$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3BE/678E16B06FCE11EF89BB4C5EC4F9AE02/10DAF9348C2D11EFB9CC3812C4F9AE02.roa File: 10DAF9348C2D11EFB9CC3812C4F9AE02.roa (raw, json) Hash identifier: uoDT5F7S64QhLS2Zprh4X3DnbqtCN+iY00UgCBuklGE= Subject key identifier: 52:0E:9B:DF:88:5F:40:6B:28:74:CF:D1:6F:62:C5:C7:5C:90:BD:EE Certificate issuer: /CN=A912A3BE/serialNumber=4B2C77BC2DF43C7284D01E45B12DB3BDF00916D1 Certificate serial: C7 Authority key identifier: 4B:2C:77:BC:2D:F4:3C:72:84:D0:1E:45:B1:2D:B3:BD:F0:09:16:D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Syx3vC30PHKE0B5FsS2zvfAJFtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3BE/678E16B06FCE11EF89BB4C5EC4F9AE02/10DAF9348C2D11EFB9CC3812C4F9AE02.roa Signing time: Thu 25 Sep 2025 00:16:22 +0000 ROA not before: Thu 25 Sep 2025 00:16:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146948 IP address blocks: 160.187.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3BE/678E16B06FCE11EF89BB4C5EC4F9AE02/Syx3vC30PHKE0B5FsS2zvfAJFtE.crl rsync://rpki.apnic.net/member_repository/A912A3BE/678E16B06FCE11EF89BB4C5EC4F9AE02/Syx3vC30PHKE0B5FsS2zvfAJFtE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Syx3vC30PHKE0B5FsS2zvfAJFtE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3BE, serialNumber=4B2C77BC2DF43C7284D01E45B12DB3BDF00916D1 Validity Not Before: Sep 25 00:16:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d489d6-d239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:5d:3d:a9:6e:92:28:51:94:86:6b:3b:78: fc:b0:18:35:d5:c5:7f:c1:5f:e6:da:0f:a7:1b:27: c4:35:d1:d2:76:97:99:31:aa:cc:cb:cd:ce:41:f4: 32:61:94:25:a3:b8:69:38:4b:db:19:4e:07:53:6a: 16:be:2b:7a:e3:5c:04:4d:c4:f8:e5:ca:17:44:f5: d5:d6:cc:de:e4:93:ff:fd:f4:bb:12:99:ec:cb:47: 52:d5:9b:12:12:b8:98:ca:ba:ae:06:cd:fc:35:b6: 35:03:f4:f9:e4:e9:59:4e:7d:9d:93:15:f3:3f:42: f4:de:d5:84:0f:f5:d7:a8:7d:0a:ba:cb:c5:b3:5a: 5f:6e:e1:b1:e4:39:ec:3e:6e:ef:34:d0:81:a7:f0: 65:fd:bd:be:dc:62:fe:b6:4f:33:92:95:a4:9f:c1: c0:a7:e2:ed:ec:cd:d1:be:66:81:c2:de:47:62:45: e9:d1:ee:0e:2f:5f:28:38:ab:b2:b1:5e:7d:d0:3a: 1e:18:77:9b:97:a8:46:4f:7a:cb:d9:ab:82:7f:7e: f6:30:a1:bf:2c:de:ca:ce:79:09:ae:b2:5c:74:57: c9:06:3c:20:ca:bf:6f:11:73:c9:07:45:02:f6:d6: 8f:04:f3:a0:8f:07:8b:22:14:31:18:f3:2e:e3:c9: 04:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0E:9B:DF:88:5F:40:6B:28:74:CF:D1:6F:62:C5:C7:5C:90:BD:EE X509v3 Authority Key Identifier: keyid:4B:2C:77:BC:2D:F4:3C:72:84:D0:1E:45:B1:2D:B3:BD:F0:09:16:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3BE/678E16B06FCE11EF89BB4C5EC4F9AE02/Syx3vC30PHKE0B5FsS2zvfAJFtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Syx3vC30PHKE0B5FsS2zvfAJFtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3BE/678E16B06FCE11EF89BB4C5EC4F9AE02/10DAF9348C2D11EFB9CC3812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.30.0/24 