$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/2E82E686569E11F08015BC34C4F9AE02.roa File: 2E82E686569E11F08015BC34C4F9AE02.roa (raw, json) Hash identifier: lvLXESJcuRjSmTnSzTV0gfJc2SXdXizZz5eloJwhEZU= Subject key identifier: 6C:79:B0:CD:BD:17:B5:E6:09:92:CE:ED:72:14:03:60:98:50:80:72 Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 041F Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/2E82E686569E11F08015BC34C4F9AE02.roa Signing time: Thu 14 Aug 2025 15:54:37 +0000 ROA not before: Thu 14 Aug 2025 15:54:37 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 57025 IP address blocks: 2400:56a0:900::/40 maxlen: 40 2400:56a0:dc02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: Aug 14 15:54:37 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=689e06bd-9174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cf:c8:d7:77:11:27:4f:ff:5e:2c:b8:25:17: ed:70:33:84:44:a5:e4:fc:ca:59:2a:21:17:88:92: 91:e0:4c:00:4f:4c:06:98:01:7a:49:7a:e5:c0:02: 10:c2:58:0f:0a:87:c4:aa:27:78:a7:01:74:8c:7d: d1:83:57:19:bc:80:9e:20:de:32:f6:6f:72:c1:e2: 1c:93:02:53:c5:08:cc:e3:ca:06:be:91:53:76:59: 80:c8:b5:40:fb:c2:ef:c1:45:75:e3:7a:cf:17:94: 0b:6c:eb:c7:bd:68:6c:0c:38:1c:a5:da:6b:94:2c: f2:14:1a:e6:9a:6a:bf:53:9a:9e:a2:b5:1d:38:02: e5:0e:89:1e:1e:b7:e0:c8:74:63:a4:8b:02:04:82: 8e:bc:3d:34:8d:68:a9:26:99:d2:a7:91:ab:6a:c1: 83:77:a0:f7:38:64:d3:5b:51:22:dc:23:46:ab:0f: 8b:73:14:fb:ec:a2:7f:ff:29:19:dc:1f:99:0b:49: 08:79:d8:c5:6f:ca:27:23:de:c5:19:e3:9f:0b:3c: b9:42:25:d9:77:21:1e:7f:88:39:23:b3:c6:ea:5a: 0c:2e:8a:bb:be:ac:13:0e:d1:c4:05:3c:6e:be:88: 14:3d:2d:68:14:8e:a4:6e:50:ec:1c:97:92:0f:23: dc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:79:B0:CD:BD:17:B5:E6:09:92:CE:ED:72:14:03:60:98:50:80:72 X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/2E82E686569E11F08015BC34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:56a0:900::/40 2400:56a0:dc02::/48 Signature Algorithm: sha256WithRSAEncryption 76:8b:90:fa:59:8c:a7:a6:94:eb:3e:2f:26:f0:77:3f:1d:8b: 7a:fc:03:7f:33:01:c0:50:de:97:79:74:64:52:43:a2:3c:48: 8a:23:ec:0d:d2:28:dc:95:67:11:9f:24:d0:75:05:c0:6c:01: 04:9f:7f:96:33:36:3d:5c:21:2d:a8:41:2c:9a:66:e5:52:c8: 57:d4:25:48:8b:00:48:a9:d7:9e:71:c2:53:ca:d9:d5:8b:b4: 8f:8b:fe:d1:01:a8:ec:9c:99:81:34:28:dd:ee:28:a1:c0:e4: f5:21:1c:ec:98:25:e7:c4:48:1c:53:91:40:48:18:0c:51:e2: 60:a2:46:a5:ea:1f:35:da:a5:77:a0:4d:c6:9f:df:53:bd:c1: 17:8a:17:01:e1:91:1c:33:5d:ef:89:d9:8b:68:83:03:e5:c7: 6f:ad:9e:78:b3:f2:65:67:d0:56:7c:2f:fd:35:8e:f1:27:73: 38:d8:50:01:03:2f:3f:eb:e3:17:1b:07:90:fb:7b:db:28:e6: 7f:0e:60:75:fb:0c:c7:25:bd:4d:61:e1:df:4f:c7:7a:e5:01: f3:69:03:60:20:99:59:fc:bc:9e:98:d6:d4:e5:ac:7d:fd:b4: 70:7f:7d:d5:92:d7:c7:7f:9c:ff:06:60:8c:36:dc:32:4b:2c: 90:d4:4a:e7 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjUwODE0MTU1NDM3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMDZiZC05MTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyM/I13cRJ0//Xiy4JRftcDOERKXk/MpZKiEXiJKR4EwAT0wGmAF6SXrlwAIQ wlgPCofEqid4pwF0jH3Rg1cZvICeIN4y9m9yweIckwJTxQjM48oGvpFTdlmAyLVA +8LvwUV143rPF5QLbOvHvWhsDDgcpdprlCzyFBrmmmq/U5qeorUdOALlDokeHrfg yHRjpIsCBIKOvD00jWipJpnSp5GrasGDd6D3OGTTW1Ei3CNGqw+LcxT77KJ//ykZ 3B+ZC0kIedjFb8onI97FGeOfCzy5QiXZdyEef4g5I7PG6loMLoq7vqwTDtHEBTxu vogUPS1oFI6kblDsHJeSDyPcGQIDAQABo4ICoDCCApwwHQYDVR0OBBYEFGx5sM29 F7XmCZLO7XIUA2CYUIByMB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgzQjQvRTc5RUQ0OTA4M0Y3MTFFQ0E0N0E2MjY1QzRGOUFFMDIvMkU4MkU2ODY1 NjlFMTFGMDgwMTVCQzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgACMBEDBgAkAFagCQMHACQAVqDcAjANBgkqhkiG9w0BAQsFAAOCAQEA douQ+lmMp6aU6z4vJvB3Px2LevwDfzMBwFDel3l0ZFJDojxIiiPsDdIo3JVnEZ8k 0HUFwGwBBJ9/ljM2PVwhLahBLJpm5VLIV9QlSIsASKnXnnHCU8rZ1Yu0j4v+0QGo 7JyZgTQo3e4oocDk9SEc7Jgl58RIHFORQEgYDFHiYKJGpeofNdqld6BNxp/fU73B F4oXAeGRHDNd74nZi2iDA+XHb62eeLPyZWfQVnwv/TWO8SdzONhQAQMvP+vjFxsH kPt72yjmfw5gdfsMxyW9TWHh30/HeuUB82kDYCCZWfy8npjW1OWsff20cH991ZLX x3+c/wZgjDbcMksskNRK5w== -----END CERTIFICATE-----Generated at Sun Aug 24 09:01:43 2025 by rpki-client