$ rpki-client -vvf rpki.apnic.net/member_repository/A912756D/842206D46B5411EFB8A8A61AC4F9AE02/95CB7E0E6B5611EFA00DA92FC4F9AE02.roa File: 95CB7E0E6B5611EFA00DA92FC4F9AE02.roa (raw, json) Hash identifier: Rd2u5+XVNa95Pty8HlhuaiB3PGi7gBs8komA8h2heHI= Subject key identifier: 72:3F:D2:2D:54:87:2A:5B:DB:50:3B:54:06:B4:32:54:C1:13:F5:60 Certificate issuer: /CN=A912756D/serialNumber=C37EF7C8C344D3185829BC2CB996C894AAA80EF3 Certificate serial: 0121 Authority key identifier: C3:7E:F7:C8:C3:44:D3:18:58:29:BC:2C:B9:96:C8:94:AA:A8:0E:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w373yMNE0xhYKbwsuZbIlKqoDvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912756D/842206D46B5411EFB8A8A61AC4F9AE02/95CB7E0E6B5611EFA00DA92FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:38:06 +0000 ROA not before: Fri 05 Sep 2025 06:42:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140362 IP address blocks: 160.30.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912756D/842206D46B5411EFB8A8A61AC4F9AE02/w373yMNE0xhYKbwsuZbIlKqoDvM.crl rsync://rpki.apnic.net/member_repository/A912756D/842206D46B5411EFB8A8A61AC4F9AE02/w373yMNE0xhYKbwsuZbIlKqoDvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w373yMNE0xhYKbwsuZbIlKqoDvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912756D, serialNumber=C37EF7C8C344D3185829BC2CB996C894AAA80EF3 Validity Not Before: Sep 5 06:42:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5a0ce-4877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:37:07:38:11:9c:ac:36:30:df:41:6e:bd:75: bf:0c:b4:8e:5a:63:d3:78:fe:17:01:a7:f7:46:43: fd:10:51:ea:72:e5:19:45:f8:af:ac:d4:d3:06:43: 24:65:3a:0f:96:a3:e8:50:48:75:33:3f:53:13:ce: 91:01:0d:5e:a2:78:10:de:51:8a:95:cd:44:0c:a1: 99:67:8b:83:de:6c:52:96:7d:dc:51:03:59:b6:f5: c3:80:7a:f4:7e:66:48:3c:ef:8d:3b:e7:46:e1:5b: 72:da:85:17:6d:78:41:52:d4:2b:e5:fd:2d:3a:ec: 72:c9:ff:5e:01:5f:2a:00:37:5d:7e:c6:d9:f1:7f: 91:2f:53:06:85:f1:4e:ab:e8:9e:e3:7a:92:d2:2c: 09:bf:97:a3:93:66:94:54:26:ae:d8:58:3c:a4:70: 56:6d:42:88:20:b7:7a:78:c6:b1:fd:2d:0d:45:ca: 40:c9:d3:a4:2d:ad:a5:76:e0:64:80:70:40:0e:b3: 6e:aa:84:b9:65:29:07:73:70:6b:ec:92:8e:f6:84: d6:ef:01:54:33:33:d0:9f:a0:db:f9:e0:83:b4:81: 99:4d:fa:e4:a4:86:90:f8:2f:16:c8:58:8d:1f:3a: 93:fa:90:eb:cc:bb:1e:18:b3:5a:eb:f7:15:aa:f5: 3a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:3F:D2:2D:54:87:2A:5B:DB:50:3B:54:06:B4:32:54:C1:13:F5:60 X509v3 Authority Key Identifier: keyid:C3:7E:F7:C8:C3:44:D3:18:58:29:BC:2C:B9:96:C8:94:AA:A8:0E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912756D/842206D46B5411EFB8A8A61AC4F9AE02/w373yMNE0xhYKbwsuZbIlKqoDvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w373yMNE0xhYKbwsuZbIlKqoDvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912756D/842206D46B5411EFB8A8A61AC4F9AE02/95CB7E0E6B5611EFA00DA92FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.120.0/23 