$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/BD75B3E6818211F0AE3B2562C4F9AE02.roa File: BD75B3E6818211F0AE3B2562C4F9AE02.roa (raw, json) Hash identifier: deIU7Zl7zxSEqTIjGaroE4xnq1wHqEBfpYOwiKotx0g= Subject key identifier: AA:AA:11:BF:FE:08:62:1B:17:E7:A5:1D:82:44:3A:45:34:EF:E5:9B Certificate issuer: /CN=A91E6B9A/serialNumber=F9C444CFCF3B6A375471E3B54874FC2B49B2C726 Certificate serial: 0134 Authority key identifier: F9:C4:44:CF:CF:3B:6A:37:54:71:E3:B5:48:74:FC:2B:49:B2:C7:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-cREz887ajdUceO1SHT8K0myxyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/BD75B3E6818211F0AE3B2562C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:45:40 +0000 ROA not before: Sun 07 Sep 2025 06:42:50 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139820 IP address blocks: 160.30.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/-cREz887ajdUceO1SHT8K0myxyY.crl rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/-cREz887ajdUceO1SHT8K0myxyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-cREz887ajdUceO1SHT8K0myxyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6B9A, serialNumber=F9C444CFCF3B6A375471E3B54874FC2B49B2C726 Validity Not Before: Sep 7 06:42:50 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58674-d20f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:ef:be:1d:5a:bd:12:7d:1c:4a:87:e4:46: bf:d3:da:f2:eb:a5:9d:46:02:e3:49:08:e5:be:72: e3:b9:f4:51:fb:fe:4d:0f:af:d1:29:35:be:b9:09: b3:1c:8a:6e:65:d2:0d:ea:87:21:93:e2:3d:7c:05: a6:29:ff:71:cd:47:6c:0b:dd:a1:d2:e9:d4:46:23: 3d:0f:1e:93:ce:83:9d:81:6d:6e:3b:17:89:d3:fe: 01:16:b5:74:f5:fd:a7:88:8d:1e:4e:62:2a:ba:2c: 89:84:b0:24:66:d1:9e:fb:d4:1c:70:4b:cd:92:51: 3b:29:cf:d8:91:b7:6f:3b:0d:68:01:24:20:26:6a: f4:26:e5:66:53:fb:19:7a:cf:a1:54:a2:bf:24:4a: 71:e1:9e:36:a9:b5:d7:41:eb:dd:ca:45:a2:b0:dc: dc:06:85:70:19:07:6d:7d:74:ed:92:41:8d:0e:43: 84:ca:b3:f4:54:c8:c4:fe:31:33:00:47:b4:4c:a4: 17:45:2c:15:0f:55:a5:63:3a:73:36:15:14:6d:f9: 25:f7:75:bb:ec:5c:fc:a9:21:87:59:01:25:08:71: 43:07:1b:11:96:98:7f:c2:a7:6b:c0:fe:1e:dd:57: d0:fe:53:fb:12:fb:2d:c5:4e:48:e3:ff:76:89:5e: d9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AA:11:BF:FE:08:62:1B:17:E7:A5:1D:82:44:3A:45:34:EF:E5:9B X509v3 Authority Key Identifier: keyid:F9:C4:44:CF:CF:3B:6A:37:54:71:E3:B5:48:74:FC:2B:49:B2:C7:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/-cREz887ajdUceO1SHT8K0myxyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-cREz887ajdUceO1SHT8K0myxyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/BD75B3E6818211F0AE3B2562C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.174.0/24 