$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/9E4987668C7F11EFB4290976C4F9AE02.roa File: 9E4987668C7F11EFB4290976C4F9AE02.roa (raw, json) Hash identifier: l5WwokX0ZI8Y9CP6TgDkOcP9plGfuJ8GmKuV1BnPJZA= Subject key identifier: 2F:2E:45:A5:09:23:A0:27:9A:84:04:E5:C4:18:93:10:87:16:6E:74 Certificate issuer: /CN=A91DBF0C/serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Certificate serial: 010B Authority key identifier: AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/9E4987668C7F11EFB4290976C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:45:23 +0000 ROA not before: Wed 05 Nov 2025 06:20:43 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153312 IP address blocks: 160.30.240.0/23 maxlen: 23 160.30.240.0/24 maxlen: 32 160.30.241.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C, serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Validity Not Before: Nov 5 06:20:43 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a418c3-fc32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:35:69:52:33:95:d6:9a:23:87:d1:c2:83: 67:e6:05:ac:1d:6d:8b:9b:12:5b:43:b9:b3:d1:82: 46:f7:4c:00:36:3e:a8:22:02:59:d6:3e:2e:a0:0c: 3d:ab:c8:2e:2d:8d:f0:7e:34:04:89:e8:2b:9c:bb: 9b:a1:a9:2a:89:d4:6c:c0:3d:1c:69:ad:81:c1:76: 52:f2:02:56:7c:51:04:36:50:5d:c2:54:88:92:45: db:0d:fc:f3:84:7c:e6:de:7c:8e:11:79:f6:34:33: cc:df:77:96:fd:c3:d3:39:5b:1c:8d:2e:45:db:36: 02:f0:eb:10:04:47:7a:7f:8a:32:cb:20:ee:f1:66: 63:8a:3d:eb:15:9e:7e:51:fb:59:b7:d1:2e:fd:77: 76:d3:c7:5d:da:c6:a5:c6:f8:4c:c3:ca:6d:ce:dd: fe:d0:fa:29:f6:c7:3c:4a:6e:57:5c:25:c5:d8:0e: 89:71:75:85:be:ff:05:65:8a:bf:f1:06:fa:54:30: 5b:ed:3b:d4:17:c3:bf:78:b9:c6:62:d3:c5:6b:63: ec:3c:da:00:a5:cb:68:ab:fc:62:7f:52:ac:dd:d2: 6e:15:77:93:cb:23:fe:0e:45:13:1d:00:b5:03:1d: fa:dd:94:e2:3e:75:34:18:4d:27:b5:b8:84:23:59: e2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2E:45:A5:09:23:A0:27:9A:84:04:E5:C4:18:93:10:87:16:6E:74 X509v3 Authority Key Identifier: keyid:AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/9E4987668C7F11EFB4290976C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 160.30.240.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:df:77:6a:44:2f:62:7c:56:0e:27:da:fa:88:ab:f6:13:fc: 86:be:c7:66:90:72:76:bf:fb:a9:48:60:9f:f6:d4:7f:a8:8c: 70:64:01:c2:3c:e2:67:30:1e:1b:ba:11:0a:80:90:d3:e6:4b: 4d:5d:45:21:89:60:9c:1d:51:a6:5f:4f:75:ff:8c:42:fb:90: 51:74:d0:94:b3:96:ac:3f:99:ee:f0:90:50:c2:73:3a:a7:e2: 01:b4:b1:5f:7e:5e:e8:47:ce:e8:b4:80:09:41:d9:54:a7:b2: 5b:93:21:56:f8:0c:b5:48:ac:9a:ea:94:26:9c:f6:10:96:00: ea:9a:5d:f3:10:97:fa:cc:e6:4c:5d:ca:08:2c:68:98:f3:10: f0:ab:88:71:4d:f6:d9:07:69:de:b6:5c:06:75:e0:44:3b:eb: 2e:e1:48:fc:1b:a7:7b:02:a6:3f:55:0d:c3:2e:8a:5c:a2:29: 24:8f:12:1a:64:d8:0a:9f:bd:38:af:8d:58:46:d2:2b:cd:65: c9:b8:77:b7:22:d4:41:e4:84:d2:6b:5b:6e:6b:30:9b:2a:f2: bd:23:b0:fd:65:92:ad:b1:31:21:c1:6a:03:78:da:68:92:65: 9f:d3:d5:f7:7f:e7:da:32:37:9a:13:6c:06:14:c6:cd:24:09: c8:d0:75:1c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEMxMTAvBgNVBAUTKEFFMEU0QkVDNTY4RkU2RkVFNDkyRjcyRTREM0FDQjky OEQ5QzFFNEYwHhcNMjUxMTA1MDYyMDQzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MThjMy1mYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCo1aVIzldaaI4fRwoNn5gWsHW2LmxJbQ7mz0YJG90wANj6oIgJZ1j4uoAw9 q8guLY3wfjQEiegrnLuboakqidRswD0caa2BwXZS8gJWfFEENlBdwlSIkkXbDfzz hHzm3nyOEXn2NDPM33eW/cPTOVscjS5F2zYC8OsQBEd6f4oyyyDu8WZjij3rFZ5+ UftZt9Eu/Xd208dd2salxvhMw8ptzt3+0Pop9sc8Sm5XXCXF2A6JcXWFvv8FZYq/ 8Qb6VDBb7TvUF8O/eLnGYtPFa2PsPNoApctoq/xif1Ks3dJuFXeTyyP+DkUTHQC1 Ax363ZTiPnU0GE0ntbiEI1niwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC8uRaUJ I6AnmoQE5cQYkxCHFm50MB8GA1UdIwQYMBaAFK4OS+xWj+b+5JL3Lk06y5KNnB5P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwQy80MTQ4NTA3MDhD NUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2N2trdmN1VFRyTGtvMmNI azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JnNUw3RmFQNXY3a2t2Y3VUVHJMa28yY0hrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJGMEMvNDE0ODUwNzA4QzVCMTFFRkE3MDY3NTdGQzRGOUFFMDIvOUU0OTg3NjY4 QzdGMTFFRkI0MjkwOTc2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoB7wMA0GCSqGSIb3DQEBCwUAA4IBAQCO33dqRC9ifFYOJ9r6iKv2 E/yGvsdmkHJ2v/upSGCf9tR/qIxwZAHCPOJnMB4buhEKgJDT5ktNXUUhiWCcHVGm X091/4xC+5BRdNCUs5asP5nu8JBQwnM6p+IBtLFffl7oR87otIAJQdlUp7JbkyFW +Ay1SKya6pQmnPYQlgDqml3zEJf6zOZMXcoILGiY8xDwq4hxTfbZB2netlwGdeBE O+su4Uj8G6d7AqY/VQ3DLopcoikkjxIaZNgKn704r41YRtIrzWXJuHe3ItRB5ITS a1tuazCbKvK9I7D9ZZKtsTEhwWoDeNpokmWf09X3f+faMjeaE2wGFMbNJAnI0HUc -----END CERTIFICATE-----Generated at Mon Mar 2 09:08:09 2026 by rpki-client