$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa File: CCEAF60C911311EFA9C63854C4F9AE02.roa (raw, json) Hash identifier: FpNZ3HLo1o4b1YUw3bp5mGEZMF3ekFVbByklPwI6twE= Subject key identifier: ED:68:07:39:4F:13:18:55:91:65:24:A9:AF:42:AB:A6:8A:72:32:3B Certificate issuer: /CN=A91EFCFF/serialNumber=E8D6D421282B9019000097761A2563223CA7815E Certificate serial: B2 Authority key identifier: E8:D6:D4:21:28:2B:90:19:00:00:97:76:1A:25:63:22:3C:A7:81:5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa Signing time: Mon 01 Sep 2025 06:25:31 +0000 ROA not before: Mon 01 Sep 2025 06:25:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142165 IP address blocks: 160.30.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.crl rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFCFF, serialNumber=E8D6D421282B9019000097761A2563223CA7815E Validity Not Before: Sep 1 06:25:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b53c5b-9fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1e:ca:3e:1b:c4:d2:1e:32:71:10:05:eb:1a: 96:dc:b8:88:11:5f:39:1a:fd:de:b5:5b:e5:1c:4c: d9:84:a0:00:7b:53:37:b3:a2:18:67:d0:63:79:47: 6e:a5:bb:06:f0:3d:28:c0:56:24:f6:42:bf:9c:28: 72:b5:db:34:95:86:ac:6b:89:f2:96:6f:9e:47:f6: d2:dc:0a:e7:af:ed:48:94:23:08:85:a3:b7:f5:41: fb:a2:a8:b4:12:84:cb:90:16:c2:58:09:d7:65:7e: 9b:f9:a4:9b:df:35:a3:21:20:c6:ff:4b:c6:f3:24: 41:aa:58:e4:96:9b:06:29:3a:f2:2f:10:dd:46:e1: ea:90:54:f0:9c:5f:84:3f:51:e5:48:dd:ce:da:ed: 4d:44:1b:f6:d8:f6:1f:5d:19:b3:17:2b:41:44:7f: 0d:36:71:db:2c:6e:8a:ab:c6:f6:a9:a7:de:c7:86: 15:9f:38:68:6b:cd:40:bb:e6:7c:23:83:e0:e0:38: 4f:06:3b:0a:2c:46:5d:c1:bb:2e:b9:c4:cd:ac:4e: 8e:f6:50:1c:30:b8:8c:a1:3f:2b:7f:86:85:81:20: 84:42:dd:a1:cb:86:f0:5e:2e:bb:51:3e:4c:68:ce: dc:ba:ea:78:71:41:7e:70:6d:4a:72:d9:75:ae:91: 90:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:68:07:39:4F:13:18:55:91:65:24:A9:AF:42:AB:A6:8A:72:32:3B X509v3 Authority Key Identifier: keyid:E8:D6:D4:21:28:2B:90:19:00:00:97:76:1A:25:63:22:3C:A7:81:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/6NbUISgrkBkAAJd2GiVjIjyngV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6NbUISgrkBkAAJd2GiVjIjyngV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/0FA85F88821F11EFA1DB4C75C4F9AE02/CCEAF60C911311EFA9C63854C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.228.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:8e:42:db:1e:49:d9:cd:33:0c:fc:6a:d5:bf:eb:00:89:15: e2:d3:71:c9:57:9c:4f:dc:4a:e3:56:9a:21:39:b2:e0:f3:81: 12:ff:4a:6a:f7:b9:26:50:76:3d:71:f5:03:67:72:5f:55:7a: 61:c2:d8:b4:d0:24:d6:c0:c2:8a:5f:cf:a8:c6:62:21:a3:69: e0:a3:61:1f:10:48:eb:6e:69:42:ca:32:17:fc:b2:3b:c7:5b: f0:66:82:a3:75:4c:9f:38:01:1d:f7:c4:a9:23:b4:d4:60:15: f8:83:c0:c2:a2:88:f2:bb:ea:5a:2a:ca:9a:4a:7b:5c:a8:36: f0:41:55:3b:ec:0d:06:f1:28:ef:aa:6e:87:59:e6:5c:bf:0c: 66:d1:22:3b:6b:5f:c8:21:ca:0d:39:b9:49:ff:11:8f:fd:a9: ee:d2:c3:68:68:ae:37:2f:56:de:9f:30:ef:16:bd:a4:7b:72: c1:08:59:ac:ba:2e:51:a3:86:65:61:6e:ed:0a:a0:f2:33:a9: 0c:98:5a:41:48:64:91:07:80:06:74:b8:9a:c0:80:a8:07:cc: d1:a9:e3:74:bd:77:55:e7:3f:db:ae:f1:16:57:3c:48:d7:9a: d3:36:bf:c7:15:45:6d:c5:95:6f:a7:58:4d:26:35:40:c5:47: c6:ff:84:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDRkYxMTAvBgNVBAUTKEU4RDZENDIxMjgyQjkwMTkwMDAwOTc3NjFBMjU2MzIy M0NBNzgxNUUwHhcNMjUwOTAxMDYyNTMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1M2M1Yi05ZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0x7KPhvE0h4ycRAF6xqW3LiIEV85Gv3etVvlHEzZhKAAe1M3s6IYZ9BjeUdu pbsG8D0owFYk9kK/nChytds0lYasa4nylm+eR/bS3Arnr+1IlCMIhaO39UH7oqi0 EoTLkBbCWAnXZX6b+aSb3zWjISDG/0vG8yRBqljklpsGKTryLxDdRuHqkFTwnF+E P1HlSN3O2u1NRBv22PYfXRmzFytBRH8NNnHbLG6Kq8b2qafex4YVnzhoa81Au+Z8 I4Pg4DhPBjsKLEZdwbsuucTNrE6O9lAcMLiMoT8rf4aFgSCEQt2hy4bwXi67UT5M aM7cuup4cUF+cG1Kctl1rpGQywIDAQABo4IClTCCApEwHQYDVR0OBBYEFO1oBzlP ExhVkWUkqa9Cq6aKcjI7MB8GA1UdIwQYMBaAFOjW1CEoK5AZAACXdholYyI8p4Fe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkNGRi8wRkE4NUY4ODgy MUYxMUVGQTFEQjRDNzVDNEY5QUUwMi82TmJVSVNncmtCa0FBSmQyR2lWaklqeW5n VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZOYlVJU2dya0JrQUFKZDJHaVZqSWp5bmdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZDRkYvMEZBODVGODg4MjFGMTFFRkExREI0Qzc1QzRGOUFFMDIvQ0NFQUY2MEM5 MTEzMTFFRkE5QzYzODU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgHuQwDQYJKoZIhvcNAQELBQADggEBAI6OQtseSdnNMwz8 atW/6wCJFeLTcclXnE/cSuNWmiE5suDzgRL/Smr3uSZQdj1x9QNncl9VemHC2LTQ JNbAwopfz6jGYiGjaeCjYR8QSOtuaULKMhf8sjvHW/BmgqN1TJ84AR33xKkjtNRg FfiDwMKiiPK76loqyppKe1yoNvBBVTvsDQbxKO+qbodZ5ly/DGbRIjtrX8ghyg05 uUn/EY/9qe7Sw2horjcvVt6fMO8WvaR7csEIWay6LlGjhmVhbu0KoPIzqQyYWkFI ZJEHgAZ0uJrAgKgHzNGp43S9d1XnP9uu8RZXPEjXmtM2v8cVRW3FlW+nWE0mNUDF R8b/hEI= -----END CERTIFICATE-----Generated at Fri Sep 19 18:31:06 2025 by rpki-client