$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/E39AF9C6CB3611EFAE3C1A10C4F9AE02.roa File: E39AF9C6CB3611EFAE3C1A10C4F9AE02.roa (raw, json) Hash identifier: HaAP7uUg1XzzgFWY/CdSRARMCuA2gGNyuumYnBvV1lw= Subject key identifier: F2:3D:F5:57:47:C2:99:0A:E1:8C:48:3A:06:E3:D3:A5:A2:61:E3:2A Certificate issuer: /CN=A9196DCA/serialNumber=AE73B70548FF422ED02D59D1CA25793A05E9E42A Certificate serial: 05 Authority key identifier: AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/E39AF9C6CB3611EFAE3C1A10C4F9AE02.roa Signing time: Sun 05 Jan 2025 08:19:05 +0000 ROA not before: Sun 05 Jan 2025 08:19:05 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133213 IP address blocks: 160.250.230.0/23 maxlen: 23 160.250.230.0/24 maxlen: 24 160.250.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DCA, serialNumber=AE73B70548FF422ED02D59D1CA25793A05E9E42A Validity Not Before: Jan 5 08:19:05 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677a4079-76ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:36:00:6f:5c:d4:69:96:4a:f6:d5:09:be:46: fc:c6:86:d6:2a:01:f6:b8:95:ef:91:1e:6a:f2:f9: d5:3c:9c:1e:77:69:ed:e9:49:ea:f9:0f:7e:c3:6d: 76:59:cb:24:81:65:06:c0:ac:0c:05:38:a8:18:ac: 23:43:1f:0f:ab:8f:b7:29:a2:d3:ee:af:06:5c:81: c1:8a:ca:c1:c0:9c:65:a6:02:4b:a4:e6:9d:b1:91: 5c:e5:9d:7b:34:7b:4e:e3:2d:b6:71:00:cf:a6:e9: e4:2e:c9:d8:78:ca:b4:f9:92:5c:99:04:f7:72:9e: 52:20:19:e3:c9:96:8f:6a:bd:74:b6:f4:c5:bf:b5: 94:90:e0:a1:9b:34:42:aa:ec:59:27:87:6f:70:5b: 3d:7c:7c:96:1e:4e:5e:1d:6d:6e:65:62:de:21:72: ba:6c:b4:59:f3:97:8a:53:16:7c:4d:e4:8a:1f:4a: 46:a0:ba:a1:2d:57:88:8a:d5:d1:5f:fd:0a:b7:27: 1c:49:4a:5e:00:c3:7a:b3:dd:51:60:df:ea:fa:35: ca:61:8d:1c:93:f1:e0:9b:59:b2:5f:00:11:bd:2f: 2c:61:19:e5:c8:e9:ba:cc:df:fe:c5:af:ca:6a:f9: ea:02:79:f6:47:d3:ae:d0:70:ef:a8:18:25:47:26: 54:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3D:F5:57:47:C2:99:0A:E1:8C:48:3A:06:E3:D3:A5:A2:61:E3:2A X509v3 Authority Key Identifier: keyid:AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/E39AF9C6CB3611EFAE3C1A10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.230.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:fb:25:7d:73:8d:f8:ae:0c:ff:b6:1f:87:a9:25:df:7f:27: 42:aa:ca:e9:37:00:4a:cb:1a:72:49:83:40:e2:b9:78:e2:f3: 9a:3b:9b:d0:08:80:3c:6a:e8:a5:58:2b:13:ce:4c:22:b4:9c: 25:a9:c8:ed:46:e0:48:db:01:e2:45:bf:72:2d:fb:b3:1a:80: 55:14:d4:57:ba:80:a6:f9:41:df:bb:cc:9d:aa:ce:38:84:b3: c4:4a:19:b9:a0:bd:c6:11:1a:00:6c:dc:8d:81:20:65:6d:38: ef:7b:55:72:18:85:7b:b8:eb:d8:c9:a0:21:58:42:05:33:c1: 52:d1:a1:d7:93:b2:bb:4f:0b:f7:5b:94:bc:a4:3f:6a:1d:15: 06:d0:01:db:57:19:81:50:b6:24:e3:1d:c4:e9:6a:08:db:4c: 45:ed:29:50:17:07:16:c8:35:3e:e3:f9:cb:74:30:59:18:09: 53:11:b4:fd:13:73:b7:6d:34:55:75:b7:d4:6e:78:7a:13:30: ba:51:29:34:ec:1a:c9:fd:d6:26:56:d5:28:5f:35:be:0a:05: 14:42:a8:ba:d0:ca:47:84:ba:6d:15:b3:b2:a5:30:5b:27:02: 05:21:af:be:a9:9d:14:3d:90:0e:db:ca:b6:de:87:c4:68:e5: 90:9b:b1:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDQTExMC8GA1UEBRMoQUU3M0I3MDU0OEZGNDIyRUQwMkQ1OUQxQ0EyNTc5M0Ew NUU5RTQyQTAeFw0yNTAxMDUwODE5MDVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2E0MDc5LTc2ZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbNgBvXNRplkr21Qm+RvzGhtYqAfa4le+RHmry+dU8nB53ae3pSer5D37DbXZZ yySBZQbArAwFOKgYrCNDHw+rj7cpotPurwZcgcGKysHAnGWmAkuk5p2xkVzlnXs0 e07jLbZxAM+m6eQuydh4yrT5klyZBPdynlIgGePJlo9qvXS29MW/tZSQ4KGbNEKq 7Fknh29wWz18fJYeTl4dbW5lYt4hcrpstFnzl4pTFnxN5IofSkaguqEtV4iK1dFf /Qq3JxxJSl4Aw3qz3VFg3+r6NcphjRyT8eCbWbJfABG9LyxhGeXI6brM3/7Fr8pq +eoCefZH067QcO+oGCVHJlTTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8j31V0fC mQrhjEg6BuPTpaJh4yowHwYDVR0jBBgwFoAUrnO3BUj/Qi7QLVnRyiV5OgXp5Cow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RENBLzUwMTA5ODc2Q0Ix RjExRUZCN0FDMjc4NkM0RjlBRTAyL3JuTzNCVWpfUWk3UUxWblJ5aVY1T2dYcDVD by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcm5PM0JVal9RaTdRTFZuUnlpVjVPZ1hwNUNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRDQS81MDEwOTg3NkNCMUYxMUVGQjdBQzI3ODZDNEY5QUUwMi9FMzlBRjlDNkNC MzYxMUVGQUUzQzFBMTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD65jANBgkqhkiG9w0BAQsFAAOCAQEAjvslfXON+K4M/7Yf h6kl338nQqrK6TcASssackmDQOK5eOLzmjub0AiAPGropVgrE85MIrScJanI7Ubg SNsB4kW/ci37sxqAVRTUV7qApvlB37vMnarOOISzxEoZuaC9xhEaAGzcjYEgZW04 73tVchiFe7jr2MmgIVhCBTPBUtGh15Oyu08L91uUvKQ/ah0VBtAB21cZgVC2JOMd xOlqCNtMRe0pUBcHFsg1PuP5y3QwWRgJUxG0/RNzt200VXW31G54ehMwulEpNOwa yf3WJlbVKF81vgoFFEKoutDKR4S6bRWzsqUwWycCBSGvvqmdFD2QDtvKtt6HxGjl kJux2A== -----END CERTIFICATE-----Generated at Wed Nov 5 15:17:41 2025 by rpki-client