$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/CD1FB5C2643611EFA2C41948C4F9AE02.roa File: CD1FB5C2643611EFA2C41948C4F9AE02.roa (raw, json) Hash identifier: Oees07yYoqgn5PrN7dD6R0kAM+w8GIQPtiPs4eqC920= Subject key identifier: 9E:97:FF:F0:33:54:A2:02:D2:0E:FA:ED:B5:48:36:73:F5:FF:52:D5 Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 012C Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/CD1FB5C2643611EFA2C41948C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:32:59 +0000 ROA not before: Wed 03 Dec 2025 04:02:56 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139058 IP address blocks: 160.30.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Dec 3 04:02:56 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5837b-5b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:65:ec:85:26:b6:e2:be:1e:e0:c3:dd:75: 12:20:14:9e:90:ef:0a:c5:8f:9e:db:63:91:f0:f2: e3:1b:32:4e:f1:51:d9:ac:ca:89:9e:85:74:c9:e0: e8:df:3b:25:99:58:18:de:5f:51:74:41:8d:ad:b1: 30:92:1f:54:00:49:d1:86:b0:92:6b:30:8d:a7:69: e0:15:54:02:e3:98:08:8a:06:82:c8:af:4e:df:7d: 8e:d3:89:14:1d:06:7a:a3:60:eb:97:56:db:71:8f: b3:84:28:f7:2c:71:63:91:d0:6e:13:38:b9:45:bf: f5:33:be:72:f2:1e:70:cf:c7:d5:a3:4e:bd:d1:f2: b0:a1:22:eb:e8:d7:1c:ba:86:62:bd:d3:71:b3:c8: 18:b4:12:88:ac:49:74:06:4f:ab:30:b4:4e:e7:52: 77:97:47:89:65:6a:06:4a:26:ce:8f:e6:14:e1:c0: df:e3:25:7b:c0:66:b5:8e:d1:9e:4c:f4:39:58:65: 5d:84:ee:31:81:9b:34:2b:5e:8c:c4:63:57:ae:fe: b2:73:6b:fd:ed:0c:2d:2f:8d:bc:ca:e1:46:ab:84: 48:0e:49:69:12:a3:1d:29:d1:80:10:99:b3:d6:7e: 4d:cc:e1:57:41:cf:e4:43:9c:94:1f:9f:64:9a:8b: 8b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:97:FF:F0:33:54:A2:02:D2:0E:FA:ED:B5:48:36:73:F5:FF:52:D5 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/CD1FB5C2643611EFA2C41948C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.186.0/23 Signature Algorithm: sha256WithRSAEncryption 13:93:9e:16:5e:aa:a6:5a:04:6c:46:b6:22:78:55:22:1e:be: ca:6e:bf:f0:39:30:10:23:c7:7c:60:c5:27:86:50:dc:bd:3d: 78:bf:ed:9d:5c:42:fe:c0:33:1e:1e:93:d2:9c:0b:56:2b:f6: c1:81:8c:8b:8d:e6:df:d1:62:57:d8:57:b9:34:64:4c:1c:24: 13:4d:a0:f2:4a:08:03:a8:2b:cd:4b:11:d4:4d:3e:a6:e9:ff: 76:45:db:a8:f5:83:ca:34:d6:84:db:bc:99:3c:c4:c5:16:e7: d4:33:b2:eb:92:fe:89:d4:7c:85:be:4b:d5:bd:05:81:cc:d9: 09:4d:4a:cb:50:ed:98:0e:c8:dc:72:8f:3c:13:1d:70:8e:6c: 21:d4:db:5e:c8:ca:33:8a:ff:21:75:02:7b:28:02:3b:0d:37: 10:29:52:b6:75:4b:55:e9:08:47:ff:88:c7:73:a6:69:aa:a8: 88:ae:69:0c:12:91:00:da:37:c1:61:e4:f1:fc:09:18:01:20: 45:31:aa:5c:f3:2b:e9:27:a4:82:3b:bb:96:a8:c4:95:a6:44: ad:0d:ff:6d:5a:fd:99:4c:29:95:34:8d:55:d1:75:79:ad:07: b9:e8:dc:1a:51:c6:83:39:7b:6b:ae:56:3e:47:59:a5:a5:7a: 7d:29:e8:6a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUxMjAzMDQwMjU2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODM3Yi01YjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEhl7IUmtuK+HuDD3XUSIBSekO8KxY+e22OR8PLjGzJO8VHZrMqJnoV0yeDo 3zslmVgY3l9RdEGNrbEwkh9UAEnRhrCSazCNp2ngFVQC45gIigaCyK9O332O04kU HQZ6o2Drl1bbcY+zhCj3LHFjkdBuEzi5Rb/1M75y8h5wz8fVo0690fKwoSLr6Ncc uoZivdNxs8gYtBKIrEl0Bk+rMLRO51J3l0eJZWoGSibOj+YU4cDf4yV7wGa1jtGe TPQ5WGVdhO4xgZs0K16MxGNXrv6yc2v97QwtL428yuFGq4RIDklpEqMdKdGAEJmz 1n5NzOFXQc/kQ5yUH59kmouLfwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ6X//Az VKIC0g767bVINnP1/1LVMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUwQUQvNjBFQkUxQUM2NDM0MTFFRjg0MkZDNjIwQzRGOUFFMDIvQ0QxRkI1QzI2 NDM2MTFFRkEyQzQxOTQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoB66MA0GCSqGSIb3DQEBCwUAA4IBAQATk54WXqqmWgRsRrYieFUi Hr7Kbr/wOTAQI8d8YMUnhlDcvT14v+2dXEL+wDMeHpPSnAtWK/bBgYyLjebf0WJX 2Fe5NGRMHCQTTaDySggDqCvNSxHUTT6m6f92Rduo9YPKNNaE27yZPMTFFufUM7Lr kv6J1HyFvkvVvQWBzNkJTUrLUO2YDsjcco88Ex1wjmwh1NteyMoziv8hdQJ7KAI7 DTcQKVK2dUtV6QhH/4jHc6ZpqqiIrmkMEpEA2jfBYeTx/AkYASBFMapc8yvpJ6SC O7uWqMSVpkStDf9tWv2ZTCmVNI1V0XV5rQe56NwaUcaDOXtrrlY+R1mlpXp9Kehq -----END CERTIFICATE-----Generated at Thu Mar 26 12:53:25 2026 by rpki-client