$ rpki-client -vvf rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa File: 5E85AD042B1B11F0AE3E223BC4F9AE02.roa (raw, json) Hash identifier: q2PsmBaPUlGvEput/dvI1P9mbtnk1siucrhRcpQcM5A= Subject key identifier: D0:47:76:C7:FB:07:0D:44:32:4F:71:63:CC:3C:68:76:FA:69:71:63 Certificate issuer: /CN=A91B87FC/serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Certificate serial: B0 Authority key identifier: 3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa Signing time: Sun 31 Aug 2025 07:24:21 +0000 ROA not before: Sun 31 Aug 2025 07:24:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24499 IP address blocks: 160.30.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 05:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B87FC, serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Validity Not Before: Aug 31 07:24:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3f8a4-129f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7e:4a:cb:26:06:43:82:f2:d9:c7:b3:56:81: 54:2a:a5:d6:42:a7:9b:1a:75:cc:d2:3b:e9:9e:b0: 58:9c:a5:da:b7:92:db:3d:ae:67:5b:29:96:00:b5: c0:e8:98:b8:f6:74:d6:81:4d:c4:c0:68:00:32:d8: 20:64:55:b8:bb:93:d7:d4:3d:12:d2:c2:97:2c:89: d7:d4:cb:fc:da:2a:41:66:3f:bc:fb:6c:41:e7:80: 18:e8:48:54:61:c0:13:fd:49:bd:24:e2:17:7e:24: 8e:26:d4:78:f8:44:7c:95:be:af:ff:14:9c:3a:47: 62:1d:8a:39:0c:5a:99:00:4b:24:47:71:15:8c:01: a4:ca:71:7a:ce:10:8e:39:9d:bc:08:0c:c2:ed:8d: a8:68:79:7c:fe:3e:a1:3e:2b:66:f2:52:bc:f1:64: b7:2f:a1:f3:5e:c8:33:2d:56:d8:f7:28:88:55:d2: cb:43:2e:2b:c9:f8:b3:66:7d:13:c7:8b:5b:43:88: fc:cf:e7:ef:74:6c:3e:56:e0:af:ab:cf:60:d1:70: 4f:77:64:ce:a4:92:75:4f:39:0a:0b:9c:b6:e2:37: 39:0f:9d:a9:7d:d7:59:d1:5b:6e:09:6f:06:90:d6: 8c:0d:46:6b:fb:ae:ad:d5:aa:98:28:fd:0c:cd:b4: df:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:47:76:C7:FB:07:0D:44:32:4F:71:63:CC:3C:68:76:FA:69:71:63 X509v3 Authority Key Identifier: keyid:3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.109.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:2b:89:b3:af:51:77:f6:ec:ea:3f:f2:c1:9a:38:01:f3:a7: ae:f7:80:bc:8a:5b:00:c6:00:c1:22:64:d6:a0:09:90:87:d0: bf:2c:81:fe:04:08:9e:a6:76:d8:ac:39:5f:95:78:b6:6b:bd: 6d:4a:a2:db:e4:2e:9c:a1:97:33:bb:46:fb:a1:31:1a:38:2e: 48:8b:9e:f0:65:ab:be:69:ce:a7:a2:27:ee:c5:08:d5:d9:53: a9:35:24:78:0d:7e:65:ad:9d:c7:79:59:44:27:91:83:51:d0: 80:22:e8:57:dc:26:b7:bc:c9:9a:36:9c:33:b3:1b:ae:65:1e: 7a:00:b4:21:a4:f0:e7:a0:59:d0:57:c4:97:6d:02:f6:35:57: 09:92:b0:03:20:50:c2:7f:78:85:7f:24:27:19:24:0c:83:15: 39:35:b4:02:cd:7c:3c:5a:86:64:9e:9e:a3:0e:b5:73:4d:6f: d7:a1:66:aa:36:27:d9:c6:f1:5b:4f:17:b2:e9:64:a0:08:23: ab:21:a3:44:51:47:a0:20:e2:ec:15:f6:b1:50:7e:cb:4f:67: 5c:ff:5f:d6:1a:28:59:19:db:af:2c:4d:57:d9:49:ab:4d:cb: 15:3b:d4:dd:37:ac:7e:11:12:73:f1:5c:5a:63:65:d1:93:eb: fe:a3:9a:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3RkMxMTAvBgNVBAUTKDNBODc4NzFFM0JBRTY1RURFMkYzMUJCMUFENUM1OUJC N0E3NEFCREQwHhcNMjUwODMxMDcyNDIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZjhhNC0xMjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu35KyyYGQ4Ly2cezVoFUKqXWQqebGnXM0jvpnrBYnKXat5LbPa5nWymWALXA 6Ji49nTWgU3EwGgAMtggZFW4u5PX1D0S0sKXLInX1Mv82ipBZj+8+2xB54AY6EhU YcAT/Um9JOIXfiSOJtR4+ER8lb6v/xScOkdiHYo5DFqZAEskR3EVjAGkynF6zhCO OZ28CAzC7Y2oaHl8/j6hPitm8lK88WS3L6HzXsgzLVbY9yiIVdLLQy4ryfizZn0T x4tbQ4j8z+fvdGw+VuCvq89g0XBPd2TOpJJ1TzkKC5y24jc5D52pfddZ0VtuCW8G kNaMDUZr+66t1aqYKP0MzbTfNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNBHdsf7 Bw1EMk9xY8w8aHb6aXFjMB8GA1UdIwQYMBaAFDqHhx47rmXt4vMbsa1cWbt6dKvd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODdGQy8zOTc4RTMxNjg2 RTExMUVGOEY3NzNGODJDNEY5QUUwMi9Pb2VISGp1dVplM2k4eHV4clZ4WnUzcDBx OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vZUhIanV1WmUzaTh4dXhyVnhadTNwMHE5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3RkMvMzk3OEUzMTY4NkUxMTFFRjhGNzczRjgyQzRGOUFFMDIvNUU4NUFEMDQy QjFCMTFGMEFFM0UyMjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHm0wDQYJKoZIhvcNAQELBQADggEBAFsribOvUXf27Oo/ 8sGaOAHzp673gLyKWwDGAMEiZNagCZCH0L8sgf4ECJ6mdtisOV+VeLZrvW1Kotvk LpyhlzO7RvuhMRo4LkiLnvBlq75pzqeiJ+7FCNXZU6k1JHgNfmWtncd5WUQnkYNR 0IAi6FfcJre8yZo2nDOzG65lHnoAtCGk8OegWdBXxJdtAvY1VwmSsAMgUMJ/eIV/ JCcZJAyDFTk1tALNfDxahmSenqMOtXNNb9ehZqo2J9nG8VtPF7LpZKAII6sho0RR R6Ag4uwV9rFQfstPZ1z/X9YaKFkZ268sTVfZSatNyxU71N03rH4REnPxXFpjZdGT 6/6jmkM= -----END CERTIFICATE-----Generated at Thu Oct 30 14:56:52 2025 by rpki-client