$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/4002AE6236CF11F0AA705D26C4F9AE02.roa File: 4002AE6236CF11F0AA705D26C4F9AE02.roa (raw, json) Hash identifier: PYLDscz39D9VfGo8zcZSUWDhN0EWb8SMMJ0oBjb9APU= Subject key identifier: F7:48:57:8E:58:ED:72:1A:8D:20:81:D5:E8:D7:B9:EC:2A:A6:0E:81 Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: 95 Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/4002AE6236CF11F0AA705D26C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:09:09 +0000 ROA not before: Fri 01 Aug 2025 09:44:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153181 IP address blocks: 160.30.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Aug 1 09:44:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3f425-cfc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ba:4c:95:cd:2c:f8:a5:81:99:1e:58:f8:bc: 2f:f6:c7:21:c6:92:21:b7:1e:de:81:23:c1:b7:10: e1:51:44:e1:75:7f:1a:4e:28:70:41:0b:f2:d7:a1: 4d:3b:46:76:6e:1d:65:d5:f3:e5:93:d7:b5:9b:3c: a0:4e:23:71:da:73:fd:b4:22:c3:c4:60:f0:28:24: c0:aa:fa:82:12:37:d9:3d:d8:90:a0:8a:78:51:37: a0:4d:01:73:63:db:15:1c:05:7d:7d:9f:aa:e6:ba: 92:84:cd:44:a1:14:2d:89:ad:78:59:91:a2:57:b4: 11:28:50:8d:f7:86:1f:0f:98:40:d3:2a:57:2e:00: 1b:36:44:e3:bf:5f:7f:67:22:51:7f:f6:05:3d:2a: f4:6b:a0:58:ce:25:0d:a6:f2:7e:9a:9e:2c:90:80: 43:d7:df:4f:d8:da:62:aa:29:2a:85:48:eb:61:72: 5a:f0:81:b3:68:86:b8:4f:ba:4d:a2:ee:b4:c0:86: d4:60:0a:cd:85:28:d3:57:9b:31:a7:44:60:d3:00: f5:3a:81:e1:29:ab:20:2a:e8:a8:79:6e:e9:ac:88: fd:86:9e:7f:e3:33:6c:a2:ff:4f:45:1a:e4:4f:a5: 12:44:22:78:82:1d:07:11:73:45:c3:da:02:7c:21: 6f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:48:57:8E:58:ED:72:1A:8D:20:81:D5:E8:D7:B9:EC:2A:A6:0E:81 X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/4002AE6236CF11F0AA705D26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.42.0/23 Signature Algorithm: sha256WithRSAEncryption 83:74:00:4d:dd:2d:7a:13:6d:f7:4a:9d:b7:3e:38:9e:f3:13: dd:0c:ee:a4:7d:7a:15:dd:72:39:96:e5:45:c0:53:49:4a:22: ea:74:f2:8e:02:f7:d9:f8:de:8c:35:99:25:25:09:e6:32:5a: a6:60:43:2a:88:fd:34:92:57:5a:f8:24:16:70:6c:26:ed:67: 6e:bc:05:e9:71:67:9d:9e:8b:0e:3a:f0:ed:80:cd:44:e9:fb: 9f:15:97:51:a6:4d:79:c9:e0:23:1b:79:3f:11:e2:70:95:df: 98:71:92:f5:21:d7:6c:2a:61:75:aa:9c:51:4a:00:ff:a2:91: 3c:d6:17:71:87:05:11:ee:64:be:f7:f3:7f:24:1b:82:c9:4b: fb:b1:c3:8d:ad:fc:c6:d5:2f:aa:26:ae:43:5e:78:db:58:f3: 5f:94:ef:f6:3a:d0:1d:01:c1:85:98:65:0e:8c:79:55:db:1d: 91:43:1b:90:b0:18:30:9b:2e:a0:e0:13:12:b0:73:b0:23:53: 69:c9:2c:da:d8:2b:77:d7:2f:ff:df:35:31:f4:86:84:d3:d5: 9f:33:fe:dd:22:08:d2:d8:1f:4e:6a:15:bf:27:49:fe:f4:06: ee:55:4e:cf:59:8a:74:b2:1c:22:d2:76:1d:a8:53:3b:63:e3: b0:94:1a:30 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MUQxMTAvBgNVBAUTKDk1MkE0REM3QzRENjEwOTU5OEJFRUU1QUMwQTIwNkQy N0I4NUM1NkEwHhcNMjUwODAxMDk0NDU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjQyNS1jZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07pMlc0s+KWBmR5Y+Lwv9schxpIhtx7egSPBtxDhUUThdX8aTihwQQvy16FN O0Z2bh1l1fPlk9e1mzygTiNx2nP9tCLDxGDwKCTAqvqCEjfZPdiQoIp4UTegTQFz Y9sVHAV9fZ+q5rqShM1EoRQtia14WZGiV7QRKFCN94YfD5hA0ypXLgAbNkTjv19/ ZyJRf/YFPSr0a6BYziUNpvJ+mp4skIBD199P2NpiqikqhUjrYXJa8IGzaIa4T7pN ou60wIbUYArNhSjTV5sxp0Rg0wD1OoHhKasgKuioeW7prIj9hp5/4zNsov9PRRrk T6USRCJ4gh0HEXNFw9oCfCFvjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPdIV45Y 7XIajSCB1ejXuewqpg6BMB8GA1UdIwQYMBaAFJUqTcfE1hCVmL7uWsCiBtJ7hcVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcxRC8xRTBGOTkyRTM2 Q0UxMUYwQTJBNjlDMUZDNEY5QUUwMi9sU3BOeDhUV0VKV1l2dTVhd0tJRzBudUZ4 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ3MUQvMUUwRjk5MkUzNkNFMTFGMEEyQTY5QzFGQzRGOUFFMDIvNDAwMkFFNjIz NkNGMTFGMEFBNzA1RDI2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoB4qMA0GCSqGSIb3DQEBCwUAA4IBAQCDdABN3S16E233Sp23Pjie 8xPdDO6kfXoV3XI5luVFwFNJSiLqdPKOAvfZ+N6MNZklJQnmMlqmYEMqiP00klda +CQWcGwm7WduvAXpcWednosOOvDtgM1E6fufFZdRpk15yeAjG3k/EeJwld+YcZL1 IddsKmF1qpxRSgD/opE81hdxhwUR7mS+9/N/JBuCyUv7scONrfzG1S+qJq5DXnjb WPNflO/2OtAdAcGFmGUOjHlV2x2RQxuQsBgwmy6g4BMSsHOwI1NpySza2Ct31y// 3zUx9IaE09WfM/7dIgjS2B9OahW/J0n+9AbuVU7PWYp0shwi0nYdqFM7Y+OwlBow -----END CERTIFICATE-----Generated at Mon Mar 2 14:22:19 2026 by rpki-client