$ rpki-client -vvf rpki.apnic.net/member_repository/A918A695/8DEFE80E691D11EFB8FD1E64C4F9AE02/0DE9C0F2691E11EF86B94667C4F9AE02.roa File: 0DE9C0F2691E11EF86B94667C4F9AE02.roa (raw, json) Hash identifier: 8GXDB+pZReiVHRhHIXWVIQQroHdHPp2tY80GMG2ZCJQ= Subject key identifier: 47:F2:1A:DA:70:A3:02:6C:16:7A:76:F7:98:02:61:F9:FC:5C:F0:F0 Certificate issuer: /CN=A918A695/serialNumber=E3AE7D074D6967E2F49FF9E3B8D79BBFA2809A92 Certificate serial: D0 Authority key identifier: E3:AE:7D:07:4D:69:67:E2:F4:9F:F9:E3:B8:D7:9B:BF:A2:80:9A:92 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4659B01pZ-L0n_njuNebv6KAmpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A695/8DEFE80E691D11EFB8FD1E64C4F9AE02/0DE9C0F2691E11EF86B94667C4F9AE02.roa Signing time: Wed 01 Oct 2025 07:04:47 +0000 ROA not before: Wed 01 Oct 2025 07:04:47 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140244 IP address blocks: 160.30.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A695/8DEFE80E691D11EFB8FD1E64C4F9AE02/4659B01pZ-L0n_njuNebv6KAmpI.crl rsync://rpki.apnic.net/member_repository/A918A695/8DEFE80E691D11EFB8FD1E64C4F9AE02/4659B01pZ-L0n_njuNebv6KAmpI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4659B01pZ-L0n_njuNebv6KAmpI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A695, serialNumber=E3AE7D074D6967E2F49FF9E3B8D79BBFA2809A92 Validity Not Before: Oct 1 07:04:47 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dcd28f-8ddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:78:12:b9:65:d0:f3:9c:b1:99:43:ab:0f: 2d:42:46:8a:e0:0f:46:18:67:d6:a5:b4:eb:a6:95: b3:28:25:16:3c:2a:4f:c0:e9:40:3a:a2:44:24:ea: 57:5a:f9:67:fc:03:92:89:86:11:bf:c5:aa:b9:62: e8:b1:36:88:a0:ce:20:b5:4a:e5:6b:f6:29:06:5b: d5:bd:9f:6c:8d:08:16:9e:f8:9a:49:3b:79:df:29: 44:b7:ce:a6:e5:af:f6:dc:e2:cf:2b:c6:71:7f:a2: 88:70:16:dc:bd:4d:08:2d:df:08:ab:ee:16:4e:d5: f9:06:20:c1:9f:2d:13:df:90:5c:d6:92:05:05:79: 79:b1:ea:c1:89:1b:34:50:4e:70:93:16:ce:f4:d8: 82:e6:05:b9:68:b4:5a:58:3c:7e:47:a9:ab:bb:d1: cf:97:fb:0c:b8:ab:0e:83:79:be:96:b5:02:6f:a3: 95:68:d3:7c:45:fc:04:cb:c1:61:c3:ac:2d:44:0b: 2f:13:fe:98:fb:b6:fb:a3:9f:fc:51:44:a1:ab:3e: 2a:40:d2:06:cd:3d:1c:02:d8:a5:59:cf:01:dd:19: e2:f7:1a:ff:5c:45:da:19:37:25:1a:fb:83:1d:ba: 28:c6:b2:ed:1f:16:d9:59:8a:3c:27:4f:a6:f2:04: 89:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F2:1A:DA:70:A3:02:6C:16:7A:76:F7:98:02:61:F9:FC:5C:F0:F0 X509v3 Authority Key Identifier: keyid:E3:AE:7D:07:4D:69:67:E2:F4:9F:F9:E3:B8:D7:9B:BF:A2:80:9A:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A695/8DEFE80E691D11EFB8FD1E64C4F9AE02/4659B01pZ-L0n_njuNebv6KAmpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4659B01pZ-L0n_njuNebv6KAmpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A695/8DEFE80E691D11EFB8FD1E64C4F9AE02/0DE9C0F2691E11EF86B94667C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.188.