$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/C5FFC332641C11EFAEC91A2CC4F9AE02.roa File: C5FFC332641C11EFAEC91A2CC4F9AE02.roa (raw, json) Hash identifier: Q17c7SW6XFhNWPI3WKGxRhv0/Nc9pxNZN4PlbthaE54= Subject key identifier: 39:0F:BC:25:3D:6B:28:FF:C8:AB:7E:E8:24:9A:E7:2A:2A:14:8D:E9 Certificate issuer: /CN=A91B4C1B/serialNumber=CEE73A95D5CCEE062E7D5EBA1B5A127052E12538 Certificate serial: C4 Authority key identifier: CE:E7:3A:95:D5:CC:EE:06:2E:7D:5E:BA:1B:5A:12:70:52:E1:25:38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuc6ldXM7gYufV66G1oScFLhJTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/C5FFC332641C11EFAEC91A2CC4F9AE02.roa Signing time: Wed 03 Sep 2025 06:28:36 +0000 ROA not before: Wed 03 Sep 2025 06:28:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153192 IP address blocks: 160.30.76.0/23 maxlen: 23 160.30.76.0/24 maxlen: 24 160.30.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/zuc6ldXM7gYufV66G1oScFLhJTg.crl rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/zuc6ldXM7gYufV66G1oScFLhJTg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuc6ldXM7gYufV66G1oScFLhJTg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C1B, serialNumber=CEE73A95D5CCEE062E7D5EBA1B5A127052E12538 Validity Not Before: Sep 3 06:28:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7e014-9f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:1a:c9:f6:c7:06:b3:c3:ba:8f:56:9f:f6: dd:31:f4:25:b8:e4:81:11:a7:1c:d2:9b:37:bd:bc: 65:82:07:9c:19:2c:90:c9:8f:10:90:cf:56:1a:4c: f6:b0:0d:fb:1a:72:74:42:72:c8:2a:f5:1d:7a:a6: b0:a2:63:4c:f9:f8:f9:50:39:0b:d7:df:ce:2b:6a: 2d:11:6f:d7:b4:8f:86:33:bf:23:f1:fd:4e:60:a6: d2:8b:8b:d1:3e:6a:3e:77:3a:65:78:c8:02:4b:d0: ae:a2:68:7f:f0:b6:4a:9c:6e:99:9a:2f:44:61:36: 5a:f9:c5:e8:aa:93:0f:d8:58:ec:fc:24:98:f2:57: 18:b1:c8:32:7d:67:86:5e:d6:b7:28:b2:f6:66:2a: ac:60:81:ca:7c:05:4c:7c:bc:9f:c2:4d:78:cb:85: d9:54:ef:c2:70:cf:2b:2c:3c:4f:e3:94:60:d8:11: 3c:a1:99:36:d2:9e:a7:2c:7a:d9:86:0e:6b:aa:11: fa:b5:84:20:ae:8f:a8:22:21:de:ba:04:e5:9b:5f: 99:02:8d:86:c5:26:f5:a4:22:54:87:7c:c1:9d:46: 79:81:9a:0a:42:3f:3b:b6:5d:b5:5e:c2:e2:d0:ec: 7b:c4:8d:d6:65:23:c1:26:bf:ee:70:e9:14:93:c8: b3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0F:BC:25:3D:6B:28:FF:C8:AB:7E:E8:24:9A:E7:2A:2A:14:8D:E9 X509v3 Authority Key Identifier: keyid:CE:E7:3A:95:D5:CC:EE:06:2E:7D:5E:BA:1B:5A:12:70:52:E1:25:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/zuc6ldXM7gYufV66G1oScFLhJTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuc6ldXM7gYufV66G1oScFLhJTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/C5FFC332641C11EFAEC91A2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.76.