Signature Algorithm: sha256WithRSAEncryption 29:b4:7f:e6:ac:f7:d9:a7:bd:bc:e4:cf:78:3c:af:5e:6e:82: e9:e2:43:72:72:33:89:5b:f8:65:aa:1e:71:fd:57:98:e9:db: a3:c6:3e:69:13:61:8a:08:ec:0b:97:6f:a0:eb:03:10:04:5a: 94:2c:29:40:79:7c:fd:3a:62:43:26:69:7b:a1:2d:6a:3a:53: 5e:18:1d:99:41:37:05:86:3f:6f:3f:66:60:fc:88:e5:42:fc: 75:f9:e0:94:ca:74:b5:90:05:9d:20:9e:39:21:c0:0f:2b:45: fa:67:49:cb:f5:5d:a6:8a:95:e5:e7:d2:4d:92:45:e6:d1:73: f5:9d:ec:8c:52:fa:1e:c4:36:0c:de:44:ea:8c:42:c2:ad:3d: 66:ee:d4:2e:c5:51:92:8d:fa:ee:8b:10:23:89:62:54:87:33: 98:2f:20:b3:82:74:17:49:37:4d:da:b5:a2:c7:9a:c5:ce:13: 8f:64:e7:57:f3:95:71:fe:c2:c6:bd:5b:15:ee:f6:cc:d8:61: 25:c6:81:5c:15:6c:8f:ba:a5:d7:a3:2b:48:35:b6:ca:04:6a: eb:a5:fa:b7:11:17:9a:1d:9d:e4:88:73:59:1f:bc:d6:36:90: 8a:a6:9d:b5:32:56:55:b0:03:1e:08:6d:d2:76:63:64:e3:4a: 28:f9:06:6e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1NkQxMTAvBgNVBAUTKEMzN0VGN0M4QzM0NEQzMTg1ODI5QkMyQ0I5OTZDODk0 QUFBODBFRjMwHhcNMjUwOTA1MDY0MjMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTBjZS00ODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTcHOBGcrDYw30FuvXW/DLSOWmPTeP4XAaf3RkP9EFHqcuUZRfivrNTTBkMk ZToPlqPoUEh1Mz9TE86RAQ1eongQ3lGKlc1EDKGZZ4uD3mxSln3cUQNZtvXDgHr0 fmZIPO+NO+dG4Vty2oUXbXhBUtQr5f0tOuxyyf9eAV8qADddfsbZ8X+RL1MGhfFO q+ie43qS0iwJv5ejk2aUVCau2Fg8pHBWbUKIILd6eMax/S0NRcpAydOkLa2lduBk gHBADrNuqoS5ZSkHc3Br7JKO9oTW7wFUMzPQn6Db+eCDtIGZTfrkpIaQ+C8WyFiN HzqT+pDrzLseGLNa6/cVqvU6zwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHI/0i1U hypb21A7VAa0MlTBE/VgMB8GA1UdIwQYMBaAFMN+98jDRNMYWCm8LLmWyJSqqA7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzU2RC84NDIyMDZENDZC NTQxMUVGQjhBOEE2MUFDNEY5QUUwMi93MzczeU1ORTB4aFlLYndzdVpiSWxLcW9E dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3czNzN5TU5FMHhoWUtid3N1WmJJbEtxb0R2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1NkQvODQyMjA2RDQ2QjU0MTFFRkI4QThBNjFBQzRGOUFFMDIvOTVDQjdFMEU2 QjU2MTFFRkEwMERBOTJGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoB54MA0GCSqGSIb3DQEBCwUAA4IBAQAptH/mrPfZp7285M94PK9e boLp4kNycjOJW/hlqh5x/VeY6dujxj5pE2GKCOwLl2+g6wMQBFqULClAeXz9OmJD Jml7oS1qOlNeGB2ZQTcFhj9vP2Zg/IjlQvx1+eCUynS1kAWdIJ45IcAPK0X6Z0nL 9V2mipXl59JNkkXm0XP1neyMUvoexDYM3kTqjELCrT1m7tQuxVGSjfruixAjiWJU hzOYLyCzgnQXSTdN2rWix5rFzhOPZOdX85Vx/sLGvVsV7vbM2GElxoFcFWyPuqXX oytINbbKBGrrpfq3EReaHZ3kiHNZH7zWNpCKpp21MlZVsAMeCG3SdmNk40oo+QZu -----END CERTIFICATE-----Generated at Mon Mar 2 22:53:04 2026 by rpki-client