$ rpki-client -vvf rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa File: 5E85AD042B1B11F0AE3E223BC4F9AE02.roa (raw, json) Hash identifier: FGzuhrRvwprB5KpbvWYZLSjwv3h28HP8C3ekeqhOVdI= Subject key identifier: 44:24:F4:B1:98:D5:FE:3C:5F:E6:28:69:39:27:B8:A1:A9:E5:DA:8B Certificate issuer: /CN=A91B87FC/serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Certificate serial: 011A Authority key identifier: 3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:50:44 +0000 ROA not before: Sun 31 Aug 2025 07:24:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24499 IP address blocks: 160.30.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B87FC, serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Validity Not Before: Aug 31 07:24:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a3c3-6204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c9:30:a4:f0:c8:d6:30:c6:4b:c8:0f:4e:45: f1:b2:ac:9b:87:27:57:02:f5:c0:50:b4:8e:20:88: 99:c5:1c:0a:e6:47:9b:6a:15:92:11:33:1d:3f:06: fc:da:4d:7d:7a:9f:00:b9:2c:a2:33:60:a0:21:1c: 97:97:2f:5c:f8:cb:79:58:4e:cf:49:91:4d:8e:6d: 77:f9:b4:a7:18:c2:42:a2:45:4d:86:15:1f:e6:26: cf:89:5d:87:06:05:7d:38:f3:63:f8:45:62:e5:8b: 60:c9:1a:82:40:c2:b1:ec:8d:ae:91:04:5a:00:18: 5e:fc:1c:de:f4:bc:0b:21:92:22:e7:cd:6a:b2:e4: a7:de:ab:51:15:7f:b9:6f:6d:d5:19:d4:cb:8a:b0: a8:36:1a:fc:ef:53:07:6b:57:84:86:4b:5d:dc:46: fb:6f:44:cd:55:64:9b:bb:0c:e5:27:af:96:6a:98: 2e:35:dd:b5:68:74:fc:4a:00:0a:98:cf:8c:ad:cd: 88:6e:1c:1c:aa:35:bb:f4:07:bd:b7:8f:da:40:da: 4b:12:ee:9b:c8:e8:c2:06:0f:d8:ca:3b:88:17:11: ce:b2:c7:ca:93:9f:55:bc:fc:89:4b:ff:28:6d:ad: 3c:8e:c7:8e:e1:b3:85:41:e7:6d:d9:bc:69:a4:19: 90:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:24:F4:B1:98:D5:FE:3C:5F:E6:28:69:39:27:B8:A1:A9:E5:DA:8B X509v3 Authority Key Identifier: keyid:3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.109.0/24 Signature Algorithm: sha256WithRSAEncryption 60:5d:bb:d8:b1:f1:e5:e6:a7:9c:4c:9d:73:07:71:f7:af:f8: 09:01:18:9b:24:cf:94:3a:ea:c6:ab:91:24:3b:4f:28:53:62: ff:d4:6a:77:fb:04:4f:d5:68:ae:df:26:e9:3b:ef:dc:d9:0d: 10:85:c7:77:1b:05:e3:48:80:ee:e6:f3:7b:a8:89:5d:95:bd: 7e:40:f3:4b:9a:d7:c6:f5:da:d5:0b:a3:85:11:14:2c:68:2b: 17:03:d5:80:3e:ee:e8:60:b8:ca:75:27:11:b0:c6:01:e2:15: 8a:68:6f:3b:60:32:1e:c5:2c:88:08:1c:4b:d6:fb:9f:76:60: d2:88:82:e1:c9:a4:c6:dc:5a:1c:a4:4d:86:e1:d3:ce:6c:46: 33:33:f4:f7:f7:31:5d:e3:f0:ad:8b:bc:36:2e:f6:28:d1:c9: 18:76:1a:1b:49:40:33:a4:fb:dd:48:34:09:85:78:9d:93:b6: b5:5f:ed:b1:3b:43:97:0e:3e:5a:70:58:00:d9:2c:df:c3:37: 81:d7:bc:33:a5:d0:e0:a3:97:b5:2a:af:ec:e2:82:cd:1c:9e: cd:f5:20:31:a8:73:ab:fe:bb:5c:32:13:22:ff:6f:58:75:9e: e8:f4:b0:73:48:bb:53:80:8a:3c:50:cc:18:6c:0e:41:53:81: ac:21:18:64 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3RkMxMTAvBgNVBAUTKDNBODc4NzFFM0JBRTY1RURFMkYzMUJCMUFENUM1OUJC N0E3NEFCREQwHhcNMjUwODMxMDcyNDIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTNjMy02MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMkwpPDI1jDGS8gPTkXxsqybhydXAvXAULSOIIiZxRwK5kebahWSETMdPwb8 2k19ep8AuSyiM2CgIRyXly9c+Mt5WE7PSZFNjm13+bSnGMJCokVNhhUf5ibPiV2H BgV9OPNj+EVi5YtgyRqCQMKx7I2ukQRaABhe/Bze9LwLIZIi581qsuSn3qtRFX+5 b23VGdTLirCoNhr871MHa1eEhktd3Eb7b0TNVWSbuwzlJ6+WapguNd21aHT8SgAK mM+Mrc2IbhwcqjW79Ae9t4/aQNpLEu6byOjCBg/YyjuIFxHOssfKk59VvPyJS/8o ba08jseO4bOFQedt2bxppBmQ1wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEQk9LGY 1f48X+YoaTknuKGp5dqLMB8GA1UdIwQYMBaAFDqHhx47rmXt4vMbsa1cWbt6dKvd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODdGQy8zOTc4RTMxNjg2 RTExMUVGOEY3NzNGODJDNEY5QUUwMi9Pb2VISGp1dVplM2k4eHV4clZ4WnUzcDBx OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vZUhIanV1WmUzaTh4dXhyVnhadTNwMHE5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3RkMvMzk3OEUzMTY4NkUxMTFFRjhGNzczRjgyQzRGOUFFMDIvNUU4NUFEMDQy QjFCMTFGMEFFM0UyMjNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAoB5tMA0GCSqGSIb3DQEBCwUAA4IBAQBgXbvYsfHl5qecTJ1zB3H3 r/gJARibJM+UOurGq5EkO08oU2L/1Gp3+wRP1Wiu3ybpO+/c2Q0Qhcd3GwXjSIDu 5vN7qIldlb1+QPNLmtfG9drVC6OFERQsaCsXA9WAPu7oYLjKdScRsMYB4hWKaG87 YDIexSyICBxL1vufdmDSiILhyaTG3FocpE2G4dPObEYzM/T39zFd4/Cti7w2LvYo 0ckYdhobSUAzpPvdSDQJhXidk7a1X+2xO0OXDj5acFgA2SzfwzeB17wzpdDgo5e1 Kq/s4oLNHJ7N9SAxqHOr/rtcMhMi/29YdZ7o9LBzSLtTgIo8UMwYbA5BU4GsIRhk -----END CERTIFICATE-----Generated at Thu Mar 26 07:16:31 2026 by rpki-client