$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/BD75B3E6818211F0AE3B2562C4F9AE02.roa File: BD75B3E6818211F0AE3B2562C4F9AE02.roa (raw, json) Hash identifier: SslSp4nE+vO5Y+MFQ4h3qrKcU+sVczW58pAUxun3o5M= Subject key identifier: 4A:E2:47:9C:89:50:33:5C:42:91:C2:9A:30:05:D5:F0:2C:77:98:64 Certificate issuer: /CN=A91E6B9A/serialNumber=F9C444CFCF3B6A375471E3B54874FC2B49B2C726 Certificate serial: C1 Authority key identifier: F9:C4:44:CF:CF:3B:6A:37:54:71:E3:B5:48:74:FC:2B:49:B2:C7:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-cREz887ajdUceO1SHT8K0myxyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/BD75B3E6818211F0AE3B2562C4F9AE02.roa Signing time: Mon 25 Aug 2025 07:11:38 +0000 ROA not before: Mon 25 Aug 2025 07:11:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139820 IP address blocks: 160.30.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/-cREz887ajdUceO1SHT8K0myxyY.crl rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/-cREz887ajdUceO1SHT8K0myxyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-cREz887ajdUceO1SHT8K0myxyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6B9A, serialNumber=F9C444CFCF3B6A375471E3B54874FC2B49B2C726 Validity Not Before: Aug 25 07:11:38 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68ac0ca9-6018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:24:87:c9:ab:e0:06:a3:aa:1d:62:62:8d:c6: 1d:57:a7:7a:8e:18:61:90:1a:86:25:08:d6:d3:45: 86:59:cb:01:b4:e6:1c:98:47:7d:5d:f8:83:5a:f7: c8:d1:83:bc:41:53:4e:d8:10:57:c5:72:48:f1:7f: d2:4e:b8:4a:c5:ca:46:8a:dd:0e:6d:09:87:f7:9b: bf:d3:36:7d:ae:45:60:69:a8:1c:82:5b:6a:9e:02: 50:f3:a6:1c:f1:a0:5f:f5:c1:fa:12:16:d2:0d:5a: 22:90:e2:fa:fa:80:d8:76:bd:52:59:a3:53:9a:f9: 99:28:74:c6:5e:ca:dc:b6:6b:ba:52:16:e6:81:40: 67:5b:0b:e9:8f:f0:ae:7f:ff:59:b3:e6:c3:d0:97: 3b:bd:11:79:26:6f:7c:db:93:d0:c4:5f:fa:86:4a: 5b:55:c6:5b:7a:c1:41:ce:ac:55:94:94:2f:1e:11: 94:cc:54:ad:7b:dd:6f:25:2d:d4:6d:89:e5:4c:7d: 45:ce:6d:ac:9d:9b:22:36:85:f8:c2:d3:33:a5:93: 5e:91:82:1c:e1:3c:97:ac:62:b8:24:d5:1c:81:ff: d6:bb:51:1d:96:3c:0a:2e:45:2b:dd:86:76:09:f5: 4b:bf:a3:15:8b:ec:b6:27:50:fa:59:cd:eb:a1:48: 9e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E2:47:9C:89:50:33:5C:42:91:C2:9A:30:05:D5:F0:2C:77:98:64 X509v3 Authority Key Identifier: keyid:F9:C4:44:CF:CF:3B:6A:37:54:71:E3:B5:48:74:FC:2B:49:B2:C7:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/-cREz887ajdUceO1SHT8K0myxyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-cREz887ajdUceO1SHT8K0myxyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6B9A/1160128E615011EFAE7A8C73C4F9AE02/BD75B3E6818211F0AE3B2562C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.174.0/24 