$ rpki-client -vvf rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/2E1E405E712D11EDA8C64C3DC4F9AE02.roa File: 2E1E405E712D11EDA8C64C3DC4F9AE02.roa (raw, json) Hash identifier: raytH9uNNC5xFXWwf9C8qNC3VlpXvdglaipPaCQFPYc= Subject key identifier: FC:16:1B:49:76:C7:E9:D9:FB:18:23:69:CC:A0:58:9F:4D:B9:AD:14 Certificate issuer: /CN=A912AED4/serialNumber=66F0C1DBCDF1ABC34ED11B46A90AE3201802A95C Certificate serial: 186E Authority key identifier: 66:F0:C1:DB:CD:F1:AB:C3:4E:D1:1B:46:A9:0A:E3:20:18:02:A9:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/2E1E405E712D11EDA8C64C3DC4F9AE02.roa Signing time: Fri 22 Aug 2025 16:54:45 +0000 ROA not before: Fri 22 Aug 2025 16:54:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45873 IP address blocks: 180.94.236.0/23 maxlen: 24 2401:e880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/ZvDB283xq8NO0RtGqQrjIBgCqVw.crl rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/ZvDB283xq8NO0RtGqQrjIBgCqVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6254 (0x186e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AED4, serialNumber=66F0C1DBCDF1ABC34ED11B46A90AE3201802A95C Validity Not Before: Aug 22 16:54:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a8a0d5-173c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6b:2e:e4:06:30:b8:ba:01:e2:f7:e6:e0:65: 59:08:8c:9c:20:d6:96:8c:1d:1f:cd:62:89:18:48: 89:bc:6e:04:dc:63:8e:5c:b2:76:3e:d8:b9:12:23: 2c:49:15:77:fc:85:ae:db:ee:21:0a:71:9c:40:00: 16:15:49:51:14:32:7b:8a:fe:3d:f1:40:6c:42:ec: b1:3d:c8:98:3c:36:98:cb:04:5d:7e:0a:e6:a6:9b: 22:81:24:c0:cb:3e:8f:3c:d6:05:0b:5f:05:0b:79: 83:d2:d6:77:64:0b:65:30:ca:20:be:19:ff:21:d1: a0:2e:71:0e:87:19:a4:c3:f2:fd:91:a9:b8:7d:1d: ca:45:62:06:b0:c7:79:c2:6e:48:1e:aa:ae:21:96: 8c:ef:72:11:73:0c:b5:7e:3a:88:6a:df:0e:9d:08: 6b:a9:3f:aa:85:d6:30:e2:7e:f9:5b:08:e0:ed:3d: 9f:d8:77:09:bd:d3:26:47:8e:ac:e9:36:77:4d:9b: 7d:dd:75:1d:f8:79:de:5c:e9:76:d9:87:ad:18:74: 80:b1:91:50:5a:8f:b2:47:03:f9:64:cd:c5:5c:83: c0:6c:72:45:14:90:bb:92:98:a0:be:7d:c1:65:01: 15:cb:38:82:bf:c8:73:0f:eb:96:6b:4f:24:48:9c: 5c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:16:1B:49:76:C7:E9:D9:FB:18:23:69:CC:A0:58:9F:4D:B9:AD:14 X509v3 Authority Key Identifier: keyid:66:F0:C1:DB:CD:F1:AB:C3:4E:D1:1B:46:A9:0A:E3:20:18:02:A9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/ZvDB283xq8NO0RtGqQrjIBgCqVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/2E1E405E712D11EDA8C64C3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.236.0/23 IPv6: 2401:e880::/32 