$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa File: 2042987C6C4411EF9B263275C4F9AE02.roa (raw, json) Hash identifier: 9GZpU2PHliAK9NY+OWOq5Tt+JHpwX/IWIj0455bKALU= Subject key identifier: 99:5E:67:D8:13:5E:57:59:A1:8A:A5:A7:A5:A7:85:3F:3E:C3:09:E5 Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: 0154 Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:21:24 +0000 ROA not before: Sat 13 Sep 2025 05:42:26 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152931 IP address blocks: 160.25.2.0/23 maxlen: 23 160.25.2.0/24 maxlen: 24 160.25.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2, serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Sep 13 05:42:26 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a59ce3-d613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:63:bf:3b:60:bb:ed:1d:d5:21:ca:a1:93:0f: 42:04:74:45:12:d4:91:7c:12:c9:ee:b6:26:e0:b6: 2f:94:cd:39:a0:d1:0b:4f:b4:37:36:ed:49:6f:90: f4:a3:cd:51:d9:40:24:d9:1c:0b:5c:68:ce:94:cd: d1:56:e2:87:a6:f8:72:cf:cf:0a:89:58:74:70:02: 2b:ec:ed:7d:e4:27:44:07:47:2f:3d:32:b4:63:68: 45:70:41:14:1f:dc:df:55:1a:b8:ea:bf:ed:52:bc: f8:ad:39:ff:1d:ad:83:eb:14:e3:ae:bd:8e:ce:35: 2b:35:17:a0:83:17:db:f7:72:cb:68:f9:fa:43:f1: 5d:73:e9:7a:67:1d:a8:82:d5:42:de:ff:48:00:b7: 21:80:4c:8f:9c:c9:57:91:30:42:30:db:44:37:41: bb:57:62:d0:07:bd:f7:60:18:a7:8f:41:2b:dd:f9: 44:ae:b7:68:88:9b:e3:11:07:cf:4a:f1:c0:d3:7d: 5f:ec:81:b3:fa:03:f6:51:b8:be:bb:dc:89:85:c3: 7a:97:d2:3f:8c:25:14:b2:d9:68:c4:ac:50:67:c8: 86:c5:67:e8:c6:54:ca:e5:c3:09:dd:f6:54:2f:63: f4:b2:26:c7:1e:e7:b0:fb:bc:40:0f:1b:fc:13:ef: 45:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5E:67:D8:13:5E:57:59:A1:8A:A5:A7:A5:A7:85:3F:3E:C3:09:E5 X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.2.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:ae:5e:66:6d:7c:8e:1e:97:72:d7:78:d0:c2:b8:92:dd:6f: ce:b7:38:bf:8f:8b:fc:90:52:ed:d4:6e:2c:f8:54:f5:84:d1: 00:c4:db:5d:63:59:47:8d:50:b2:4e:6d:82:7c:ed:c7:7b:04: 0e:93:38:00:81:69:2d:b1:db:82:df:5c:eb:9b:ad:fb:fe:5b: 33:7e:f3:ea:ac:ea:1b:21:c3:cc:86:fd:90:43:eb:e8:5b:22: e5:87:0b:6f:90:12:55:09:75:e6:6a:0c:7e:91:ec:a5:47:0f: 59:11:6e:81:90:37:cf:49:9d:d4:c1:14:02:87:06:fe:96:22: eb:e1:16:33:e8:c2:a6:73:95:82:1a:50:67:47:b2:c8:d5:b9: 76:c4:ea:7a:e7:26:1e:01:61:92:d2:41:23:b6:de:03:04:a6: d1:84:25:a9:80:fb:a6:29:9a:4c:5b:14:0f:7a:14:f7:df:28: 3a:50:1d:40:16:f6:35:40:05:ff:58:2b:c1:ba:21:4b:a4:14: 74:c4:76:8f:8e:33:6f:47:8b:d7:46:ec:eb:86:95:c8:10:64: 34:72:27:df:c1:d6:11:86:e6:7e:de:cd:ad:5c:89:45:2a:9a: 08:24:0a:21:53:61:f5:41:d2:2e:c6:33:0c:90:0b:0c:c2:ac: f1:16:78:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRTIxMTAvBgNVBAUTKDg0NUQ4OEUwQTIxNTE0NUYzNjdEOTMwNEJGM0Y3MUFF RThFQjRDMkQwHhcNMjUwOTEzMDU0MjI2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWNlMy1kNjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WO/O2C77R3VIcqhkw9CBHRFEtSRfBLJ7rYm4LYvlM05oNELT7Q3Nu1Jb5D0 o81R2UAk2RwLXGjOlM3RVuKHpvhyz88KiVh0cAIr7O195CdEB0cvPTK0Y2hFcEEU H9zfVRq46r/tUrz4rTn/Ha2D6xTjrr2OzjUrNReggxfb93LLaPn6Q/Fdc+l6Zx2o gtVC3v9IALchgEyPnMlXkTBCMNtEN0G7V2LQB733YBinj0Er3flErrdoiJvjEQfP SvHA031f7IGz+gP2Ubi+u9yJhcN6l9I/jCUUstloxKxQZ8iGxWfoxlTK5cMJ3fZU L2P0sibHHuew+7xADxv8E+9FiQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJleZ9gT XldZoYqlp6WnhT8+wwnlMB8GA1UdIwQYMBaAFIRdiOCiFRRfNn2TBL8/ca7o60wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFFMi8yNkE2RjQ0QzNC QUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZGODJmWk1Fdno5eHJ1anJU QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBRTIvMjZBNkY0NEMzQkFDMTFFRjlEN0VBODcxQzRGOUFFMDIvMjA0Mjk4N0M2 QzQ0MTFFRjlCMjYzMjc1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoBkCMA0GCSqGSIb3DQEBCwUAA4IBAQA9rl5mbXyOHpdy13jQwriS 3W/Otzi/j4v8kFLt1G4s+FT1hNEAxNtdY1lHjVCyTm2CfO3HewQOkzgAgWktsduC 31zrm637/lszfvPqrOobIcPMhv2QQ+voWyLlhwtvkBJVCXXmagx+keylRw9ZEW6B kDfPSZ3UwRQChwb+liLr4RYz6MKmc5WCGlBnR7LI1bl2xOp65yYeAWGS0kEjtt4D BKbRhCWpgPumKZpMWxQPehT33yg6UB1AFvY1QAX/WCvBuiFLpBR0xHaPjjNvR4vX RuzrhpXIEGQ0ciffwdYRhuZ+3s2tXIlFKpoIJAohU2H1QdIuxjMMkAsMwqzxFniV -----END CERTIFICATE-----Generated at Sat Mar 14 01:03:31 2026 by rpki-client