$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/388D7E38797D11EF8CA64711C4F9AE02.roa File: 388D7E38797D11EF8CA64711C4F9AE02.roa (raw, json) Hash identifier: w4Rh9NpZ/IQ60xsdouCsCPn/eRzJ06RRF4GvfzZ5uwo= Subject key identifier: F0:7A:23:31:64:05:35:84:35:60:41:52:8E:0C:16:10:BE:C3:00:9C Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: B7 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/388D7E38797D11EF8CA64711C4F9AE02.roa Signing time: Fri 29 Aug 2025 06:57:01 +0000 ROA not before: Fri 29 Aug 2025 06:57:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153316 IP address blocks: 160.187.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Aug 29 06:57:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b14f3d-261a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:43:70:a4:2c:63:29:63:e1:2a:d4:9a:49:de: 36:1c:0e:9f:8e:ea:28:63:a3:91:3f:68:97:98:30: c0:5e:f0:dd:b7:da:dd:44:fd:b1:e5:8f:25:d1:de: f6:3f:76:83:64:69:6c:79:6d:d8:cb:a6:3f:56:c1: df:c0:df:f1:bb:6e:33:25:98:1a:7b:b7:74:e4:cd: 9e:f5:55:05:8b:fc:1f:85:cc:12:88:e1:aa:3d:40: 4e:0f:f0:ac:aa:25:2b:a1:d2:a8:d0:81:eb:a1:28: 85:f8:6b:26:dc:2e:52:cc:49:84:8e:76:03:12:06: 35:2a:df:2c:e4:43:29:05:61:b7:0e:90:96:f8:f1: 04:d7:57:24:7c:f1:b9:3f:76:da:bd:47:24:63:75: 10:06:27:84:07:4a:b7:f2:e4:aa:ce:e6:3b:86:3f: 13:d3:13:7b:e8:7b:5c:bb:6c:d6:29:20:42:9f:5b: 6a:23:e1:82:1f:a6:76:02:76:68:43:17:bf:5a:30: 1e:dd:97:bc:cf:2e:90:ee:38:68:65:14:95:b3:19: d6:43:62:a2:a2:02:c7:9b:5c:dd:fa:52:2c:70:9c: 67:28:d1:db:32:e6:0e:13:51:74:8c:e4:9b:9a:e1: b2:fd:9f:fd:ed:a3:f5:96:33:18:04:ef:da:c5:39: fd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7A:23:31:64:05:35:84:35:60:41:52:8E:0C:16:10:BE:C3:00:9C X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/388D7E38797D11EF8CA64711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.25.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:47:2e:4e:23:b1:40:20:ae:f1:19:d8:88:33:27:5d:2e:a5: 59:e4:a4:88:19:70:c1:45:39:41:f2:07:e2:31:d0:04:4f:54: 75:5a:6e:77:a8:c5:49:7d:75:9d:08:0f:4c:c6:56:65:a8:e1: 13:a8:b8:63:b7:16:37:d9:e5:3c:5e:50:23:3c:ef:35:ae:75: 1e:c1:33:53:f8:fb:bb:49:c2:96:af:74:f5:5e:47:0c:ae:7e: 56:a9:87:4d:b7:bf:d4:0a:e3:62:c7:ee:35:f8:ba:db:16:d7: 16:8e:89:86:83:58:d1:b5:a8:59:3e:de:50:63:66:90:5e:0e: a7:50:81:2d:09:32:d9:5c:f6:bc:cc:74:f1:e5:70:22:22:09: 88:e8:77:f2:eb:50:03:dc:33:a1:26:25:5a:e3:58:14:80:f2: 25:a0:e1:5f:96:63:37:bf:bf:a2:94:b3:f5:bb:9a:72:48:84: 13:8b:67:95:86:0b:a0:03:b3:1f:ce:dc:3d:93:3c:42:c1:3c: 09:fa:d3:fa:aa:61:a2:ed:dc:0e:e8:2a:d1:e9:3c:1e:99:d4: 95:ee:c2:98:12:36:af:47:5d:39:c7:02:97:d8:ba:2a:82:c2: f2:06:36:bd:4b:67:6f:6d:fc:5a:ed:5b:b6:4c:5c:11:5c:54: 3b:aa:65:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjUwODI5MDY1NzAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxNGYzZC0yNjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkNwpCxjKWPhKtSaSd42HA6fjuooY6ORP2iXmDDAXvDdt9rdRP2x5Y8l0d72 P3aDZGlseW3Yy6Y/VsHfwN/xu24zJZgae7d05M2e9VUFi/wfhcwSiOGqPUBOD/Cs qiUrodKo0IHroSiF+Gsm3C5SzEmEjnYDEgY1Kt8s5EMpBWG3DpCW+PEE11ckfPG5 P3bavUckY3UQBieEB0q38uSqzuY7hj8T0xN76Htcu2zWKSBCn1tqI+GCH6Z2AnZo Qxe/WjAe3Ze8zy6Q7jhoZRSVsxnWQ2KiogLHm1zd+lIscJxnKNHbMuYOE1F0jOSb muGy/Z/97aP1ljMYBO/axTn96wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPB6IzFk BTWENWBBUo4MFhC+wwCcMB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDRBQ0QvMUY1MzU2OUU3NTZFMTFFRjlDQTQ2RTUxQzRGOUFFMDIvMzg4RDdFMzg3 OTdEMTFFRjhDQTY0NzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACguxkwDQYJKoZIhvcNAQELBQADggEBAA1HLk4jsUAgrvEZ 2IgzJ10upVnkpIgZcMFFOUHyB+Ix0ARPVHVabneoxUl9dZ0ID0zGVmWo4ROouGO3 FjfZ5TxeUCM87zWudR7BM1P4+7tJwpavdPVeRwyuflaph023v9QK42LH7jX4utsW 1xaOiYaDWNG1qFk+3lBjZpBeDqdQgS0JMtlc9rzMdPHlcCIiCYjod/LrUAPcM6Em JVrjWBSA8iWg4V+WYze/v6KUs/W7mnJIhBOLZ5WGC6ADsx/O3D2TPELBPAn60/qq YaLt3A7oKtHpPB6Z1JXuwpgSNq9HXTnHApfYuiqCwvIGNr1LZ29t/FrtW7ZMXBFc VDuqZd8= -----END CERTIFICATE-----Generated at Tue Oct 21 11:21:01 2025 by rpki-client