$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6AD/6332777AB45E11F0BD68A93EC4F9AE02/2D57F1BAB90511F0BF94505DC4F9AE02.roa File: 2D57F1BAB90511F0BF94505DC4F9AE02.roa (raw, json) Hash identifier: YJGjI5x4mclPmwg38/NdSIhL9tismW3BzliV5IxfnJI= Subject key identifier: 0A:14:A2:2B:F1:56:1E:0D:FF:7F:D3:62:69:92:AB:AC:24:D6:71:B0 Certificate issuer: /CN=A918D6AD/serialNumber=D69F826C8C201115B47EECC37FB5E0008E356BDC Certificate serial: 07 Authority key identifier: D6:9F:82:6C:8C:20:11:15:B4:7E:EC:C3:7F:B5:E0:00:8E:35:6B:DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1p-CbIwgERW0fuzDf7XgAI41a9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6AD/6332777AB45E11F0BD68A93EC4F9AE02/2D57F1BAB90511F0BF94505DC4F9AE02.roa Signing time: Mon 03 Nov 2025 22:33:53 +0000 ROA not before: Mon 03 Nov 2025 22:33:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153184 IP address blocks: 160.30.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6AD/6332777AB45E11F0BD68A93EC4F9AE02/1p-CbIwgERW0fuzDf7XgAI41a9w.crl rsync://rpki.apnic.net/member_repository/A918D6AD/6332777AB45E11F0BD68A93EC4F9AE02/1p-CbIwgERW0fuzDf7XgAI41a9w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1p-CbIwgERW0fuzDf7XgAI41a9w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6AD, serialNumber=D69F826C8C201115B47EECC37FB5E0008E356BDC Validity Not Before: Nov 3 22:33:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69092dd1-2a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:bb:cc:7b:4d:0b:ad:0d:50:00:c0:ab:1c: 3e:ae:72:78:86:c3:a1:95:c9:e7:d6:0e:87:2b:e1: a3:3b:cb:86:c7:21:f4:1a:6f:d4:69:f9:5f:f4:65: af:8b:6e:95:3e:1d:f1:7f:1e:6f:d2:93:3c:9e:b4: 3a:b8:48:28:09:07:e1:78:80:e6:03:02:29:88:66: 75:c3:e4:cc:44:1c:a5:37:1f:c1:49:f4:18:5d:68: 51:79:1c:69:d0:34:1a:33:71:1a:55:0b:8e:d8:38: 13:1b:30:b2:6e:f6:a2:6d:d6:77:84:e6:ab:9a:4b: 80:10:07:f8:79:eb:39:e1:95:53:0a:f5:59:6e:43: 28:9b:ca:0a:5a:61:0a:85:ec:7b:97:c5:99:a8:55: d2:33:4f:57:4d:38:e5:1d:0f:53:f2:76:b7:bb:07: c1:1c:b4:5c:be:e6:6b:81:e6:fd:50:3f:b8:cf:cc: 63:a7:5c:0d:0d:5b:65:68:7e:ad:51:cf:ae:ec:de: 92:04:f4:62:b4:4e:56:43:e9:39:a6:d5:8c:d1:98: 00:0a:ef:86:77:95:2a:36:d5:b4:62:fc:c7:2f:64: 83:6d:39:3b:21:94:64:ae:23:d5:fe:02:b0:f9:5a: 00:c4:7d:5c:2d:25:2a:8b:f0:82:2e:da:30:4c:c8: 87:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:14:A2:2B:F1:56:1E:0D:FF:7F:D3:62:69:92:AB:AC:24:D6:71:B0 X509v3 Authority Key Identifier: keyid:D6:9F:82:6C:8C:20:11:15:B4:7E:EC:C3:7F:B5:E0:00:8E:35:6B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6AD/6332777AB45E11F0BD68A93EC4F9AE02/1p-CbIwgERW0fuzDf7XgAI41a9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1p-CbIwgERW0fuzDf7XgAI41a9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6AD/6332777AB45E11F0BD68A93EC4F9AE02/2D57F1BAB90511F0BF94505DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.59.0/24 