Signature Algorithm: sha256WithRSAEncryption 13:f4:14:af:22:ad:59:db:60:cd:dd:dd:5a:ae:08:7a:c2:57: 82:c5:78:4e:10:e6:75:25:6b:67:25:fc:f8:f1:cf:7e:17:7d: fb:fc:f1:98:f6:0b:85:cb:bc:1a:80:41:b7:a0:e7:94:27:14: f5:a5:97:83:74:a5:a8:59:dd:92:b1:b6:84:03:c1:0d:85:16: f7:35:00:c8:b3:81:97:bf:cf:55:6d:fa:c0:86:e5:0f:45:cd: b8:cd:54:e8:85:06:4e:d0:0b:ff:cb:7f:2b:7c:45:7d:8b:91: 9f:89:f0:52:33:7b:f9:66:5a:77:fa:e1:28:23:78:2b:0c:04: 04:a6:ab:97:ff:5e:03:06:06:fd:79:24:55:3e:05:38:78:3e: d8:d3:e2:53:6b:2b:36:9f:2a:6e:01:66:7a:fc:aa:d5:d7:77: 6e:17:17:c8:b6:0e:82:85:df:a8:fd:18:12:2b:8c:31:14:32: e7:e0:26:2f:c2:d8:2d:1e:e9:6a:46:4b:95:cc:43:7a:de:5b: 1e:d1:c5:8c:67:29:d3:8e:ef:fb:de:4c:57:1c:4f:e5:d5:53: f5:b5:e8:f0:bf:bf:9c:19:95:c2:87:ff:fb:34:6b:ca:c1:48: 43:b9:9b:f1:d4:c5:58:53:06:c1:95:2c:12:d2:93:07:ee:d4: f5:85:f8:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCOUExMTAvBgNVBAUTKEY5QzQ0NENGQ0YzQjZBMzc1NDcxRTNCNTQ4NzRGQzJC NDlCMkM3MjYwHhcNMjUwODI1MDcxMTM4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFjMGNhOS02MDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CSHyavgBqOqHWJijcYdV6d6jhhhkBqGJQjW00WGWcsBtOYcmEd9XfiDWvfI 0YO8QVNO2BBXxXJI8X/STrhKxcpGit0ObQmH95u/0zZ9rkVgaagcgltqngJQ86Yc 8aBf9cH6EhbSDVoikOL6+oDYdr1SWaNTmvmZKHTGXsrctmu6UhbmgUBnWwvpj/Cu f/9Zs+bD0Jc7vRF5Jm9825PQxF/6hkpbVcZbesFBzqxVlJQvHhGUzFSte91vJS3U bYnlTH1Fzm2snZsiNoX4wtMzpZNekYIc4TyXrGK4JNUcgf/Wu1EdljwKLkUr3YZ2 CfVLv6MVi+y2J1D6Wc3roUie3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEriR5yJ UDNcQpHCmjAF1fAsd5hkMB8GA1UdIwQYMBaAFPnERM/PO2o3VHHjtUh0/CtJsscm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkI5QS8xMTYwMTI4RTYx NTAxMUVGQUU3QThDNzNDNEY5QUUwMi8tY1JFejg4N2FqZFVjZU8xU0hUOEswbXl4 eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1jUkV6ODg3YWpkVWNlTzFTSFQ4SzBteXh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZCOUEvMTE2MDEyOEU2MTUwMTFFRkFFN0E4QzczQzRGOUFFMDIvQkQ3NUIzRTY4 MTgyMTFGMEFFM0IyNTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHq4wDQYJKoZIhvcNAQELBQADggEBABP0FK8irVnbYM3d 3VquCHrCV4LFeE4Q5nUla2cl/Pjxz34Xffv88Zj2C4XLvBqAQbeg55QnFPWll4N0 pahZ3ZKxtoQDwQ2FFvc1AMizgZe/z1Vt+sCG5Q9FzbjNVOiFBk7QC//Lfyt8RX2L kZ+J8FIze/lmWnf64SgjeCsMBASmq5f/XgMGBv15JFU+BTh4PtjT4lNrKzafKm4B Znr8qtXXd24XF8i2DoKF36j9GBIrjDEUMufgJi/C2C0e6WpGS5XMQ3reWx7RxYxn KdOO7/veTFccT+XVU/W16PC/v5wZlcKH//s0a8rBSEO5m/HUxVhTBsGVLBLSkwfu 1PWF+Lw= -----END CERTIFICATE-----Generated at Sun Sep 7 06:22:59 2025 by rpki-client