$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa File: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (raw, json) Hash identifier: gGLM1HQ1iS7fd20ceMBraz36fZdGiyHwpUVermAbtmg= Subject key identifier: 11:27:5E:8E:21:47:49:74:59:78:A8:80:64:A3:9F:54:F9:F7:A5:28 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 08DA Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa Signing time: Sun 06 Jul 2025 21:00:44 +0000 ROA not before: Sun 06 Jul 2025 21:00:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140616 IP address blocks: 2406:1140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2266 (0x8da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0, serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: Jul 6 21:00:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=686ae3fc-4279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:a8:f6:54:a4:4c:90:a0:bc:99:cb:7a:2e: 88:9c:44:12:0c:09:e8:09:6a:5c:9e:1e:81:3c:29: a8:ae:0f:19:39:f0:91:a4:6f:2a:56:9c:e6:3f:d5: 2c:1f:1b:bc:24:61:f5:e9:b8:84:88:d8:c4:76:dd: 1a:70:23:6d:de:e7:d4:ce:fd:ee:17:ad:21:de:89: c6:96:27:f6:21:da:d5:da:34:30:36:1c:d0:54:e2: 31:3e:c9:8e:d6:38:e5:90:f1:01:c1:56:4e:c6:51: fb:61:83:6a:89:29:e5:66:0e:2a:8b:98:ff:6a:1c: 30:d1:47:9a:55:2d:8a:18:c4:f2:46:1c:20:31:1d: 47:16:8c:23:43:10:94:b8:c0:6c:8a:1d:84:82:f7: 78:a2:a6:18:18:2e:97:7d:5a:71:d6:97:d5:58:49: 09:e3:b6:41:eb:16:8e:80:b6:a9:7c:fb:fa:db:9a: f4:e2:04:a4:d0:79:1f:40:d0:d6:57:45:52:fb:a4: 40:76:2b:81:8e:6d:62:82:8e:59:b7:67:31:60:97: 62:de:59:c4:56:b1:12:1e:d9:e5:99:e1:67:bf:21: 8b:57:9c:8d:56:a7:b9:b0:4a:9d:6c:e5:0a:65:28: c0:8f:fc:db:3e:70:cf:f5:86:1b:ce:56:d9:ec:50: 56:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:27:5E:8E:21:47:49:74:59:78:A8:80:64:A3:9F:54:F9:F7:A5:28 X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/2BEC62FA5DA011EF8E541175C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:1140::/32 Signature Algorithm: sha256WithRSAEncryption 26:24:0e:ce:5e:b1:7c:1a:db:8d:6f:50:d1:1d:e8:9f:10:24: c7:f1:5b:e6:3c:10:5b:4c:dc:95:60:0f:c8:61:06:f8:02:76: a3:27:58:af:bc:46:ea:c5:d8:33:3b:1a:49:c4:4c:9e:28:12: f3:c9:bb:2f:84:4d:1c:fb:67:82:07:a6:0b:5f:1b:25:06:dd: e8:62:4e:9b:db:15:50:a3:e7:ab:8b:d2:5f:1d:9e:27:ba:b2: ff:08:f5:56:81:01:32:47:67:dc:82:b8:b6:ec:0e:7b:9d:a1: dc:33:3d:39:8d:d0:a2:30:c7:06:f0:f2:d3:49:33:9a:78:58: af:1b:4c:69:1f:af:8d:9b:6c:41:fa:8f:22:20:df:cf:38:7d: 0a:bb:47:01:c4:80:12:5c:2e:5e:85:bf:f6:fd:f3:c5:67:3e: e0:2e:27:41:4e:da:3a:5c:7b:f0:c5:87:64:a5:44:4e:3f:3b: 49:4f:ae:9c:70:0f:5c:ed:b3:97:4f:ae:4b:1e:13:c4:dd:ec: ef:06:06:24:2a:72:6b:a2:60:9e:f4:dd:e3:0f:74:c9:70:ed: 7b:4d:a4:e5:1f:f8:de:76:b7:5b:00:3e:e6:2f:31:ad:2f:fb: f7:57:5a:15:f0:a3:75:92:89:de:49:fe:75:9d:e9:ad:86:91: 45:de:67:63 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjUwNzA2MjEwMDQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZhZTNmYy00Mjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjio9lSkTJCgvJnLei6InEQSDAnoCWpcnh6BPCmorg8ZOfCRpG8qVpzmP9Us Hxu8JGH16biEiNjEdt0acCNt3ufUzv3uF60h3onGlif2IdrV2jQwNhzQVOIxPsmO 1jjlkPEBwVZOxlH7YYNqiSnlZg4qi5j/ahww0UeaVS2KGMTyRhwgMR1HFowjQxCU uMBsih2Egvd4oqYYGC6XfVpx1pfVWEkJ47ZB6xaOgLapfPv625r04gSk0HkfQNDW V0VS+6RAdiuBjm1igo5Zt2cxYJdi3lnEVrESHtnlmeFnvyGLV5yNVqe5sEqdbOUK ZSjAj/zbPnDP9YYbzlbZ7FBWDQIDAQABo4ICljCCApIwHQYDVR0OBBYEFBEnXo4h R0l0WXiogGSjn1T596UoMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ4RTAvRUUyRDUzMjZCOTQ3MTFFQThBNjQ5RTc2QzRGOUFFMDIvMkJFQzYyRkE1 REEwMTFFRjhFNTQxMTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBhFAMA0GCSqGSIb3DQEBCwUAA4IBAQAmJA7OXrF8GtuN b1DRHeifECTH8VvmPBBbTNyVYA/IYQb4AnajJ1ivvEbqxdgzOxpJxEyeKBLzybsv hE0c+2eCB6YLXxslBt3oYk6b2xVQo+eri9JfHZ4nurL/CPVWgQEyR2fcgri27A57 naHcMz05jdCiMMcG8PLTSTOaeFivG0xpH6+Nm2xB+o8iIN/POH0Ku0cBxIASXC5e hb/2/fPFZz7gLidBTto6XHvwxYdkpUROPztJT66ccA9c7bOXT65LHhPE3ezvBgYk KnJromCe9N3jD3TJcO17TaTlH/jedrdbAD7mLzGtL/v3V1oV8KN1koneSf51nemt hpFF3mdj -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:44 2025 by rpki-client