$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/2DFD4A1E740C11EFB881CE37C4F9AE02.roa File: 2DFD4A1E740C11EFB881CE37C4F9AE02.roa (raw, json) Hash identifier: Lo2vDLqUWYKZZBt2t4d2KqlKu9tqzBqX5FsiB+knExY= Subject key identifier: EA:1C:32:C1:35:9D:33:9B:90:2B:35:49:E0:82:04:69:00:FA:AD:5F Certificate issuer: /CN=A91EE92F/serialNumber=457DB766E1B0D6A4DCC7F9AECD287D4DC3E70C9E Certificate serial: D8 Authority key identifier: 45:7D:B7:66:E1:B0:D6:A4:DC:C7:F9:AE:CD:28:7D:4D:C3:E7:0C:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/2DFD4A1E740C11EFB881CE37C4F9AE02.roa Signing time: Mon 03 Nov 2025 05:51:04 +0000 ROA not before: Mon 03 Nov 2025 05:51:04 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153329 IP address blocks: 160.187.56.0/23 maxlen: 23 160.187.56.0/24 maxlen: 24 160.187.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.crl rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F, serialNumber=457DB766E1B0D6A4DCC7F9AECD287D4DC3E70C9E Validity Not Before: Nov 3 05:51:04 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690842c7-beb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:07:02:93:34:65:e3:09:ac:8e:85:b1:3e: 82:f7:a0:43:cb:10:4e:a1:00:0c:06:86:4d:ff:b9: 5b:f1:7e:f4:6c:b4:f2:4e:c9:d6:b5:83:21:f0:f3: 82:3d:40:52:ed:21:d1:29:4a:03:22:f1:75:65:77: 7c:05:60:17:e5:e1:45:08:0b:2a:aa:01:4b:82:7d: 23:b9:2e:8d:6e:2e:c1:96:88:af:ae:90:18:f5:a8: a6:a5:df:f5:d8:0b:6d:24:d4:ec:d4:c7:69:41:42: 74:34:be:93:55:02:d8:6b:46:e6:73:ae:73:19:9a: 95:7e:d5:ff:d4:39:34:dd:d0:f5:50:4a:43:b7:43: 85:7c:2a:89:d2:c0:0b:dd:13:de:d7:ae:2c:62:ee: 80:75:09:6b:01:6a:28:ae:4c:37:89:06:ca:a0:b5: 5d:cb:6e:de:72:b3:c8:ef:1d:ca:51:6d:ca:d9:42: 1f:c4:93:11:1c:66:44:c7:6e:ed:b9:9d:87:ae:98: b7:05:2a:bf:24:bf:06:b4:92:a6:4a:97:6b:f9:82: 4b:5f:55:37:52:dc:10:38:13:2e:3d:2e:6f:43:9e: e2:c7:ef:0b:cd:c4:dd:35:91:20:66:29:ca:f0:dc: a5:1c:b3:1d:9d:cb:e3:81:46:69:5b:60:fc:f1:70: e0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:1C:32:C1:35:9D:33:9B:90:2B:35:49:E0:82:04:69:00:FA:AD:5F X509v3 Authority Key Identifier: keyid:45:7D:B7:66:E1:B0:D6:A4:DC:C7:F9:AE:CD:28:7D:4D:C3:E7:0C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/RX23ZuGw1qTcx_muzSh9TcPnDJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RX23ZuGw1qTcx_muzSh9TcPnDJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/12085D18740B11EF9E9C0336C4F9AE02/2DFD4A1E740C11EFB881CE37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.56.0/23 Signature