Signature Algorithm: sha256WithRSAEncryption 88:22:61:e4:15:58:1e:cb:c5:c6:aa:67:84:9a:ed:6b:df:4e: e3:c4:ef:2a:51:66:99:0e:95:ed:b5:84:2f:e7:fb:ef:76:c7: cc:35:de:13:76:75:3c:9b:a0:07:e3:de:90:a0:76:08:6b:8c: a7:b6:fb:ad:e5:f1:b2:c4:32:e2:d4:dc:17:f9:53:dc:85:d5: 6e:32:12:25:fe:d9:bf:ef:7c:36:f9:f1:5b:89:da:46:f3:00: b7:37:0d:42:a4:23:d0:7e:80:23:0c:b9:a6:2a:fb:06:32:69: 3d:85:db:09:39:91:d3:51:d4:88:c0:3c:4b:25:20:a5:21:84: ac:44:03:6a:4f:4d:f8:9e:fa:d1:07:ca:12:2e:a9:e8:fe:d7: 33:5d:d5:a1:e7:45:44:4c:01:33:3d:33:d0:64:72:63:8c:b6: 51:14:ce:f8:8a:f4:26:dd:26:71:90:5f:47:d1:30:0c:c0:6a: 2b:47:56:fb:e9:8d:b0:3c:1d:43:7e:b9:6d:4d:8f:9e:44:03: 1a:74:43:ee:b8:52:1b:7e:18:a7:29:10:25:ca:96:cf:52:e0: 36:12:53:38:a4:35:27:23:97:6f:9e:30:7d:8a:21:45:df:86: e9:6b:39:45:15:34:0d:8a:94:b7:35:62:4f:8e:ee:76:11:84: c5:40:62:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzQkUxMTAvBgNVBAUTKDRCMkM3N0JDMkRGNDNDNzI4NEQwMUU0NUIxMkRCM0JE RjAwOTE2RDEwHhcNMjUwOTI1MDAxNjIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0ODlkNi1kMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSRdPalukihRlIZrO3j8sBg11cV/wV/m2g+nGyfENdHSdpeZMarMy83OQfQy YZQlo7hpOEvbGU4HU2oWvit641wETcT45coXRPXV1sze5JP//fS7Epnsy0dS1ZsS EriYyrquBs38NbY1A/T55OlZTn2dkxXzP0L03tWED/XXqH0KusvFs1pfbuGx5Dns Pm7vNNCBp/Bl/b2+3GL+tk8zkpWkn8HAp+Lt7M3RvmaBwt5HYkXp0e4OL18oOKuy sV590DoeGHebl6hGT3rL2auCf372MKG/LN7KznkJrrJcdFfJBjwgyr9vEXPJB0UC 9taPBPOgjweLIhQxGPMu48kEKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFIOm9+I X0BrKHTP0W9ixcdckL3uMB8GA1UdIwQYMBaAFEssd7wt9DxyhNAeRbEts73wCRbR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNCRS82NzhFMTZCMDZG Q0UxMUVGODlCQjRDNUVDNEY5QUUwMi9TeXgzdkMzMFBIS0UwQjVGc1MyenZmQUpG dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N5eDN2QzMwUEhLRTBCNUZzUzJ6dmZBSkZ0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzQkUvNjc4RTE2QjA2RkNFMTFFRjg5QkI0QzVFQzRGOUFFMDIvMTBEQUY5MzQ4 QzJEMTFFRkI5Q0MzODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgux4wDQYJKoZIhvcNAQELBQADggEBAIgiYeQVWB7Lxcaq Z4Sa7WvfTuPE7ypRZpkOle21hC/n++92x8w13hN2dTyboAfj3pCgdghrjKe2+63l 8bLEMuLU3Bf5U9yF1W4yEiX+2b/vfDb58VuJ2kbzALc3DUKkI9B+gCMMuaYq+wYy aT2F2wk5kdNR1IjAPEslIKUhhKxEA2pPTfie+tEHyhIuqej+1zNd1aHnRURMATM9 M9BkcmOMtlEUzviK9CbdJnGQX0fRMAzAaitHVvvpjbA8HUN+uW1Nj55EAxp0Q+64 Uht+GKcpECXKls9S4DYSUzikNScjl2+eMH2KIUXfhulrOUUVNA2KlLc1Yk+O7nYR hMVAYnM= -----END CERTIFICATE-----Generated at Tue Oct 21 08:55:47 2025 by rpki-client