$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/7143C5B85DBF11EFB8714857C4F9AE02.roa File: 7143C5B85DBF11EFB8714857C4F9AE02.roa (raw, json) Hash identifier: HnPe7oTE/NJwLfNgQpYdaZfEzbuO3TebzvAvQ+UM9po= Subject key identifier: FF:EF:0C:5A:1C:2E:3B:07:2D:C1:15:69:E5:5B:E0:C0:B5:0A:0A:91 Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 0129 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/7143C5B85DBF11EFB8714857C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:26:39 +0000 ROA not before: Mon 29 Sep 2025 06:35:49 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136935 IP address blocks: 160.30.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Sep 29 06:35:49 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a59e1f-0a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:29:3d:61:00:cd:95:3c:00:1c:cb:9e:aa:62: c0:8f:db:c8:46:50:1a:b7:fb:b3:f2:3d:0a:e3:19: c5:ae:70:a5:aa:4a:62:c1:8d:41:93:12:f0:80:ac: ff:af:e5:f1:08:94:2f:a6:44:7b:c7:37:ab:91:5e: 1e:ff:27:33:77:2f:9c:cd:6c:dd:11:59:bf:e3:3a: 02:f8:dc:01:00:51:dd:3b:1a:5c:07:fa:e2:af:8f: 76:d4:b0:5b:40:20:08:7f:28:02:d2:84:1e:d3:d8: 20:7c:51:bd:4d:97:5e:92:9c:03:f3:d7:85:2d:80: 7e:bd:25:d6:d5:7f:f4:c3:d1:07:93:bf:09:ea:34: dc:85:21:51:d0:0a:9b:6f:09:47:f6:99:37:7b:ee: c5:8b:c1:00:90:d5:30:12:09:18:04:f2:3a:1a:a5: 6f:f7:d7:a7:07:37:6e:43:b5:14:a4:3d:d1:51:b4: 68:7c:2a:42:10:9f:a7:c4:21:5c:1a:4c:8b:f7:14: 0f:f0:c4:67:01:4a:d3:56:79:be:3e:56:a9:a1:23: 86:95:fc:2b:b2:27:73:0b:10:f1:6a:0f:d2:52:b7: a7:0f:5c:14:3e:52:3b:c4:42:a4:2c:d2:9b:55:c8: e4:c8:f9:95:f4:e2:02:5d:7a:c3:c1:6d:b6:88:cb: 2b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EF:0C:5A:1C:2E:3B:07:2D:C1:15:69:E5:5B:E0:C0:B5:0A:0A:91 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/7143C5B85DBF11EFB8714857C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.130.0/23 Signature Algorithm: sha256WithRSAEncryption 87:97:90:66:f2:33:2c:88:88:6b:c8:12:d7:4a:de:88:ff:82: 69:16:b0:09:d2:fa:30:b7:80:a5:44:94:6e:32:af:ff:73:8b: de:47:c1:23:0e:c1:2e:d5:0a:27:56:4f:ae:d5:33:5c:72:e8: 24:57:7d:3b:62:da:d0:0b:e3:0d:14:29:58:7e:4e:04:e9:51: 53:f7:fb:c8:6b:f5:30:99:cf:de:68:54:07:d1:fc:77:00:ae: 43:dd:f0:fc:f4:86:08:4b:14:46:73:20:06:55:8e:b6:43:97: 52:aa:91:23:0e:7c:48:f5:7b:6a:92:9a:08:38:57:74:b0:3d: be:5b:e3:5b:6b:c5:22:d4:85:cf:c4:a8:ee:35:0e:72:87:0b: 99:82:26:42:ff:f1:18:d6:44:d9:2c:04:2e:c6:1d:cc:32:e7: 32:a1:f5:8a:84:5b:f6:4b:26:ba:d9:b4:03:c0:ff:70:9d:9c: 5c:c4:80:97:0e:dd:84:0d:41:cd:21:75:13:08:80:76:bc:b2: cb:34:46:2f:57:0b:8d:0d:4a:48:35:05:45:df:26:07:6e:ba: be:f8:07:c0:72:60:5c:00:9a:08:f5:55:cf:58:bc:65:c7:72: 44:d5:2e:04:52:20:e5:02:4d:4f:12:52:1f:23:f5:62:30:6e: 50:e9:25:37 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjUwOTI5MDYzNTQ5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWUxZi0wYTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoik9YQDNlTwAHMueqmLAj9vIRlAat/uz8j0K4xnFrnClqkpiwY1BkxLwgKz/ r+XxCJQvpkR7xzerkV4e/yczdy+czWzdEVm/4zoC+NwBAFHdOxpcB/rir4921LBb QCAIfygC0oQe09ggfFG9TZdekpwD89eFLYB+vSXW1X/0w9EHk78J6jTchSFR0Aqb bwlH9pk3e+7Fi8EAkNUwEgkYBPI6GqVv99enBzduQ7UUpD3RUbRofCpCEJ+nxCFc GkyL9xQP8MRnAUrTVnm+PlapoSOGlfwrsidzCxDxag/SUrenD1wUPlI7xEKkLNKb VcjkyPmV9OICXXrDwW22iMsrHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP/vDFoc LjsHLcEVaeVb4MC1CgqRMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhGOUIvRjkwMkU1MzA1REJEMTFFRjhBMDZFRDQwQzRGOUFFMDIvNzE0M0M1Qjg1 REJGMTFFRkI4NzE0ODU3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoB6CMA0GCSqGSIb3DQEBCwUAA4IBAQCHl5Bm8jMsiIhryBLXSt6I /4JpFrAJ0vowt4ClRJRuMq//c4veR8EjDsEu1QonVk+u1TNccugkV307YtrQC+MN FClYfk4E6VFT9/vIa/Uwmc/eaFQH0fx3AK5D3fD89IYISxRGcyAGVY62Q5dSqpEj DnxI9XtqkpoIOFd0sD2+W+Nba8Ui1IXPxKjuNQ5yhwuZgiZC//EY1kTZLAQuxh3M MucyofWKhFv2Sya62bQDwP9wnZxcxICXDt2EDUHNIXUTCIB2vLLLNEYvVwuNDUpI NQVF3yYHbrq++AfAcmBcAJoI9VXPWLxlx3JE1S4EUiDlAk1PElIfI/ViMG5Q6SU3 -----END CERTIFICATE-----Generated at Thu Mar 26 19:14:01 2026 by rpki-client