$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa File: 2042987C6C4411EF9B263275C4F9AE02.roa (raw, json) Hash identifier: NjBAV+BZBuGQVA2KV6NfHJRJuvgRL/XOA20W9Q3lchw= Subject key identifier: FE:DE:7E:F5:E6:52:AE:B3:B2:68:6B:8F:42:A3:91:7D:A4:AE:3B:49 Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: EC Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa Signing time: Sat 13 Sep 2025 05:42:26 +0000 ROA not before: Sat 13 Sep 2025 05:42:26 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152931 IP address blocks: 160.25.2.0/23 maxlen: 23 160.25.2.0/24 maxlen: 24 160.25.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2, serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Sep 13 05:42:26 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c50441-bafb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:53:d2:8f:5f:84:18:fb:0e:f5:19:2d:7b:42: 02:92:2e:73:07:03:32:93:85:2d:0a:ee:0d:74:ee: 97:96:2f:af:91:77:03:fb:fa:79:13:ee:db:a2:d4: 73:3a:fa:93:84:cc:d7:68:30:e4:b3:78:ca:38:98: 56:04:70:3f:b4:aa:65:66:84:38:25:7b:5d:04:6e: 62:bb:7c:f9:2c:5c:d7:11:02:bb:f1:20:53:29:55: 51:1e:4f:ac:c8:2f:03:8d:3d:bd:fb:51:5c:53:e7: 18:b6:ea:b0:3a:d7:77:4f:ec:4a:bf:1e:db:fc:c8: 73:08:55:0b:f0:72:cd:e1:20:7e:f5:12:03:13:01: 90:b7:30:d5:db:59:0c:bc:9b:23:07:80:81:69:c2: 7b:a6:a8:e3:85:be:3a:18:bd:84:61:93:9b:17:c3: 87:be:b2:cb:5a:a0:8c:d5:ce:5f:00:b7:36:39:8f: f1:5f:03:75:02:f7:9e:81:ab:a3:50:af:32:9c:9b: 98:38:b9:4d:93:4f:47:c0:02:96:25:17:09:e1:8e: 55:b6:3d:41:39:d5:ef:dc:47:2a:ba:f4:46:e2:ae: 82:28:7e:cb:62:0a:8e:64:50:79:22:d3:d2:d8:b3: a3:66:e5:ec:fd:64:cd:43:39:44:64:ac:cc:46:88: 15:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DE:7E:F5:E6:52:AE:B3:B2:68:6B:8F:42:A3:91:7D:A4:AE:3B:49 X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/2042987C6C4411EF9B263275C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.2.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:c1:f1:61:bf:b4:7f:3d:86:b3:18:ed:94:66:f3:f6:87:59: fb:88:b3:2b:6e:b6:e8:cf:ee:55:87:f6:a5:0f:15:22:ed:cf: 2e:dc:e7:83:15:78:eb:a8:9f:7e:da:98:c8:34:72:00:48:dd: 6e:8b:ef:d1:ae:de:29:f9:5d:a1:14:d2:03:38:4b:58:7a:17: 83:d4:2b:25:e4:bc:67:99:8d:0a:5d:aa:89:04:59:e4:93:e3: b5:f8:65:b4:a3:49:29:bb:02:61:a9:d2:1a:7d:75:02:e2:48: 2c:a5:8f:b6:78:bc:fb:9d:bf:13:d1:b2:e9:11:ea:74:42:5c: 34:2b:91:ed:98:6e:f3:6d:29:d8:b5:a7:74:5c:ed:15:f2:2b: 5f:c4:8b:48:90:82:6b:39:5f:31:53:1c:dd:b8:07:8f:f7:96: cc:09:73:55:0d:76:df:80:7c:28:20:9d:d8:d9:e8:84:f0:23: e3:96:1f:d4:eb:aa:c3:34:2a:1e:66:1a:4e:fe:73:5d:5f:77: 31:15:c3:36:e1:1d:ed:98:b7:e8:31:c7:af:ce:7f:ed:1e:f3: 3f:ac:30:a7:89:66:52:07:57:f6:8c:4e:5a:38:9b:a1:b1:fc: 49:90:1b:9e:2f:c9:6e:36:85:8e:f2:96:07:8d:93:9b:c6:63: d4:d6:2c:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRTIxMTAvBgNVBAUTKDg0NUQ4OEUwQTIxNTE0NUYzNjdEOTMwNEJGM0Y3MUFF RThFQjRDMkQwHhcNMjUwOTEzMDU0MjI2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM1MDQ0MS1iYWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlPSj1+EGPsO9Rkte0ICki5zBwMyk4UtCu4NdO6Xli+vkXcD+/p5E+7botRz OvqThMzXaDDks3jKOJhWBHA/tKplZoQ4JXtdBG5iu3z5LFzXEQK78SBTKVVRHk+s yC8DjT29+1FcU+cYtuqwOtd3T+xKvx7b/MhzCFUL8HLN4SB+9RIDEwGQtzDV21kM vJsjB4CBacJ7pqjjhb46GL2EYZObF8OHvrLLWqCM1c5fALc2OY/xXwN1Aveegauj UK8ynJuYOLlNk09HwAKWJRcJ4Y5Vtj1BOdXv3EcquvRG4q6CKH7LYgqOZFB5ItPS 2LOjZuXs/WTNQzlEZKzMRogVlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP7efvXm Uq6zsmhrj0KjkX2krjtJMB8GA1UdIwQYMBaAFIRdiOCiFRRfNn2TBL8/ca7o60wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFFMi8yNkE2RjQ0QzNC QUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZGODJmWk1Fdno5eHJ1anJU QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBRTIvMjZBNkY0NEMzQkFDMTFFRjlEN0VBODcxQzRGOUFFMDIvMjA0Mjk4N0M2 QzQ0MTFFRjlCMjYzMjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGQIwDQYJKoZIhvcNAQELBQADggEBAI7B8WG/tH89hrMY 7ZRm8/aHWfuIsytutujP7lWH9qUPFSLtzy7c54MVeOuon37amMg0cgBI3W6L79Gu 3in5XaEU0gM4S1h6F4PUKyXkvGeZjQpdqokEWeST47X4ZbSjSSm7AmGp0hp9dQLi SCylj7Z4vPudvxPRsukR6nRCXDQrke2YbvNtKdi1p3Rc7RXyK1/Ei0iQgms5XzFT HN24B4/3lswJc1UNdt+AfCggndjZ6ITwI+OWH9TrqsM0Kh5mGk7+c11fdzEVwzbh He2Yt+gxx6/Of+0e8z+sMKeJZlIHV/aMTlo4m6Gx/EmQG54vyW42hY7ylgeNk5vG Y9TWLHQ= -----END CERTIFICATE-----Generated at Tue Oct 21 00:52:20 2025 by rpki-client