$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/52D518588AAF11EF9F5A6313C4F9AE02.roa File: 52D518588AAF11EF9F5A6313C4F9AE02.roa (raw, json) Hash identifier: 7mz7uGJXQ4CqBMTrgZFYe2WUHKGmXyVago/PI7EUVO8= Subject key identifier: 4B:94:45:53:5F:C4:EB:7C:F2:CE:B6:1A:B3:0B:84:6C:49:1B:E7:7B Certificate issuer: /CN=A91CCAF1/serialNumber=66941DA7EAF30E9344E0321F0B754E7AEFFC3529 Certificate serial: BA Authority key identifier: 66:94:1D:A7:EA:F3:0E:93:44:E0:32:1F:0B:75:4E:7A:EF:FC:35:29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/52D518588AAF11EF9F5A6313C4F9AE02.roa Signing time: Fri 03 Oct 2025 06:33:29 +0000 ROA not before: Fri 03 Oct 2025 06:33:28 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153363 IP address blocks: 160.187.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=66941DA7EAF30E9344E0321F0B754E7AEFFC3529 Validity Not Before: Oct 3 06:33:28 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68df6e38-9008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:35:be:38:60:f8:f2:c8:97:6f:3a:03:9d: 93:6f:56:e1:38:73:ce:ca:7d:40:a9:a3:81:54:22: 0e:b5:4d:29:f1:47:b0:95:bb:0c:ed:6f:64:a7:2d: be:a1:92:b6:29:33:61:ec:9a:ad:3c:1c:89:17:0f: 09:c3:a7:5f:36:45:63:96:42:1c:90:14:9e:7e:be: 16:7f:db:a5:08:52:cd:68:56:a8:62:a4:7e:1b:b1: 4d:32:fd:fe:9b:fc:35:ed:2a:1c:0f:a6:06:2c:7a: f8:5f:88:ab:8a:4e:6a:77:9f:ca:94:a6:3f:8d:c3: a7:55:a8:f6:ea:59:b5:ff:53:25:c1:5b:0f:65:18: ed:74:cc:50:65:9b:91:0b:68:c7:0f:a7:12:55:84: c0:e4:50:aa:92:1f:a6:66:03:34:15:9a:e3:4c:fd: e3:e6:0d:62:2c:e5:db:c9:13:58:39:50:b1:dc:3d: 49:97:52:40:ae:6f:48:89:da:f6:f7:93:59:4c:b2: dd:39:f1:a7:af:b2:cb:f8:1d:f0:59:7e:43:44:a2: b9:d4:83:d8:73:b7:88:e4:b5:94:88:b2:ce:b5:b9: ee:f6:f2:5e:fa:a7:3a:79:fe:7e:38:7b:da:ae:14: 59:56:50:34:60:09:42:59:67:31:2b:e5:aa:84:f0: 9f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:94:45:53:5F:C4:EB:7C:F2:CE:B6:1A:B3:0B:84:6C:49:1B:E7:7B X509v3 Authority Key Identifier: keyid:66:94:1D:A7:EA:F3:0E:93:44:E0:32:1F:0B:75:4E:7A:EF:FC:35:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZpQdp-rzDpNE4DIfC3VOeu_8NSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/00313C328AAD11EFBEF9166AC4F9AE02/52D518588AAF11EF9F5A6313C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.249.0/24 Signature Algorithm: sha256WithRSAEncryption 97:5e:06:56:6f:a1:d6:c5:c3:c0:9b:05:e3:79:46:82:17:2f: 6a:8d:22:ee:3b:87:63:76:9f:1f:33:bb:d6:80:d3:fd:23:43: cd:ca:8f:a7:1a:c3:f7:b0:39:04:26:79:3e:a7:37:54:1b:88: 2e:5a:db:cb:dd:d6:75:03:8d:11:2c:f0:f2:ad:ea:bd:6a:96: f6:c5:c6:bf:65:71:d8:b5:f3:eb:90:7f:75:0c:9d:78:5e:20: d0:f8:f6:28:45:a3:14:90:fc:89:5c:a9:3c:9e:ab:4d:02:da: bf:fa:a1:36:c4:55:c5:71:1c:7a:b0:4b:bc:a7:4d:6f:c7:16: d3:62:7f:b7:4b:94:30:8e:0e:67:4c:ae:e1:5a:05:96:e7:49: a8:40:c9:05:f0:9e:93:51:70:b4:13:dd:55:70:3a:06:94:74: fa:de:20:cc:80:b6:10:cf:1d:67:7b:bc:c6:22:05:4c:40:cc: 91:73:19:2c:92:a2:1d:2a:0b:05:4d:c9:e5:d4:0c:91:56:0c: f0:30:36:6a:d5:01:b9:7d:cb:43:f3:44:88:5b:0d:24:69:dc: 1b:31:07:f3:89:95:7c:f8:9a:c6:e3:51:f0:6a:83:1b:26:d3: 8f:9c:42:b1:bb:f2:79:19:78:60:ac:3c:a8:19:d8:99:25:a4: 07:e4:7b:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDY2OTQxREE3RUFGMzBFOTM0NEUwMzIxRjBCNzU0RTdB RUZGQzM1MjkwHhcNMjUxMDAzMDYzMzI4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmNmUzOC05MDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSQ1vjhg+PLIl286A52Tb1bhOHPOyn1AqaOBVCIOtU0p8UewlbsM7W9kpy2+ oZK2KTNh7JqtPByJFw8Jw6dfNkVjlkIckBSefr4Wf9ulCFLNaFaoYqR+G7FNMv3+ m/w17SocD6YGLHr4X4irik5qd5/KlKY/jcOnVaj26lm1/1MlwVsPZRjtdMxQZZuR C2jHD6cSVYTA5FCqkh+mZgM0FZrjTP3j5g1iLOXbyRNYOVCx3D1Jl1JArm9Iidr2 95NZTLLdOfGnr7LL+B3wWX5DRKK51IPYc7eI5LWUiLLOtbnu9vJe+qc6ef5+OHva rhRZVlA0YAlCWWcxK+WqhPCfBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEuURVNf xOt88s62GrMLhGxJG+d7MB8GA1UdIwQYMBaAFGaUHafq8w6TROAyHwt1Tnrv/DUp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wMDMxM0MzMjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9acFFkcC1yekRwTkU0RElmQzNWT2V1XzhO U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pwUWRwLXJ6RHBORTRESWZDM1ZPZXVfOE5Tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NBRjEvMDAzMTNDMzI4QUFEMTFFRkJFRjkxNjZBQzRGOUFFMDIvNTJENTE4NTg4 QUFGMTFFRjlGNUE2MzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgu/kwDQYJKoZIhvcNAQELBQADggEBAJdeBlZvodbFw8Cb BeN5RoIXL2qNIu47h2N2nx8zu9aA0/0jQ83Kj6caw/ewOQQmeT6nN1QbiC5a28vd 1nUDjREs8PKt6r1qlvbFxr9lcdi18+uQf3UMnXheIND49ihFoxSQ/IlcqTyeq00C 2r/6oTbEVcVxHHqwS7ynTW/HFtNif7dLlDCODmdMruFaBZbnSahAyQXwnpNRcLQT 3VVwOgaUdPreIMyAthDPHWd7vMYiBUxAzJFzGSySoh0qCwVNyeXUDJFWDPAwNmrV Abl9y0PzRIhbDSRp3BsxB/OJlXz4msbjUfBqgxsm04+cQrG78nkZeGCsPKgZ2Jkl pAfke+E= -----END CERTIFICATE-----Generated at Fri Oct 24 18:54:51 2025 by rpki-client