$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/B21985725F3711EFA108CA0CC4F9AE02.roa File: B21985725F3711EFA108CA0CC4F9AE02.roa (raw, json) Hash identifier: qCZfH+xJ2p/8mTPa4y8ptTvD/J5HFYkwYWe+Fplo+JE= Subject key identifier: 69:6E:20:2E:D8:14:BD:F0:54:23:07:EB:A3:4F:5F:38:5A:F5:16:4B Certificate issuer: /CN=A91813ED/serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Certificate serial: 0127 Authority key identifier: DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/B21985725F3711EFA108CA0CC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:40:25 +0000 ROA not before: Wed 03 Sep 2025 06:28:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135559 IP address blocks: 160.30.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Validity Not Before: Sep 3 06:28:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58539-771c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:58:e1:bf:99:cf:6c:d4:ac:7c:a3:5e:59:d5: 49:c4:bf:b9:c2:92:9b:39:d9:48:24:42:48:0a:34: 88:c8:3c:19:a8:94:d0:83:8c:6a:46:81:a0:9e:91: b0:b9:ec:e5:01:1c:bc:0e:8b:da:9d:4b:81:82:bb: 03:3c:b2:dd:7a:c8:59:f4:8c:29:c8:c7:28:67:af: 02:ce:b7:0e:d3:23:66:05:81:19:56:e1:bc:11:6f: 11:d0:ef:eb:22:05:71:78:6c:66:dc:ef:0e:a9:4f: 8e:fc:7e:9b:c0:af:d1:d0:85:b1:da:95:ab:12:45: ba:6f:f1:5c:6c:21:27:0b:6e:0f:96:5e:8d:91:27: 6a:76:cb:91:70:e1:39:18:59:4b:f5:c8:10:82:b1: c2:aa:33:37:f6:e0:e5:91:fa:e3:3e:d0:ec:05:b9: a7:e2:5f:0b:9e:e1:c8:b8:af:df:b1:dc:10:16:52: b8:63:fc:0f:aa:4f:a6:b8:29:6b:f8:39:94:96:89: 96:91:43:7d:d8:46:56:7b:09:7f:0d:d3:7c:aa:9d: b6:f8:99:8d:38:57:cc:31:70:65:3c:20:16:d0:37: 2b:79:3a:65:86:c6:cc:fc:ec:88:83:16:8e:9d:3e: 26:cc:ad:c7:d3:6c:a1:55:0e:c9:15:cf:65:c5:a2: de:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6E:20:2E:D8:14:BD:F0:54:23:07:EB:A3:4F:5F:38:5A:F5:16:4B X509v3 Authority Key Identifier: keyid:DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/B21985725F3711EFA108CA0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.37.0/24 Signature Algorithm: sha256WithRSAEncryption c6:aa:b5:19:6a:6d:95:42:5b:d8:2d:fb:2d:8a:b8:6c:d4:b6: 76:cd:f9:51:a7:9b:e3:a5:de:76:b0:0a:e4:ab:d0:8c:53:1c: fc:05:8c:7e:9e:42:65:94:c2:5c:31:a7:55:d3:7d:e2:b4:ed: a6:3f:95:7f:43:14:69:08:15:48:c3:09:ed:6f:ab:16:0a:79: b3:f1:e1:a3:27:f6:6b:c1:dd:fa:50:2a:6e:d8:2a:e1:49:3c: f5:89:e1:f4:b2:2d:dc:25:e3:05:b4:fa:da:78:33:ed:5e:32: 32:cc:79:1e:be:89:10:66:7b:5d:00:bd:5c:57:01:ae:c9:4d: 7c:fd:ae:3e:fe:98:b1:93:7d:33:2e:e8:75:46:b9:78:a7:e6: 93:0e:b7:5b:cd:6c:c8:fa:21:27:13:f1:52:75:2e:92:33:69: 76:a1:79:04:e0:31:09:9c:b4:02:47:ce:94:2e:e6:b0:33:ed: e0:0a:aa:92:f4:74:1d:9a:b9:70:c1:a3:62:3f:0d:43:af:c7: 3f:cd:9f:32:17:93:31:33:d4:f2:c0:5b:70:fa:5f:5f:cf:c5: 9b:91:55:96:a3:df:6d:c1:ea:69:62:1b:b6:5d:c1:35:85:ee: 44:0b:9b:bf:98:40:12:a6:db:83:9b:10:16:e5:0f:12:1c:1f: c5:9f:7d:97 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKERGMjRCNEQ1MUM2Nzg0MURENjAwREQyQTYxNzg2QkNF OTg4Nzg2NjcwHhcNMjUwOTAzMDYyODIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODUzOS03NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1jhv5nPbNSsfKNeWdVJxL+5wpKbOdlIJEJICjSIyDwZqJTQg4xqRoGgnpGw uezlARy8DovanUuBgrsDPLLdeshZ9IwpyMcoZ68CzrcO0yNmBYEZVuG8EW8R0O/r IgVxeGxm3O8OqU+O/H6bwK/R0IWx2pWrEkW6b/FcbCEnC24Pll6NkSdqdsuRcOE5 GFlL9cgQgrHCqjM39uDlkfrjPtDsBbmn4l8LnuHIuK/fsdwQFlK4Y/wPqk+muClr +DmUlomWkUN92EZWewl/DdN8qp22+JmNOFfMMXBlPCAW0DcreTplhsbM/OyIgxaO nT4mzK3H02yhVQ7JFc9lxaLeTQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGluIC7Y FL3wVCMH66NPXzha9RZLMB8GA1UdIwQYMBaAFN8ktNUcZ4Qd1gDdKmF4a86Yh4Zn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC82NzdBQUEzQzVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhCM1dBTjBxWVhocnpwaUho bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzN5UzAxUnhuaEIzV0FOMHFZWGhyenBpSGhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRUQvNjc3QUFBM0M1RjM3MTFFRkJGMzY5RTU4QzRGOUFFMDIvQjIxOTg1NzI1 RjM3MTFFRkExMDhDQTBDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoB4lMA0GCSqGSIb3DQEBCwUAA4IBAQDGqrUZam2VQlvYLfstirhs 1LZ2zflRp5vjpd52sArkq9CMUxz8BYx+nkJllMJcMadV033itO2mP5V/QxRpCBVI wwntb6sWCnmz8eGjJ/Zrwd36UCpu2CrhSTz1ieH0si3cJeMFtPraeDPtXjIyzHke vokQZntdAL1cVwGuyU18/a4+/pixk30zLuh1Rrl4p+aTDrdbzWzI+iEnE/FSdS6S M2l2oXkE4DEJnLQCR86ULuawM+3gCqqS9HQdmrlwwaNiPw1Dr8c/zZ8yF5MxM9Ty wFtw+l9fz8WbkVWWo99tweppYhu2XcE1he5EC5u/mEASptuDmxAW5Q8SHB/Fn32X -----END CERTIFICATE-----Generated at Wed Mar 4 09:50:12 2026 by rpki-client