$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/C5D7AFBA502411F0881DEB19C4F9AE02.roa File: C5D7AFBA502411F0881DEB19C4F9AE02.roa (raw, json) Hash identifier: 0gUF/085wYPoCyvzlJWV9rqJj0B1nA/oZ4c4Dkoi26s= Subject key identifier: 5D:EE:7E:37:26:7E:AD:38:7F:0D:53:40:94:54:CA:55:AE:6F:B2:96 Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 0106 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/C5D7AFBA502411F0881DEB19C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:59:26 +0000 ROA not before: Tue 25 Nov 2025 04:22:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153038 IP address blocks: 160.250.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Nov 25 04:22:01 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5a5ce-dee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:3c:f5:4e:51:85:09:7e:63:97:79:fd:ea:46: b9:35:88:44:c4:90:dd:8a:9a:14:42:98:a2:10:2d: 6f:1a:54:aa:2d:fa:f9:20:e4:60:2b:53:84:5c:93: de:ad:36:67:f6:74:55:60:ff:08:89:0e:66:24:42: 1d:c9:93:c0:77:5a:ab:e0:3b:78:f2:b0:a2:b5:c6: 62:35:cb:63:6c:e6:8a:44:10:c0:19:7b:c1:49:2d: 43:35:eb:af:fb:20:0d:22:54:8a:b2:d3:4f:a2:dd: b5:f3:a9:20:4d:8b:d6:2e:b6:53:3a:46:19:87:c2: 15:1f:f2:97:ad:cb:14:3a:46:ee:c7:a8:d1:80:3f: 0c:4e:4b:cd:69:5c:44:9d:00:39:54:09:64:13:b0: db:82:60:4e:00:1b:fb:7c:52:4c:3b:00:2a:d6:85: 6c:5c:62:18:9a:5c:26:9e:1b:cc:59:24:e4:d4:0c: 92:7d:2c:30:35:2e:96:90:23:ff:91:54:23:49:35: a3:7e:47:b4:68:4a:b6:c8:fa:91:b2:c5:41:8f:92: 73:6d:64:7c:d9:77:af:90:33:be:d3:d4:3b:80:85: df:f1:a0:46:be:9d:18:8b:a5:2c:60:ff:b1:1e:ce: 96:a1:1d:41:9b:aa:d5:f5:81:5b:f9:ca:15:03:b2: b4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EE:7E:37:26:7E:AD:38:7F:0D:53:40:94:54:CA:55:AE:6F:B2:96 X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/C5D7AFBA502411F0881DEB19C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.250.83.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:bf:df:e0:d3:1e:fa:3d:a9:a7:4f:77:e3:ef:33:0f:9d:f9: 3c:95:c9:f8:e3:ef:a8:87:2f:b3:0b:2a:ae:66:a9:f2:a6:a2: 9c:8f:3c:d5:45:6b:d8:55:2a:4a:a7:4b:4c:ce:99:5c:60:b5: be:76:78:3c:c2:e8:ba:d3:81:c9:c3:d7:34:7a:d2:f2:39:31: e8:a6:da:5a:ed:d6:45:04:d9:75:1e:29:84:2f:0f:b1:a8:c3: 45:dc:77:36:df:28:7d:37:a4:bd:6a:47:1d:42:20:9c:12:05: 24:7b:e7:75:0f:6c:10:4c:45:e5:8b:34:1d:19:ea:f3:bb:f3: f2:a1:d9:9e:89:1b:a8:61:fe:10:e5:f1:3f:bf:b7:80:9f:29: 3f:c2:e7:0f:6d:51:12:0c:4c:fa:fb:7f:f8:52:ec:27:a6:61: 2b:a7:96:2c:bd:15:58:cb:2a:28:c6:32:93:40:1e:18:8c:88: cb:18:47:7f:32:98:f9:9a:b3:d6:78:53:a1:52:f3:3a:87:3a: 1b:1c:d8:d4:b3:85:27:2e:47:31:6c:8e:78:ec:77:45:68:9b: fd:26:4f:f3:1d:39:85:5a:99:7c:80:a0:a6:c6:6a:f3:f1:1e: be:28:86:74:9c:b0:99:b1:90:fb:8f:aa:b1:1f:c9:84:0e:18: 07:24:91:d4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUxMTI1MDQyMjAxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTVjZS1kZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTz1TlGFCX5jl3n96ka5NYhExJDdipoUQpiiEC1vGlSqLfr5IORgK1OEXJPe rTZn9nRVYP8IiQ5mJEIdyZPAd1qr4Dt48rCitcZiNctjbOaKRBDAGXvBSS1DNeuv +yANIlSKstNPot2186kgTYvWLrZTOkYZh8IVH/KXrcsUOkbux6jRgD8MTkvNaVxE nQA5VAlkE7DbgmBOABv7fFJMOwAq1oVsXGIYmlwmnhvMWSTk1AySfSwwNS6WkCP/ kVQjSTWjfke0aEq2yPqRssVBj5JzbWR82XevkDO+09Q7gIXf8aBGvp0Yi6UsYP+x Hs6WoR1Bm6rV9YFb+coVA7K0LwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFF3ufjcm fq04fw1TQJRUylWub7KWMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUwRkUvMkYyQjZGRTJBQkNBMTFFRkE5OTREMTI5QzRGOUFFMDIvQzVEN0FGQkE1 MDI0MTFGMDg4MURFQjE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoPpTMA0GCSqGSIb3DQEBCwUAA4IBAQAav9/g0x76PamnT3fj7zMP nfk8lcn44++ohy+zCyquZqnypqKcjzzVRWvYVSpKp0tMzplcYLW+dng8wui604HJ w9c0etLyOTHoptpa7dZFBNl1HimELw+xqMNF3Hc23yh9N6S9akcdQiCcEgUke+d1 D2wQTEXlizQdGerzu/PyodmeiRuoYf4Q5fE/v7eAnyk/wucPbVESDEz6+3/4Uuwn pmErp5YsvRVYyyooxjKTQB4YjIjLGEd/Mpj5mrPWeFOhUvM6hzobHNjUs4UnLkcx bI547HdFaJv9Jk/zHTmFWpl8gKCmxmrz8R6+KIZ0nLCZsZD7j6qxH8mEDhgHJJHU -----END CERTIFICATE-----Generated at Thu Mar 26 11:12:06 2026 by rpki-client