$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa File: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (raw, json) Hash identifier: Lf66bh+3Et1Lkm6u/02OMdLBMs0RMDBcaf4uO2zLo2Q= Subject key identifier: 71:02:E9:53:6C:34:14:46:F7:E6:4D:78:6C:40:AC:6D:04:4D:FE:E8 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 08D4 Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa Signing time: Mon 30 Jun 2025 21:16:11 +0000 ROA not before: Mon 30 Jun 2025 21:16:11 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 140616 IP address blocks: 2406:1140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2260 (0x8d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0, serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: Jun 30 21:16:11 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=6862fe9b-6e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a0:97:cb:bf:13:b2:97:45:41:09:21:c5:cf: 58:0f:f9:1d:09:09:31:cb:fa:ab:aa:73:23:6c:a8: ae:62:21:f7:82:e4:8f:7f:a9:20:a8:9e:90:78:cb: 61:a1:53:66:06:70:b4:7d:98:ff:90:fa:8e:5e:21: b2:2a:89:a8:a3:6a:e6:16:ac:a3:03:fa:98:f0:93: c2:11:d0:06:e3:a7:a0:11:8c:de:cc:8f:a0:80:5d: 1f:5a:b4:db:5f:97:ff:e8:75:bf:25:aa:b6:60:50: 1d:5c:71:5d:1d:48:7b:6f:30:1c:48:af:5b:30:4d: c6:78:09:96:24:cf:36:e5:e0:0c:5d:ff:47:e2:e9: 37:50:48:a1:a9:e1:df:f5:f8:7d:94:51:44:1d:72: 9f:e5:08:d5:73:2f:ee:08:8c:11:66:6d:ca:08:71: 7a:77:a2:87:41:19:5c:41:12:6e:cd:12:51:8b:5e: cb:dc:3b:49:c0:28:db:2b:22:1f:10:1e:32:a2:20: 97:e4:d0:33:22:25:45:06:e9:9c:1d:8f:60:bf:37: 16:9b:25:c9:cc:72:84:d2:25:29:f4:ed:ac:f8:d5: c8:98:67:4f:cb:ee:2a:0d:77:65:28:c9:c2:f8:40: 7c:29:5d:40:b2:9f:65:fb:83:b4:f1:78:17:fe:93: 9e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:02:E9:53:6C:34:14:46:F7:E6:4D:78:6C:40:AC:6D:04:4D:FE:E8 X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:1140::/32 Signature Algorithm: sha256WithRSAEncryption 96:71:bf:5e:e4:1e:66:a9:60:96:9a:7e:1c:4b:8c:0d:0b:82: 76:45:0d:2e:c1:af:79:c5:ff:f7:d9:16:42:e1:aa:ec:10:87: a9:33:5d:e1:c3:85:66:c5:13:56:d9:c7:da:14:b8:73:56:17: fa:5d:4a:1d:e3:05:60:36:da:08:77:ff:69:ef:ee:45:8d:ea: 51:be:6e:73:fd:4f:fe:4f:5f:20:b5:99:cf:7a:df:ac:a8:95: 1a:04:7f:c4:77:f1:ef:c5:3d:eb:ff:c3:ac:24:5b:e4:72:94: 4c:a3:84:c7:b4:25:7f:f1:ac:d7:fa:bb:02:29:5e:10:dc:9b: ff:97:54:26:54:1f:7f:65:aa:fc:5f:a0:99:b9:f8:4d:41:84: af:1b:16:7b:82:18:7a:82:cc:43:f0:07:c5:d6:e1:79:7b:85: 65:22:de:ca:79:d7:83:f3:0d:c7:78:8a:17:b8:fc:a4:b0:a3: d1:22:fc:54:fc:d4:ac:04:2d:59:76:9d:2a:89:dd:d3:1e:a3: c6:88:96:9a:3d:42:6a:93:5c:b0:08:6e:2d:95:d7:3e:1a:d6: 91:f3:ec:db:da:ce:4b:33:e1:0e:2b:86:df:71:d9:b7:3b:e0: c0:93:77:ca:e4:4b:d0:57:3e:32:79:10:f8:37:73:f8:d8:d3: 7d:22:3f:a0 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjUwNjMwMjExNjExWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyZmU5Yi02ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqCXy78TspdFQQkhxc9YD/kdCQkxy/qrqnMjbKiuYiH3guSPf6kgqJ6QeMth oVNmBnC0fZj/kPqOXiGyKomoo2rmFqyjA/qY8JPCEdAG46egEYzezI+ggF0fWrTb X5f/6HW/Jaq2YFAdXHFdHUh7bzAcSK9bME3GeAmWJM825eAMXf9H4uk3UEihqeHf 9fh9lFFEHXKf5QjVcy/uCIwRZm3KCHF6d6KHQRlcQRJuzRJRi17L3DtJwCjbKyIf EB4yoiCX5NAzIiVFBumcHY9gvzcWmyXJzHKE0iUp9O2s+NXImGdPy+4qDXdlKMnC +EB8KV1Asp9l+4O08XgX/pOe+QIDAQABo4ICljCCApIwHQYDVR0OBBYEFHEC6VNs NBRG9+ZNeGxArG0ETf7oMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ4RTAvRUUyRDUzMjZCOTQ3MTFFQThBNjQ5RTc2QzRGOUFFMDIvMkJFQzYyRkE1 REEwMTFFRjhFNTQxMTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBhFAMA0GCSqGSIb3DQEBCwUAA4IBAQCWcb9e5B5mqWCW mn4cS4wNC4J2RQ0uwa95xf/32RZC4arsEIepM13hw4VmxRNW2cfaFLhzVhf6XUod 4wVgNtoId/9p7+5FjepRvm5z/U/+T18gtZnPet+sqJUaBH/Ed/HvxT3r/8OsJFvk cpRMo4THtCV/8azX+rsCKV4Q3Jv/l1QmVB9/Zar8X6CZufhNQYSvGxZ7ghh6gsxD 8AfF1uF5e4VlIt7KedeD8w3HeIoXuPyksKPRIvxU/NSsBC1Zdp0qid3THqPGiJaa PUJqk1ywCG4tldc+GtaR8+zb2s5LM+EOK4bfcdm3O+DAk3fK5EvQVz4yeRD4N3P4 2NN9Ij+g -----END CERTIFICATE-----Generated at Sun Jul 6 10:40:48 2025 by rpki-client