$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa File: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (raw, json) Hash identifier: 1jcnYgiH1oCe12gdnItbi9E2/n5D/nkIQyDzvjflQcQ= Subject key identifier: 4C:E7:17:53:BC:CA:48:BB:03:A3:5B:83:AF:82:B4:28:8C:E2:9B:A4 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 01D3 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa Signing time: Tue 16 Sep 2025 01:48:57 +0000 ROA not before: Tue 16 Sep 2025 01:48:57 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135391 IP address blocks: 2404:2480::/32 maxlen: 32 2404:2480::/33 maxlen: 35 2404:2480::/34 maxlen: 40 2404:2480:4000::/35 maxlen: 40 2404:2480:6000::/36 maxlen: 40 2404:2480:6500::/48 maxlen: 48 2404:2480:8000::/33 maxlen: 33 2404:2480:8000::/34 maxlen: 34 2404:2480:8000::/35 maxlen: 36 2404:2480:8000::/36 maxlen: 40 2404:2480:9000::/37 maxlen: 37 2404:2480:9000::/38 maxlen: 39 2404:2480:9000::/39 maxlen: 40 2404:2480:9200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Sep 16 01:48:57 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68c8c209-0fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:75:6f:e0:89:03:46:46:31:40:dd:7a:77:b6: 3c:f1:c5:5c:a5:9f:49:74:a5:2f:34:94:b1:ce:ea: 73:c1:fc:79:c1:83:ba:db:53:94:10:0b:8c:4e:27: 30:5e:26:72:6c:ac:71:72:a1:de:c1:c2:ff:f3:b3: dd:6f:70:67:1e:48:ad:1a:83:0f:3b:53:37:b9:50: 1d:68:48:9c:ad:33:79:4f:d8:fa:2b:15:2f:1c:0f: 79:20:37:5c:7c:41:51:5a:62:a7:71:46:07:25:22: 8a:6c:79:5a:a3:bf:30:b5:a0:9c:4e:f5:96:d5:e8: 85:2c:e3:58:ca:50:b8:f9:aa:5b:16:a8:c0:6d:e2: e2:ef:67:e6:c1:ce:18:50:7b:bd:e7:bd:45:31:13: 7f:af:65:06:56:78:b6:5e:d3:08:4d:83:e5:68:4d: 17:b2:a3:6f:c6:98:b9:9b:88:15:87:24:e1:d5:e8: 26:ea:8f:3d:b5:20:ca:16:62:e1:28:b9:30:ca:ce: 2d:a1:4d:ff:36:79:26:52:82:68:20:bd:45:17:55: f6:32:de:31:12:1f:f5:71:df:32:04:3f:0c:dc:cf: 33:be:2c:e6:27:15:9d:3e:57:31:59:cc:c4:98:d2: be:3c:2d:da:b5:83:a9:a7:b6:41:d9:dd:6b:8f:f5: d0:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E7:17:53:BC:CA:48:BB:03:A3:5B:83:AF:82:B4:28:8C:E2:9B:A4 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:2480::/32 Signature Algorithm: sha256WithRSAEncryption 8a:79:7a:38:4d:f2:d0:f2:0c:74:f5:df:87:88:c8:f7:1b:6f: 6d:37:47:4a:dc:89:eb:4d:49:a1:5a:c9:49:1f:2b:69:61:2c: 8c:49:d2:70:8e:25:9e:0e:5c:e7:c7:1a:4c:e7:38:9b:e0:be: d9:1f:2c:d8:36:6f:6c:2a:6d:42:15:7d:38:7b:81:a8:ec:2f: ff:3c:0a:92:f5:40:b5:d2:cc:61:90:6c:97:95:e3:23:b7:21: 0f:89:65:ef:6e:07:54:76:0e:54:95:7c:04:86:e5:0d:68:12: 91:d6:bc:fb:38:0a:aa:d0:19:53:5d:ca:dc:13:8f:0d:c9:a1: 9c:ab:30:93:65:34:e3:c9:e3:88:0d:d4:d4:e6:10:55:5a:80: 97:4d:13:49:f4:26:09:df:0a:0d:61:0b:87:ea:d8:ca:2b:f8: f6:25:0d:49:05:f1:72:25:c4:f8:25:a5:fa:0c:c8:f5:91:d6: 7e:19:b4:ce:ab:d7:fb:6b:6c:16:32:6e:c5:a0:36:a3:e8:c5: 6f:49:42:86:72:58:90:7e:c9:8c:c2:6b:95:f1:01:42:20:c5: a9:c9:82:3f:ae:77:2a:ae:6c:89:35:dc:ba:7b:53:99:41:37: 15:ab:c0:a3:60:44:96:43:fa:94:bf:b5:a8:1c:c6:7a:d6:c5: 1a:3c:d1:e2 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjUwOTE2MDE0ODU3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM4YzIwOS0wZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXVv4IkDRkYxQN16d7Y88cVcpZ9JdKUvNJSxzupzwfx5wYO621OUEAuMTicw XiZybKxxcqHewcL/87Pdb3BnHkitGoMPO1M3uVAdaEicrTN5T9j6KxUvHA95IDdc fEFRWmKncUYHJSKKbHlao78wtaCcTvWW1eiFLONYylC4+apbFqjAbeLi72fmwc4Y UHu9571FMRN/r2UGVni2XtMITYPlaE0XsqNvxpi5m4gVhyTh1egm6o89tSDKFmLh KLkwys4toU3/NnkmUoJoIL1FF1X2Mt4xEh/1cd8yBD8M3M8zvizmJxWdPlcxWczE mNK+PC3atYOpp7ZB2d1rj/XQDQIDAQABo4ICljCCApIwHQYDVR0OBBYEFEznF1O8 yki7A6Nbg6+CtCiM4pukMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MxRTkvQkJDRDVEMkNFRkNDMTFFREIyOUJCMDZDQzRGOUFFMDIvMkFCOTkwQ0FG MEE5MTFFRDgwRDJDQjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBCSAMA0GCSqGSIb3DQEBCwUAA4IBAQCKeXo4TfLQ8gx0 9d+HiMj3G29tN0dK3InrTUmhWslJHytpYSyMSdJwjiWeDlznxxpM5zib4L7ZHyzY Nm9sKm1CFX04e4Go7C//PAqS9UC10sxhkGyXleMjtyEPiWXvbgdUdg5UlXwEhuUN aBKR1rz7OAqq0BlTXcrcE48NyaGcqzCTZTTjyeOIDdTU5hBVWoCXTRNJ9CYJ3woN YQuH6tjKK/j2JQ1JBfFyJcT4JaX6DMj1kdZ+GbTOq9f7a2wWMm7FoDaj6MVvSUKG cliQfsmMwmuV8QFCIMWpyYI/rncqrmyJNdy6e1OZQTcVq8CjYESWQ/qUv7WoHMZ6 1sUaPNHi -----END CERTIFICATE-----Generated at Mon Oct 20 10:35:36 2025 by rpki-client