Algorithm: sha256WithRSAEncryption c3:28:74:f3:c8:ca:c2:78:cf:59:80:bf:95:2d:c1:0b:d0:f3: ce:2d:c4:d6:80:85:ff:bc:12:a3:d9:89:72:54:ad:12:d6:01: fb:1f:ff:e3:9a:5a:fa:23:37:6b:04:d5:07:1c:23:e4:b7:6a: 3c:2c:64:22:83:a9:f5:a5:43:96:d6:61:53:54:d8:0f:77:c3: 11:e6:15:c3:b8:73:bd:2e:9d:4a:6d:87:61:cf:88:32:c6:14: 2d:80:89:74:aa:06:d5:46:66:e6:7c:dd:e6:dc:9d:3c:84:ea: be:4e:9e:52:77:09:b2:96:39:cf:58:73:f0:c4:d0:38:20:16: 3f:6c:0f:0c:14:ae:8b:3f:f8:94:c3:4b:99:8b:20:24:f6:34: 63:ee:6c:4d:b8:05:cf:b1:a3:45:cc:53:fa:f6:48:f6:f6:bd: bb:19:25:32:a5:97:b7:88:60:cb:37:83:a8:72:f0:9a:4b:6d: 84:96:fc:b2:26:7c:f6:0b:7a:aa:6e:91:9e:b8:de:a6:30:62: 24:70:3b:0e:bc:ea:72:91:b5:93:84:76:bb:66:e0:8b:bb:26: 21:b5:90:32:ce:6f:62:1a:ce:81:53:13:33:7d:b2:b7:7f:bd: b5:b7:78:1c:17:53:af:49:d4:97:bf:7b:8a:6e:e0:06:2c:af: 2e:58:13:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5MkYxMTAvBgNVBAUTKDQ1N0RCNzY2RTFCMEQ2QTREQ0M3RjlBRUNEMjg3RDRE QzNFNzBDOUUwHhcNMjUxMTAzMDU1MTA0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4NDJjNy1iZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwoHApM0ZeMJrI6FsT6C96BDyxBOoQAMBoZN/7lb8X70bLTyTsnWtYMh8POC PUBS7SHRKUoDIvF1ZXd8BWAX5eFFCAsqqgFLgn0juS6Nbi7BloivrpAY9aimpd/1 2AttJNTs1MdpQUJ0NL6TVQLYa0bmc65zGZqVftX/1Dk03dD1UEpDt0OFfCqJ0sAL 3RPe164sYu6AdQlrAWoorkw3iQbKoLVdy27ecrPI7x3KUW3K2UIfxJMRHGZEx27t uZ2Hrpi3BSq/JL8GtJKmSpdr+YJLX1U3UtwQOBMuPS5vQ57ix+8LzcTdNZEgZinK 8NylHLMdncvjgUZpW2D88XDg1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOocMsE1 nTObkCs1SeCCBGkA+q1fMB8GA1UdIwQYMBaAFEV9t2bhsNak3Mf5rs0ofU3D5wye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTkyRi8xMjA4NUQxODc0 MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi9SWDIzWnVHdzFxVGN4X211elNoOVRjUG5E SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JYMjNadUd3MXFUY3hfbXV6U2g5VGNQbkRKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUU5MkYvMTIwODVEMTg3NDBCMTFFRjlFOUMwMzM2QzRGOUFFMDIvMkRGRDRBMUU3 NDBDMTFFRkI4ODFDRTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGguzgwDQYJKoZIhvcNAQELBQADggEBAMModPPIysJ4z1mA v5UtwQvQ884txNaAhf+8EqPZiXJUrRLWAfsf/+OaWvojN2sE1QccI+S3ajwsZCKD qfWlQ5bWYVNU2A93wxHmFcO4c70unUpth2HPiDLGFC2AiXSqBtVGZuZ83ebcnTyE 6r5OnlJ3CbKWOc9Yc/DE0DggFj9sDwwUros/+JTDS5mLICT2NGPubE24Bc+xo0XM U/r2SPb2vbsZJTKll7eIYMs3g6hy8JpLbYSW/LImfPYLeqpukZ643qYwYiRwOw68 6nKRtZOEdrtm4Iu7JiG1kDLOb2IazoFTEzN9srd/vbW3eBwXU69J1Je/e4pu4AYs ry5YE4I= -----END CERTIFICATE-----Generated at Wed Nov 5 01:58:07 2025 by rpki-client