$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/65783A3A68FE11EFB904E587C4F9AE02.roa File: 65783A3A68FE11EFB904E587C4F9AE02.roa (raw, json) Hash identifier: 8BNbqhDSj5zwZRpetUourvgFN3LcAIxoiLxOQgq3beM= Subject key identifier: 4D:7B:C8:4E:76:37:89:10:09:03:B1:FC:4A:92:AE:E9:09:E5:48:20 Certificate issuer: /CN=A91C7175/serialNumber=7257923D6770C5678919B07CBCFA8AF8B9C5053F Certificate serial: C4 Authority key identifier: 72:57:92:3D:67:70:C5:67:89:19:B0:7C:BC:FA:8A:F8:B9:C5:05:3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cleSPWdwxWeJGbB8vPqK-LnFBT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/65783A3A68FE11EFB904E587C4F9AE02.roa Signing time: Sat 23 Aug 2025 06:12:09 +0000 ROA not before: Sat 23 Aug 2025 06:12:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 142570 IP address blocks: 160.30.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.crl rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cleSPWdwxWeJGbB8vPqK-LnFBT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7175, serialNumber=7257923D6770C5678919B07CBCFA8AF8B9C5053F Validity Not Before: Aug 23 06:12:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68a95bb9-dad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:88:1e:f9:11:43:ff:c5:e8:ba:50:db:eb:1c: 4b:e7:d3:74:35:04:f4:6d:f5:e5:f2:59:b4:d4:d6: 17:cb:52:19:a1:f9:6e:a7:b9:1f:01:da:cb:04:db: 2b:47:87:e2:f1:8f:93:75:9f:a3:0c:58:b4:9e:58: 63:2a:0c:3b:b6:c7:84:52:06:cc:fc:fa:92:2c:44: e0:58:36:e1:8f:de:3b:27:fc:2b:bb:9f:53:40:4b: 01:67:c5:b1:47:85:21:cf:a0:a1:82:83:83:48:2b: 30:5d:3d:3a:c6:47:02:62:ca:bf:d2:cc:91:b2:66: d9:c1:75:80:be:23:a8:ee:ef:f3:9d:6f:08:20:fd: a1:d5:99:53:a8:f3:e1:b1:84:bc:08:af:a2:35:52: c3:a6:21:ef:15:4f:a8:23:fc:2c:54:1c:82:9f:2b: 1b:9b:14:43:91:8c:8e:32:d8:ad:3f:3a:41:d5:16: e4:a7:fe:c3:07:89:fb:64:3f:b2:d1:e8:3f:3a:9d: b7:f4:0f:b0:62:d2:2c:e8:f9:a5:66:b4:03:a3:46: 58:62:f3:c9:ab:b8:09:64:f1:51:52:4e:77:e3:0e: a6:e8:cd:64:03:34:f7:0c:f5:b5:5e:d4:c7:5b:ce: f7:05:f8:9e:1d:a6:71:c2:6c:a7:01:a5:51:72:90: 36:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7B:C8:4E:76:37:89:10:09:03:B1:FC:4A:92:AE:E9:09:E5:48:20 X509v3 Authority Key Identifier: keyid:72:57:92:3D:67:70:C5:67:89:19:B0:7C:BC:FA:8A:F8:B9:C5:05:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cleSPWdwxWeJGbB8vPqK-LnFBT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/65783A3A68FE11EFB904E587C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.234.0/24 