$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/7143C5B85DBF11EFB8714857C4F9AE02.roa File: 7143C5B85DBF11EFB8714857C4F9AE02.roa (raw, json) Hash identifier: nTbnCk4P5H9oOH4eL195jhnWczLlGOgjmjreKYWM0EU= Subject key identifier: 06:27:29:42:19:DF:AD:1E:F0:C3:4C:B0:11:DC:4B:87:59:FD:01:D0 Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: D3 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/7143C5B85DBF11EFB8714857C4F9AE02.roa Signing time: Mon 29 Sep 2025 06:35:49 +0000 ROA not before: Mon 29 Sep 2025 06:35:49 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136935 IP address blocks: 160.30.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Sep 29 06:35:49 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68da28c5-c7ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6c:e8:77:b8:c4:65:63:4c:89:2d:33:7a:6e: a1:2d:f0:1e:e9:62:c1:4b:b0:64:07:d9:09:d1:b0: ff:88:b4:d9:32:d9:77:55:ef:6e:13:1d:f1:1a:f9: 45:33:55:e9:08:fd:99:00:21:0b:38:07:00:03:ce: 02:b2:c2:8b:cf:6d:25:a9:df:6f:e3:76:48:0e:9d: bd:ea:6a:2b:81:59:7b:c5:e1:b0:f5:81:a4:d7:71: a9:c6:ca:cc:4c:99:9f:d0:c6:a3:e1:4d:15:f6:c6: 67:6b:63:52:13:56:5f:80:56:5b:58:a4:44:ab:ba: ca:97:ae:4a:b1:d9:9d:d6:3d:e4:c9:c1:8a:c8:fe: 2c:b4:47:fe:81:10:a3:71:ec:c1:1e:a2:01:64:7a: ae:11:58:98:9b:92:67:87:2f:b0:73:19:50:6c:b9: 23:2c:14:b1:ed:49:a8:6e:5b:84:ec:54:25:69:20: 3f:75:53:cd:63:53:5e:db:81:5b:5f:5a:62:c1:4c: d1:93:cf:64:36:df:f8:cc:50:3b:12:37:53:dd:1e: a9:16:14:a8:1f:f6:1c:66:f1:95:aa:ed:84:be:65: 71:39:da:74:9c:d1:e6:12:35:5a:8e:82:ca:be:09: 1e:8b:f3:1e:61:ff:14:f7:ab:b2:c9:15:1d:c6:5f: 5e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:27:29:42:19:DF:AD:1E:F0:C3:4C:B0:11:DC:4B:87:59:FD:01:D0 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/7143C5B85DBF11EFB8714857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.130.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:5b:38:f8:6a:98:43:5c:ca:b8:e5:37:11:54:e3:de:5c:d0: bb:07:4d:10:a1:3d:84:4b:7e:26:66:a6:0d:4a:ec:b7:0f:81: 7a:d9:e2:d9:d9:b8:09:9c:d3:8d:16:f6:70:68:4d:ef:3d:19: c8:ab:db:35:53:99:ed:ba:99:91:f2:89:4a:ba:43:22:f6:7a: ff:fe:4f:8e:54:a3:47:e0:c3:79:53:91:2f:ee:a2:e1:ce:45: 42:fa:b6:8f:41:63:3b:20:d7:c0:ab:03:1a:7c:b9:91:df:cb: 3a:f0:cb:15:88:a1:1b:d0:4e:6b:bd:9d:ee:7c:c9:1d:8d:73: b7:4d:3b:58:57:b1:05:71:ff:d3:2f:2e:62:d2:f2:fd:37:67: b5:01:9b:85:03:93:7a:82:2f:0d:43:fc:2e:55:3a:13:69:98: 19:69:7e:3c:e6:12:1b:7d:ca:34:d1:4e:b6:c5:e6:72:4a:7a: e0:ef:09:93:a1:ed:34:32:81:fc:51:e1:22:3c:d9:4a:2a:20: ec:a2:05:fc:cd:26:13:46:fd:53:e0:0a:8b:79:f9:a5:23:b8: 03:88:af:67:ea:20:f7:7c:21:2d:91:c5:5f:9b:04:c6:9d:ce: fd:75:19:52:d9:10:78:f4:dd:ae:dc:87:20:0f:1c:36:00:a0: d4:24:6f:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjUwOTI5MDYzNTQ5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRhMjhjNS1jN2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGzod7jEZWNMiS0zem6hLfAe6WLBS7BkB9kJ0bD/iLTZMtl3Ve9uEx3xGvlF M1XpCP2ZACELOAcAA84CssKLz20lqd9v43ZIDp296morgVl7xeGw9YGk13GpxsrM TJmf0Maj4U0V9sZna2NSE1ZfgFZbWKREq7rKl65Ksdmd1j3kycGKyP4stEf+gRCj cezBHqIBZHquEViYm5Jnhy+wcxlQbLkjLBSx7UmobluE7FQlaSA/dVPNY1Ne24Fb X1piwUzRk89kNt/4zFA7EjdT3R6pFhSoH/YcZvGVqu2EvmVxOdp0nNHmEjVajoLK vgkei/MeYf8U96uyyRUdxl9ePwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAYnKUIZ 360e8MNMsBHcS4dZ/QHQMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhGOUIvRjkwMkU1MzA1REJEMTFFRjhBMDZFRDQwQzRGOUFFMDIvNzE0M0M1Qjg1 REJGMTFFRkI4NzE0ODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHoIwDQYJKoZIhvcNAQELBQADggEBAD1bOPhqmENcyrjl NxFU495c0LsHTRChPYRLfiZmpg1K7LcPgXrZ4tnZuAmc040W9nBoTe89Gcir2zVT me26mZHyiUq6QyL2ev/+T45Uo0fgw3lTkS/uouHORUL6to9BYzsg18CrAxp8uZHf yzrwyxWIoRvQTmu9ne58yR2Nc7dNO1hXsQVx/9MvLmLS8v03Z7UBm4UDk3qCLw1D /C5VOhNpmBlpfjzmEht9yjTRTrbF5nJKeuDvCZOh7TQygfxR4SI82UoqIOyiBfzN JhNG/VPgCot5+aUjuAOIr2fqIPd8IS2RxV+bBMadzv11GVLZEHj03a7chyAPHDYA oNQkb38= -----END CERTIFICATE-----Generated at Mon Oct 20 16:06:17 2025 by rpki-client