$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa File: 2042987C6C4411EF9B263275C4F9AE02.roa (raw, json) Hash identifier: jQ0/6OxWfSLmOhTwMkh5QhxLLDs2NZAllGr6jJa0Kcw= Subject key identifier: C6:44:4B:DD:95:C1:CB:F4:8E:71:17:DB:93:61:9F:FD:FC:79:88:D4 Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: E1 Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa Signing time: Sun 31 Aug 2025 06:24:23 +0000 ROA not before: Sun 31 Aug 2025 06:24:23 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 152931 IP address blocks: 160.25.2.0/23 maxlen: 23 160.25.2.0/24 maxlen: 24 160.25.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2, serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Aug 31 06:24:23 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b3ea97-0a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:07:4c:5b:2c:0f:04:96:47:94:dd:44:e7: 38:38:83:f9:98:d9:e8:e1:f1:54:23:b7:00:ed:e3: c5:ca:dc:b7:e8:fb:d7:58:9f:3f:bd:7d:56:18:9b: 20:50:47:16:43:47:82:88:a9:60:5d:14:0f:16:c9: 8a:88:f1:c1:9d:11:90:82:44:c2:e6:29:01:7e:69: 7b:23:2a:6b:b0:b0:73:11:eb:62:9d:bb:0d:28:a6: 52:24:86:97:82:e0:8e:00:3b:b2:4a:7a:f4:05:5c: 42:39:db:3e:4a:b9:40:93:37:ee:6b:25:b6:6d:28: 04:1b:44:7a:a2:8a:47:f9:f9:cc:e0:1f:e5:4b:6d: b7:d5:fc:50:53:bb:cd:b0:8d:8f:f0:18:af:04:22: df:7e:af:d2:15:e4:31:7b:6b:4a:f0:c9:c8:8e:0d: c9:2c:ed:1f:f1:33:78:0b:7e:e0:8c:e0:ec:bb:15: a9:39:3b:20:ee:00:ff:3e:b3:33:3a:37:86:ed:99: a1:6f:8c:28:9d:7e:c8:b5:4d:3d:46:65:3b:83:e0: a2:70:4f:e4:0f:3d:87:9b:64:b2:23:f6:5f:91:f7: 05:4b:c2:ff:9d:4d:a8:69:78:91:84:0a:cd:f6:27: c9:03:73:b7:66:20:c9:39:07:5e:97:ce:52:b5:e6: 2a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:44:4B:DD:95:C1:CB:F4:8E:71:17:DB:93:61:9F:FD:FC:79:88:D4 X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.2.0/23 Signature Algorithm: sha256WithRSAEncryption 61:a9:64:ea:c2:ea:07:ae:54:e1:e1:71:7e:c6:7e:ce:75:46: c1:b5:4d:2c:a0:49:ca:02:39:95:12:65:76:51:82:d1:ca:f6: 3b:bc:94:12:5b:6e:ea:d6:38:75:b1:0b:22:dc:7f:fa:82:78: d4:31:55:18:26:d1:44:48:12:06:d1:4b:5c:72:83:95:15:52: 36:82:98:8f:86:85:27:9c:ca:29:69:06:d9:68:a5:78:4c:a7: bd:a8:9d:28:db:94:e1:87:18:32:8e:84:41:cc:c0:ed:6e:8f: 68:40:d6:d1:ff:50:fb:ae:c6:66:35:05:75:df:d1:b2:7f:65: 0b:71:08:cd:fa:25:f1:df:6d:b7:11:34:53:34:1c:64:fe:0c: 29:23:6b:de:7d:91:48:a9:37:16:63:a6:1c:20:90:f0:73:91: ca:a9:48:90:43:c8:bd:1f:42:b3:c9:d2:07:dd:ad:8d:59:c0: 81:f7:b7:a6:44:bc:74:7f:04:96:da:72:a9:87:eb:e7:db:c9: 28:d9:68:34:f3:4a:b0:67:24:e1:a2:b0:81:bb:df:e3:f9:bc: 80:9b:2f:26:dd:cf:98:8d:84:2f:ec:d3:92:b4:f4:a8:27:7c: 60:af:2b:60:54:50:0b:df:d1:82:dc:60:23:a6:fd:6d:b2:0f: 10:ea:cb:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRTIxMTAvBgNVBAUTKDg0NUQ4OEUwQTIxNTE0NUYzNjdEOTMwNEJGM0Y3MUFF RThFQjRDMkQwHhcNMjUwODMxMDYyNDIzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZWE5Ny0wYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv08HTFssDwSWR5TdROc4OIP5mNno4fFUI7cA7ePFyty36PvXWJ8/vX1WGJsg UEcWQ0eCiKlgXRQPFsmKiPHBnRGQgkTC5ikBfml7IyprsLBzEetinbsNKKZSJIaX guCOADuySnr0BVxCOds+SrlAkzfuayW2bSgEG0R6oopH+fnM4B/lS2231fxQU7vN sI2P8BivBCLffq/SFeQxe2tK8MnIjg3JLO0f8TN4C37gjODsuxWpOTsg7gD/PrMz OjeG7Zmhb4wonX7ItU09RmU7g+CicE/kDz2Hm2SyI/ZfkfcFS8L/nU2oaXiRhArN 9ifJA3O3ZiDJOQdel85SteYqTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMZES92V wcv0jnEX25Nhn/38eYjUMB8GA1UdIwQYMBaAFIRdiOCiFRRfNn2TBL8/ca7o60wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFFMi8yNkE2RjQ0QzNC QUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZGODJmWk1Fdno5eHJ1anJU QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBRTIvMjZBNkY0NEMzQkFDMTFFRjlEN0VBODcxQzRGOUFFMDIvMjA0Mjk4N0M2 QzQ0MTFFRjlCMjYzMjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGQIwDQYJKoZIhvcNAQELBQADggEBAGGpZOrC6geuVOHh cX7Gfs51RsG1TSygScoCOZUSZXZRgtHK9ju8lBJbburWOHWxCyLcf/qCeNQxVRgm 0URIEgbRS1xyg5UVUjaCmI+GhSecyilpBtlopXhMp72onSjblOGHGDKOhEHMwO1u j2hA1tH/UPuuxmY1BXXf0bJ/ZQtxCM36JfHfbbcRNFM0HGT+DCkja959kUipNxZj phwgkPBzkcqpSJBDyL0fQrPJ0gfdrY1ZwIH3t6ZEvHR/BJbacqmH6+fbySjZaDTz SrBnJOGisIG73+P5vICbLybdz5iNhC/s05K09KgnfGCvK2BUUAvf0YLcYCOm/W2y DxDqyyw= -----END CERTIFICATE-----Generated at Sun Sep 7 19:26:07 2025 by rpki-client