$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/C5FFC332641C11EFAEC91A2CC4F9AE02.roa File: C5FFC332641C11EFAEC91A2CC4F9AE02.roa (raw, json) Hash identifier: CXpCRLt60Gekc/Mc5tcE7Fr8HBob962lZTc++9cwTzg= Subject key identifier: 9E:F3:76:E1:4D:73:E2:D2:3D:EA:0D:C8:C8:39:AE:85:FD:8C:39:DC Certificate issuer: /CN=A91B4C1B/serialNumber=CEE73A95D5CCEE062E7D5EBA1B5A127052E12538 Certificate serial: 0127 Authority key identifier: CE:E7:3A:95:D5:CC:EE:06:2E:7D:5E:BA:1B:5A:12:70:52:E1:25:38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuc6ldXM7gYufV66G1oScFLhJTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/C5FFC332641C11EFAEC91A2CC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:07:12 +0000 ROA not before: Wed 03 Sep 2025 06:28:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153192 IP address blocks: 160.30.76.0/23 maxlen: 23 160.30.76.0/24 maxlen: 24 160.30.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/zuc6ldXM7gYufV66G1oScFLhJTg.crl rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/zuc6ldXM7gYufV66G1oScFLhJTg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuc6ldXM7gYufV66G1oScFLhJTg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C1B, serialNumber=CEE73A95D5CCEE062E7D5EBA1B5A127052E12538 Validity Not Before: Sep 3 06:28:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a59990-e690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:e9:27:e1:7c:2b:08:b3:78:6b:2e:d0:26: 74:50:d2:58:3a:a2:b8:89:b7:e7:ba:c0:c6:49:cf: af:1a:ef:49:dc:c5:44:27:b9:1d:b5:07:aa:75:55: 83:4c:27:aa:2b:75:3f:18:0f:ee:0b:02:09:20:7a: 90:1c:6e:97:5d:9f:19:ad:4b:55:40:74:27:f6:c8: da:f1:01:76:f0:8b:b1:f6:51:41:bc:28:a7:a8:5a: ef:53:93:d3:32:de:41:af:e8:b6:03:05:38:b3:da: ab:cf:80:3d:02:65:93:1e:ff:7e:09:66:2a:8c:11: 23:dc:c1:65:44:01:cc:a6:a4:c6:c8:99:2a:ea:70: 0e:da:56:95:4e:e9:a4:b3:9d:db:06:95:b7:b5:8d: 28:d8:8b:ac:74:75:ca:77:ad:1f:12:99:f4:f1:66: 3f:e6:00:bd:8b:c0:53:63:e5:bb:45:f0:04:67:8a: 30:ef:43:19:e6:58:f0:f2:0e:c9:3b:ee:e9:55:fd: a3:4d:2d:0f:27:6d:08:62:f8:71:15:38:88:a8:82: 3f:39:68:12:2f:f7:f9:f2:a0:de:a3:24:01:fd:e6: 24:16:fa:80:9c:38:b5:e1:03:fe:98:2b:58:9a:bf: 58:2d:4f:07:a7:4b:f4:51:2a:81:dc:20:3e:2b:ed: 6e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F3:76:E1:4D:73:E2:D2:3D:EA:0D:C8:C8:39:AE:85:FD:8C:39:DC X509v3 Authority Key Identifier: keyid:CE:E7:3A:95:D5:CC:EE:06:2E:7D:5E:BA:1B:5A:12:70:52:E1:25:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/zuc6ldXM7gYufV66G1oScFLhJTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuc6ldXM7gYufV66G1oScFLhJTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C1B/CF3735D0641B11EF9891547FC4F9AE02/C5FFC332641C11EFAEC91A2CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.76.0/23 