Signature Algorithm: sha256WithRSAEncryption 22:75:ab:8f:67:16:fb:38:91:18:74:93:76:6d:0e:b6:cf:b5: cd:e1:db:38:c6:62:77:53:ed:d2:e0:64:fd:84:eb:64:8c:bb: e1:da:d1:c0:dc:c2:cf:52:b9:1c:41:df:16:41:6a:4c:0c:57: 24:60:3f:f5:dd:a4:16:75:ca:b5:7c:48:35:da:b5:61:cc:23: e5:93:62:d6:26:a8:00:12:eb:2e:78:6e:13:b4:f9:4e:4f:8f: b2:d1:8e:04:71:a1:52:bf:48:19:a7:ff:c2:a7:14:5d:f1:17: 4a:03:53:9d:ec:36:11:84:9b:13:e2:fa:e5:bd:c3:4b:47:bf: da:fa:49:53:c9:dd:5e:2d:41:bb:e5:24:80:ba:e6:22:f1:ac: e5:d0:74:57:ba:80:ef:25:92:cb:9b:d4:bc:63:8b:ae:fa:fd: 67:1c:13:75:16:17:a3:60:50:20:c5:28:40:bd:46:eb:63:bf: 84:9a:10:48:8d:d3:17:01:dd:65:9c:eb:37:89:d7:28:3b:d9: 39:23:5f:9c:ac:49:1e:b1:40:a3:87:96:c1:e6:94:ea:47:1f: 78:e5:bb:62:f2:01:31:a5:92:70:a5:ae:83:d0:c2:a2:ca:f7: 97:27:82:ff:a2:7f:c1:57:0e:91:7f:03:87:f6:b8:d9:fe:23: 8d:ef:a9:a6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDZBRDExMC8GA1UEBRMoRDY5RjgyNkM4QzIwMTExNUI0N0VFQ0MzN0ZCNUUwMDA4 RTM1NkJEQzAeFw0yNTExMDMyMjMzNTNaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDkyZGQxLTJhMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAU7vMe00LrQ1QAMCrHD6ucniGw6GVyefWDocr4aM7y4bHIfQab9Rp+V/0Za+L bpU+HfF/Hm/SkzyetDq4SCgJB+F4gOYDAimIZnXD5MxEHKU3H8FJ9BhdaFF5HGnQ NBozcRpVC47YOBMbMLJu9qJt1neE5quaS4AQB/h56znhlVMK9VluQyibygpaYQqF 7HuXxZmoVdIzT1dNOOUdD1Pydre7B8EctFy+5muB5v1QP7jPzGOnXA0NW2Vofq1R z67s3pIE9GK0TlZD6Tmm1YzRmAAK74Z3lSo21bRi/McvZINtOTshlGSuI9X+ArD5 WgDEfVwtJSqL8IIu2jBMyIcpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUChSiK/FW Hg3/f9NiaZKrrCTWcbAwHwYDVR0jBBgwFoAU1p+CbIwgERW0fuzDf7XgAI41a9ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThENkFELzYzMzI3NzdBQjQ1 RTExRjBCRDY4QTkzRUM0RjlBRTAyLzFwLUNiSXdnRVJXMGZ1ekRmN1hnQUk0MWE5 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMXAtQ2JJd2dFUlcwZnV6RGY3WGdBSTQxYTl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDZBRC82MzMyNzc3QUI0NUUxMUYwQkQ2OEE5M0VDNEY5QUUwMi8yRDU3RjFCQUI5 MDUxMUYwQkY5NDUwNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAeOzANBgkqhkiG9w0BAQsFAAOCAQEAInWrj2cW+ziRGHST dm0Ots+1zeHbOMZid1Pt0uBk/YTrZIy74drRwNzCz1K5HEHfFkFqTAxXJGA/9d2k FnXKtXxINdq1Ycwj5ZNi1iaoABLrLnhuE7T5Tk+PstGOBHGhUr9IGaf/wqcUXfEX SgNTnew2EYSbE+L65b3DS0e/2vpJU8ndXi1Bu+UkgLrmIvGs5dB0V7qA7yWSy5vU vGOLrvr9ZxwTdRYXo2BQIMUoQL1G62O/hJoQSI3TFwHdZZzrN4nXKDvZOSNfnKxJ HrFAo4eWweaU6kcfeOW7YvIBMaWScKWug9DCosr3lyeC/6J/wVcOkX8Dh/a42f4j je+ppg== -----END CERTIFICATE-----Generated at Wed Nov 5 09:47:59 2025 by rpki-client