$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/EA8CF7A8CB5311EF91F1081BC4F9AE02.roa File: EA8CF7A8CB5311EF91F1081BC4F9AE02.roa (raw, json) Hash identifier: KWihNcpG2X05jp7tO5tq+4iVwxhJjazTb7GWdPZJklM= Subject key identifier: 2A:9F:B7:F1:4E:8A:22:1F:47:3F:56:E6:A9:25:F7:95:5C:21:B5:1F Certificate issuer: /CN=A91CDBF5/serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Certificate serial: 8A Authority key identifier: 98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/EA8CF7A8CB5311EF91F1081BC4F9AE02.roa Signing time: Thu 25 Sep 2025 07:25:23 +0000 ROA not before: Thu 25 Sep 2025 07:25:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131266 IP address blocks: 160.30.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDBF5, serialNumber=980CE5BBF2CF35D60AE3B07218AB5CA910142C90 Validity Not Before: Sep 25 07:25:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68d4ee62-0aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2e:3f:1d:aa:80:05:54:0c:93:85:cf:65:42: 48:46:a5:53:b1:c2:0b:24:1b:04:bc:a3:4b:ec:14: 41:81:90:9d:ba:80:95:f0:b9:7c:07:cd:14:ed:53: fd:1c:94:1c:77:8f:3b:d3:14:42:3b:a3:dc:63:b5: 54:a6:a9:6f:c3:0f:3e:7d:75:67:2d:17:40:81:55: 4e:df:3d:7a:2c:06:55:22:63:2b:db:f3:61:7d:0a: 18:38:8c:f4:f4:1a:6c:03:e4:bd:af:2a:8e:0a:65: b8:94:52:2d:21:61:e6:c6:1f:c4:a9:ca:27:43:d3: fb:71:24:bf:b9:cb:0d:2c:fb:75:6d:d2:e2:3b:42: e9:90:22:7e:02:66:a2:f2:5b:93:26:b1:bf:17:08: 21:84:78:42:4a:92:8a:ec:f0:67:01:74:8d:f1:70: 00:aa:a0:fd:87:e6:23:56:c8:1d:b3:72:b4:a4:08: f9:a2:7a:56:e2:b4:71:05:1c:62:ee:4c:f5:ee:85: d1:9f:17:2a:f9:5a:43:76:a7:b6:33:9f:ea:93:ce: ce:43:91:69:42:86:43:a1:48:12:d6:5c:1d:ef:63: aa:7e:7e:da:c4:df:15:ad:53:2b:0c:c0:4c:39:ed: 41:bd:28:24:65:c4:6f:33:e5:a6:66:f6:34:e6:58: 76:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9F:B7:F1:4E:8A:22:1F:47:3F:56:E6:A9:25:F7:95:5C:21:B5:1F X509v3 Authority Key Identifier: keyid:98:0C:E5:BB:F2:CF:35:D6:0A:E3:B0:72:18:AB:5C:A9:10:14:2C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/mAzlu_LPNdYK47ByGKtcqRAULJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mAzlu_LPNdYK47ByGKtcqRAULJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDBF5/5E9C4BB0CB5111EF90400D17C4F9AE02/EA8CF7A8CB5311EF91F1081BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.180.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:d5:52:3e:3f:2e:b0:07:a8:70:db:3b:13:8a:bb:0f:08:66: 0a:f7:e7:65:c0:02:db:3d:8c:c4:5a:60:89:27:65:60:bf:35: a1:b5:4d:df:14:79:5a:a6:9d:7c:98:02:21:d8:13:41:98:12: 9b:7a:f2:30:8e:58:2e:dd:34:7d:3e:ec:cc:1c:07:5c:cb:bc: 30:f5:82:f1:a8:07:aa:33:e1:46:c3:1f:e4:f1:a2:f9:50:66: e8:64:0f:d0:3d:52:99:ca:dc:80:9e:7e:32:b9:03:4e:c1:be: 80:7f:02:e1:12:73:23:e5:7b:41:f1:48:79:00:ee:41:fb:b6: 8d:06:11:3e:b7:4a:93:bf:63:69:5c:d1:98:ac:c5:37:4e:46: 17:af:ec:84:4e:65:47:fd:41:98:e3:14:83:a6:0d:11:ed:ed: ce:b0:ba:24:28:c2:69:6f:c3:1c:36:74:dc:1c:2d:2f:2b:d7: 76:7e:d9:15:4b:a2:bf:27:3d:96:28:f2:07:95:9f:1b:89:83: 2c:5c:71:0d:fb:67:ca:ef:7b:21:ee:ce:1e:a8:8c:cd:f3:1d: 65:dd:d4:3c:3c:1d:c8:42:74:43:45:7d:3d:04:54:a4:07:cb: a5:54:19:38:c4:eb:fc:c5:ed:3c:42:81:2c:6a:8d:57:c8:80: f8:49:88:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RCRjUxMTAvBgNVBAUTKDk4MENFNUJCRjJDRjM1RDYwQUUzQjA3MjE4QUI1Q0E5 MTAxNDJDOTAwHhcNMjUwOTI1MDcyNTIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0ZWU2Mi0wYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7y4/HaqABVQMk4XPZUJIRqVTscILJBsEvKNL7BRBgZCduoCV8Ll8B80U7VP9 HJQcd4870xRCO6PcY7VUpqlvww8+fXVnLRdAgVVO3z16LAZVImMr2/NhfQoYOIz0 9BpsA+S9ryqOCmW4lFItIWHmxh/EqconQ9P7cSS/ucsNLPt1bdLiO0LpkCJ+Amai 8luTJrG/FwghhHhCSpKK7PBnAXSN8XAAqqD9h+YjVsgds3K0pAj5onpW4rRxBRxi 7kz17oXRnxcq+VpDdqe2M5/qk87OQ5FpQoZDoUgS1lwd72Oqfn7axN8VrVMrDMBM Oe1BvSgkZcRvM+WmZvY05lh2yQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCqft/FO iiIfRz9W5qkl95VcIbUfMB8GA1UdIwQYMBaAFJgM5bvyzzXWCuOwchirXKkQFCyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREJGNS81RTlDNEJCMENC NTExMUVGOTA0MDBEMTdDNEY5QUUwMi9tQXpsdV9MUE5kWUs0N0J5R0t0Y3FSQVVM SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Bemx1X0xQTmRZSzQ3QnlHS3RjcVJBVUxKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RCRjUvNUU5QzRCQjBDQjUxMTFFRjkwNDAwRDE3QzRGOUFFMDIvRUE4Q0Y3QThD QjUzMTFFRjkxRjEwODFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHrQwDQYJKoZIhvcNAQELBQADggEBAD3VUj4/LrAHqHDb OxOKuw8IZgr352XAAts9jMRaYIknZWC/NaG1Td8UeVqmnXyYAiHYE0GYEpt68jCO WC7dNH0+7MwcB1zLvDD1gvGoB6oz4UbDH+TxovlQZuhkD9A9UpnK3ICefjK5A07B voB/AuEScyPle0HxSHkA7kH7to0GET63SpO/Y2lc0ZisxTdORhev7IROZUf9QZjj FIOmDRHt7c6wuiQowmlvwxw2dNwcLS8r13Z+2RVLor8nPZYo8geVnxuJgyxccQ37 Z8rveyHuzh6ojM3zHWXd1Dw8HchCdENFfT0EVKQHy6VUGTjE6/zF7TxCgSxqjVfI gPhJiP4= -----END CERTIFICATE-----Generated at Tue Oct 21 10:58:49 2025 by rpki-client