$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/B21985725F3711EFA108CA0CC4F9AE02.roa File: B21985725F3711EFA108CA0CC4F9AE02.roa (raw, json) Hash identifier: hjZJ+P+DDZEo0McDoaqGVpFBbzW2XOruqYUk9+Z9bak= Subject key identifier: 65:1E:58:BA:12:D2:56:64:75:37:F5:1B:F8:75:20:CD:94:9C:6E:F2 Certificate issuer: /CN=A91813ED/serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Certificate serial: C5 Authority key identifier: DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/B21985725F3711EFA108CA0CC4F9AE02.roa Signing time: Wed 03 Sep 2025 06:28:23 +0000 ROA not before: Wed 03 Sep 2025 06:28:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135559 IP address blocks: 160.30.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Validity Not Before: Sep 3 06:28:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7e007-f864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:db:fe:70:ba:a9:d8:6e:40:aa:53:16:e0:b2: e1:44:e5:0a:e4:23:1f:3e:69:ca:78:b8:a6:64:da: 56:b0:38:a9:96:64:7c:8a:66:75:af:78:49:54:da: af:c2:2c:9e:c2:77:26:63:d5:d0:0b:cd:92:4b:25: 16:78:af:04:ab:e1:c1:aa:06:bf:da:79:5c:b5:f7: 62:21:ce:4f:f7:27:96:ac:ec:fb:ea:37:35:c1:ce: 09:9a:b5:b0:05:7c:de:9f:d3:07:10:f9:b4:44:7f: 69:83:3d:a8:43:d5:99:2b:f5:ff:b7:5b:44:4d:60: 85:25:b8:34:c7:0a:ad:d7:0d:62:98:20:44:ce:6c: 06:7f:89:10:a9:84:c0:16:91:86:df:39:4e:10:db: 77:49:78:67:d2:d0:ba:28:10:6d:27:c5:75:94:c8: af:f8:b0:00:c2:01:33:2a:d7:42:40:06:b7:9d:c9: d8:97:28:46:e6:74:05:89:c1:14:33:06:07:13:3e: d8:5b:8f:3c:23:94:3d:ef:7c:4c:39:60:6e:06:f8: d6:d7:16:36:c3:da:f2:f2:5f:79:7c:42:7e:49:01: c8:c2:f4:71:83:35:15:f3:d8:7c:27:d7:09:e1:4e: e0:44:2d:27:df:f2:fa:14:50:f8:97:ac:72:ac:b0: ee:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:1E:58:BA:12:D2:56:64:75:37:F5:1B:F8:75:20:CD:94:9C:6E:F2 X509v3 Authority Key Identifier: keyid:DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/B21985725F3711EFA108CA0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.37.0/24 Signature Algorithm: sha256WithRSAEncryption 23:cf:dc:ee:19:c0:7f:56:b3:7f:0c:d6:f6:e3:fb:69:63:95: 6d:73:26:2b:15:67:85:fd:49:83:e8:74:9c:12:86:23:26:d3: 39:02:12:95:bb:d1:8a:be:94:c0:7f:dc:a1:bd:83:13:49:6f: b9:b1:b3:46:76:0d:6d:57:4a:58:4f:ae:12:b5:1d:98:98:c5: a4:77:b4:b2:7b:f4:24:45:6a:88:a3:e5:5d:a9:e2:a0:af:96: 01:83:67:9a:e1:2d:84:18:2b:31:62:61:86:e4:05:ab:8b:a6: 6f:6a:c5:1a:13:91:42:ec:fb:7c:ed:3a:09:4c:be:fc:2a:c1: a7:af:18:01:dc:1c:e0:47:4a:26:1c:5c:cb:ad:fc:60:94:94: 66:af:be:f6:9e:06:37:5c:7a:d8:5d:a0:e9:af:67:a9:fc:7f: e8:cc:2a:3c:dd:b0:8f:ef:d2:24:38:18:18:ac:bb:17:cb:fc: 6d:bf:02:41:35:a8:31:88:ff:e2:b0:c7:2b:ee:60:c1:47:be: 08:58:f1:a5:62:9b:28:c9:db:09:61:40:0b:d5:3e:d8:6a:a2: 76:ef:63:9b:37:35:a1:0f:8d:ba:82:39:28:30:72:02:36:f3: c9:ce:4e:c5:d5:ac:78:12:7c:cf:1f:82:14:93:d5:0c:dc:d6: 97:d6:7a:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKERGMjRCNEQ1MUM2Nzg0MURENjAwREQyQTYxNzg2QkNF OTg4Nzg2NjcwHhcNMjUwOTAzMDYyODIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZTAwNy1mODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodv+cLqp2G5AqlMW4LLhROUK5CMfPmnKeLimZNpWsDiplmR8imZ1r3hJVNqv wiyewncmY9XQC82SSyUWeK8Eq+HBqga/2nlctfdiIc5P9yeWrOz76jc1wc4JmrWw BXzen9MHEPm0RH9pgz2oQ9WZK/X/t1tETWCFJbg0xwqt1w1imCBEzmwGf4kQqYTA FpGG3zlOENt3SXhn0tC6KBBtJ8V1lMiv+LAAwgEzKtdCQAa3ncnYlyhG5nQFicEU MwYHEz7YW488I5Q973xMOWBuBvjW1xY2w9ry8l95fEJ+SQHIwvRxgzUV89h8J9cJ 4U7gRC0n3/L6FFD4l6xyrLDuVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUeWLoS 0lZkdTf1G/h1IM2UnG7yMB8GA1UdIwQYMBaAFN8ktNUcZ4Qd1gDdKmF4a86Yh4Zn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC82NzdBQUEzQzVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhCM1dBTjBxWVhocnpwaUho bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzN5UzAxUnhuaEIzV0FOMHFZWGhyenBpSGhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRUQvNjc3QUFBM0M1RjM3MTFFRkJGMzY5RTU4QzRGOUFFMDIvQjIxOTg1NzI1 RjM3MTFFRkExMDhDQTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHiUwDQYJKoZIhvcNAQELBQADggEBACPP3O4ZwH9Ws38M 1vbj+2ljlW1zJisVZ4X9SYPodJwShiMm0zkCEpW70Yq+lMB/3KG9gxNJb7mxs0Z2 DW1XSlhPrhK1HZiYxaR3tLJ79CRFaoij5V2p4qCvlgGDZ5rhLYQYKzFiYYbkBauL pm9qxRoTkULs+3ztOglMvvwqwaevGAHcHOBHSiYcXMut/GCUlGavvvaeBjdcethd oOmvZ6n8f+jMKjzdsI/v0iQ4GBisuxfL/G2/AkE1qDGI/+KwxyvuYMFHvghY8aVi myjJ2wlhQAvVPthqonbvY5s3NaEPjbqCOSgwcgI288nOTsXVrHgSfM8fghST1Qzc 1pfWevU= -----END CERTIFICATE-----Generated at Fri Sep 19 16:34:38 2025 by rpki-client