$ rpki-client -vvf rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa File: FB29FEA06C1F11EFA8C5694EC4F9AE02.roa (raw, json) Hash identifier: lS5jQrOwuHSqyONQeCY3/4Jm04j6Af0k6eKap+WOqaE= Subject key identifier: D2:FF:1E:C9:BC:30:95:98:2C:99:E2:0F:E7:91:EB:DD:13:0D:27:81 Certificate issuer: /CN=A919AD11/serialNumber=A554DF3D47027FFAF7CB8A166F3E0A10E3177867 Certificate serial: 013C Authority key identifier: A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:03:04 +0000 ROA not before: Sat 19 Jul 2025 06:11:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153050 IP address blocks: 160.25.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.crl rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AD11, serialNumber=A554DF3D47027FFAF7CB8A166F3E0A10E3177867 Validity Not Before: Jul 19 06:11:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58a88-0d21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:de:d3:7a:d1:39:b5:45:90:cc:b6:5a:f3:c1: dc:02:f6:38:0e:a2:9f:96:2e:d1:af:70:1a:ff:7a: 4b:4f:3e:58:fc:64:2c:88:04:cf:35:cb:5f:4c:35: 02:59:d0:4c:1e:55:02:b7:4d:09:e2:19:fc:96:a5: 95:da:7b:44:60:f6:1d:8e:b9:5d:1f:4d:aa:23:06: 4f:cb:8f:76:ca:ff:8b:e4:8c:c8:b5:2c:c3:42:a3: 58:72:35:54:2f:0f:45:3f:9d:c4:16:ea:02:d7:11: 76:76:ad:6a:70:02:25:7c:4e:94:36:5a:c0:8a:0f: b5:57:8c:08:25:4f:ed:5a:8f:25:94:b1:24:d7:a9: 99:2b:a1:6c:f9:83:29:f7:f2:b8:af:35:a6:e9:1b: 89:86:2a:29:93:d4:c5:0c:14:12:25:3d:ca:64:16: 1a:7c:4b:29:45:f6:ae:31:2d:ea:b3:52:b4:4f:ab: 84:54:38:77:4f:b4:c8:0b:ba:17:0d:80:04:53:d1: 9c:3a:54:cb:1b:9e:3c:e3:27:31:84:84:71:16:9e: 88:3d:b9:d3:33:01:fa:0f:fa:58:da:d8:04:0a:c9: 83:ee:d2:ca:46:34:a5:14:a6:2d:d4:83:83:b3:db: bd:46:13:eb:e5:4b:2d:68:63:f0:13:6b:86:6d:4b: a4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FF:1E:C9:BC:30:95:98:2C:99:E2:0F:E7:91:EB:DD:13:0D:27:81 X509v3 Authority Key Identifier: keyid:A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.33.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:5b:e6:20:4c:c6:13:48:91:6e:a5:19:43:1b:47:e5:d3:c9: e8:a3:44:12:4e:bd:a8:3c:2d:b7:1e:8f:95:13:52:8e:e9:51: 9d:c1:d4:0f:7d:78:da:ba:2d:36:f5:7d:bf:22:12:fa:5f:de: 3b:86:86:7b:13:5d:e1:79:44:ea:5a:53:3b:00:56:54:54:94: 6d:d3:e9:97:7e:7d:4f:ab:b1:fe:11:21:14:fe:9d:c8:d1:eb: 51:80:0e:5e:73:c5:17:5b:5b:00:3b:48:06:95:a5:07:f5:db: b4:71:c2:a9:2f:30:35:55:ab:96:d5:f0:bd:61:46:cb:b9:01: 41:b5:4d:b8:5b:9c:e1:52:30:0c:4d:61:c0:35:33:53:d3:c8: e6:c1:02:fa:11:18:db:97:c6:a0:c8:92:41:c3:35:76:c0:c8: 4f:dc:22:4c:ae:9a:c3:0b:c8:c7:9b:05:70:bf:b5:8c:69:21: 32:11:1f:2b:30:ed:fe:19:5d:be:b5:f0:e0:1b:85:94:bf:7c: 57:1c:48:a3:e3:66:91:28:c9:f8:cc:1c:42:17:b8:1b:9b:8a: 59:68:0a:e6:7f:bb:b8:24:31:11:5b:62:c0:22:bb:4a:47:85: c9:bf:1f:58:c8:d8:69:ac:ae:4f:d5:94:25:c2:e7:67:bc:e6: 63:db:7c:a5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFEMTExMTAvBgNVBAUTKEE1NTRERjNENDcwMjdGRkFGN0NCOEExNjZGM0UwQTEw RTMxNzc4NjcwHhcNMjUwNzE5MDYxMTU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE4OC0wZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlt7TetE5tUWQzLZa88HcAvY4DqKfli7Rr3Aa/3pLTz5Y/GQsiATPNctfTDUC WdBMHlUCt00J4hn8lqWV2ntEYPYdjrldH02qIwZPy492yv+L5IzItSzDQqNYcjVU Lw9FP53EFuoC1xF2dq1qcAIlfE6UNlrAig+1V4wIJU/tWo8llLEk16mZK6Fs+YMp 9/K4rzWm6RuJhiopk9TFDBQSJT3KZBYafEspRfauMS3qs1K0T6uEVDh3T7TIC7oX DYAEU9GcOlTLG5484ycxhIRxFp6IPbnTMwH6D/pY2tgECsmD7tLKRjSlFKYt1IOD s9u9RhPr5UstaGPwE2uGbUukZwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNL/Hsm8 MJWYLJniD+eR690TDSeBMB8GA1UdIwQYMBaAFKVU3z1HAn/698uKFm8+ChDjF3hn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUQxMS9GQzUwMzg0ODNB ODkxMUVGOTgxN0IyNkFDNEY5QUUwMi9wVlRmUFVjQ2ZfcjN5NG9XYno0S0VPTVhl R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BWVGZQVWNDZl9yM3k0b1diejRLRU9NWGVHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFEMTEvRkM1MDM4NDgzQTg5MTFFRjk4MTdCMjZBQzRGOUFFMDIvRkIyOUZFQTA2 QzFGMTFFRkE4QzU2OTRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBkhMA0GCSqGSIb3DQEBCwUAA4IBAQBPW+YgTMYTSJFupRlDG0fl 08noo0QSTr2oPC23Ho+VE1KO6VGdwdQPfXjaui029X2/IhL6X947hoZ7E13heUTq WlM7AFZUVJRt0+mXfn1Pq7H+ESEU/p3I0etRgA5ec8UXW1sAO0gGlaUH9du0ccKp LzA1VauW1fC9YUbLuQFBtU24W5zhUjAMTWHANTNT08jmwQL6ERjbl8agyJJBwzV2 wMhP3CJMrprDC8jHmwVwv7WMaSEyER8rMO3+GV2+tfDgG4WUv3xXHEij42aRKMn4 zBxCF7gbm4pZaArmf7u4JDERW2LAIrtKR4XJvx9YyNhprK5P1ZQlwudnvOZj23yl -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:57 2026 by rpki-client