Signature Algorithm: sha256WithRSAEncryption 60:ff:59:cc:ab:9b:bc:24:31:f7:ad:f7:4c:71:75:fc:26:61: f7:f5:e4:98:09:0e:59:a0:68:09:f0:d2:d1:04:13:b9:d2:3b: a1:db:ce:0c:53:8b:d0:19:d9:24:bf:5a:94:d4:93:4b:cc:ba: 09:e2:06:d8:f0:3b:5e:92:6f:83:be:0d:49:82:07:85:87:7e: 98:d9:e0:9d:88:87:1d:f4:41:28:c8:45:5c:e5:7e:57:57:4e: 38:30:6c:f4:9f:2a:fd:10:fd:8c:07:f5:06:c0:63:a3:d3:5f: b5:22:0a:08:d5:ef:7a:31:26:ef:2c:41:38:44:6b:27:09:14: b7:c0:ee:a8:92:05:a0:3e:81:01:20:66:69:a4:41:c0:f5:1b: 90:ac:f2:83:0e:4b:eb:c7:04:92:d2:c2:86:42:b2:24:20:e5: 92:9d:b3:7c:4a:3d:f7:ce:6f:a6:78:c3:2a:3e:b8:a8:70:c6: dc:cc:1a:d1:41:81:60:87:12:ba:c0:09:6c:4c:2a:2c:7b:76: c4:c5:a0:8c:04:25:9a:7c:a0:d2:8b:c1:77:ee:8a:ee:88:f6: 2e:0e:2a:eb:11:e2:fd:50:21:ac:b4:d7:f5:54:a8:ce:ac:5f: 40:11:dc:e2:b7:fd:7f:f3:3a:8b:54:d9:c5:0e:f6:aa:17:b0: ec:7a:44:6d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDMUIxMTAvBgNVBAUTKENFRTczQTk1RDVDQ0VFMDYyRTdENUVCQTFCNUExMjcw NTJFMTI1MzgwHhcNMjUwOTAzMDYyODM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTk5MC1lNjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA7pJ+F8KwizeGsu0CZ0UNJYOqK4ibfnusDGSc+vGu9J3MVEJ7kdtQeqdVWD TCeqK3U/GA/uCwIJIHqQHG6XXZ8ZrUtVQHQn9sja8QF28Iux9lFBvCinqFrvU5PT Mt5Br+i2AwU4s9qrz4A9AmWTHv9+CWYqjBEj3MFlRAHMpqTGyJkq6nAO2laVTumk s53bBpW3tY0o2IusdHXKd60fEpn08WY/5gC9i8BTY+W7RfAEZ4ow70MZ5ljw8g7J O+7pVf2jTS0PJ20IYvhxFTiIqII/OWgSL/f58qDeoyQB/eYkFvqAnDi14QP+mCtY mr9YLU8Hp0v0USqB3CA+K+1uBwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ7zduFN c+LSPeoNyMg5roX9jDncMB8GA1UdIwQYMBaAFM7nOpXVzO4GLn1euhtaEnBS4SU4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEMxQi9DRjM3MzVEMDY0 MUIxMUVGOTg5MTU0N0ZDNEY5QUUwMi96dWM2bGRYTTdnWXVmVjY2RzFvU2NGTGhK VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p1YzZsZFhNN2dZdWZWNjZHMW9TY0ZMaEpUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjRDMUIvQ0YzNzM1RDA2NDFCMTFFRjk4OTE1NDdGQzRGOUFFMDIvQzVGRkMzMzI2 NDFDMTFFRkFFQzkxQTJDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoB5MMA0GCSqGSIb3DQEBCwUAA4IBAQBg/1nMq5u8JDH3rfdMcXX8 JmH39eSYCQ5ZoGgJ8NLRBBO50juh284MU4vQGdkkv1qU1JNLzLoJ4gbY8Dtekm+D vg1JggeFh36Y2eCdiIcd9EEoyEVc5X5XV044MGz0nyr9EP2MB/UGwGOj01+1IgoI 1e96MSbvLEE4RGsnCRS3wO6okgWgPoEBIGZppEHA9RuQrPKDDkvrxwSS0sKGQrIk IOWSnbN8Sj33zm+meMMqPriocMbczBrRQYFghxK6wAlsTCose3bExaCMBCWafKDS i8F37oruiPYuDirrEeL9UCGstNf1VKjOrF9AEdzit/1/8zqLVNnFDvaqF7DsekRt -----END CERTIFICATE-----Generated at Wed Mar 4 09:47:57 2026 by rpki-client