$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa File: 2870E2347EB211F09B907A6BC4F9AE02.roa (raw, json) Hash identifier: 2rBx7M/8DarUlsw8gY9C3sqaAvg0VqPuYYZMJWGJ38U= Subject key identifier: A2:0E:CE:4F:2C:CB:0D:53:3C:E6:5E:BA:A8:0A:7D:8A:FD:4D:52:47 Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 0371 Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa Signing time: Thu 21 Aug 2025 17:13:30 +0000 ROA not before: Thu 21 Aug 2025 17:13:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 64245 IP address blocks: 45.114.119.0/24 maxlen: 24 2402:2f80:64::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 881 (0x371) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44, serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: Aug 21 17:13:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a753b9-1c75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:af:16:75:5e:58:3d:aa:fb:97:ca:58:0d:ce: 7c:8b:fc:ab:c2:b5:f4:39:86:cd:ec:a3:8c:04:f4: e3:14:4b:22:93:b5:1e:d4:4b:ce:93:27:bf:63:3d: ee:24:2d:d6:1f:58:ec:e2:a3:53:2e:76:48:85:d4: 2d:e6:18:28:a5:fd:7d:f0:a2:10:5d:e5:fa:2d:df: 28:c4:4e:50:39:d7:5d:aa:f8:ce:b5:cb:1b:10:34: f1:fc:6d:91:50:ce:df:b4:2a:24:80:30:a8:36:40: ac:fd:fe:b4:01:d9:a5:cd:91:51:a2:83:cb:85:e3: 44:80:29:3c:6a:8e:bc:f4:4d:bb:b7:67:f0:3e:db: 0f:92:c0:d6:c1:39:9a:5c:14:79:e1:d5:83:cc:ea: 6e:a8:c3:3a:e5:dc:9e:f0:4e:d8:06:68:59:1c:d0: 61:e1:01:c4:39:cb:72:41:09:02:4e:44:85:84:78: 0c:0b:e3:11:76:8d:ea:07:79:c3:f1:c9:dc:bc:0c: 38:dd:2b:07:e7:3d:75:dc:df:0d:f1:a5:31:6c:39: 1b:f8:9e:0a:88:8f:e5:37:27:97:90:21:d7:49:32: b8:47:b8:ba:da:8e:da:90:52:45:6e:a4:19:7a:41: 33:da:e1:f3:24:5f:a7:58:91:95:5f:78:c4:86:9d: af:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0E:CE:4F:2C:CB:0D:53:3C:E6:5E:BA:A8:0A:7D:8A:FD:4D:52:47 X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/2870E2347EB211F09B907A6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.119.0/24 IPv6: 2402:2f80:64::/48 Signature Algorithm: sha256WithRSAEncryption 93:10:47:16:02:28:e9:24:07:83:48:3a:45:57:9f:8a:a0:39: 8f:01:95:df:26:58:a4:6a:51:b3:d7:9b:b9:30:c1:bd:67:6a: 79:4f:38:ec:43:37:de:e7:0f:62:47:66:1e:cc:6b:e7:97:17: 78:58:5f:61:67:a6:59:d7:03:9c:aa:0e:ce:a1:3e:8d:d1:4b: 22:c2:27:c5:d7:e2:b3:69:3d:2e:09:3c:8c:73:bc:df:18:fc: fc:97:7d:d4:e1:a7:0d:8f:7d:34:41:b4:64:2a:46:7b:68:c1: 66:2c:45:22:34:66:75:bf:0f:b8:72:80:4f:0c:56:48:b3:a0: 12:b9:65:bb:34:b3:0e:cb:ea:ed:61:c6:b8:7a:49:12:d9:7f: 74:7c:78:0a:11:ee:4f:47:46:3c:9d:9c:e2:52:39:db:fb:31: 99:fe:7c:c2:fc:c4:3b:f4:0c:ee:05:73:99:d5:01:26:a2:b5: 0f:af:f4:94:e0:b7:da:bf:c0:03:b0:f8:87:55:29:aa:1b:d4: 0c:ba:67:cc:e8:d5:e5:04:17:4b:ec:4a:bf:dd:49:5e:ca:f5: fe:77:a1:51:1c:40:96:8c:27:25:23:81:ac:9b:c2:d2:b7:ba: 96:ab:97:b0:26:1b:59:e7:2e:55:1f:95:f6:bd:2a:ed:aa:b3: 93:0d:7d:32 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjUwODIxMTcxMzMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE3NTNiOS0xYzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtq8WdV5YPar7l8pYDc58i/yrwrX0OYbN7KOMBPTjFEsik7Ue1EvOkye/Yz3u JC3WH1js4qNTLnZIhdQt5hgopf198KIQXeX6Ld8oxE5QOdddqvjOtcsbEDTx/G2R UM7ftCokgDCoNkCs/f60AdmlzZFRooPLheNEgCk8ao689E27t2fwPtsPksDWwTma XBR54dWDzOpuqMM65dye8E7YBmhZHNBh4QHEOctyQQkCTkSFhHgMC+MRdo3qB3nD 8cncvAw43SsH5z113N8N8aUxbDkb+J4KiI/lNyeXkCHXSTK4R7i62o7akFJFbqQZ ekEz2uHzJF+nWJGVX3jEhp2vuQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKIOzk8s yw1TPOZeuqgKfYr9TVJHMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMjg3MEUyMzQ3 RUIyMTFGMDlCOTA3QTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAtcncwDwQCAAIwCQMHACQCL4AAZDANBgkqhkiG9w0BAQsF AAOCAQEAkxBHFgIo6SQHg0g6RVefiqA5jwGV3yZYpGpRs9ebuTDBvWdqeU847EM3 3ucPYkdmHsxr55cXeFhfYWemWdcDnKoOzqE+jdFLIsInxdfis2k9Lgk8jHO83xj8 /Jd91OGnDY99NEG0ZCpGe2jBZixFIjRmdb8PuHKATwxWSLOgErlluzSzDsvq7WHG uHpJEtl/dHx4ChHuT0dGPJ2c4lI52/sxmf58wvzEO/QM7gVzmdUBJqK1D6/0lOC3 2r/AA7D4h1UpqhvUDLpnzOjV5QQXS+xKv91JXsr1/nehURxAlownJSOBrJvC0re6 lquXsCYbWecuVR+V9r0q7aqzkw19Mg== -----END CERTIFICATE-----Generated at Sat Aug 23 21:21:41 2025 by rpki-client