Signature Algorithm: sha256WithRSAEncryption 33:c3:84:86:a5:8a:9e:af:8f:c2:1e:0d:82:47:51:08:72:53: cb:0e:48:05:4a:1c:e1:54:08:83:7e:d3:57:a1:ca:50:34:72: e0:cb:98:4a:01:9f:10:87:39:e9:34:26:5f:99:78:9c:eb:5a: b8:c7:b6:d1:71:aa:7e:29:58:e5:19:0a:87:d2:00:ce:9a:a8: e8:36:4d:e7:e9:03:d0:3c:ca:ff:f2:f6:3a:d1:bd:bb:96:8c: 40:e4:5e:f5:9a:bd:ea:66:20:ce:f2:a5:01:44:e4:ca:70:22: 07:ab:26:43:da:eb:0b:90:b7:36:cb:0c:75:14:fa:79:13:c7: 46:28:86:fd:14:34:94:53:96:0e:ce:f3:32:15:31:2f:1e:3e: 51:31:1d:3b:ea:6e:93:03:a8:0c:25:08:4a:d7:b0:80:a0:af: 9d:1c:f7:90:25:5a:2e:cd:77:11:1d:8a:5d:16:e7:4b:59:d8: ce:b6:80:22:97:08:18:c0:35:7f:b6:98:4c:ee:56:10:82:1d: 1c:75:0b:22:22:5b:bf:7e:24:6a:c4:27:61:f8:89:ef:e6:7e: 7c:c2:8e:a6:0d:d4:d4:ce:f9:f7:16:a3:77:04:9c:92:5f:74: a1:63:c2:2f:80:1d:da:e0:c9:53:33:17:2b:21:71:58:f3:57: 85:19:45:30 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICGG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFFRDQxMTAvBgNVBAUTKDY2RjBDMURCQ0RGMUFCQzM0RUQxMUI0NkE5MEFFMzIw MTgwMkE5NUMwHhcNMjUwODIyMTY1NDQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4YTBkNS0xNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGsu5AYwuLoB4vfm4GVZCIycINaWjB0fzWKJGEiJvG4E3GOOXLJ2Pti5EiMs SRV3/IWu2+4hCnGcQAAWFUlRFDJ7iv498UBsQuyxPciYPDaYywRdfgrmppsigSTA yz6PPNYFC18FC3mD0tZ3ZAtlMMogvhn/IdGgLnEOhxmkw/L9kam4fR3KRWIGsMd5 wm5IHqquIZaM73IRcwy1fjqIat8OnQhrqT+qhdYw4n75Wwjg7T2f2HcJvdMmR46s 6TZ3TZt93XUd+HneXOl22YetGHSAsZFQWo+yRwP5ZM3FXIPAbHJFFJC7kpigvn3B ZQEVyziCv8hzD+uWa08kSJxcIQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPwWG0l2 x+nZ+xgjacygWJ9Nua0UMB8GA1UdIwQYMBaAFGbwwdvN8avDTtEbRqkK4yAYAqlc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUVENC9CRUM5QUM4MkIw QkQxMUU3OTJBMkJGMzBDNEY5QUUwMi9adkRCMjgzeHE4Tk8wUnRHcVFyaklCZ0Nx VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2REIyODN4cThOTzBSdEdxUXJqSUJnQ3FWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFFRDQvQkVDOUFDODJCMEJEMTFFNzkyQTJCRjMwQzRGOUFFMDIvMkUxRTQwNUU3 MTJEMTFFREE4QzY0QzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAG0XuwwDQQCAAIwBwMFACQB6IAwDQYJKoZIhvcNAQELBQAD ggEBADPDhIalip6vj8IeDYJHUQhyU8sOSAVKHOFUCIN+01ehylA0cuDLmEoBnxCH Oek0Jl+ZeJzrWrjHttFxqn4pWOUZCofSAM6aqOg2TefpA9A8yv/y9jrRvbuWjEDk XvWavepmIM7ypQFE5MpwIgerJkPa6wuQtzbLDHUU+nkTx0Yohv0UNJRTlg7O8zIV MS8ePlExHTvqbpMDqAwlCErXsICgr50c95AlWi7NdxEdil0W50tZ2M62gCKXCBjA NX+2mEzuVhCCHRx1CyIiW79+JGrEJ2H4ie/mfnzCjqYN1NTO+fcWo3cEnJJfdKFj wi+AHdrgyVMzFyshcVjzV4UZRTA= -----END CERTIFICATE-----Generated at Sat Aug 23 21:24:27 2025 by rpki-client