$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa File: CCEAF60C911311EFA9C63854C4F9AE02.roa (raw, json) Hash identifier: YCyt4eq0YTJbjtnPvyQjHsHsHz1MnNzHboaf/xb9tXs= Subject key identifier: ED:44:83:FF:1A:A5:38:2A:74:43:67:3E:2B:E7:26:C6:6B:F0:DF:6A Certificate issuer: /CN=A91EFCFF/serialNumber=E8D6D421282B9019000097761A2563223CA7815E Certificate serial: 0119 Authority key identifier: E8:D6:D4:21:28:2B:90:19:00:00:97:76:1A:25:63:22:3C:A7:81:5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:10:59 +0000 ROA not before: Mon 01 Sep 2025 06:25:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142165 IP address blocks: 160.30.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.crl rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFCFF, serialNumber=E8D6D421282B9019000097761A2563223CA7815E Validity Not Before: Sep 1 06:25:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a59a73-dc66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:05:b3:b8:80:da:e0:fc:fb:9c:29:84:dd:fc: bc:86:6e:15:9a:9b:2d:c3:b1:01:86:ca:5a:e8:32: 7e:aa:60:7b:74:3c:5e:54:57:db:f2:39:d2:dd:b0: c5:5c:a9:42:62:62:50:be:38:2c:45:4e:5a:13:f0: 1e:4b:9b:e2:80:ae:52:7e:4b:4c:20:ad:f3:f9:09: 8a:9e:8a:24:d4:78:fc:78:06:5b:99:62:57:4f:4c: 55:78:27:6d:86:cd:32:7b:ab:bc:d5:92:b3:85:f4: 3d:91:0d:62:c4:6c:69:be:79:fc:b1:e2:34:ae:cb: d6:f3:09:d8:51:95:d4:85:ea:66:bc:e7:f5:01:b7: f1:cb:98:86:5f:dc:04:d3:2c:ac:e0:ea:2e:f5:e9: f4:0e:ab:f9:29:47:92:03:56:b2:c1:8a:7e:6d:b8: 11:06:ed:c6:15:2c:f5:6e:1f:54:df:15:4b:d4:19: 36:eb:50:db:4a:16:a1:9f:f2:c4:4f:f5:6b:2f:75: 86:33:4d:b9:f6:3a:f8:d2:f1:2e:cf:b5:6c:0f:f3: a0:8c:b0:80:71:ae:fe:ff:13:30:2d:eb:98:3a:fe: 3e:00:c2:75:62:89:d9:c3:01:60:1a:ae:eb:db:1f: a1:e9:b7:02:02:4b:f8:db:d5:a1:67:5f:a4:d4:b0: a0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:44:83:FF:1A:A5:38:2A:74:43:67:3E:2B:E7:26:C6:6B:F0:DF:6A X509v3 Authority Key Identifier: keyid:E8:D6:D4:21:28:2B:90:19:00:00:97:76:1A:25:63:22:3C:A7:81:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.228.0/24 Signature Algorithm: sha256WithRSAEncryption aa:7e:03:e6:ce:39:7c:04:6d:c9:ad:55:bb:66:87:de:56:ec: bb:5a:b3:4e:91:bf:0c:51:36:32:5c:32:c0:3d:2a:74:f4:dc: f1:e0:41:80:e9:9f:47:5c:13:df:a7:72:3a:19:7d:06:2f:ba: aa:bd:28:10:6e:ad:aa:92:76:f6:4d:30:9f:8b:fd:74:ae:41: 8f:a2:00:2c:d9:ba:31:ca:0b:00:76:aa:06:43:8b:d0:80:e7: cb:a7:85:2e:bd:5c:25:b4:78:6d:28:11:8b:74:db:71:60:59: c7:28:39:60:14:6a:a2:6f:19:8e:c7:c1:5a:71:68:5a:ed:ea: b5:3c:78:a8:d7:10:9d:d0:84:93:27:83:d6:9e:3d:22:af:4d: aa:85:43:db:81:e2:70:21:43:05:a6:59:ba:31:50:98:38:17: db:bf:69:21:94:9a:af:17:81:8d:68:32:90:53:e2:a8:81:c7: 1e:b8:b2:d0:26:b4:0f:8e:90:57:d3:6a:d2:d1:09:ab:c6:0c: 15:8c:4a:fa:2f:cc:0b:4d:81:7c:af:78:8f:4a:26:99:8e:4b: 53:79:6a:21:56:c0:76:ec:d9:cb:e2:54:7b:93:38:b5:d3:9a: b0:92:44:14:7a:20:e0:a9:09:cb:df:83:b1:88:64:74:c2:7f: 96:f3:b7:57 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDRkYxMTAvBgNVBAUTKEU4RDZENDIxMjgyQjkwMTkwMDAwOTc3NjFBMjU2MzIy M0NBNzgxNUUwHhcNMjUwOTAxMDYyNTMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWE3My1kYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAWzuIDa4Pz7nCmE3fy8hm4Vmpstw7EBhspa6DJ+qmB7dDxeVFfb8jnS3bDF XKlCYmJQvjgsRU5aE/AeS5vigK5SfktMIK3z+QmKnook1Hj8eAZbmWJXT0xVeCdt hs0ye6u81ZKzhfQ9kQ1ixGxpvnn8seI0rsvW8wnYUZXUhepmvOf1Abfxy5iGX9wE 0yys4Oou9en0Dqv5KUeSA1aywYp+bbgRBu3GFSz1bh9U3xVL1Bk261DbShahn/LE T/VrL3WGM0259jr40vEuz7VsD/OgjLCAca7+/xMwLeuYOv4+AMJ1YonZwwFgGq7r 2x+h6bcCAkv429WhZ1+k1LCg6QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO1Eg/8a pTgqdENnPivnJsZr8N9qMB8GA1UdIwQYMBaAFOjW1CEoK5AZAACXdholYyI8p4Fe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkNGRi8wRkE4NUY4ODgy MUYxMUVGQTFEQjRDNzVDNEY5QUUwMi82TmJVSVNncmtCa0FBSmQyR2lWaklqeW5n VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZOYlVJU2dya0JrQUFKZDJHaVZqSWp5bmdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZDRkYvMEZBODVGODg4MjFGMTFFRkExREI0Qzc1QzRGOUFFMDIvQ0NFQUY2MEM5 MTEzMTFFRkE5QzYzODU0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoB7kMA0GCSqGSIb3DQEBCwUAA4IBAQCqfgPmzjl8BG3JrVW7Zofe Vuy7WrNOkb8MUTYyXDLAPSp09Nzx4EGA6Z9HXBPfp3I6GX0GL7qqvSgQbq2qknb2 TTCfi/10rkGPogAs2boxygsAdqoGQ4vQgOfLp4UuvVwltHhtKBGLdNtxYFnHKDlg FGqibxmOx8FacWha7eq1PHio1xCd0ISTJ4PWnj0ir02qhUPbgeJwIUMFplm6MVCY OBfbv2khlJqvF4GNaDKQU+KogcceuLLQJrQPjpBX02rS0QmrxgwVjEr6L8wLTYF8 r3iPSiaZjktTeWohVsB27NnL4lR7kzi105qwkkQUeiDgqQnL34OxiGR0wn+W87dX -----END CERTIFICATE-----Generated at Wed Mar 4 09:47:57 2026 by rpki-client