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:6f:17:08:2f:a9:7d:06:d5:a4:b1:ef:78:e1:3c:ab:96:64: 1f:6d:4d:60:07:dc:32:60:d7:b0:76:07:e5:d4:4a:72:b6:9c: c3:05:65:76:a0:b8:e0:c3:92:6a:1d:e6:b2:3d:24:07:81:5b: f0:15:ef:bb:7c:26:84:e7:93:c8:f7:31:da:06:7b:29:7e:42: 86:48:b5:41:e7:75:46:cc:6a:25:ef:28:ce:73:8a:2f:e7:ea: f0:a3:6a:41:26:96:20:c3:fa:8e:6a:e3:1c:ca:30:47:e4:e2: e2:00:9d:22:94:b7:8f:54:dd:ce:6d:68:31:46:36:59:35:bb: 73:1a:d1:4c:4d:f2:5b:5b:11:a7:d8:b6:91:4e:9a:79:3d:df: 7a:78:81:90:44:80:da:9e:c1:77:6b:4f:d6:ad:c4:7c:1b:de: df:ab:41:9c:df:ed:04:25:fd:ea:28:60:64:a6:ab:93:3f:13: 01:b1:56:82:c7:1d:b8:be:16:89:a5:35:25:a3:bc:96:21:87: b1:60:f2:c8:7d:0a:42:28:78:ad:ac:5b:83:e3:5f:05:0d:de: 2c:c1:87:6b:aa:6b:25:61:e6:27:e6:03:a0:73:15:db:5e:9b: 4d:ef:92:f6:b5:fc:96:1a:44:b9:c1:c5:69:89:9a:14:19:54: f1:2f:7b:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE2OTUxMTAvBgNVBAUTKEUzQUU3RDA3NEQ2OTY3RTJGNDlGRjlFM0I4RDc5QkJG QTI4MDlBOTIwHhcNMjUxMDAxMDcwNDQ3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjZDI4Zi04ZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHN4Erll0POcsZlDqw8tQkaK4A9GGGfWpbTrppWzKCUWPCpPwOlAOqJEJOpX Wvln/AOSiYYRv8WquWLosTaIoM4gtUrla/YpBlvVvZ9sjQgWnviaSTt53ylEt86m 5a/23OLPK8Zxf6KIcBbcvU0ILd8Iq+4WTtX5BiDBny0T35Bc1pIFBXl5serBiRs0 UE5wkxbO9NiC5gW5aLRaWDx+R6mru9HPl/sMuKsOg3m+lrUCb6OVaNN8RfwEy8Fh w6wtRAsvE/6Y+7b7o5/8UUShqz4qQNIGzT0cAtilWc8B3Rni9xr/XEXaGTclGvuD HbooxrLtHxbZWYo8J0+m8gSJiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEfyGtpw owJsFnp295gCYfn8XPDwMB8GA1UdIwQYMBaAFOOufQdNaWfi9J/547jXm7+igJqS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTY5NS84REVGRTgwRTY5 MUQxMUVGQjhGRDFFNjRDNEY5QUUwMi80NjU5QjAxcFotTDBuX25qdU5lYnY2S0Ft cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQ2NTlCMDFwWi1MMG5fbmp1TmVidjZLQW1wSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE2OTUvOERFRkU4MEU2OTFEMTFFRkI4RkQxRTY0QzRGOUFFMDIvMERFOUMwRjI2 OTFFMTFFRjg2Qjk0NjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHrwwDQYJKoZIhvcNAQELBQADggEBAGxvFwgvqX0G1aSx 73jhPKuWZB9tTWAH3DJg17B2B+XUSnK2nMMFZXaguODDkmod5rI9JAeBW/AV77t8 JoTnk8j3MdoGeyl+QoZItUHndUbMaiXvKM5zii/n6vCjakEmliDD+o5q4xzKMEfk 4uIAnSKUt49U3c5taDFGNlk1u3Ma0UxN8ltbEafYtpFOmnk933p4gZBEgNqewXdr T9atxHwb3t+rQZzf7QQl/eooYGSmq5M/EwGxVoLHHbi+FomlNSWjvJYhh7Fg8sh9 CkIoeK2sW4PjXwUN3izBh2uqayVh5ifmA6BzFdtem03vkva1/JYaRLnBxWmJmhQZ VPEve/U= -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:49 2025 by rpki-client