$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa File: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (raw, json) Hash identifier: qoNSrp1S5UFLz+pkwMGVW1W6xXhNXfIp8HVNYC4sZ1A= Subject key identifier: 56:8A:58:C3:BF:25:72:55:5F:5E:40:8B:7D:A0:69:1E:26:44:BA:C2 Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: 0120 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:35:37 +0000 ROA not before: Wed 01 Oct 2025 07:04:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153310 IP address blocks: 160.30.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Oct 1 07:04:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5a039-0b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:00:db:d5:0c:12:5a:74:fe:9f:5c:6a:a6:bb: 49:67:68:fe:9c:98:66:9e:e1:4c:bc:8c:7e:e6:e2: 06:25:45:d3:ed:48:ab:88:94:21:dc:0f:e3:c1:77: 32:04:62:f4:d5:45:32:39:6a:61:14:be:11:24:b5: 94:e4:75:22:e2:6b:f4:c4:47:4c:b4:1c:bf:b9:9d: b3:17:d4:55:21:bb:10:64:e7:b4:72:83:02:08:81: 40:59:90:32:08:42:78:6b:a5:55:d6:b0:1b:76:b9: 65:ab:fd:05:1d:4c:df:0c:27:17:3d:00:7e:1c:38: 6a:cf:03:a0:36:e9:58:fe:0c:f1:e6:70:b3:47:c4: c2:89:28:aa:3e:a3:24:8f:ea:60:d8:ba:d7:fa:ca: 98:a0:16:bb:f1:ae:ab:ca:26:6a:2c:ea:85:58:e0: e9:0a:d8:d6:64:1b:77:1a:d2:94:56:c6:ad:f3:d5: cc:6d:6d:ca:d4:4b:98:9c:32:ae:26:28:c5:37:91: 75:59:19:5c:44:d6:77:30:fd:d8:20:be:62:43:66: 57:3d:8f:b2:04:8c:5b:1e:82:d3:a3:3a:6f:85:68: 93:08:2c:36:ec:9f:dc:43:9e:63:91:99:8a:d4:a9: 19:de:b5:e7:f4:7a:6e:a7:98:c6:d5:01:be:d9:d8: e4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8A:58:C3:BF:25:72:55:5F:5E:40:8B:7D:A0:69:1E:26:44:BA:C2 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.238.0/23 Signature Algorithm: sha256WithRSAEncryption 71:e4:cb:2e:fe:32:27:c6:73:ef:04:bd:60:98:78:67:81:b7: 29:5d:c4:ff:47:11:0f:ed:ea:67:bc:c7:9d:14:4e:3a:99:ec: 22:2f:57:a2:e2:84:27:0b:b7:a8:f3:1c:84:83:64:a7:a4:75: c5:a0:b6:89:0f:54:60:1c:42:7e:77:af:33:0e:55:50:20:81: d1:1e:d7:79:d2:aa:99:89:f6:0e:52:65:cc:89:52:6b:e1:8c: e7:ae:fc:69:33:e7:77:69:57:65:d1:0b:0e:a2:07:16:4a:6e: 51:38:52:42:5a:df:94:57:63:d3:ec:45:04:7c:b3:15:31:61: 19:90:c0:40:09:fc:95:a6:32:c8:73:e4:36:c6:16:30:ae:10: 4b:43:46:d3:10:14:83:92:2b:32:cf:a5:ee:f8:e0:d8:ae:f6: fa:72:73:97:d1:36:72:56:f0:46:5e:b9:96:f0:14:83:df:23: e0:7a:1d:e9:99:75:37:6d:b8:cb:53:88:3c:23:b0:74:e9:39: 0d:17:d7:13:20:8a:13:99:06:56:63:88:82:a6:55:89:6e:fc: bc:e0:6a:46:33:51:72:81:ed:f3:aa:8f:97:0d:90:98:6c:af: fb:1e:09:a9:c2:a2:0a:92:95:5e:72:2b:ed:bc:63:4b:fb:4b: 25:4d:72:d2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw NzU0MjQ0M0IwHhcNMjUxMDAxMDcwNDU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTAzOS0wYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjQDb1QwSWnT+n1xqprtJZ2j+nJhmnuFMvIx+5uIGJUXT7UiriJQh3A/jwXcy BGL01UUyOWphFL4RJLWU5HUi4mv0xEdMtBy/uZ2zF9RVIbsQZOe0coMCCIFAWZAy CEJ4a6VV1rAbdrllq/0FHUzfDCcXPQB+HDhqzwOgNulY/gzx5nCzR8TCiSiqPqMk j+pg2LrX+sqYoBa78a6ryiZqLOqFWODpCtjWZBt3GtKUVsat89XMbW3K1EuYnDKu JijFN5F1WRlcRNZ3MP3YIL5iQ2ZXPY+yBIxbHoLTozpvhWiTCCw27J/cQ55jkZmK 1KkZ3rXn9Hpup5jG1QG+2djkuQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFaKWMO/ JXJVX15Ai32gaR4mRLrCMB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBERTAvNzA0MEE4RTg2QTg1MTFFRkIxNTY4MTQ3QzRGOUFFMDIvRTU2OUQ2REE2 QTg1MTFFRjlEQjFDRDREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoB7uMA0GCSqGSIb3DQEBCwUAA4IBAQBx5Msu/jInxnPvBL1gmHhn gbcpXcT/RxEP7epnvMedFE46mewiL1ei4oQnC7eo8xyEg2SnpHXFoLaJD1RgHEJ+ d68zDlVQIIHRHtd50qqZifYOUmXMiVJr4YznrvxpM+d3aVdl0QsOogcWSm5ROFJC Wt+UV2PT7EUEfLMVMWEZkMBACfyVpjLIc+Q2xhYwrhBLQ0bTEBSDkisyz6Xu+ODY rvb6cnOX0TZyVvBGXrmW8BSD3yPgeh3pmXU3bbjLU4g8I7B06TkNF9cTIIoTmQZW Y4iCplWJbvy84GpGM1Fyge3zqo+XDZCYbK/7HgmpwqIKkpVecivtvGNL+0slTXLS -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:00 2026 by rpki-client