$ rpki-client -vvf rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/9CAF31CA5D8111F0A04DD550C4F9AE02.roa File: 9CAF31CA5D8111F0A04DD550C4F9AE02.roa (raw, json) Hash identifier: 92wZUBl6JW7t9Lz6VY8NqyCC30dn+5kR/99dMirbOek= Subject key identifier: F3:C1:F1:E8:AA:4A:5D:CC:D2:A8:D6:6A:D6:B3:93:5D:CD:96:7F:A7 Certificate issuer: /CN=A913B510/serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Certificate serial: 02 Authority key identifier: 1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/9CAF31CA5D8111F0A04DD550C4F9AE02.roa Signing time: Thu 10 Jul 2025 11:32:51 +0000 ROA not before: Thu 10 Jul 2025 11:32:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 149486 IP address blocks: 160.30.16.0/24 maxlen: 24 160.30.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 08:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B510, serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Validity Not Before: Jul 10 11:32:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686fa4e3-eab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:f6:94:2f:56:c0:ae:c3:64:b5:e4:46:bd: eb:f4:9e:7b:ca:af:62:38:a9:67:1c:6d:e0:db:35: 5c:0b:3b:b2:e1:de:0d:ed:81:8d:10:f5:77:8a:f0: 9b:b2:46:b2:15:fa:a7:b7:d2:7f:58:8f:e6:b5:11: 9a:82:18:65:87:ba:bd:80:dd:67:1c:67:c0:ef:cb: 2d:b9:11:3c:8f:a8:f2:b2:5c:7f:f5:1a:a4:ef:14: b4:0e:9a:14:21:f1:f8:78:53:a6:3f:02:d4:85:9f: 40:1a:45:03:88:89:45:c0:e4:c4:99:5a:8f:53:9b: 8f:cf:d3:48:3a:39:51:47:72:74:0b:77:3a:4d:27: f8:ab:a3:3c:96:06:f3:c6:cc:aa:1a:c8:fe:85:eb: bc:e9:c0:2f:81:cf:db:4d:ac:05:ec:69:dd:ab:19: 29:06:e9:9d:c7:2f:5c:8c:aa:8c:1c:1d:e5:42:3a: 2a:8b:ba:5c:69:93:0d:94:b7:2d:e3:f4:b4:7b:f1: 8d:00:36:bc:80:78:d2:de:79:a6:61:45:e1:70:25: 48:bc:f5:30:11:9e:dc:9b:3d:e6:c8:33:ae:f5:51: 7f:6b:ac:32:6a:d6:d8:f5:21:f0:36:76:5c:82:3c: 60:ee:93:87:cf:75:d0:5d:25:ba:01:57:a7:37:f1: 2a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C1:F1:E8:AA:4A:5D:CC:D2:A8:D6:6A:D6:B3:93:5D:CD:96:7F:A7 X509v3 Authority Key Identifier: keyid:1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/9CAF31CA5D8111F0A04DD550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.16.0/23 Signature Algorithm: sha256WithRSAEncryption a8:84:4d:9c:7e:2e:1d:5e:5a:0b:ad:76:48:90:b0:ed:04:1c: 88:f5:b5:33:82:86:28:36:40:06:96:3f:6d:37:11:92:0d:e5: f0:bc:6e:f1:1d:88:bd:b2:0f:c0:e3:5e:e9:d8:70:d1:3e:52: bd:8e:eb:9c:44:d3:d9:7f:94:9d:dc:0e:38:1b:e7:5e:cb:44: dd:70:15:cf:0a:22:21:72:8a:5e:0a:46:40:d5:ad:a8:1f:ae: f4:57:e7:6c:c2:83:1a:18:51:c4:ac:02:e0:6e:58:97:25:c8: 2a:a7:6c:6c:40:44:9f:c0:12:37:85:54:60:8a:77:ed:8a:6f: 36:53:2e:2e:e1:b4:b9:a6:84:a4:30:c5:b8:3f:ad:f8:3d:26: 8a:6b:e1:51:e5:8e:d6:a3:7c:f3:f0:12:fe:60:36:01:84:8e: c8:bc:d1:82:95:76:85:2d:fe:97:0b:b4:5f:f6:87:d3:8a:89: 8a:f3:f2:b7:d3:49:7d:56:a8:b3:a9:bb:79:e8:5c:3f:13:d4: 4b:d3:38:ad:b3:05:d4:70:dd:8c:71:86:c6:70:8a:62:c5:24: 73:df:34:82:cd:69:80:ed:e6:80:5a:bc:ff:61:f7:6c:34:30: b5:15:e2:91:90:89:06:5c:5e:2a:87:d9:66:16:10:07:61:aa: c8:58:d7:cf -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjUxMDExMC8GA1UEBRMoMUExNkEzOTFEMzI1MTcwQjdCODVDNEJGQzc4NTVBMTc3 RDM0N0I2RTAeFw0yNTA3MTAxMTMyNTFaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NmZhNGUzLWVhYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWN/aUL1bArsNkteRGvev0nnvKr2I4qWccbeDbNVwLO7Lh3g3tgY0Q9XeK8Juy RrIV+qe30n9Yj+a1EZqCGGWHur2A3WccZ8Dvyy25ETyPqPKyXH/1GqTvFLQOmhQh 8fh4U6Y/AtSFn0AaRQOIiUXA5MSZWo9Tm4/P00g6OVFHcnQLdzpNJ/irozyWBvPG zKoayP6F67zpwC+Bz9tNrAXsad2rGSkG6Z3HL1yMqowcHeVCOiqLulxpkw2Uty3j 9LR78Y0ANryAeNLeeaZhReFwJUi89TARntybPebIM671UX9rrDJq1tj1IfA2dlyC PGDuk4fPddBdJboBV6c38SqZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU88Hx6KpK XczSqNZq1rOTXc2Wf6cwHwYDVR0jBBgwFoAUGhajkdMlFwt7hcS/x4VaF300e24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNTEwLzE4ODJEMEU2NUQ4 MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0N2hjU194NFZhRjMwMGUy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2hhamtkTWxGd3Q3aGNTX3g0VmFGMzAwZTI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjUxMC8xODgyRDBFNjVEODExMUYwOTEyMjZFMzFDNEY5QUUwMi85Q0FGMzFDQTVE ODExMUYwQTA0REQ1NTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAeEDANBgkqhkiG9w0BAQsFAAOCAQEAqIRNnH4uHV5aC612 SJCw7QQciPW1M4KGKDZABpY/bTcRkg3l8Lxu8R2IvbIPwONe6dhw0T5SvY7rnETT 2X+UndwOOBvnXstE3XAVzwoiIXKKXgpGQNWtqB+u9FfnbMKDGhhRxKwC4G5YlyXI KqdsbEBEn8ASN4VUYIp37YpvNlMuLuG0uaaEpDDFuD+t+D0mimvhUeWO1qN88/AS /mA2AYSOyLzRgpV2hS3+lwu0X/aH04qJivPyt9NJfVaos6m7eehcPxPUS9M4rbMF 1HDdjHGGxnCKYsUkc980gs1pgO3mgFq8/2H3bDQwtRXikZCJBlxeKofZZhYQB2Gq yFjXzw== -----END CERTIFICATE-----Generated at Tue Jul 22 20:38:44 2025 by rpki-client