:31:1a:23:74:95:d2:58:ea:54:e0:3e: 78:8d:a0:62:ed:34:9d:7f:83:dd:cf:4d:32:a1:e7:fc:85:c0: b2:a3:4b:3d:5d:04:63:52:df:85:d7:3d:01:b7:54:10:ed:c9: 4c:6e:88:9a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyNTM0WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjBmZS1lOGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjxTpysyfFAbbbvwLu94Z9eG5T47E/502in64ZlXnux8xPgYYTeTF+FrCG5uD g03lcnasFSnyKZDvKAVGtI15+gWYLBH8aTjO92BNqTAfv0d/7ikt+CvidJOMHpMN rETEHsaJrGLuRs4UBZ0iALggKkVPIi94UpMSQdmdEr2Zz72OkxfWUx/qDix9NmWa VGdajvN2xZzcXLX99VKfYVeV8b0fktIbiU0KFZB74cjrR/dfXc/+goeFJgQTA2Ub pktrlQzKA/odubxP74UO61Z2YY7ct9Qdb2OEdZk4qe4j0+cdUnDpAYAwrrf8NgLd wCH4UegWcjJ/KnvjZxek0S49RwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHuJzJ5X ggxk5mZpk7Zyjb0OxaC6MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzVCN0Y2NkVB QjFCMTFFRjgzOEY1QzVCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBkcMA0GCSqGSIb3DQEBCwUAA4IBAQB4cLmKpt1QXx29sGnULeKv X41E8DwWsnk1JwTlQndn5zJvQgLaQJOTxzoO5cLzQKtrpUnmQoeQ0LSmpqj/r68Z aGZ0ZZxAxMFuJH5aQxgRPi5XvDqCYLLq60b1izFl4G4S4dXUMKenAJhdBJs6Tsu6 5Y1ZXPeX+kwJxuXbbzseg2NtT5gAaeckhtbXBSOClYOsvsyLilL3ks6i70NmKlDN 3+eMsQm1d7h34jjMtYFV1ASONF8fVlaeHL7DQRBj/XZR3Gi9Ji2tNtbuzgN4MRoj dJXSWOpU4D54jaBi7TSdf4Pdz00yoef8hcCyo0s9XQRjUt+F1z0Bt1QQ7clMboia -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:29 2026 by rpki-client