$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa File: 2870E2347EB211F09B907A6BC4F9AE02.roa (raw, json) Hash identifier: M3qPmduTKgomQOiC6svBksITDFFBnsH7ow1jxrTPAmo= Subject key identifier: 3B:1D:31:17:13:89:6B:DF:D4:0A:C2:EE:12:36:92:67:FC:16:0B:29 Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 037C Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa Signing time: Mon 01 Sep 2025 12:49:07 +0000 ROA not before: Mon 01 Sep 2025 12:49:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 64245 IP address blocks: 45.114.119.0/24 maxlen: 24 2402:2f80:42::/48 maxlen: 48 2402:2f80:64::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 892 (0x37c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44, serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: Sep 1 12:49:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68b59643-84b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f8:c2:d5:92:39:4a:74:09:10:5f:67:6b:55: 5f:eb:12:c3:4e:c7:ba:fb:5f:79:6d:a4:e8:9c:8a: 71:3e:6f:e2:97:da:9b:c9:21:74:53:cb:07:e1:c8: e0:b2:fb:54:1b:19:14:1e:d9:dc:de:b1:29:2a:df: f2:93:e3:20:6a:29:1d:4f:0b:97:52:e2:d2:7c:74: 9c:11:89:ca:89:fe:f3:1a:c6:23:0a:2e:16:5e:cf: ed:27:35:91:72:cf:ca:21:14:32:d7:d6:8d:63:26: 4f:de:97:3c:28:97:e0:d4:e4:10:c8:36:a1:19:24: 2b:7f:dd:0a:1b:c7:27:57:16:bd:9f:ca:bf:a8:ff: e5:2c:85:ba:4d:cb:0c:67:37:8d:07:1a:a1:20:58: 29:1c:9a:2a:03:56:97:e1:f4:1d:b0:45:af:c0:c8: f9:a8:62:c8:95:dd:0f:5d:21:f1:b0:a9:54:00:96: 9f:4a:ee:8f:c4:33:00:c7:b1:db:09:8f:41:32:ba: f4:51:57:2d:83:d2:ef:ef:f7:71:ec:5c:5b:33:58: c4:d0:63:a3:69:fe:3b:71:29:f4:30:9d:94:c2:65: 84:de:86:76:0b:52:a0:3d:59:63:4a:c8:61:2c:cf: 5d:e0:aa:f3:5a:f3:c7:bc:17:37:6d:ab:61:88:f7: 58:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1D:31:17:13:89:6B:DF:D4:0A:C2:EE:12:36:92:67:FC:16:0B:29 X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.119.0/24 IPv6: 2402:2f80:42::/48 2402:2f80:64::/48 Signature Algorithm: sha256WithRSAEncryption c5:07:c3:18:b3:d9:36:98:61:08:1a:3f:e8:b9:b4:62:4f:27: 74:62:7e:f1:d7:da:dc:05:22:29:b7:85:fd:84:2f:30:5c:66: 8c:5a:5a:64:67:23:58:09:7b:eb:68:3a:4e:c8:19:67:68:fc: 91:2b:9d:bb:2c:51:b7:e2:d1:20:c7:ab:84:c8:5d:cf:6d:81: 15:dd:04:fd:71:c4:85:3b:a2:3a:9d:a6:c2:88:a0:04:f0:6a: 49:bd:14:2b:9e:c6:94:45:7c:95:c2:1e:3d:d1:9c:81:7c:4e: 51:2e:3d:db:1f:ec:31:57:9f:ec:ae:e1:5f:f2:dd:83:70:94: 21:fb:ef:37:7d:bd:0c:84:aa:b0:07:0d:d7:df:47:05:bf:a5: 41:a8:d4:86:21:3f:5a:a3:8f:fe:35:da:6d:7b:22:af:cd:d5: 5c:9a:5e:46:cc:ea:df:c2:b7:2d:26:07:97:e6:f5:09:e5:ee: c0:e2:12:79:a6:cd:43:48:7c:36:5a:6d:a1:b9:25:7e:08:a1: 81:5c:c7:65:fa:c4:5c:04:4a:3a:9d:84:6f:a6:56:35:74:47: 07:18:30:14:cb:b1:26:67:c2:17:e0:87:d8:0c:df:09:c2:ba: 0f:46:e7:ff:a7:db:96:f6:5d:2b:f1:2e:5a:2f:22:b3:60:3d: 51:05:4e:2e -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICA3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjUwOTAxMTI0OTA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1OTY0My04NGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfjC1ZI5SnQJEF9na1Vf6xLDTse6+195baTonIpxPm/il9qbySF0U8sH4cjg svtUGxkUHtnc3rEpKt/yk+MgaikdTwuXUuLSfHScEYnKif7zGsYjCi4WXs/tJzWR cs/KIRQy19aNYyZP3pc8KJfg1OQQyDahGSQrf90KG8cnVxa9n8q/qP/lLIW6TcsM ZzeNBxqhIFgpHJoqA1aX4fQdsEWvwMj5qGLIld0PXSHxsKlUAJafSu6PxDMAx7Hb CY9BMrr0UVctg9Lv7/dx7FxbM1jE0GOjaf47cSn0MJ2UwmWE3oZ2C1KgPVljSshh LM9d4KrzWvPHvBc3bathiPdYsQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFDsdMRcT iWvf1ArC7hI2kmf8FgspMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMjg3MEUyMzQ3 RUIyMTFGMDlCOTA3QTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAAtcncwGAQCAAIwEgMHACQCL4AAQgMHACQCL4AAZDANBgkq hkiG9w0BAQsFAAOCAQEAxQfDGLPZNphhCBo/6Lm0Yk8ndGJ+8dfa3AUiKbeF/YQv MFxmjFpaZGcjWAl762g6TsgZZ2j8kSuduyxRt+LRIMerhMhdz22BFd0E/XHEhTui Op2mwoigBPBqSb0UK57GlEV8lcIePdGcgXxOUS492x/sMVef7K7hX/Ldg3CUIfvv N329DISqsAcN199HBb+lQajUhiE/WqOP/jXabXsir83VXJpeRszq38K3LSYHl+b1 CeXuwOISeabNQ0h8NlptobklfgihgVzHZfrEXARKOp2Eb6ZWNXRHBxgwFMuxJmfC F+CH2AzfCcK6D0bn/6fblvZdK/EuWi8is2A9UQVOLg== -----END CERTIFICATE-----Generated at Mon Oct 20 14:20:40 2025 by rpki-client