$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa File: 36CFD1EE4AD011EF9B941D17C4F9AE02.roa (raw, json) Hash identifier: clS3RHmScKkM+hzQIw2kWZ7VMnwlrU8+cVWCy3qYMaI= Subject key identifier: 31:FC:06:09:2E:C1:EC:E0:E6:34:40:A8:CE:36:93:03:03:E0:C9:1E Certificate issuer: /CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Certificate serial: 0134 Authority key identifier: C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:03:43 +0000 ROA not before: Wed 03 Sep 2025 06:27:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153173 IP address blocks: 160.25.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9, serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Validity Not Before: Sep 3 06:27:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58aaf-45e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b2:ae:72:6b:e1:94:b5:4a:2c:24:e3:2d:a7: db:bb:b9:e4:2c:39:78:97:3d:99:23:09:5d:0c:c1: 11:71:61:04:12:d7:00:de:4e:53:b0:d0:3e:a5:84: 2c:67:79:bc:55:c6:37:98:0a:85:38:a0:d5:b5:0a: 29:ff:24:d5:75:d4:ac:62:76:13:df:2e:e1:39:38: 5f:32:22:8f:f0:1c:9f:67:52:77:71:d3:ab:9a:51: da:f6:dd:51:79:4c:b4:bd:dc:8b:34:fb:90:f8:05: 9a:ed:91:c8:b9:6d:fe:f6:2c:52:2f:b2:b3:3a:c0: 29:18:63:f2:d3:47:b0:fc:d3:db:e0:d1:a8:d2:b8: 5e:0c:f2:80:8f:12:dc:32:63:98:72:43:8e:7f:ae: 05:2e:f0:3a:a7:81:af:11:f5:9a:3e:51:94:05:6c: 01:50:9f:29:91:f9:b5:ac:c6:5e:2b:83:02:69:15: b3:9c:91:71:49:e7:27:37:cd:11:22:59:c9:eb:f2: a3:38:67:e4:fa:da:21:ec:08:93:a4:3e:e1:94:c6: 45:12:3b:ed:ff:f4:a5:69:81:e1:f3:7b:9d:27:f4: 7d:93:73:f9:99:a2:dc:c9:92:7b:05:d5:70:0f:8b: 66:7a:4d:3e:30:c1:e7:c2:37:36:b8:6e:88:eb:3e: 48:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FC:06:09:2E:C1:EC:E0:E6:34:40:A8:CE:36:93:03:03:E0:C9:1E X509v3 Authority Key Identifier: keyid:C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.25.213.0/24 Signature Algorithm: sha256WithRSAEncryption 65:61:78:ef:e5:74:68:00:a1:4d:b1:71:d5:b4:16:1d:30:2c: 78:b0:48:ad:ec:c0:81:8f:fe:6f:62:d3:c0:53:6f:71:48:1a: 05:ee:46:7e:1f:13:5d:62:8d:cd:8c:a4:f5:b3:77:ac:9f:4c: 05:36:6a:96:13:c1:23:67:1c:df:c7:e2:31:b0:16:ee:a4:f3: 1f:c0:d4:17:e1:d0:84:6f:4f:86:48:1d:0e:e9:e9:99:0b:11: 08:2e:5e:97:14:bb:a7:7d:60:c9:84:36:96:c0:f5:4f:25:0d: c2:1a:3c:2e:62:8d:f9:26:64:9a:73:2e:dc:2c:e2:56:2d:44: 78:e2:10:91:96:87:b0:80:15:8a:eb:f8:2c:ff:98:2d:93:29: 8c:67:96:0e:da:9f:76:34:a8:98:11:76:8c:5d:38:3c:08:cf: 25:af:57:6f:8b:56:9c:a7:7e:aa:d5:5b:02:90:41:57:86:38: 7a:78:23:26:55:81:b1:04:db:ce:8d:18:09:19:1f:a7:6d:05: 1b:7b:5a:7b:25:bc:66:b0:9f:49:e9:1c:46:c0:1e:68:f0:ee: 64:a7:67:40:22:53:aa:2e:7d:6a:74:cb:d7:4e:60:18:26:75: 32:ec:ac:fa:2f:39:f8:ee:2b:07:ec:a2:72:0a:ff:cf:35:2e: 1c:71:d2:18 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxRjkxMTAvBgNVBAUTKEMyN0FFMUQxNjQ3MjlGNDNEOUUwRkE2NEJFNTFEMEI2 QUUwOUVCOTkwHhcNMjUwOTAzMDYyNzMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGFhZi00NWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbKucmvhlLVKLCTjLafbu7nkLDl4lz2ZIwldDMERcWEEEtcA3k5TsNA+pYQs Z3m8VcY3mAqFOKDVtQop/yTVddSsYnYT3y7hOThfMiKP8ByfZ1J3cdOrmlHa9t1R eUy0vdyLNPuQ+AWa7ZHIuW3+9ixSL7KzOsApGGPy00ew/NPb4NGo0rheDPKAjxLc MmOYckOOf64FLvA6p4GvEfWaPlGUBWwBUJ8pkfm1rMZeK4MCaRWznJFxSecnN80R IlnJ6/KjOGfk+toh7AiTpD7hlMZFEjvt//SlaYHh83udJ/R9k3P5maLcyZJ7BdVw D4tmek0+MMHnwjc2uG6I6z5IIwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDH8Bgku wezg5jRAqM42kwMD4MkeMB8GA1UdIwQYMBaAFMJ64dFkcp9D2eD6ZL5R0LauCeuZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDFGOS80MDJFRDI3MjRB Q0YxMUVGQjgyMThFMTVDNEY5QUUwMi93bnJoMFdSeW4wUFo0UHBrdmxIUXRxNEo2 NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ducmgwV1J5bjBQWjRQcGt2bEhRdHE0SjY1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQxRjkvNDAyRUQyNzI0QUNGMTFFRkI4MjE4RTE1QzRGOUFFMDIvMzZDRkQxRUU0 QUQwMTFFRjlCOTQxRDE3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoBnVMA0GCSqGSIb3DQEBCwUAA4IBAQBlYXjv5XRoAKFNsXHVtBYd MCx4sEit7MCBj/5vYtPAU29xSBoF7kZ+HxNdYo3NjKT1s3esn0wFNmqWE8EjZxzf x+IxsBbupPMfwNQX4dCEb0+GSB0O6emZCxEILl6XFLunfWDJhDaWwPVPJQ3CGjwu Yo35JmSacy7cLOJWLUR44hCRloewgBWK6/gs/5gtkymMZ5YO2p92NKiYEXaMXTg8 CM8lr1dvi1acp36q1VsCkEFXhjh6eCMmVYGxBNvOjRgJGR+nbQUbe1p7JbxmsJ9J 6RxGwB5o8O5kp2dAIlOqLn1qdMvXTmAYJnUy7Kz6Lzn47isH7KJyCv/PNS4ccdIY -----END CERTIFICATE-----Generated at Fri Mar 27 02:39:37 2026 by rpki-client