Signature Algorithm: sha256WithRSAEncryption b7:27:aa:0d:42:fd:79:e8:c8:4b:7d:03:e2:1b:0f:27:ab:69: 2b:7c:09:71:eb:d4:f3:7b:27:8a:72:5c:02:5b:28:96:02:d5: a1:40:36:8c:43:7d:97:4a:a0:a0:6a:2c:eb:1e:f2:a2:0e:01: 46:91:72:ba:4f:44:b2:ac:d4:ec:db:cd:ad:3d:eb:4c:ef:e2: 31:d7:43:8d:3d:54:fd:ee:25:9f:b5:8b:c7:4d:6e:d4:56:4c: 71:14:66:a6:1f:33:97:78:38:2d:b8:96:c0:1a:cc:c9:2d:d9: 2b:b6:47:18:42:13:4d:e3:f3:e8:ec:df:82:d3:41:c0:96:d9: 6d:15:c3:5e:d1:29:1f:dd:67:c3:f3:43:b3:e3:a9:5b:f5:43: 25:a8:6e:be:d5:2f:01:fe:0a:ed:49:e0:87:13:73:5d:e7:31: 4f:19:86:c3:5a:0f:06:9b:8d:65:d6:e5:d5:83:9f:03:f0:3c: dc:4e:d7:3c:57:94:99:f2:bf:c7:94:b3:56:9f:a0:dc:85:88: 45:83:32:7b:40:e5:bc:d6:2f:88:2f:7c:33:e8:ee:01:6e:37: 55:28:c3:c6:30:4c:e0:3f:8b:85:2e:90:06:e0:6a:e7:16:1f: 74:4b:42:c4:ee:95:5c:d2:d9:15:47:78:66:d3:e3:c2:01:9f: 51:22:a5:8a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCOUExMTAvBgNVBAUTKEY5QzQ0NENGQ0YzQjZBMzc1NDcxRTNCNTQ4NzRGQzJC NDlCMkM3MjYwHhcNMjUwOTA3MDY0MjUwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODY3NC1kMjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbDvvh1avRJ9HEqH5Ea/09ry66WdRgLjSQjlvnLjufRR+/5ND6/RKTW+uQmz HIpuZdIN6ochk+I9fAWmKf9xzUdsC92h0unURiM9Dx6TzoOdgW1uOxeJ0/4BFrV0 9f2niI0eTmIquiyJhLAkZtGe+9QccEvNklE7Kc/YkbdvOw1oASQgJmr0JuVmU/sZ es+hVKK/JEpx4Z42qbXXQevdykWisNzcBoVwGQdtfXTtkkGNDkOEyrP0VMjE/jEz AEe0TKQXRSwVD1WlYzpzNhUUbfkl93W77Fz8qSGHWQElCHFDBxsRlph/wqdrwP4e 3VfQ/lP7EvstxU5I4/92iV7ZNwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKqqEb/+ CGIbF+elHYJEOkU07+WbMB8GA1UdIwQYMBaAFPnERM/PO2o3VHHjtUh0/CtJsscm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkI5QS8xMTYwMTI4RTYx NTAxMUVGQUU3QThDNzNDNEY5QUUwMi8tY1JFejg4N2FqZFVjZU8xU0hUOEswbXl4 eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1jUkV6ODg3YWpkVWNlTzFTSFQ4SzBteXh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZCOUEvMTE2MDEyOEU2MTUwMTFFRkFFN0E4QzczQzRGOUFFMDIvQkQ3NUIzRTY4 MTgyMTFGMEFFM0IyNTYyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoB6uMA0GCSqGSIb3DQEBCwUAA4IBAQC3J6oNQv156MhLfQPiGw8n q2krfAlx69TzeyeKclwCWyiWAtWhQDaMQ32XSqCgaizrHvKiDgFGkXK6T0SyrNTs 282tPetM7+Ix10ONPVT97iWftYvHTW7UVkxxFGamHzOXeDgtuJbAGszJLdkrtkcY QhNN4/Po7N+C00HAltltFcNe0Skf3WfD80Oz46lb9UMlqG6+1S8B/grtSeCHE3Nd 5zFPGYbDWg8Gm41l1uXVg58D8DzcTtc8V5SZ8r/HlLNWn6DchYhFgzJ7QOW81i+I L3wz6O4BbjdVKMPGMEzgP4uFLpAG4GrnFh90S0LE7pVc0tkVR3hm0+PCAZ9RIqWK -----END CERTIFICATE-----Generated at Sat Mar 14 11:05:35 2026 by rpki-client