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:7e:6e:2e:77:5d:e4:15:7a:44:83:51:c6:a8:aa:7f:79:05: 25:3f:7c:cb:7d:ba:75:50:a8:37:ae:7f:43:3f:9f:20:6f:57: 97:bf:59:34:14:c3:67:14:51:ac:b0:51:29:fc:c1:ea:aa:fa: 84:4b:a5:86:bf:24:ea:dc:78:c1:0e:3b:1e:44:1f:1b:ce:5e: ec:f0:6e:5f:3b:f2:a3:d8:c8:91:b4:89:51:44:d2:4b:2d:33: c7:1b:3b:56:d6:7d:dd:83:68:a5:bf:2c:cb:0f:39:6c:9a:01: 12:af:25:5f:80:ee:f9:46:74:18:63:b1:4c:7f:7f:e9:fd:dc: 8e:0a:1d:1d:89:86:ec:b5:17:6f:1a:a7:7c:b4:78:4b:96:06: 27:22:f3:5b:70:74:52:93:2c:77:2f:0b:fd:7c:85:f2:cf:95: 84:8c:d9:29:7f:3e:7f:bd:d5:bb:b0:6e:8e:ad:ed:c0:6f:90: 91:03:b4:28:8e:6d:eb:72:97:0d:b3:6c:3d:e2:72:78:7b:41: cf:7f:3f:4b:6a:d4:7e:47:74:43:c0:36:c2:e0:0f:42:aa:0f: df:60:90:16:25:76:dc:68:0c:a9:f3:bf:72:b3:14:ab:bb:64: 4c:54:16:bb:87:07:8e:23:71:f2:68:a4:0a:59:79:b9:36:d0: 86:36:7f:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDMUIxMTAvBgNVBAUTKENFRTczQTk1RDVDQ0VFMDYyRTdENUVCQTFCNUExMjcw NTJFMTI1MzgwHhcNMjUwOTAzMDYyODM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZTAxNC05ZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1EayfbHBrPDuo9Wn/bdMfQluOSBEacc0ps3vbxlggecGSyQyY8QkM9WGkz2 sA37GnJ0QnLIKvUdeqawomNM+fj5UDkL19/OK2otEW/XtI+GM78j8f1OYKbSi4vR Pmo+dzpleMgCS9Cuomh/8LZKnG6Zmi9EYTZa+cXoqpMP2Fjs/CSY8lcYscgyfWeG Xta3KLL2ZiqsYIHKfAVMfLyfwk14y4XZVO/CcM8rLDxP45Rg2BE8oZk20p6nLHrZ hg5rqhH6tYQgro+oIiHeugTlm1+ZAo2GxSb1pCJUh3zBnUZ5gZoKQj87tl21XsLi 0Ox7xI3WZSPBJr/ucOkUk8iz3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDkPvCU9 ayj/yKt+6CSa5yoqFI3pMB8GA1UdIwQYMBaAFM7nOpXVzO4GLn1euhtaEnBS4SU4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEMxQi9DRjM3MzVEMDY0 MUIxMUVGOTg5MTU0N0ZDNEY5QUUwMi96dWM2bGRYTTdnWXVmVjY2RzFvU2NGTGhK VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p1YzZsZFhNN2dZdWZWNjZHMW9TY0ZMaEpUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjRDMUIvQ0YzNzM1RDA2NDFCMTFFRjk4OTE1NDdGQzRGOUFFMDIvQzVGRkMzMzI2 NDFDMTFFRkFFQzkxQTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHkwwDQYJKoZIhvcNAQELBQADggEBAJ1+bi53XeQVekSD Ucaoqn95BSU/fMt9unVQqDeuf0M/nyBvV5e/WTQUw2cUUaywUSn8weqq+oRLpYa/ JOrceMEOOx5EHxvOXuzwbl878qPYyJG0iVFE0kstM8cbO1bWfd2DaKW/LMsPOWya ARKvJV+A7vlGdBhjsUx/f+n93I4KHR2Jhuy1F28ap3y0eEuWBici81twdFKTLHcv C/18hfLPlYSM2Sl/Pn+91buwbo6t7cBvkJEDtCiObetylw2zbD3icnh7Qc9/P0tq 1H5HdEPANsLgD0KqD99gkBYldtxoDKnzv3KzFKu7ZExUFruHB44jcfJopApZebk2 0IY2f64= -----END CERTIFICATE-----Generated at Sun Sep 7 00:29:38 2025 by rpki-client