$ rpki-client -vvf rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/64517A3886E311EFA2B33527C4F9AE02.roa File: 64517A3886E311EFA2B33527C4F9AE02.roa (raw, json) Hash identifier: jJmFWeK8DxzcyCmNzQTOimZpBnvjDB61t5aPUy56grE= Subject key identifier: 05:78:58:00:83:DB:27:8B:14:34:2D:5F:81:87:A7:43:C4:4C:56:08 Certificate issuer: /CN=A91B87FC/serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Certificate serial: AF Authority key identifier: 3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/64517A3886E311EFA2B33527C4F9AE02.roa Signing time: Sun 31 Aug 2025 07:24:20 +0000 ROA not before: Sun 31 Aug 2025 07:24:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133551 IP address blocks: 160.30.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B87FC, serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Validity Not Before: Aug 31 07:24:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3f8a4-981a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6b:1d:cd:8a:08:33:20:8d:27:a8:36:3d:cb: 2a:3e:78:03:c7:15:c2:86:44:54:62:43:11:bc:b0: 96:dc:da:66:75:2e:5d:e2:1d:92:3b:61:6f:dc:9f: e0:11:e0:95:d7:46:2f:ba:a5:77:2b:3f:bd:55:95: 34:ad:09:cc:ba:d4:ab:8d:24:4c:11:dd:0d:2d:d1: c3:31:77:4c:1e:91:a3:05:f7:55:c8:cb:ef:89:a3: 3e:da:29:57:f8:c5:8e:bd:2c:86:26:5d:db:78:8b: 3c:33:ec:26:3a:04:e2:fe:77:f7:c7:58:ef:41:9d: f3:e9:eb:6f:db:c8:f5:5a:42:f2:7d:87:99:b7:63: 94:da:b9:1c:eb:bf:16:14:96:01:ef:aa:15:d7:3e: f4:a6:da:7f:bf:bc:3c:1c:40:4a:80:04:48:08:79: b1:23:f0:6f:85:0c:7f:bf:ec:89:02:a6:68:a0:e3: cd:41:5e:bd:45:19:21:7e:6b:5e:16:c6:de:75:08: 3e:09:6c:e0:36:fc:53:ab:24:b5:74:15:f8:c7:c7: 77:83:c1:4f:28:27:e2:7e:db:ff:02:d0:0b:ae:dd: cc:33:4d:f4:18:3d:65:7e:e0:b7:f8:fc:68:1f:9d: 9d:58:98:01:f9:77:3e:b6:d3:8d:b7:84:6a:d7:22: 53:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:78:58:00:83:DB:27:8B:14:34:2D:5F:81:87:A7:43:C4:4C:56:08 X509v3 Authority Key Identifier: keyid:3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/64517A3886E311EFA2B33527C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.108.0/24 Signature Algorithm: sha256WithRSAEncryption 53:7a:ac:2b:12:bf:7d:eb:67:47:65:52:82:6b:cf:8a:4b:0a: 29:30:91:6c:60:b8:18:e7:72:92:52:7f:77:e6:b1:a6:2a:6a: 7d:46:8f:68:17:58:77:2f:b8:5d:9b:a5:d6:5c:57:a4:3d:41: d2:a6:e7:c4:87:13:ea:1d:63:5d:7c:22:25:56:48:dc:36:f5: 5b:8b:47:27:06:d0:73:ae:b1:c8:d8:4e:da:fe:8d:60:6a:90: 1b:f7:da:80:9e:08:6a:71:3b:1b:aa:a9:6f:00:cc:4b:dd:47: fc:e6:de:b1:0a:32:13:ce:ed:c9:12:e8:88:6b:14:82:84:84: f2:b9:f3:4c:81:8d:e1:92:1d:a5:2b:b5:8f:20:3e:99:f6:21: b4:53:ec:65:47:f8:ca:be:cc:7c:51:2e:b3:c0:9e:8d:a3:57: a5:73:4d:2a:df:44:21:99:bf:b1:82:62:fd:bc:e3:f1:0b:ba: 3b:c6:8e:96:c9:a2:ad:b7:66:40:9a:f6:15:35:b0:dd:eb:a9: e4:43:6b:52:a3:3d:47:71:ee:b4:b5:08:a4:03:06:74:f7:76: 05:a9:7d:59:da:1f:66:ad:ed:c8:e2:00:b6:61:53:8a:de:15: 9b:43:cf:3a:8d:ac:13:3a:9d:70:b2:ef:b4:e6:32:04:95:48: 18:df:d2:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3RkMxMTAvBgNVBAUTKDNBODc4NzFFM0JBRTY1RURFMkYzMUJCMUFENUM1OUJC N0E3NEFCREQwHhcNMjUwODMxMDcyNDIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZjhhNC05ODFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22sdzYoIMyCNJ6g2PcsqPngDxxXChkRUYkMRvLCW3NpmdS5d4h2SO2Fv3J/g EeCV10YvuqV3Kz+9VZU0rQnMutSrjSRMEd0NLdHDMXdMHpGjBfdVyMvviaM+2ilX +MWOvSyGJl3beIs8M+wmOgTi/nf3x1jvQZ3z6etv28j1WkLyfYeZt2OU2rkc678W FJYB76oV1z70ptp/v7w8HEBKgARICHmxI/BvhQx/v+yJAqZooOPNQV69RRkhfmte FsbedQg+CWzgNvxTqyS1dBX4x8d3g8FPKCfiftv/AtALrt3MM030GD1lfuC3+Pxo H52dWJgB+Xc+ttONt4Rq1yJTtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAV4WACD 2yeLFDQtX4GHp0PETFYIMB8GA1UdIwQYMBaAFDqHhx47rmXt4vMbsa1cWbt6dKvd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODdGQy8zOTc4RTMxNjg2 RTExMUVGOEY3NzNGODJDNEY5QUUwMi9Pb2VISGp1dVplM2k4eHV4clZ4WnUzcDBx OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vZUhIanV1WmUzaTh4dXhyVnhadTNwMHE5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3RkMvMzk3OEUzMTY4NkUxMTFFRjhGNzczRjgyQzRGOUFFMDIvNjQ1MTdBMzg4 NkUzMTFFRkEyQjMzNTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHmwwDQYJKoZIhvcNAQELBQADggEBAFN6rCsSv33rZ0dl UoJrz4pLCikwkWxguBjncpJSf3fmsaYqan1Gj2gXWHcvuF2bpdZcV6Q9QdKm58SH E+odY118IiVWSNw29VuLRycG0HOuscjYTtr+jWBqkBv32oCeCGpxOxuqqW8AzEvd R/zm3rEKMhPO7ckS6IhrFIKEhPK580yBjeGSHaUrtY8gPpn2IbRT7GVH+Mq+zHxR LrPAno2jV6VzTSrfRCGZv7GCYv284/ELujvGjpbJoq23ZkCa9hU1sN3rqeRDa1Kj PUdx7rS1CKQDBnT3dgWpfVnaH2at7cjiALZhU4reFZtDzzqNrBM6nXCy77TmMgSV SBjf0kQ= -----END CERTIFICATE-----Generated at Sun Sep 7 00:29:39 2025 by rpki-client