Signature Algorithm: sha256WithRSAEncryption ae:90:e8:50:bc:38:62:69:9c:80:63:07:10:12:1b:f5:3f:3b: 75:ec:91:1d:21:50:10:a6:1f:d3:54:d6:0d:c2:25:b3:4e:30: b8:1b:36:63:bb:62:88:d6:a6:21:02:85:e0:09:ef:e4:7f:e1: 50:f9:3b:93:cb:9c:db:c4:fc:4f:d6:4e:98:f9:d4:de:03:bf: 57:19:be:47:cf:db:1d:e5:5c:c7:f6:bc:14:2a:d2:dd:af:f1: 21:a3:d2:ef:54:9e:3e:b5:6c:c8:7c:eb:2f:da:38:ba:30:8e: 37:85:58:a4:52:6c:d2:f4:22:08:db:d1:0c:e9:e3:37:4e:aa: db:b2:c6:b5:cb:ac:55:9f:44:4e:46:83:e8:1a:8e:2d:28:69: 2b:e6:a7:69:fb:90:03:23:78:7e:bf:f1:2c:dc:34:ba:d5:db: 8e:d1:6c:dd:f5:af:1d:7e:10:66:31:67:de:a3:1e:23:4f:bb: 89:cd:c2:49:b3:82:86:be:73:77:d0:81:39:f5:bc:f0:b3:55: 33:f3:d9:6e:a6:f6:55:6a:7d:b7:e3:02:11:3a:85:c3:a4:9b: 58:c1:59:a1:cb:71:bf:80:ae:a8:0f:f3:22:4d:14:2c:3d:ee: 7e:8a:8a:91:d3:a2:d3:f4:9f:91:d8:13:a7:50:1b:b0:eb:52: 0a:1d:f5:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxNzUxMTAvBgNVBAUTKDcyNTc5MjNENjc3MEM1Njc4OTE5QjA3Q0JDRkE4QUY4 QjlDNTA1M0YwHhcNMjUwODIzMDYxMjA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5NWJiOS1kYWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4ge+RFD/8XoulDb6xxL59N0NQT0bfXl8lm01NYXy1IZoflup7kfAdrLBNsr R4fi8Y+TdZ+jDFi0nlhjKgw7tseEUgbM/PqSLETgWDbhj947J/wru59TQEsBZ8Wx R4Uhz6ChgoODSCswXT06xkcCYsq/0syRsmbZwXWAviOo7u/znW8IIP2h1ZlTqPPh sYS8CK+iNVLDpiHvFU+oI/wsVByCnysbmxRDkYyOMtitPzpB1Rbkp/7DB4n7ZD+y 0eg/Op239A+wYtIs6PmlZrQDo0ZYYvPJq7gJZPFRUk534w6m6M1kAzT3DPW1XtTH W873BfieHaZxwmynAaVRcpA2MwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE17yE52 N4kQCQOx/EqSrukJ5UggMB8GA1UdIwQYMBaAFHJXkj1ncMVniRmwfLz6ivi5xQU/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzE3NS9FOUEwOTJCODY4 RkQxMUVGQTk1MDAxODdDNEY5QUUwMi9jbGVTUFdkd3hXZUpHYkI4dlBxSy1MbkZC VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NsZVNQV2R3eFdlSkdiQjh2UHFLLUxuRkJUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcxNzUvRTlBMDkyQjg2OEZEMTFFRkE5NTAwMTg3QzRGOUFFMDIvNjU3ODNBM0E2 OEZFMTFFRkI5MDRFNTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHuowDQYJKoZIhvcNAQELBQADggEBAK6Q6FC8OGJpnIBj BxASG/U/O3XskR0hUBCmH9NU1g3CJbNOMLgbNmO7YojWpiECheAJ7+R/4VD5O5PL nNvE/E/WTpj51N4Dv1cZvkfP2x3lXMf2vBQq0t2v8SGj0u9Unj61bMh86y/aOLow jjeFWKRSbNL0Igjb0Qzp4zdOqtuyxrXLrFWfRE5Gg+gaji0oaSvmp2n7kAMjeH6/ 8SzcNLrV247RbN31rx1+EGYxZ96jHiNPu4nNwkmzgoa+c3fQgTn1vPCzVTPz2W6m 9lVqfbfjAhE6hcOkm1jBWaHLcb+ArqgP8yJNFCw97n6KipHTotP0n5HYE6dQG7Dr Ugod9cE= -----END CERTIFICATE-----Generated at Sun Sep 7 19:06:26 2025 by rpki-client