$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/25922C44F3CF11EFBCC75246C4F9AE02.roa File: 25922C44F3CF11EFBCC75246C4F9AE02.roa (raw, json) Hash identifier: SFDboHNXYkxFP4C1ts24MrwCHP6KpG7hvpdePdBynPw= Subject key identifier: 5F:A6:DD:A6:C0:19:7C:58:92:16:EF:E7:9F:9A:00:C7:DB:A2:13:DC Certificate issuer: /CN=A912A5D4/serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Certificate serial: DD Authority key identifier: 66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/25922C44F3CF11EFBCC75246C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:04:18 +0000 ROA not before: Tue 23 Sep 2025 07:56:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140637 IP address blocks: 143.188.148.0/22 maxlen: 23 143.188.152.0/22 maxlen: 23 143.188.156.0/22 maxlen: 23 143.188.160.0/23 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4, serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Validity Not Before: Sep 23 07:56:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a598e2-a3e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c6:b2:78:21:61:d4:6e:42:a1:e9:b6:ae:ba: 9c:f4:57:79:92:e6:b3:f4:2b:a8:c7:3e:d9:f8:63: b6:40:99:e4:3e:44:ef:49:15:f5:66:ae:77:05:20: bb:89:48:fe:d1:18:91:2b:36:ea:e2:89:c6:55:41: e9:13:64:64:23:03:7b:c9:75:e0:d2:49:cb:84:13: 4c:b9:64:26:2d:9f:bd:b8:23:8f:ab:07:bf:47:94: c6:68:ea:e5:86:80:47:3f:fc:37:91:f3:18:4d:2e: 6d:85:ab:2d:b8:81:59:2d:9a:46:28:26:f7:f4:66: 5b:f2:85:db:e0:a8:6e:28:13:fc:d4:0c:03:e8:be: c0:e4:31:da:ee:2e:87:67:cc:4b:54:0c:a9:7b:70: 0a:e2:3f:f9:1b:82:92:e1:06:b5:18:b8:7b:20:c7: 3b:6e:32:7a:ed:5e:25:9b:ae:e0:64:fb:8c:28:6a: 76:82:ad:4c:be:95:15:5f:da:5e:1e:96:bd:88:b0: ed:85:08:b5:ca:02:cf:33:f6:72:80:6c:3c:90:3f: 11:48:06:1e:49:02:90:0b:f6:ea:50:22:1d:69:a3: dd:f9:8f:72:ab:df:7e:b3:6a:71:84:a8:b6:6c:3a: de:04:e1:89:58:01:23:90:4d:b5:30:ca:b1:52:29: f6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A6:DD:A6:C0:19:7C:58:92:16:EF:E7:9F:9A:00:C7:DB:A2:13:DC X509v3 Authority Key Identifier: keyid:66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/25922C44F3CF11EFBCC75246C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 143.188.148.0-143.188.161.255 Signature Algorithm: sha256WithRSAEncryption dd:1c:22:01:58:1a:34:81:e7:ea:bd:53:40:d0:10:df:42:6e: 98:be:29:e8:5f:90:2f:74:41:29:f9:df:a5:b1:6a:01:9a:6c: 56:08:4a:62:bc:3f:95:06:8a:3e:d9:bd:44:5b:b4:78:1c:18: 32:d5:c0:03:87:1a:82:7b:1b:31:ae:d3:87:1e:a5:3b:34:f2: 23:2d:d8:d5:10:bb:4e:37:0c:dc:d2:a7:07:6b:77:25:be:3a: e2:18:90:2d:d8:43:5f:aa:7a:3f:55:8a:1b:e8:32:f2:93:c1: 8f:4a:6d:fc:1b:23:c4:80:1b:17:94:fc:54:b0:be:77:48:f7: ff:15:99:01:22:da:41:5d:77:61:5d:cd:db:41:fb:fc:03:9d: 68:7a:42:d1:33:df:01:3b:03:36:09:d8:7c:72:40:41:91:49: d5:3d:9c:10:60:1d:79:b4:1b:1b:f8:89:22:02:29:2c:5c:9f: 5c:f8:00:93:91:fd:6d:4d:be:41:33:a2:77:b8:f3:ae:57:4d: b5:51:1e:ef:7d:4c:36:3b:e0:2b:55:ae:54:01:34:1f:11:69: c0:cd:4c:ed:b2:95:f3:2a:fb:f7:d1:02:d5:7c:35:d6:bf:4a: 60:9e:61:e8:af:23:a5:e5:79:fd:dc:ab:c1:fc:c8:5d:38:02: 8d:4c:a4:c8 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE1RDQxMTAvBgNVBAUTKDY2MTM0REExQkZFREFDMEM5MTlEMjZCMUY3RjlFMTY4 QUY5RDJCNEUwHhcNMjUwOTIzMDc1NjE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OThlMi1hM2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8ayeCFh1G5Coem2rrqc9Fd5kuaz9Cuoxz7Z+GO2QJnkPkTvSRX1Zq53BSC7 iUj+0RiRKzbq4onGVUHpE2RkIwN7yXXg0knLhBNMuWQmLZ+9uCOPqwe/R5TGaOrl hoBHP/w3kfMYTS5thastuIFZLZpGKCb39GZb8oXb4KhuKBP81AwD6L7A5DHa7i6H Z8xLVAype3AK4j/5G4KS4Qa1GLh7IMc7bjJ67V4lm67gZPuMKGp2gq1MvpUVX9pe Hpa9iLDthQi1ygLPM/ZygGw8kD8RSAYeSQKQC/bqUCIdaaPd+Y9yq99+s2pxhKi2 bDreBOGJWAEjkE21MMqxUin2PQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFF+m3abA GXxYkhbv55+aAMfbohPcMB8GA1UdIwQYMBaAFGYTTaG/7awMkZ0msff54WivnStO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTVENC82NTBCNERFOEYz Q0UxMUVGOTE0RUY2NDRDNEY5QUUwMi9aaE5Ob2JfdHJBeVJuU2F4OV9uaGFLLWRL MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poTk5vYl90ckF5Um5TYXg5X25oYUstZEswNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE1RDQvNjUwQjRERThGM0NFMTFFRjkxNEVGNjQ0QzRGOUFFMDIvMjU5MjJDNDRG M0NGMTFFRkJDQzc1MjQ2QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAKPvJQDBAGPvKAwDQYJKoZIhvcNAQELBQADggEBAN0cIgFYGjSB 5+q9U0DQEN9Cbpi+KehfkC90QSn536WxagGabFYISmK8P5UGij7ZvURbtHgcGDLV wAOHGoJ7GzGu04cepTs08iMt2NUQu043DNzSpwdrdyW+OuIYkC3YQ1+qej9Vihvo MvKTwY9KbfwbI8SAGxeU/FSwvndI9/8VmQEi2kFdd2FdzdtB+/wDnWh6QtEz3wE7 AzYJ2HxyQEGRSdU9nBBgHXm0Gxv4iSICKSxcn1z4AJOR/W1NvkEzone4865XTbVR Hu99TDY74CtVrlQBNB8RacDNTO2ylfMq+/fRAtV8Nda/SmCeYeivI6Xlef3cq8H8 yF04Ao1MpMg= -----END CERTIFICATE-----Generated at Thu Mar 26 12:19:37 2026 by rpki-client