$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/CE1E14AE64DC11EFBE5A023AC4F9AE02.roa File: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (raw, json) Hash identifier: 54Ea1mTVG8VfmRw/L9YxXLSKvOdr6tHDGBcwWayi7ek= Subject key identifier: 43:4C:76:03:42:57:A0:44:1B:A8:2A:66:D3:35:7D:19:58:86:EA:04 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: C2 Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/CE1E14AE64DC11EFBE5A023AC4F9AE02.roa Signing time: Wed 03 Sep 2025 07:06:09 +0000 ROA not before: Wed 03 Sep 2025 07:06:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 965 IP address blocks: 160.30.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Sep 3 07:06:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7e8e1-088d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5b:05:8a:76:0b:f7:cd:36:92:23:97:7c:ff: f6:e4:5b:bc:fd:ac:2a:07:29:35:9b:6a:65:02:6a: 42:33:37:22:65:34:6d:0b:ea:1a:bf:44:33:30:25: a8:ed:dd:88:0b:54:3f:5d:d7:1e:dd:2f:7c:05:ee: d9:65:cf:52:c5:9f:7e:20:80:e6:60:41:26:5b:55: 4b:96:99:f6:c7:d0:6d:e3:fc:ec:f3:0b:b8:28:e5: 58:63:b6:78:9f:00:73:e5:18:d0:3d:07:a2:45:10: 2d:a0:a4:bc:f3:16:49:5b:35:f3:97:11:c9:49:1e: ed:0a:36:0a:2a:35:ff:e2:c4:a6:cf:95:3b:f7:d0: 6c:ba:fa:26:63:04:74:11:4d:15:a2:29:2f:b2:db: 12:39:fe:f8:69:57:5b:1d:cb:08:72:d0:a2:e3:f8: cc:d4:41:04:e9:38:2a:91:14:df:f5:94:ef:ee:df: 79:5f:43:0d:21:85:72:e0:0f:5b:2e:32:0d:37:35: 33:d3:5a:a0:17:e7:0b:06:9a:f9:79:99:d3:40:62: 37:46:d8:47:61:24:c6:7a:da:6f:a6:1c:16:f0:5d: 4c:26:8e:bb:b1:4d:bf:31:53:ce:3d:d1:9a:6a:68: fc:5f:ac:0b:f9:da:5c:e6:71:89:03:91:e2:76:57: 3d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4C:76:03:42:57:A0:44:1B:A8:2A:66:D3:35:7D:19:58:86:EA:04 X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/CE1E14AE64DC11EFBE5A023AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.208.0/24 Signature Algorithm: sha256WithRSAEncryption 70:2b:a0:50:09:c1:eb:7b:a2:8a:3b:37:dd:46:c5:d3:c9:c5: 0f:03:6c:49:84:4d:bc:6b:c3:cb:7e:8f:3c:63:3e:04:b5:57: b3:72:73:7f:d3:7e:17:8f:f2:20:89:18:d2:55:ae:ed:37:5c: fe:c5:e3:d8:0c:9e:66:f8:53:33:30:02:d4:23:1b:81:76:16: df:63:e4:26:6c:73:14:34:ea:d2:b9:c2:a0:34:6f:ed:59:60: 41:36:93:0d:45:09:00:c3:98:d4:6a:f0:e5:38:f4:20:cd:0a: 08:40:a2:0c:1a:d7:fc:88:8f:ef:ae:f8:0c:99:c3:91:e7:c5: ec:20:b0:cf:42:51:49:be:a5:8e:13:c9:94:3a:95:0c:51:3e: b7:f2:29:3d:83:97:95:6c:b1:08:17:34:b8:ae:e2:5e:b1:cf: 15:09:0b:55:bd:c9:9e:f9:19:ae:71:1b:66:8d:e0:79:6a:3e: 7d:5c:70:70:b1:14:aa:6e:07:8a:a2:9a:86:fe:c0:a9:ff:84: 41:4a:37:bc:ce:79:64:e9:c2:22:d5:9f:bd:99:e3:90:a0:27: b1:e0:4a:fc:84:64:75:3b:5a:f4:2a:b2:62:c5:40:2b:d2:3c: e7:c6:0e:c7:b8:3b:27:63:ce:53:73:e0:68:74:8b:4c:4b:e7: 89:60:43:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERCN0UxMTAvBgNVBAUTKDAyREExMzI3RjUyQzQwMjNBMzgyMUFDODc4NTBDOTE3 RDhFODM1MjcwHhcNMjUwOTAzMDcwNjA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZThlMS0wODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVsFinYL9802kiOXfP/25Fu8/awqByk1m2plAmpCMzciZTRtC+oav0QzMCWo 7d2IC1Q/Xdce3S98Be7ZZc9SxZ9+IIDmYEEmW1VLlpn2x9Bt4/zs8wu4KOVYY7Z4 nwBz5RjQPQeiRRAtoKS88xZJWzXzlxHJSR7tCjYKKjX/4sSmz5U799BsuvomYwR0 EU0VoikvstsSOf74aVdbHcsIctCi4/jM1EEE6TgqkRTf9ZTv7t95X0MNIYVy4A9b LjINNzUz01qgF+cLBpr5eZnTQGI3RthHYSTGetpvphwW8F1MJo67sU2/MVPOPdGa amj8X6wL+dpc5nGJA5Hidlc90QIDAQABo4IClTCCApEwHQYDVR0OBBYEFENMdgNC V6BEG6gqZtM1fRlYhuoEMB8GA1UdIwQYMBaAFALaEyf1LEAjo4IayHhQyRfY6DUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REI3RS85QzNGRUNEQzY0 REMxMUVGQjMxRUE4MzlDNEY5QUUwMi9BdG9USl9Vc1FDT2pnaHJJZUZESkY5am9O U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OERCN0UvOUMzRkVDREM2NERDMTFFRkIzMUVBODM5QzRGOUFFMDIvQ0UxRTE0QUU2 NERDMTFFRkJFNUEwMjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHtAwDQYJKoZIhvcNAQELBQADggEBAHAroFAJwet7ooo7 N91GxdPJxQ8DbEmETbxrw8t+jzxjPgS1V7Nyc3/TfheP8iCJGNJVru03XP7F49gM nmb4UzMwAtQjG4F2Ft9j5CZscxQ06tK5wqA0b+1ZYEE2kw1FCQDDmNRq8OU49CDN CghAogwa1/yIj++u+AyZw5HnxewgsM9CUUm+pY4TyZQ6lQxRPrfyKT2Dl5VssQgX NLiu4l6xzxUJC1W9yZ75Ga5xG2aN4HlqPn1ccHCxFKpuB4qimob+wKn/hEFKN7zO eWTpwiLVn72Z45CgJ7HgSvyEZHU7WvQqsmLFQCvSPOfGDse4OydjzlNz4Gh0i0xL 54lgQzY= -----END CERTIFICATE-----Generated at Sat Sep 6 19:36:03 2025 by rpki-client